mirror of
https://github.com/k3s-io/kubernetes.git
synced 2025-10-31 05:40:42 +00:00
91 lines
2.4 KiB
YAML
91 lines
2.4 KiB
YAML
apiVersion: v1
|
|
kind: Pod
|
|
metadata:
|
|
name: kube-apiserver
|
|
spec:
|
|
hostNetwork: true
|
|
containers:
|
|
- name: kube-apiserver
|
|
image: gcr.io/google_containers/kube-apiserver:9680e782e08a1a1c94c656190011bd02
|
|
command:
|
|
- /bin/sh
|
|
- -c
|
|
- /usr/local/bin/kube-apiserver --address=127.0.0.1 --etcd-servers=http://127.0.0.1:4001
|
|
--cloud-provider=gce --admission-control=NamespaceLifecycle,LimitRanger,SecurityContextDeny,ServiceAccount,ResourceQuota
|
|
--service-cluster-ip-range=10.0.0.0/16 --client-ca-file=/srv/kubernetes/ca.crt
|
|
--basic-auth-file=/srv/kubernetes/basic_auth.csv --cluster-name=e2e-test-bburns
|
|
--tls-cert-file=/srv/kubernetes/server.cert --tls-private-key-file=/srv/kubernetes/server.key
|
|
--secure-port=443 --token-auth-file=/srv/kubernetes/known_tokens.csv --v=2
|
|
--allow-privileged=False 1>>/var/log/kube-apiserver.log 2>&1
|
|
ports:
|
|
- containerPort: 443
|
|
hostPort: 443
|
|
name: https
|
|
- containerPort: 7080
|
|
hostPort: 7080
|
|
name: http
|
|
- containerPort: 8080
|
|
hostPort: 8080
|
|
name: local
|
|
volumeMounts:
|
|
- mountPath: /srv/kubernetes
|
|
name: srvkube
|
|
readOnly: true
|
|
- mountPath: /var/log/kube-apiserver.log
|
|
name: logfile
|
|
- mountPath: /etc/ssl
|
|
name: etcssl
|
|
readOnly: true
|
|
- mountPath: /usr/share/ssl
|
|
name: usrsharessl
|
|
readOnly: true
|
|
- mountPath: /var/ssl
|
|
name: varssl
|
|
readOnly: true
|
|
- mountPath: /usr/ssl
|
|
name: usrssl
|
|
readOnly: true
|
|
- mountPath: /usr/lib/ssl
|
|
name: usrlibssl
|
|
readOnly: true
|
|
- mountPath: /usr/local/openssl
|
|
name: usrlocalopenssl
|
|
readOnly: true
|
|
- mountPath: /etc/openssl
|
|
name: etcopenssl
|
|
readOnly: true
|
|
- mountPath: /etc/pki/tls
|
|
name: etcpkitls
|
|
readOnly: true
|
|
volumes:
|
|
- hostPath:
|
|
path: /srv/kubernetes
|
|
name: srvkube
|
|
- hostPath:
|
|
path: /var/log/kube-apiserver.log
|
|
name: logfile
|
|
- hostPath:
|
|
path: /etc/ssl
|
|
name: etcssl
|
|
- hostPath:
|
|
path: /usr/share/ssl
|
|
name: usrsharessl
|
|
- hostPath:
|
|
path: /var/ssl
|
|
name: varssl
|
|
- hostPath:
|
|
path: /usr/ssl
|
|
name: usrssl
|
|
- hostPath:
|
|
path: /usr/lib/ssl
|
|
name: usrlibssl
|
|
- hostPath:
|
|
path: /usr/local/openssl
|
|
name: usrlocalopenssl
|
|
- hostPath:
|
|
path: /etc/openssl
|
|
name: etcopenssl
|
|
- hostPath:
|
|
path: /etc/pki/tls
|
|
name: etcpkitls
|