kubernetes-sigs
diff --git a/‎config/crd/bases/controlplane.cluster.x-k8s.io_awsmanagedcontrolplanes.yaml
Lines changed: 11 additions & 0 deletions b/‎config/crd/bases/controlplane.cluster.x-k8s.io_awsmanagedcontrolplanes.yaml
Lines changed: 11 additions & 0 deletions
diff --git a/‎config/crd/bases/controlplane.cluster.x-k8s.io_awsmanagedcontrolplanetemplates.yaml
Lines changed: 11 additions & 0 deletions b/‎config/crd/bases/controlplane.cluster.x-k8s.io_awsmanagedcontrolplanetemplates.yaml
Lines changed: 11 additions & 0 deletions
diff --git a/‎controlplane/eks/api/v1beta1/conversion.go
Lines changed: 1 addition & 0 deletions b/‎controlplane/eks/api/v1beta1/conversion.go
Lines changed: 1 addition & 0 deletions
diff --git a/‎controlplane/eks/api/v1beta1/zz_generated.conversion.go
Lines changed: 1 addition & 0 deletions b/‎controlplane/eks/api/v1beta1/zz_generated.conversion.go
Lines changed: 1 addition & 0 deletions
diff --git a/‎controlplane/eks/api/v1beta2/awsmanagedcontrolplane_types.go
Lines changed: 9 additions & 1 deletion b/‎controlplane/eks/api/v1beta2/awsmanagedcontrolplane_types.go
Lines changed: 9 additions & 1 deletion
diff --git a/‎controlplane/eks/api/v1beta2/awsmanagedcontrolplane_webhook.go
Lines changed: 9 additions & 1 deletion b/‎controlplane/eks/api/v1beta2/awsmanagedcontrolplane_webhook.go
Lines changed: 9 additions & 1 deletion
diff --git a/‎controlplane/eks/api/v1beta2/awsmanagedcontrolplane_webhook_test.go
Lines changed: 7 additions & 7 deletions b/‎controlplane/eks/api/v1beta2/awsmanagedcontrolplane_webhook_test.go
Lines changed: 7 additions & 7 deletions
diff --git a/‎controlplane/eks/api/v1beta2/zz_generated.deepcopy.go
Lines changed: 10 additions & 0 deletions b/‎controlplane/eks/api/v1beta2/zz_generated.deepcopy.go
Lines changed: 10 additions & 0 deletions
@@ -2353,6 +2353,15 @@ spec:
                 - host
                 - port
                 type: object
+              eksAutoMode:
+                default: true
+                description: |-
+                  EKSAutoMode indicates the EKS Auto Mode state for control-plane.
+                  If you set this value to false, the following params will be disabled for EKS:
+                  AWS::EKS::Cluster KubernetesNetworkConfig ElasticLoadBalancing Enabled -> false.
+                  AWS::EKS::Cluster StorageConfig blockStorage Enabled -> false.
+                  AWS::EKS::Cluster ComputeConfig Enabled -> false.
+                type: boolean
               eksClusterName:
                 description: |-
                   EKSClusterName allows you to specify the name of the EKS cluster in
@@ -3339,6 +3348,8 @@ spec:
                       type: object
                     type: array
                 type: object
+            required:
+            - eksAutoMode
             type: object
           status:
             description: AWSManagedControlPlaneStatus defines the observed state of
 
@@ -165,6 +165,15 @@ spec:
                         - host
                         - port
                         type: object
+                      eksAutoMode:
+                        default: true
+                        description: |-
+                          EKSAutoMode indicates the EKS Auto Mode state for control-plane.
+                          If you set this value to false, the following params will be disabled for EKS:
+                          AWS::EKS::Cluster KubernetesNetworkConfig ElasticLoadBalancing Enabled -> false.
+                          AWS::EKS::Cluster StorageConfig blockStorage Enabled -> false.
+                          AWS::EKS::Cluster ComputeConfig Enabled -> false.
+                        type: boolean
                       eksClusterName:
                         description: |-
                           EKSClusterName allows you to specify the name of the EKS cluster in
@@ -1166,6 +1175,8 @@ spec:
                               type: object
                             type: array
                         type: object
+                    required:
+                    - eksAutoMode
                     type: object
                 required:
                 - spec
 
@@ -121,6 +121,7 @@ func (r *AWSManagedControlPlane) ConvertTo(dstRaw conversion.Hub) error {
 	dst.Spec.RolePermissionsBoundary = restored.Spec.RolePermissionsBoundary
 	dst.Status.Version = restored.Status.Version
 	dst.Spec.BootstrapSelfManagedAddons = restored.Spec.BootstrapSelfManagedAddons
+	dst.Spec.EKSAutoMode = restored.Spec.EKSAutoMode
 	return nil
 }
 
