From 7641980b26fd85b1ede38feafe70b98a418d5f97 Mon Sep 17 00:00:00 2001
From: Stefan Reimer <stefan@zero-downtime.net>
Date: Mon, 11 Jan 2021 20:41:12 +0000
Subject: [PATCH] Add basic mapping for aws-iam-auth

---
 .../templates/aws-iam-authenticator/deployment.yaml   | 11 +++++++++++
 scripts/update_helm.sh                                |  1 +
 2 files changed, 12 insertions(+)

diff --git a/charts/kubeadm/templates/aws-iam-authenticator/deployment.yaml b/charts/kubeadm/templates/aws-iam-authenticator/deployment.yaml
index 968e78e..6d6d235 100644
--- a/charts/kubeadm/templates/aws-iam-authenticator/deployment.yaml
+++ b/charts/kubeadm/templates/aws-iam-authenticator/deployment.yaml
@@ -151,3 +151,14 @@ spec:
       - name: state
         hostPath:
           path: /var/aws-iam-authenticator/
+---
+apiVersion: iamauthenticator.k8s.aws/v1alpha1
+kind: IAMIdentityMapping
+metadata:
+  name: kubernetes-admin
+spec:
+  # Arn of the User or Role to be allowed to authenticate
+  arn: {{ .Values.kubeAdminRole }}
+  username: kubernetes-admin
+  groups:
+  - system:masters
diff --git a/scripts/update_helm.sh b/scripts/update_helm.sh
index 50abd1c..4ded25b 100755
--- a/scripts/update_helm.sh
+++ b/scripts/update_helm.sh
@@ -13,6 +13,7 @@ do
     then
         echo "Processing chart dependencies"
         rm -rf $dir/tmpcharts
+        rm -rf $dir/charts/*.tgz
         helm dependency update --skip-refresh $dir
     fi