github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-23 11:50:44 +00:00
Code Issues Projects Releases Wiki Activity

gce: plumb --kubelet-certificate-authority flag to apiserver

Browse Source 
We want to start signing kubelets' serving certs with cluster CA. This
flag is required to enforce that on apiserver side.
This commit is contained in:
Andrew Lytvynov 2018-04-30 15:16:22 -07:00
parent b36743fe30
commit e86bdf5801
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
cluster/gce/gci/configure-helper.sh
View File

@ -1583,6 +1583,9 @@ function start-kube-apiserver {
if [[ "${ENABLE_APISERVER_LOGS_HANDLER:-}" == "false" ]]; then
params+=" --enable-logs-handler=false"
fi
if [[ -n "${APISERVER_KUBELET_CA:-}" ]]; then
params+=" --kubelet-certificate-authority=${APISERVER_KUBELET_CA}"
fi
local admission_controller_config_mount=""
local admission_controller_config_volume=""