 
@@ -200,7 +200,15 @@ type AWSManagedControlPlaneSpec struct { //nolint: maligned
 	// bare EKS cluster without EKS default networking addons
 	// If you set this value to false when creating a cluster, the default networking add-ons will not be installed
 	// +kubebuilder:default=true
-	BootstrapSelfManagedAddons bool `json:"bootstrapSelfManagedAddons,omitempty"`
+	BootstrapSelfManagedAddons *bool `json:"bootstrapSelfManagedAddons,omitempty"`
+
+	// EKSAutoMode indicates the EKS Auto Mode state for control-plane.
+	// If you set this value to false, the following params will be disabled for EKS:
+	// AWS::EKS::Cluster KubernetesNetworkConfig ElasticLoadBalancing Enabled -> false.
+	// AWS::EKS::Cluster StorageConfig blockStorage Enabled -> false.
+	// AWS::EKS::Cluster ComputeConfig Enabled -> false.
+	// +kubebuilder:default=true
+	EKSAutoMode *bool `json:"eksAutoMode"`
 
 	// RestrictPrivateSubnets indicates that the EKS control plane should only use private subnets.
 	// +kubebuilder:default=false
 
@@ -19,6 +19,7 @@ package v1beta2
 import (
 	"context"
 	"fmt"
+	"github.com/aws/aws-sdk-go-v2/aws"
 	"net"
 
 	"github.com/apparentlymart/go-cidr/cidr"
@@ -572,6 +573,13 @@ func (*awsManagedControlPlaneWebhook) Default(_ context.Context, obj runtime.Obj
 	infrav1.SetDefaults_NetworkSpec(&r.Spec.NetworkSpec)
 
