# File generated by aws2tf see https://github.com/aws-samples/aws2tf
# aws_eks_cluster.cluster:
resource "aws_eks_cluster" "cluster" {
  enabled_cluster_log_types = [
    "api",
    "audit",
    "authenticator",
    "controllerManager",
    "scheduler",
  ]
  name = data.aws_ssm_parameter.tf-eks-cluster-name.value

  role_arn = data.aws_ssm_parameter.cluster_service_role_arn.value
  tags     = {}
  version  = var.eks_version

  timeouts {}

  vpc_config {
    endpoint_private_access = true
    endpoint_public_access  = false
    public_access_cidrs = [
      "0.0.0.0/0",
    ]
    security_group_ids = [
      data.aws_ssm_parameter.net-cluster-sg.value,
    ]
    subnet_ids = [
      data.aws_ssm_parameter.sub-priv1.value,
      data.aws_ssm_parameter.sub-priv2.value,
      data.aws_ssm_parameter.sub-priv3.value,
    ]
  }
  encryption_config {
    provider {
      key_arn = data.aws_kms_key.ekskey.arn
    }
    resources = ["secrets"]
  }
  provisioner "local-exec" {
    command     = "until curl --output /dev/null --insecure --silent ${self.endpoint}/healthz; do sleep 2; done"
    working_dir = path.module
  }

}