[conceding to 653] add output for aws_iam_openid_connect_provider arn

[jonathancolby-olx]

PR o'clock

Description

The OIDC provider ARN is required for the assume role policy as the "Federated" principal of the iam-for-pods role. This change adds the OIDC provider ARN as a module output.

usage example:

data "aws_iam_policy_document" "this" {
  statement {
    actions = ["sts:AssumeRoleWithWebIdentity"]

    principals {
      type        = "Federated"
      identifiers = [module.eks.aws_iam_openid_connect_provider_arn]
    }

Please explain the changes you made here and link to any relevant issues.

Checklist

• Change added to CHANGELOG.md. All changes must be added and breaking changes and highlighted
• CI tests are passing
• README.md has been updated after any changes to variables and outputs. See https://github.com/terraform-aws-modules/terraform-aws-eks/#doc-generation

[dpiddockcmp]

Hi. The flatten is unnecessary here. It was used in cluster_oidc_issuer_url due to the double wildcards.

[jonathancolby-olx]

closing this in favour of the implementation in #653

[github-actions]

I'm going to lock this pull request because it has been closed for 30 days ⏳. This helps our maintainers find and focus on the active issues. If you have found a problem that seems related to this change, please open a new issue and complete the issue template so we can capture all the details necessary to investigate further.