class KubectlProvider (construct)
| Language | Type name |
|---|---|
 .NET | Amazon.CDK.AWS.EKS.KubectlProvider |
 Java | software.amazon.awscdk.services.eks.KubectlProvider |
 Python | aws_cdk.aws_eks.KubectlProvider |
 TypeScript (source) | @aws-cdk/aws-eks » KubectlProvider |
Implements
IConstruct, IConstruct, IDependable, ITaggable, IKubectl
Implementation of Kubectl Lambda.
Example
const handlerRole = iam.Role.fromRoleArn(this, 'HandlerRole', 'arn:aws:iam::123456789012:role/lambda-role');
const kubectlProvider = eks.KubectlProvider.fromKubectlProviderAttributes(this, 'KubectlProvider', {
functionArn: 'arn:aws:lambda:us-east-2:123456789012:function:my-function:1',
kubectlRoleArn: 'arn:aws:iam::123456789012:role/kubectl-role',
handlerRole,
});
const cluster = eks.Cluster.fromClusterAttributes(this, 'Cluster', {
clusterName: 'cluster',
kubectlProvider,
});
Initializer
new KubectlProvider(scope: Construct, id: string, props: KubectlProviderProps)
Parameters
- scope
Construct - id
string - props
KubectlProvider Props
Construct Props
| Name | Type | Description |
|---|---|---|
| cluster | ICluster | The cluster to control. |
cluster
Type:
ICluster
The cluster to control.
Properties
| Name | Type | Description |
|---|---|---|
| account | string | The AWS account into which this stack will be deployed. |
| artifact | string | The ID of the cloud assembly artifact for this stack. |
| availability | string[] | Returns the list of AZs that are available in the AWS environment (account/region) associated with this stack. |
| bundling | boolean | Indicates whether the stack requires bundling or not. |
| dependencies | Stack[] | Return the stacks this stack depends on. |
| environment | string | The environment coordinates in which this stack is deployed. |
| handler | IRole | The IAM execution role of the handler. |
| nested | boolean | Indicates if this is a nested stack, in which case parentStack will include a reference to it's parent. |
| node | Construct | The construct tree node associated with this construct. |
| notification | string[] | Returns the list of notification Amazon Resource Names (ARNs) for the current stack. |
| partition | string | The partition in which this stack is defined. |
| region | string | The AWS region into which this stack will be deployed (e.g. us-west-2). |
| role | string | The IAM role to assume in order to perform kubectl operations against this cluster. |
| service | string | The custom resource provider's service token. |
| stack | string | An attribute that represents the ID of the stack. |
| stack | string | An attribute that represents the name of the nested stack. |
| synthesizer | IStack | Synthesis method for this stack. |
| tags | Tag | Tags to be applied to the stack. |
| template | string | The name of the CloudFormation template file emitted to the output directory during synthesis. |
| template | ITemplate | Options for CloudFormation template (like version, transform, description). |
| url | string | The Amazon domain suffix for the region in which this stack is defined. |
| nested | Stack | If this is a nested stack, returns it's parent stack. |
| nested | Cfn | If this is a nested stack, this represents its AWS::CloudFormation::Stack resource. |
| parent | Stack | Returns the parent of a nested stack. |
| termination | boolean | Whether termination protection is enabled for this stack. |
account
Type:
string
The AWS account into which this stack will be deployed.
This value is resolved according to the following rules:
- The value provided to
env.accountwhen the stack is defined. This can either be a concerete account (e.g.585695031111) or theAws.accountIdtoken. Aws.accountId, which represents the CloudFormation intrinsic reference{ "Ref": "AWS::AccountId" }encoded as a string token.
Preferably, you should use the return value as an opaque string and not
attempt to parse it to implement your logic. If you do, you must first
check that it is a concerete value an not an unresolved token. If this
value is an unresolved token (Token.isUnresolved(stack.account) returns
true), this implies that the user wishes that this stack will synthesize
into a account-agnostic template. In this case, your code should either
fail (throw an error, emit a synth error using Annotations.of(construct).addError()) or
implement some other region-agnostic behavior.
artifactId
Type:
string
The ID of the cloud assembly artifact for this stack.
availabilityZones
Type:
string[]
Returns the list of AZs that are available in the AWS environment (account/region) associated with this stack.
If the stack is environment-agnostic (either account and/or region are
tokens), this property will return an array with 2 tokens that will resolve
at deploy-time to the first two availability zones returned from CloudFormation's
Fn::GetAZs intrinsic function.
If they are not available in the context, returns a set of dummy values and
reports them as missing, and let the CLI resolve them by calling EC2
DescribeAvailabilityZones on the target environment.
