Documentation
¶
Index ¶
- Constants
- func WriteAPIServerCertAndKey(cfg *config.ControlPlaneConfiguration) error
- func WriteAPIServerHealthcheckClientCertAndKey(cfg *config.ControlPlaneConfiguration) error
- func WriteAPIServerKubeletClientCertAndKey(cfg *config.ControlPlaneConfiguration) error
- func WriteAdminConfig(cfg *config.ControlPlaneConfiguration, ca *pki.CertificateAuthority) error
- func WriteAuthProxyCA(dir string) error
- func WriteClusterCA(dir string) error
- func WriteControllerManagerConfig(cfg *config.ControlPlaneConfiguration, ca *pki.CertificateAuthority) error
- func WriteFrontProxyCA(dir string) error
- func WriteFrontProxyClientCertAndKey(cfg *config.ControlPlaneConfiguration) error
- func WriteKubeletConfig(cfg *config.ControlPlaneConfiguration, ca *pki.CertificateAuthority) error
- func WriteSchedulerConfig(cfg *config.ControlPlaneConfiguration, ca *pki.CertificateAuthority) error
- func WriteServiceAccountCA(dir string) error
Constants ¶
View Source
const ( AdminCommonName = "kubernetes-admin" AdminFilename = "admin.conf" AdminOrganization = "system:masters" )
View Source
const ( ControllerManagerCommonName = "system:kube-controller-manager" ControllerManagerFilename = "controller-manager.conf" )
View Source
const ( SchedulerCommonName = "system:kube-scheduler" SchedulerFilename = "scheduler.conf" )
View Source
const ( KubeletCommonNamePrefix = "system:node:" KubeletFilename = "kubelet.conf" KubeletOrganization = "system:nodes" )
Variables ¶
This section is empty.
Functions ¶
func WriteAPIServerCertAndKey ¶
func WriteAPIServerCertAndKey(cfg *config.ControlPlaneConfiguration) error
func WriteAPIServerHealthcheckClientCertAndKey ¶
func WriteAPIServerHealthcheckClientCertAndKey(cfg *config.ControlPlaneConfiguration) error
func WriteAPIServerKubeletClientCertAndKey ¶
func WriteAPIServerKubeletClientCertAndKey(cfg *config.ControlPlaneConfiguration) error
func WriteAdminConfig ¶
func WriteAdminConfig(cfg *config.ControlPlaneConfiguration, ca *pki.CertificateAuthority) error
func WriteAuthProxyCA ¶
WriteAuthProxyCA creates a new CA key/cert pair in the provided directory named auth-proxy-ca.{crt,key}. This CA is intended for use with settings such as the oidc-ca-file flags, and is generated ahead of time because of the chicken/egg problem when requiring the CA file be specified during cluster bootstrapping and the application used for oidc will be ultimately running on the same cluster.
func WriteClusterCA ¶
func WriteControllerManagerConfig ¶
func WriteControllerManagerConfig(cfg *config.ControlPlaneConfiguration, ca *pki.CertificateAuthority) error
func WriteFrontProxyCA ¶
func WriteFrontProxyClientCertAndKey ¶
func WriteFrontProxyClientCertAndKey(cfg *config.ControlPlaneConfiguration) error
func WriteKubeletConfig ¶
func WriteKubeletConfig(cfg *config.ControlPlaneConfiguration, ca *pki.CertificateAuthority) error
func WriteSchedulerConfig ¶
func WriteSchedulerConfig(cfg *config.ControlPlaneConfiguration, ca *pki.CertificateAuthority) error
func WriteServiceAccountCA ¶
Types ¶
This section is empty.
Source Files
Click to show internal directories.
Click to hide internal directories.