adds endpointSGTags to helm chart

Author: carflo

helm/aws-load-balancer-controller/templates/deployment.yaml

@@ -131,6 +131,9 @@ spec:
         {{- if .Values.defaultTags }}
         - --default-tags={{ include "aws-load-balancer-controller.convertMapToCsv" .Values.defaultTags | trimSuffix "," }}
         {{- end }}
+        {{- if .Values.endpointSGTags }}
+        - --endpoint-security-group-tags={{ include "aws-load-balancer-controller.convertMapToCsv" .Values.endpointSGTags | trimSuffix "," }}
+        {{- end }}
         {{- if kindIs "bool" .Values.enableEndpointSlices }}
         - --enable-endpoint-slices={{ .Values.enableEndpointSlices }}
         {{- end }}

helm/aws-load-balancer-controller/values.yaml

@@ -279,6 +279,11 @@ defaultTags: {}
   # default_tag1: value1
   # default_tag2: value2
 
+# endpointSGTags are the tags that will be used by the controller to find the worker node security group to add inbound rules from NLBs.
+endpointSGTags: {}
+  # default_tag1: value1
+  # default_tag2: value2
+
 # podDisruptionBudget specifies the disruption budget for the controller pods.
 # Disruption budget will be configured only when the replicaCount is greater than 1
 podDisruptionBudget: {}
@@ -340,4 +345,4 @@ ingressClassConfig:
   default: false
 
 # disableServiceMutatorWebhook allows you disable the webhook which makes this controller the default for all new services of type LoadBalancer
-disableServiceMutatorWebhook: true
+disableServiceMutatorWebhook: true