Slide 45
Slide 45 text
Experimentsの定義 & 適用 (AWS FIS)
45
● EKS側でRoleの作成とaws-authの修正
○ ClusterRole or Roleを作成
● configmap/aws-auth に追加
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: chaosmesh
rules:
- apiGroups: [""]
resources: ["pods", "namespaces"]
verbs: ["get", "watch", "list"]
- apiGroups: ["chaos-mesh.org"]
resources: ["*"]
verbs: ["get", "list", "watch", "create", "delete",
"patch", "update"]
data:
mapRoles: |
- groups:
- system:masters
rolearn: arn:aws:iam::123456789012:role/AWSFISIAMRole-XXXXXXXX
username: "chaosmesh"
FISの実験テンプレートで指
定するIAM Role ARNを指定