To specify a different strategy for selecting availability zones override this method.
bundlingRequired
Type:
boolean
Indicates whether the stack requires bundling or not.
dependencies
Type:
Stack[]
Return the stacks this stack depends on.
environment
Type:
string
The environment coordinates in which this stack is deployed.
In the form
aws://account/region. Use stack.account and stack.region to obtain
the specific values, no need to parse.
You can use this value to determine if two stacks are targeting the same environment.
If either stack.account or stack.region are not concrete values (e.g.
Aws.account or Aws.region) the special strings unknown-account and/or
unknown-region will be used respectively to indicate this stack is
region/account-agnostic.
handlerRole
Type:
IRole
The IAM execution role of the handler.
nested
Type:
boolean
Indicates if this is a nested stack, in which case parentStack will include a reference to it's parent.
node
Type:
Construct
The construct tree node associated with this construct.
notificationArns
Type:
string[]
Returns the list of notification Amazon Resource Names (ARNs) for the current stack.
partition
Type:
string
The partition in which this stack is defined.
region
Type:
string
The AWS region into which this stack will be deployed (e.g. us-west-2).
This value is resolved according to the following rules:
- The value provided to
env.regionwhen the stack is defined. This can either be a concerete region (e.g.us-west-2) or theAws.regiontoken. Aws.region, which is represents the CloudFormation intrinsic reference{ "Ref": "AWS::Region" }encoded as a string token.
Preferably, you should use the return value as an opaque string and not
attempt to parse it to implement your logic. If you do, you must first
check that it is a concerete value an not an unresolved token. If this
value is an unresolved token (Token.isUnresolved(stack.region) returns
true), this implies that the user wishes that this stack will synthesize
into a region-agnostic template. In this case, your code should either
fail (throw an error, emit a synth error using Annotations.of(construct).addError()) or
implement some other region-agnostic behavior.
roleArn
Type:
string
The IAM role to assume in order to perform kubectl operations against this cluster.
serviceToken
Type:
string
The custom resource provider's service token.
stackId
Type:
string
An attribute that represents the ID of the stack.
This is a context aware attribute:
- If this is referenced from the parent stack, it will return
{ "Ref": "LogicalIdOfNestedStackResource" }. - If this is referenced from the context of the nested stack, it will return
{ "Ref": "AWS::StackId" }
Example value: arn:aws:cloudformation:us-east-2:123456789012:stack/mystack-mynestedstack-sggfrhxhum7w/f449b250-b969-11e0-a185-5081d0136786
stackName
Type:
string
An attribute that represents the name of the nested stack.
This is a context aware attribute:
- If this is referenced from the parent stack, it will return a token that parses the name from the stack ID.
- If this is referenced from the context of the nested stack, it will return
{ "Ref": "AWS::StackName" }
Example value: mystack-mynestedstack-sggfrhxhum7w
synthesizer
Type:
IStack
Synthesis method for this stack.
tags
Type:
Tag
Tags to be applied to the stack.
templateFile
Type:
string
The name of the CloudFormation template file emitted to the output directory during synthesis.
Example value: MyStack.template.json
templateOptions
Type:
ITemplate
Options for CloudFormation template (like version, transform, description).
urlSuffix
Type:
string
The Amazon domain suffix for the region in which this stack is defined.
nestedStackParent?
Type:
Stack
(optional)
If this is a nested stack, returns it's parent stack.
nestedStackResource?
Type:
Cfn
(optional)
If this is a nested stack, this represents its AWS::CloudFormation::Stack resource.
undefined for top-level (non-nested) stacks.
parentStack?
⚠️ Deprecated: use nestedStackParent
Type:
Stack
(optional)
Returns the parent of a nested stack.
terminationProtection?
Type:
boolean
(optional)
Whether termination protection is enabled for this stack.
Methods
| Name | Description |
|---|---|
| add | Add a dependency between this stack and another stack. |
| add | Register a docker image asset on this Stack. |
| add | Register a file asset on this Stack. |
| add | Add a Transform to this stack. A Transform is a macro that AWS CloudFormation uses to process your template. |
| export | Create a CloudFormation Export for a value. |
| format | Creates an ARN from components. |
| get | Allocates a stack-unique CloudFormation-compatible logical identity for a specific resource. |
| parse | Given an ARN, parses it and returns components. |
| regional | Look up a fact value for the given fact for the region of this stack. |
| rename | Rename a generated logical identities. |
| report | DEPRECATED. |
| report | Indicate that a context key was expected. |
| resolve(obj) | Resolve a tokenized value in the context of the current stack. |
| set | Assign a value to one of the nested stack parameters. |
| split | Splits the provided ARN into its components. |
| to | Convert an object, potentially containing tokens, to a JSON string. |
| to | Returns a string representation of this construct. |
| static from | Import an existing provider. |
| static get | Take existing provider or create new based on cluster. |
addDependency(target, reason?)
public addDependency(target: Stack, reason?: string): void
Parameters
- target
Stack - reason
string
Add a dependency between this stack and another stack.
