Skip to content
This repository was archived by the owner on Sep 27, 2024. It is now read-only.

Commit e5771dd

Browse files
markhv-codemarkhv-code
authored
actually fix namespace var syntax this time (#37)
1 parent afc69eb commit e5771dd

1 file changed

Lines changed: 2 additions & 7 deletions

File tree

role/main.tf

Lines changed: 2 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -1,10 +1,5 @@
11
data "aws_caller_identity" "current" {}
22

3-
variable "namespace" {
4-
type = string
5-
default = "${var.NameSpace != null ? var.NameSpace : var.GroupName}"
6-
}
7-
83
# ROLES
94
resource "aws_iam_role" "api-service-role" {
105
name = "${var.GroupName}-api-service-role"
@@ -27,7 +22,7 @@ resource "aws_iam_role" "api-service-role" {
2722
"Condition": {
2823
"StringEquals": {
2924
"oidc.eks.us-east-1.amazonaws.com/id/${var.OIDCProviderID}:aud": "sts.amazonaws.com",
30-
"oidc.eks.us-east-1.amazonaws.com/id/${var.OIDCProviderID}:sub": "system:serviceaccount:${var.namespace}:${var.GroupName}-api-service-account"
25+
"oidc.eks.us-east-1.amazonaws.com/id/${var.OIDCProviderID}:sub": "system:serviceaccount:${var.NameSpace != null ? var.NameSpace : var.GroupName}:${var.GroupName}-api-service-account"
3126
}
3227
}
3328
}]
@@ -56,7 +51,7 @@ resource "aws_iam_role" "job-scheduler-service-role" {
5651
"Condition": {
5752
"StringEquals": {
5853
"oidc.eks.us-east-1.amazonaws.com/id/${var.OIDCProviderID}:aud": "sts.amazonaws.com",
59-
"oidc.eks.us-east-1.amazonaws.com/id/${var.OIDCProviderID}:sub": "system:serviceaccount:${var.namespace}:${var.GroupName}-job-scheduler-service-account"
54+
"oidc.eks.us-east-1.amazonaws.com/id/${var.OIDCProviderID}:sub": "system:serviceaccount:${var.NameSpace != null ? var.NameSpace : var.GroupName}:${var.GroupName}-job-scheduler-service-account"
6055
}
6156
}
6257
}]

0 commit comments

Comments
 (0)