UNPKG

aws-cdk-lib

Version:

Version 2 of the AWS Cloud Development Kit library

github.com/aws/aws-cdk

aws/aws-cdk

131 lines (130 loc) 4.97 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
import { Construct } from 'constructs'; import { Cluster } from './cluster'; import * as ec2 from '../../aws-ec2'; import * as iam from '../../aws-iam'; import { ITaggable, TagManager } from '../../core'; /** * Options for defining EKS Fargate Profiles. */ export interface FargateProfileOptions { /** * The name of the Fargate profile. * @default - generated */ readonly fargateProfileName?: string; /** * The pod execution role to use for pods that match the selectors in the * Fargate profile. The pod execution role allows Fargate infrastructure to * register with your cluster as a node, and it provides read access to Amazon * ECR image repositories. * * @see https://docs.aws.amazon.com/eks/latest/userguide/pod-execution-role.html * @default - a role will be automatically created */ readonly podExecutionRole?: iam.IRole; /** * The selectors to match for pods to use this Fargate profile. Each selector * must have an associated namespace. Optionally, you can also specify labels * for a namespace. * * At least one selector is required and you may specify up to five selectors. */ readonly selectors: Selector[]; /** * The VPC from which to select subnets to launch your pods into. * * By default, all private subnets are selected. You can customize this using * `subnetSelection`. * * @default - all private subnets used by the EKS cluster */ readonly vpc?: ec2.IVpc; /** * Select which subnets to launch your pods into. At this time, pods running * on Fargate are not assigned public IP addresses, so only private subnets * (with no direct route to an Internet Gateway) are allowed. * * You must specify the VPC to customize the subnet selection * * @default - all private subnets of the VPC are selected. */ readonly subnetSelection?: ec2.SubnetSelection; } /** * Configuration props for EKS Fargate Profiles. */ export interface FargateProfileProps extends FargateProfileOptions { /** * The EKS cluster to apply the Fargate profile to. * [disable-awslint:ref-via-interface] */ readonly cluster: Cluster; } /** * Fargate profile selector. */ export interface Selector { /** * The Kubernetes namespace that the selector should match. * * You must specify a namespace for a selector. The selector only matches pods * that are created in this namespace, but you can create multiple selectors * to target multiple namespaces. */ readonly namespace: string; /** * The Kubernetes labels that the selector should match. A pod must contain * all of the labels that are specified in the selector for it to be * considered a match. * * @default - all pods within the namespace will be selected. */ readonly labels?: { [key: string]: string; }; } /** * Fargate profiles allows an administrator to declare which pods run on * Fargate. This declaration is done through the profile’s selectors. Each * profile can have up to five selectors that contain a namespace and optional * labels. You must define a namespace for every selector. The label field * consists of multiple optional key-value pairs. Pods that match a selector (by * matching a namespace for the selector and all of the labels specified in the * selector) are scheduled on Fargate. If a namespace selector is defined * without any labels, Amazon EKS will attempt to schedule all pods that run in * that namespace onto Fargate using the profile. If a to-be-scheduled pod * matches any of the selectors in the Fargate profile, then that pod is * scheduled on Fargate. * * If a pod matches multiple Fargate profiles, Amazon EKS picks one of the * matches at random. In this case, you can specify which profile a pod should * use by adding the following Kubernetes label to the pod specification: * eks.amazonaws.com/fargate-profile: profile_name. However, the pod must still * match a selector in that profile in order to be scheduled onto Fargate. */ export declare class FargateProfile extends Construct implements ITaggable { /** * The full Amazon Resource Name (ARN) of the Fargate profile. * * @attribute */ readonly fargateProfileArn: string; /** * The name of the Fargate profile. * * @attribute */ readonly fargateProfileName: string; /** * Resource tags. */ readonly tags: TagManager; /** * The pod execution role to use for pods that match the selectors in the * Fargate profile. The pod execution role allows Fargate infrastructure to * register with your cluster as a node, and it provides read access to Amazon * ECR image repositories. */ readonly podExecutionRole: iam.IRole; constructor(scope: Construct, id: string, props: FargateProfileProps); }