Skip to content

AccessEntry

Source: src/AWS/EKS/AccessEntry.ts

An Amazon EKS access entry that grants an IAM principal access to a cluster.

AccessEntry owns both the entry itself and the exact set of associated EKS access policies, making cluster access explicit and updatable after initial cluster bootstrap.

Managing Cluster Access

Section titled “Managing Cluster Access”
const viewer = yield* AccessEntry("ViewerAccess", {
  clusterName: cluster.clusterName,
  principalArn: viewerRole.roleArn,
  accessPolicies: [
    {
      policyArn:
        "arn:aws:eks::aws:cluster-access-policy/AmazonEKSViewPolicy",
      accessScope: {
        type: "cluster",
      },
    },
  ],
});