Kubernetes Volume Tagger

Forked from https://github.com/sergiorua/kube-tagger!

What?

It's a simple pod that checks if AWS EBS volumes created by K8s have the AWS tags required.

How?

On your volume claims add the tags into annotations like:

annotations:
  volume.beta.kubernetes.io/additional-resource-tags: Owner=Sergio,Environment=Dev

Multiple tags are , separated by default but you can override it with:

annotations:
  volume.beta.kubernetes.io/additional-resource-tags-separator: ";"

You may need to grant your EC2 instances permissions to tag volumes. This is the minimal config expected:

{
  "Version": "2012-10-17",
  "Statement": [
    {
      "Effect": "Allow",
      "Action": "ec2:DescribeVolumes",
      "Resource": "*"
     },
     {
       "Effect": "Allow",
       "Action": [
         "ec2:CreateTags"
       ],
       "Resource": "arn:aws:ec2:*:*:volume/*",
       "Condition": {
         "StringEquals": {
             "ec2:CreateAction" : "CreateTags"
        }
      }
    }
  ]
}

Deploy

See kube-tagger.yaml for an example deployment.

kubectl apply -f https://raw.githubusercontent.com/sergiorua/kube-tagger/master/kube-tagger.yaml