refac(back): fluidattacks#1378 deprecate k8s config from aws

- Deprecate secretsForKubernetesConfigFromAws as it is not being used - Remove documentation Signed-off-by: Daniel Salazar <[email protected]>
dsalaza4 · Dec 13, 2024 · 2e663c6 · 2e663c6
1 parent 2a12307
commit 2e663c6
Show file tree

Hide file tree

Showing 4 changed files with 1 addition and 81 deletions.
diff --git a/docs/src/api/builtins/secrets.md b/docs/src/api/builtins/secrets.md
@@ -276,53 +276,6 @@ Example:
       Decrypted password: 123
     ```
 
-## secretsForKubernetesConfigFromAws
-
-Create a Kubernetes
-config file out of an AWS EKS cluster
-and set it up in the
-[KUBECONFIG Environment Variable](https://kubernetes.io/docs/concepts/configuration/).
-
-Types:
-
-- secretsForKubernetesConfigFromAws
-    (`attrsOf secretForKubernetesConfigFromAwsType`): Optional.
-    Defaults to `{ }`.
-- secretForKubernetesConfigFromAwsType (`submodule`):
-    - cluster (`str`):
-        AWS EKS Cluster name.
-    - region (`str`):
-        AWS Region the EKS cluster is located in.
-
-Example:
-
-=== "makes.nix"
-
-    ```nix
-    {
-      outputs,
-      ...
-    }: {
-      secretsForKubernetesConfigFromAws = {
-        myCluster = {
-          cluster = "makes-k8s";
-          region = "us-east-1";
-        };
-      };
-      deployTerraform = {
-        modules = {
-          moduleProd = {
-            setup = [
-              outputs."/secretsForKubernetesConfigFromAws/myCluster"
-            ];
-            src = "/my/module1";
-            version = "0.14";
-          };
-        };
-      };
-    }
-    ```
-
 ## secretsForTerraformFromEnv
 
 Export secrets in a format suitable for Terraform

diff --git a/docs/src/security/threat-model.md b/docs/src/security/threat-model.md
@@ -119,8 +119,7 @@
         `secretsForAwsFromEnv`,
         `secretsForAwsFromGitlab`,
         `secretsForEnvFromSops`,
-        `secretsForGpgFromEnv`,
-        `secretsForKubernetesConfigFromAws`, and
+        `secretsForGpgFromEnv`, and
         `secretsForTerraformFromEnv`.
 
         However, we don't currently have a way to protect the user

diff --git a/src/evaluator/modules/default.nix b/src/evaluator/modules/default.nix
@@ -28,7 +28,6 @@
     (import ./secrets-for-aws-from-gitlab/default.nix args)
     (import ./secrets-for-env-from-sops/default.nix args)
     (import ./secrets-for-gpg-from-env/default.nix args)
-    (import ./secrets-for-kubernetes-config-from-aws/default.nix args)
     (import ./secrets-for-terraform-from-env/default.nix args)
     (import ./test-license/default.nix args)
     (import ./test-terraform/default.nix args)

diff --git a/src/evaluator/modules/secrets-for-kubernetes-config-from-aws/default.nix b/src/evaluator/modules/secrets-for-kubernetes-config-from-aws/default.nix