movefasta/nixpkgs
1
0
Fork 0
mirror of https://github.com/NixOS/nixpkgs.git synced 2025-06-12 04:35:41 +03:00
Code Issues Projects Releases Packages Wiki Activity

Merge pull request #57693 from mayflower/kube-apiserver-proxy-client-certs

Browse source 
nixos/kubernetes: Add proxy client certs to apiserver
This commit is contained in:
Robin Gloster 2019-04-17 16:38:51 +00:00 committed by GitHub
commit 44afc81af1
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
2 changed files with 23 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

2
nixos/modules/services/cluster/kubernetes/pki.nix
View file

@ -357,6 +357,8 @@ in
kubeletClientCaFile = mkDefault caCert;
kubeletClientCertFile = mkDefault cfg.certs.apiserverKubeletClient.cert;
kubeletClientKeyFile = mkDefault cfg.certs.apiserverKubeletClient.key;
proxyClientCertFile = mkDefault cfg.certs.apiserverProxyClient.cert;
proxyClientKeyFile = mkDefault cfg.certs.apiserverProxyClient.key;
});
addonManager = mkIf top.addonManager.enable {
kubeconfig = with cfg.certs.addonManager; {