Skip to content

PodIdentityAssociation

Source: src/AWS/EKS/PodIdentityAssociation.ts

An Amazon EKS pod identity association that binds a service account to an IAM role.

PodIdentityAssociation is the canonical workload-identity resource for EKS clusters that use EKS Pod Identity instead of IRSA.

Managing Pod Identity

Section titled “Managing Pod Identity”
const association = yield* PodIdentityAssociation("ApiIdentity", {
  clusterName: cluster.clusterName,
  namespace: "default",
  serviceAccount: "api",
  roleArn: podRole.roleArn,
});