This can be used to define dependencies between any two stacks within an app, and also supports nested stacks.
addDockerImageAsset(asset)
public addDockerImageAsset(asset: DockerImageAssetSource): DockerImageAssetLocation
⚠️ Deprecated: Use stack.synthesizer.addDockerImageAsset() if you are calling,
and a different IStackSynthesizer class if you are implementing.
Parameters
- asset
DockerImage Asset Source
Returns
Register a docker image asset on this Stack.
addFileAsset(asset)
public addFileAsset(asset: FileAssetSource): FileAssetLocation
⚠️ Deprecated: Use stack.synthesizer.addFileAsset() if you are calling,
and a different IStackSynthesizer class if you are implementing.
Parameters
- asset
FileAsset Source
Returns
Register a file asset on this Stack.
addTransform(transform)
public addTransform(transform: string): void
Parameters
- transform
string— The transform to add.
Add a Transform to this stack. A Transform is a macro that AWS CloudFormation uses to process your template.
Duplicate values are removed when stack is synthesized.
See also: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/transform-section-structure.html Example
declare const stack: Stack;
stack.addTransform('AWS::Serverless-2016-10-31')
exportValue(exportedValue, options?)
public exportValue(exportedValue: any, options?: ExportValueOptions): string
Parameters
- exportedValue
any - options
ExportValue Options
Returns
string
Create a CloudFormation Export for a value.
Returns a string representing the corresponding Fn.importValue()
expression for this Export. You can control the name for the export by
passing the name option.
If you don't supply a value for name, the value you're exporting must be
a Resource attribute (for example: bucket.bucketName) and it will be
given the same name as the automatic cross-stack reference that would be created
if you used the attribute in another Stack.
One of the uses for this method is to remove the relationship between two Stacks established by automatic cross-stack references. It will temporarily ensure that the CloudFormation Export still exists while you remove the reference from the consuming stack. After that, you can remove the resource and the manual export.
Example
Here is how the process works. Let's say there are two stacks,
producerStack and consumerStack, and producerStack has a bucket
called bucket, which is referenced by consumerStack (perhaps because
an AWS Lambda Function writes into it, or something like that).
It is not safe to remove producerStack.bucket because as the bucket is being
deleted, consumerStack might still be using it.
Instead, the process takes two deployments:
Deployment 1: break the relationship
- Make sure
consumerStackno longer referencesbucket.bucketName(maybe the consumer stack now uses its own bucket, or it writes to an AWS DynamoDB table, or maybe you just remove the Lambda Function altogether). - In the
ProducerStackclass, callthis.exportValue(this.bucket.bucketName). This will make sure the CloudFormation Export continues to exist while the relationship between the two stacks is being broken. - Deploy (this will effectively only change the
consumerStack, but it's safe to deploy both).
Deployment 2: remove the bucket resource
- You are now free to remove the
bucketresource fromproducerStack. - Don't forget to remove the
exportValue()call as well. - Deploy again (this time only the
producerStackwill be changed -- the bucket will be deleted).
formatArn(components)
public formatArn(components: ArnComponents): string
Parameters
- components
ArnComponents
Returns
string
Creates an ARN from components.
If partition, region or account are not specified, the stack's
partition, region and account will be used.
If any component is the empty string, an empty string will be inserted into the generated ARN at the location that component corresponds to.
The ARN will be formatted as follows:
arn:{partition}:{service}:{region}:{account}:{resource}{sep}}{resource-name}
The required ARN pieces that are omitted will be taken from the stack that the 'scope' is attached to. If all ARN pieces are supplied, the supplied scope can be 'undefined'.
getLogicalId(element)
public getLogicalId(element: CfnElement): string
Parameters
- element
Cfn— The CloudFormation element for which a logical identity is needed.Element
Returns
string
Allocates a stack-unique CloudFormation-compatible logical identity for a specific resource.
This method is called when a CfnElement is created and used to render the
initial logical identity of resources. Logical ID renames are applied at
this stage.
