You're on your way to the next level! Join the Kudos program to earn points and save your progress.
Level 1: Seed
25 / 150 points
1 badge earned
Challenges come and go, but your rewards stay with you. Do more to earn more!
What goes around comes around! Share the love by gifting kudos to your peers.
Keep earning points to reach the top of the leaderboard. It resets every quarter so you always have a chance!
Join now to unlock these features and more
I have configured a bitbucket.yaml pipeline where I have passed the kube_token to authenticate and deployed the build image into EKS cluster. This happens EKS cluster with public endpoint. Where as I want to secure my cluster by enabling the private endpoint. When I changed my endpoint from public to private endpoint, the existing pipeline was unable to authenticate with cluster to deploy the new image. Is there a way to deploy an image from bitbucket pipeline into private endpoint eks cluster?
Hello @kudupudi.kumar and welcome to the Community!
According to AWS EKS official documentation, when only a private endpoint is enabled in an EKS cluster, all traffic to your cluster API server must come from within your cluster's VPC or a connected network. Since the Bitbucket Cloud pipelines network will not be in the same VPC as your AWS EKS cluster, I'm afraid you will not be able to access the EKS resource from the pipeline.
You would still need to have a public endpoint enabled on your EKS cluster so pipelines can access it over the internet. In order to improve the security of your cluster, you can limit the CIDR IP blocks that can access the public endpoint allowing access only to the Valid IP addresses for Bitbucket Pipelines.
Thank you, @kudupudi.kumar !