From 39f2725c0f11e46e839da78c47251ddf7eb3c22d Mon Sep 17 00:00:00 2001
From: Antoine Augusti <antoine.augusti@cds-snc.ca>
Date: Wed, 24 Feb 2021 16:19:19 -0500
Subject: [PATCH] fix: revert EKS private access only

---
 aws/eks/eks.tf | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/aws/eks/eks.tf b/aws/eks/eks.tf
index 915c65690..294726c54 100644
--- a/aws/eks/eks.tf
+++ b/aws/eks/eks.tf
@@ -14,9 +14,10 @@ resource "aws_eks_cluster" "notification-canada-ca-eks-cluster" {
     security_group_ids = [
       aws_security_group.notification-canada-ca-worker.id
     ]
-    subnet_ids              = var.vpc_private_subnets
-    endpoint_private_access = true
-    endpoint_public_access  = false
+    subnet_ids = var.vpc_private_subnets
+    # tfsec:ignore:AWS069 EKS Clusters should have the public access disabled
+    # Cannot connect with kubectl if we do this atm, will tackle later
+    # https://github.com/cds-snc/notification-terraform/issues/205
   }
 
   # tfsec:ignore:AWS066 EKS should have the encryption of secrets enabled