 	// Set default value for BootstrapSelfManagedAddons
-	r.Spec.BootstrapSelfManagedAddons = true
+	if r.Spec.BootstrapSelfManagedAddons == nil {
+		r.Spec.BootstrapSelfManagedAddons = aws.Bool(true)
+	}
+
+	// Set default value for EKSAutoMode
+	if r.Spec.EKSAutoMode == nil {
+		r.Spec.EKSAutoMode = aws.Bool(true)
+	}
 	return nil
 }
@@ -85,52 +85,52 @@ func TestDefaultingWebhook(t *testing.T) {
 			resourceName: "cluster1",
 			resourceNS:   "default",
 			expectHash:   false,
-			expectSpec:   AWSManagedControlPlaneSpec{EKSClusterName: "default_cluster1", IdentityRef: defaultIdentityRef, Bastion: defaultTestBastion, NetworkSpec: defaultNetworkSpec, TokenMethod: &EKSTokenMethodIAMAuthenticator, BootstrapSelfManagedAddons: true},
+			expectSpec:   AWSManagedControlPlaneSpec{EKSClusterName: "default_cluster1", IdentityRef: defaultIdentityRef, Bastion: defaultTestBastion, NetworkSpec: defaultNetworkSpec, TokenMethod: &EKSTokenMethodIAMAuthenticator, BootstrapSelfManagedAddons: aws.Bool(true), EKSAutoMode: aws.Bool(true)},
 		},
 		{
 			name:         "less than 100 chars, dot in name",
 			resourceName: "team1.cluster1",
 			resourceNS:   "default",
 			expectHash:   false,
-			expectSpec:   AWSManagedControlPlaneSpec{EKSClusterName: "default_team1_cluster1", IdentityRef: defaultIdentityRef, Bastion: defaultTestBastion, NetworkSpec: defaultNetworkSpec, TokenMethod: &EKSTokenMethodIAMAuthenticator, BootstrapSelfManagedAddons: true},
+			expectSpec:   AWSManagedControlPlaneSpec{EKSClusterName: "default_team1_cluster1", IdentityRef: defaultIdentityRef, Bastion: defaultTestBastion, NetworkSpec: defaultNetworkSpec, TokenMethod: &EKSTokenMethodIAMAuthenticator, BootstrapSelfManagedAddons: aws.Bool(true), EKSAutoMode: aws.Bool(true)},
 		},
 		{
 			name:         "more than 100 chars",
 			resourceName: "abcdeabcdeabcdeabcdeabcdeabcdeabcdeabcdeabcdeabcdeabcdeabcdeabcdeabcdeabcdeabcdeabcdeabcdeabcdeabcde",
 			resourceNS:   "default",
 			expectHash:   true,
-			expectSpec:   AWSManagedControlPlaneSpec{EKSClusterName: "capi_", IdentityRef: defaultIdentityRef, Bastion: defaultTestBastion, NetworkSpec: defaultNetworkSpec, TokenMethod: &EKSTokenMethodIAMAuthenticator, BootstrapSelfManagedAddons: true},
+			expectSpec:   AWSManagedControlPlaneSpec{EKSClusterName: "capi_", IdentityRef: defaultIdentityRef, Bastion: defaultTestBastion, NetworkSpec: defaultNetworkSpec, TokenMethod: &EKSTokenMethodIAMAuthenticator, BootstrapSelfManagedAddons: aws.Bool(true), EKSAutoMode: aws.Bool(true)},
 		},
 		{
 			name:         "with patch",
 			resourceName: "cluster1",
 			resourceNS:   "default",
 			expectHash:   false,
 			spec:         AWSManagedControlPlaneSpec{Version: &vV1_17_1},
-			expectSpec:   AWSManagedControlPlaneSpec{EKSClusterName: "default_cluster1", Version: &vV1_17_1, IdentityRef: defaultIdentityRef, Bastion: defaultTestBastion, NetworkSpec: defaultNetworkSpec, TokenMethod: &EKSTokenMethodIAMAuthenticator, BootstrapSelfManagedAddons: true},
+			expectSpec:   AWSManagedControlPlaneSpec{EKSClusterName: "default_cluster1", Version: &vV1_17_1, IdentityRef: defaultIdentityRef, Bastion: defaultTestBastion, NetworkSpec: defaultNetworkSpec, TokenMethod: &EKSTokenMethodIAMAuthenticator, BootstrapSelfManagedAddons: aws.Bool(true), EKSAutoMode: aws.Bool(true)},
 		},
 		{
 			name:         "with allowed ip on bastion",
 			resourceName: "cluster1",
 			resourceNS:   "default",
 			expectHash:   false,
 			spec:         AWSManagedControlPlaneSpec{Bastion: infrav1.Bastion{AllowedCIDRBlocks: []string{"100.100.100.100/0"}}},
-			expectSpec:   AWSManagedControlPlaneSpec{EKSClusterName: "default_cluster1", IdentityRef: defaultIdentityRef, Bastion: infrav1.Bastion{AllowedCIDRBlocks: []string{"100.100.100.100/0"}}, NetworkSpec: defaultNetworkSpec, TokenMethod: &EKSTokenMethodIAMAuthenticator, BootstrapSelfManagedAddons: true},
+			expectSpec:   AWSManagedControlPlaneSpec{EKSClusterName: "default_cluster1", IdentityRef: defaultIdentityRef, Bastion: infrav1.Bastion{AllowedCIDRBlocks: []string{"100.100.100.100/0"}}, NetworkSpec: defaultNetworkSpec, TokenMethod: &EKSTokenMethodIAMAuthenticator, BootstrapSelfManagedAddons: aws.Bool(true), EKSAutoMode: aws.Bool(true)},
 		},
 		{
 			name:         "with CNI on network",
 			resourceName: "cluster1",
 			resourceNS:   "default",
 			expectHash:   false,
 			spec:         AWSManagedControlPlaneSpec{NetworkSpec: infrav1.NetworkSpec{CNI: &infrav1.CNISpec{}}},
-			expectSpec:   AWSManagedControlPlaneSpec{EKSClusterName: "default_cluster1", IdentityRef: defaultIdentityRef, Bastion: defaultTestBastion, NetworkSpec: infrav1.NetworkSpec{CNI: &infrav1.CNISpec{}, VPC: defaultVPCSpec}, TokenMethod: &EKSTokenMethodIAMAuthenticator, BootstrapSelfManagedAddons: true},
+			expectSpec:   AWSManagedControlPlaneSpec{EKSClusterName: "default_cluster1", IdentityRef: defaultIdentityRef, Bastion: defaultTestBastion, NetworkSpec: infrav1.NetworkSpec{CNI: &infrav1.CNISpec{}, VPC: defaultVPCSpec}, TokenMethod: &EKSTokenMethodIAMAuthenticator, BootstrapSelfManagedAddons: aws.Bool(true), EKSAutoMode: aws.Bool(true)},
 		},
 		{
 			name:         "secondary CIDR",
 			resourceName: "cluster1",
 			resourceNS:   "default",
 			expectHash:   false,
-			expectSpec:   AWSManagedControlPlaneSpec{EKSClusterName: "default_cluster1", IdentityRef: defaultIdentityRef, Bastion: defaultTestBastion, NetworkSpec: defaultNetworkSpec, SecondaryCidrBlock: nil, TokenMethod: &EKSTokenMethodIAMAuthenticator, BootstrapSelfManagedAddons: true},
+			expectSpec:   AWSManagedControlPlaneSpec{EKSClusterName: "default_cluster1", IdentityRef: defaultIdentityRef, Bastion: defaultTestBastion, NetworkSpec: defaultNetworkSpec, SecondaryCidrBlock: nil, TokenMethod: &EKSTokenMethodIAMAuthenticator, BootstrapSelfManagedAddons: aws.Bool(true), EKSAutoMode: aws.Bool(true)},
 		},
 	}
Original file line number	Diff line number	Diff line change
`@@ -121,6 +121,7 @@ func (r *AWSManagedControlPlane) ConvertTo(dstRaw conversion.Hub) error {`
`121`	`121`	`dst.Spec.RolePermissionsBoundary = restored.Spec.RolePermissionsBoundary`
`122`	`122`	`dst.Status.Version = restored.Status.Version`
`123`	`123`	`dst.Spec.BootstrapSelfManagedAddons = restored.Spec.BootstrapSelfManagedAddons`
	`124`	`+ dst.Spec.EKSAutoMode = restored.Spec.EKSAutoMode`
`124`	`125`	`return nil`
`125`	`126`	`}`
`126`	`127`