Skip to content

PodIdentityWorkload

Source: src/AWS/EKS/PodIdentityWorkload.ts

Creates a pod-identity-enabled workload on an EKS cluster.

This helper combines PodIdentityServiceAccount with Workload so callers can declare a service-account-backed deployment without manually wiring the IAM role, EKS pod identity association, Kubernetes service account, and deployment together.

Examples

Section titled “Examples”
const app = yield* PodIdentityWorkload("api", {
  cluster: cluster.cluster,
  namespace: "default",
  managedPolicyArns: ["arn:aws:iam::aws:policy/AmazonS3ReadOnlyAccess"],
  containers: [
    {
      name: "api",
      image: "nginx:latest",
    },
  ],
});