use ca

Author: libracoder

.github/workflows/crossplane-release.yaml

@@ -123,11 +123,12 @@ jobs:
           -var-file=${{ inputs.environment }}.tfvars \
           -var="commit_hash=${{ github.sha }}" \
           -var="config_path=${{ github.workspace }}/kubeconfig.yaml" \
-          -var="cluster_ca_certificate=${{ secrets.EKS_PRD_CA_DATA }}" \
-          -var="cluster_endpoint=${{ secrets.EKS_PRD_HOST }}" \
+#          -var="cluster_ca_certificate=${{ secrets.EKS_PRD_CA_DATA }}" \
+#          -var="cluster_endpoint=${{ secrets.EKS_PRD_HOST }}" \
           -var="service_name=${{ inputs.service_name }}"
         env:
           TF_WORKSPACE: ${{ inputs.environment }}
+          KUBECONFIG: ${{ secrets.PRD_KUBECONFIG }}
           OP_SERVICE_ACCOUNT_TOKEN: ${{ secrets.PROD_ONEPASSWORD_SERVICEACCOUNT_TOKEN }}
 
 

crossplane/versions.tf

@@ -23,17 +23,17 @@ terraform {
   }
 }
 
-provider "kubectl" {
-  apply_retry_count      = 5
-  host                   = var.cluster_endpoint
-  cluster_ca_certificate = base64decode(var.cluster_ca_certificate)
-  load_config_file       = false
-
-  exec {
-    api_version = "client.authentication.k8s.io/v1beta1"
-    command     = "aws"
-    # This requires the awscli to be installed locally where Terraform is executed
-    args = ["eks", "get-token", "--cluster-name", var.cluster_name]
-  }
-}
+# provider "kubectl" {
+#   apply_retry_count      = 5
+#   host                   = var.cluster_endpoint
+#   cluster_ca_certificate = base64decode(var.cluster_ca_certificate)
+#   load_config_file       = false
+#
+#   exec {
+#     api_version = "client.authentication.k8s.io/v1beta1"
+#     command     = "aws"
+#     # This requires the awscli to be installed locally where Terraform is executed
+#     args = ["eks", "get-token", "--cluster-name", var.cluster_name]
+#   }
+# }