Complete the mitm prevention on GCE.

cluster/gce/util.sh

@@ -254,9 +254,25 @@ function kube-up {
   echo
   echo "  https://${user}:${passwd}@${KUBE_MASTER_IP}"
   echo
-  echo "Security note: The server above uses a self signed certificate.  This is"
-  echo "    subject to \"Man in the middle\" type attacks."
 
+  kube_cert=".kubecfg.crt"
+  kube_key=".kubecfg.key"
+  ca_cert=".kubernetes.ca.crt"
+
+  (umask 077 && gcutil pull "${MASTER_NAME}" /usr/share/nginx/kubecfg.crt "${HOME}/${kube_cert}" && chmod 0600 "${HOME}/${kube_cert}")
+  (umask 077 && gcutil pull "${MASTER_NAME}" /usr/share/nginx/kubecfg.key "${HOME}/${kube_key}" && chmod 0600 "${HOME}/${kube_key}")
+  (umask 077 && gcutil pull "${MASTER_NAME}" /usr/share/nginx/ca.crt "${HOME}/${ca_cert}" && chmod 0600 "${HOME}/${ca_cert}")
+  (umask 077 && \
+cat << EOF > ~/.kubernetes_auth
+{
+  "User": "$user",
+  "Password": "$passwd",
+  "CAFile": "$HOME/$ca_crt",
+  "CertFile": "$HOME/$kube_crt",
+  "KeyFile": "$HOME/$kube_key",
+}
+EOF && \
+  chmod 0600 ~/.kubernetes_auth)
 }
 
 # Delete a kubernetes cluster