airship
/
promenade
Code Issues Proposed changes
promenade/charts/apiserver/templates
History
Mark Burnett 1399731096 Use separate CA for kubelet authorization 
This increases isolation of actions against the node API.  With the
previous combined CA approach, each node would have a valid key to talk
to each other node.  With this separated approach, only the API servers
will have keys with access to the node APIs.

Change-Id: I2705016eb963ca9d2cc2a344047677f4b2cc3025
 		2018-08-28 09:38:34 -05:00
..
bin Fix: Update use of cmp to expect correct exit code 2017-12-01 14:46:35 -06:00
etc Use separate CA for kubelet authorization 2018-08-28 09:38:34 -05:00
configmap-bin.yaml Refactor apiserver Chart 2017-11-07 23:41:26 +00:00
configmap-certs.yaml Use separate CA for kubelet authorization 2018-08-28 09:38:34 -05:00
configmap-etc.yaml Add Additional Liveness Probes for apiserver 2018-06-26 09:29:07 -05:00
daemonset.yaml Disable anonymous-auth 2018-05-08 14:57:24 -05:00
ingress-api.yaml Opening apiserver Via Ingress 2018-08-10 08:16:50 -05:00
rbac.yaml Add Additional Liveness Probes for apiserver 2018-06-26 09:29:07 -05:00
secret-apiserver.yaml Use separate CA for kubelet authorization 2018-08-28 09:38:34 -05:00
secret-ingress-tls.yaml Opening apiserver Via Ingress 2018-08-10 08:16:50 -05:00
service-apiserver-ingress.yaml Opening apiserver Via Ingress 2018-08-10 08:16:50 -05:00
service.yaml Tolerate unready endpoints for apiserver service 2018-07-19 13:29:18 -05:00