Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add enable_host_encryption to AKS node pool resources #10398

Merged
merged 5 commits into from
Feb 2, 2021
Merged

Add enable_host_encryption to AKS node pool resources #10398

merged 5 commits into from
Feb 2, 2021

Conversation

jackbatzner
Copy link
Contributor

@jackbatzner jackbatzner commented Feb 1, 2021
edited
Loading

Resolves #10387 by adding enable_host_encryption flag to the azurerm_kubernetes_cluster and azurerm_kubernetes_cluster_node_pool resources.

@jackbatzner jackbatzner changed the title [WIP] Add enable_host_encryption to AKS resources [WIP] Add enable_host_encryption to AKS node pool resources Feb 2, 2021
@jackbatzner jackbatzner changed the title [WIP] Add enable_host_encryption to AKS node pool resources Add enable_host_encryption to AKS node pool resources Feb 2, 2021
@ghost ghost added size/L and removed size/S labels Feb 2, 2021
tombuildsstuff
tombuildsstuff suggested changes Feb 2, 2021
View reviewed changes
Copy link
Contributor

@tombuildsstuff tombuildsstuff left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

hey @Brunhil

Thanks for this PR.

Taking a look through here this mostly LGTM - if we can fix up the minor comments and the tests pass then this should otherwise be good to merge 👍

Thanks!

website/docs/r/kubernetes_cluster_node_pool.html.markdown Outdated
@@ -73,6 +73,8 @@ The following arguments are supported:

* `enable_auto_scaling` - (Optional) Whether to enable [auto-scaler](https://docs.microsoft.com/en-us/azure/aks/cluster-autoscaler). Defaults to `false`.

* `enable_host_encryption` - (Optional) Whether to enable host encryption or not. Defaults to `false`.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

could we make this:

Suggested change
* `enable_host_encryption` - (Optional) Whether to enable host encryption or not. Defaults to `false`.
* `enable_host_encryption` - (Optional) Should the nodes in this Node Pool have host encryption enabled? Defaults to `false`.

website/docs/r/kubernetes_cluster.html.markdown Outdated
@@ -229,6 +229,8 @@ A `default_node_pool` block supports the following:

-> **NOTE:** If you're using AutoScaling, you may wish to use [Terraform's `ignore_changes` functionality](https://www.terraform.io/docs/configuration/resources.html#ignore_changes) to ignore changes to the `node_count` field.

* `enable_host_encryption` - (Optional) Should the nodes in this Node Pool have host encryption enabled? Defaults to `false`.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

can we make this:

Suggested change
* `enable_host_encryption` - (Optional) Should the nodes in this Node Pool have host encryption enabled? Defaults to `false`.
* `enable_host_encryption` - (Optional) Should the nodes in the Default Node Pool have host encryption enabled? Defaults to `false`.

@tombuildsstuff
Copy link
Contributor

The new tests pass:

Screenshot 2021-02-02 at 16 18 26

@tombuildsstuff
Copy link
Contributor

Tests pass for the "basic" tests too:

Screenshot 2021-02-02 at 16 49 05

@tombuildsstuff tombuildsstuff added this to the v2.46.0 milestone Feb 2, 2021
tombuildsstuff
tombuildsstuff approved these changes Feb 2, 2021
View reviewed changes
Copy link
Contributor

@tombuildsstuff tombuildsstuff left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM 👍

@tombuildsstuff tombuildsstuff merged commit c10363b into hashicorp:master Feb 2, 2021
tombuildsstuff added a commit that referenced this pull request Feb 2, 2021
@tombuildsstuff
updating to include #10398
09724ef
@etaham
Copy link

etaham commented Feb 2, 2021

Thank you @Brunhil and @tombuildsstuff !

@ghost
Copy link

ghost commented Feb 5, 2021

This has been released in version 2.46.0 of the provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading. As an example:

provider "azurerm" {
    version = "~> 2.46.0"
}
# ... other configuration ...

@jackbatzner jackbatzner deleted the aks-host-encryption branch March 2, 2021 02:27
@ghost
Copy link

ghost commented Mar 5, 2021

I'm going to lock this issue because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues.

If you feel this issue should be reopened, we encourage creating a new issue linking back to this one for added context. If you feel I made an error 🤖 🙉 , please reach out to my human friends 👉 [email protected]. Thanks!

@ghost ghost locked as resolved and limited conversation to collaborators Mar 5, 2021
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@tombuildsstuff tombuildsstuff tombuildsstuff approved these changes

Assignees
No one assigned
Labels
documentation enhancement preview service/kubernetes-cluster size/L
Projects
None yet
Milestone
v2.46.0
Development

Successfully merging this pull request may close these issues.

Support for AKS Host Encryption
3 participants
@jackbatzner @tombuildsstuff @etaham