This method uses the protected method allocateLogicalId to render the
logical ID for an element. To modify the naming scheme, extend the Stack
class and override this method.
parseArn(arn, sepIfToken?, hasName?)
public parseArn(arn: string, sepIfToken?: string, hasName?: boolean): ArnComponents
⚠️ Deprecated: use splitArn instead
Parameters
- arn
string— The ARN string to parse. - sepIfToken
string— The separator used to separate resource from resourceName. - hasName
boolean— Whether there is a name component in the ARN at all.
Returns
Given an ARN, parses it and returns components.
IF THE ARN IS A CONCRETE STRING...
...it will be parsed and validated. The separator (sep) will be set to '/'
if the 6th component includes a '/', in which case, resource will be set
to the value before the '/' and resourceName will be the rest. In case
there is no '/', resource will be set to the 6th components and
resourceName will be set to the rest of the string.
IF THE ARN IS A TOKEN...
...it cannot be validated, since we don't have the actual value yet at the
time of this function call. You will have to supply sepIfToken and
whether or not ARNs of the expected format usually have resource names
in order to parse it properly. The resulting ArnComponents object will
contain tokens for the subexpressions of the ARN, not string literals.
If the resource name could possibly contain the separator char, the actual
resource name cannot be properly parsed. This only occurs if the separator
char is '/', and happens for example for S3 object ARNs, IAM Role ARNs,
IAM OIDC Provider ARNs, etc. To properly extract the resource name from a
Tokenized ARN, you must know the resource type and call
Arn.extractResourceName.
regionalFact(factName, defaultValue?)
public regionalFact(factName: string, defaultValue?: string): string
Parameters
- factName
string - defaultValue
string
Returns
string
Look up a fact value for the given fact for the region of this stack.
Will return a definite value only if the region of the current stack is resolved. If not, a lookup map will be added to the stack and the lookup will be done at CDK deployment time.
What regions will be included in the lookup map is controlled by the
@aws-cdk/core:target-partitions context value: it must be set to a list
of partitions, and only regions from the given partitions will be included.
If no such context key is set, all regions will be included.
This function is intended to be used by construct library authors. Application builders can rely on the abstractions offered by construct libraries and do not have to worry about regional facts.
If defaultValue is not given, it is an error if the fact is unknown for
the given region.
renameLogicalId(oldId, newId)
public renameLogicalId(oldId: string, newId: string): void
Parameters
- oldId
string - newId
string
Rename a generated logical identities.
To modify the naming scheme strategy, extend the Stack class and
override the allocateLogicalId method.
reportMissingContext(report)
public reportMissingContext(report: MissingContext): void
⚠️ Deprecated: use reportMissingContextKey()
Parameters
- report
MissingContext
DEPRECATED.
reportMissingContextKey(report)
public reportMissingContextKey(report: MissingContext): void
Parameters
- report
Missing— The set of parameters needed to obtain the context.Context
Indicate that a context key was expected.
Contains instructions which will be emitted into the cloud assembly on how the key should be supplied.
resolve(obj)
public resolve(obj: any): any
Parameters
- obj
any
Returns
any
Resolve a tokenized value in the context of the current stack.
setParameter(name, value)
public setParameter(name: string, value: string): void
Parameters
- name
string— The parameter name (ID). - value
string— The value to assign.
Assign a value to one of the nested stack parameters.
splitArn(arn, arnFormat)
public splitArn(arn: string, arnFormat: ArnFormat): ArnComponents
Parameters
- arn
string— the ARN to split into its components. - arnFormat
Arn— the expected format of 'arn' - depends on what format the service 'arn' represents uses.Format
Returns
Splits the provided ARN into its components.
Works both if 'arn' is a string like 'arn:aws:s3:::bucket', and a Token representing a dynamic CloudFormation expression (in which case the returned components will also be dynamic CloudFormation expressions, encoded as Tokens).
toJsonString(obj, space?)
public toJsonString(obj: any, space?: number): string
Parameters
- obj
any - space
number
Returns
string
Convert an object, potentially containing tokens, to a JSON string.
toString()
public toString(): string
Returns
string
Returns a string representation of this construct.
static fromKubectlProviderAttributes(scope, id, attrs)
public static fromKubectlProviderAttributes(scope: Construct, id: string, attrs: KubectlProviderAttributes): IKubectlProvider
Parameters
- scope
Construct— Construct. - id
string— an id of resource. - attrs
Kubectl— attributes for the provider.Provider Attributes
Returns
Import an existing provider.
static getOrCreate(scope, cluster)
public static getOrCreate(scope: Construct, cluster: ICluster): IKubectlProvider
Parameters
Returns
Take existing provider or create new based on cluster.