kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Corrected externalPolicy 

AWS IAM resource ID's were in an incorrect format.
This commit is contained in:
Timothy Clarke 2021-01-29 13:01:11 +00:00 committed by GitHub
parent 3d39be7721
commit 04be48a8cd
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
docs/iam_roles.md
View File

@ -81,11 +81,11 @@ Policy Overrides are specified by their ARN on AWS and are grouped by their role
spec:
externalPolicies:
node:
- aws:arn:iam:123456789000:policy:test-policy
- arn:aws:iam::123456789000:policy/test-policy
master:
- aws:arn:iam:123456789000:policy:test-policy
- arn:aws:iam::123456789000:policy/test-policy
bastion:
- aws:arn:iam:123456789000:policy:test-policy
- arn:aws:iam::123456789000:policy/test-policy
```
External Policy attachments are treated declaritively. Any policies declared will be attached to the role, any policies not specified will be detached _after_ new policies are attached. This does not replace or affect built in kOps policies in any way.