From 433929ccd84c5b72a445e97bfba16b18bc643e14 Mon Sep 17 00:00:00 2001
From: Nga <92612527+NgaNaNa@users.noreply.github.com>
Date: Sat, 24 May 2025 19:30:50 +0930
Subject: [PATCH 1/2] allow cluster endpoints for pub/private

---
 infra/eks/cluster.tf | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/infra/eks/cluster.tf b/infra/eks/cluster.tf
index 70c8a7d..6a967e7 100644
--- a/infra/eks/cluster.tf
+++ b/infra/eks/cluster.tf
@@ -8,6 +8,12 @@ module "eks" {
   vpc_id     = var.vpc_id
   subnet_ids = var.app_public_subnet_ids
 
+  cluster_endpoint_private_access      = true
+  cluster_endpoint_public_access       = true
+  cluster_endpoint_public_access_cidrs = ["119.15.74.49/32"]
+
+  enable_cluster_creator_admin_permissions = true
+
   # This config maps to an Auto Scaling Group under the hood
   eks_managed_node_groups = {
     default = {

From 60a3f775fd9de4a0d424e1d4d13ed2cd0a2480b7 Mon Sep 17 00:00:00 2001
From: Nga <92612527+NgaNaNa@users.noreply.github.com>
Date: Sat, 24 May 2025 19:37:40 +0930
Subject: [PATCH 2/2] no custom namespace needed atm

---
 infra/eks/_providers.tf | 7 +++----
 1 file changed, 3 insertions(+), 4 deletions(-)

diff --git a/infra/eks/_providers.tf b/infra/eks/_providers.tf
index eb6dbb8..3ab28e2 100644
--- a/infra/eks/_providers.tf
+++ b/infra/eks/_providers.tf
@@ -13,8 +13,7 @@ provider "kubernetes" {
   }
 }
 
-resource "kubernetes_namespace" "app" {
-  metadata { name = "node-api" }
-}
+# resource "kubernetes_namespace" "node-app" {
+#   metadata { name = "node-api" }
+# }
 
-# Kustomize, kubectl_manifest, or Helm chart can follow here for Deployment/Service/Ingress