From b65930f205b77f28507dee9296aead00e24f2a18 Mon Sep 17 00:00:00 2001
From: Chris Wedgwood <cw@f00f.org>
Date: Mon, 27 Jan 2020 18:19:13 -0600
Subject: [PATCH] Prevent creation of kubernetes service endpoint by bootstrap
 apiserver

If the kubernetes apiserver (in the bootstrap Armada pod) runs with the
reconciler enabled, the kubernetes endpoint can be created with an
invalid port which will not be corrected later.

Change-Id: I6d5fb86c6c4ffded9f42bda6e2ffbf2fbc13806f
---
 .../roles/genesis/etc/kubernetes/manifests/bootstrap-armada.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/promenade/templates/roles/genesis/etc/kubernetes/manifests/bootstrap-armada.yaml b/promenade/templates/roles/genesis/etc/kubernetes/manifests/bootstrap-armada.yaml
index 44783f1c..dbc44ec0 100644
--- a/promenade/templates/roles/genesis/etc/kubernetes/manifests/bootstrap-armada.yaml
+++ b/promenade/templates/roles/genesis/etc/kubernetes/manifests/bootstrap-armada.yaml
@@ -151,6 +151,7 @@ spec:
         - --etcd-servers=https://localhost:12379
         - --insecure-port=8080
         - --secure-port=6444
+        - --endpoint-reconciler-type=none
       env:
         - name: KUBECONFIG
           value: /etc/kubernetes/admin/config