Merge pull request #80 from vscoder/fix_enable_legacy_abac

Fix enable_legacy_abac issue #79
gruntwork-io · Mar 25, 2020 · 99191da · 99191da
2 parents 41c827b + 3396b99
commit 99191da
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/modules/gke-cluster/main.tf b/modules/gke-cluster/main.tf
@@ -32,6 +32,9 @@ resource "google_container_cluster" "cluster" {
   monitoring_service = var.monitoring_service
   min_master_version = local.kubernetes_version
 
+  # Whether to enable legacy Attribute-Based Access Control (ABAC). RBAC has significant security advantages over ABAC.
+  enable_legacy_abac = var.enable_legacy_abac
+
   # The API requires a node pool or an initial count to be defined; that initial count creates the
   # "default node pool" with that # of nodes.
   # So, we need to set an initial_node_count of 1. This will make a default node