github
/
k3s
mirror of https://github.com/k3s-io/k3s
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
3,312 Commits
32 Branches
873 Tags
629 MiB
Commit Graph

3 Commits (1b119e31b577c539f9ce8cd8aec153e7db724d74)

Author SHA1 Message Date
Koen de Laat 9fedcc5220 fix: Use actual warningPeriod in certmonitor 
Signed-off-by: Koen de Laat <koen.de.laat@philips.com>
(cherry picked from commit 79ba10f5ec)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-06-04 12:48:16 -07:00
Brad Davidson 7ef30a2c60 Refactor supervisor listener startup and add metrics 
* Refactor agent supervisor listener startup and authn/authz to use upstream
  auth delegators to perform for SubjectAccessReview for access to
  metrics.
* Convert spegel and pprof handlers over to new structure.
* Promote bind-address to agent flag to allow setting supervisor bind
  address for both agent and server.
* Promote enable-pprof to agent flag to allow profiling agents. Access
  to the pprof endpoint now requires client cert auth, similar to the
  spegel registry api endpoint.
* Add prometheus metrics handler.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit ff679fb3ab)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson 7f659759dd Add certificate expiry check and warnings 
* Add ADR
* Add `k3s certificate check` command.
* Add periodic check and events when certs are about to expire.
* Add metrics for certificate validity remaining, labeled by cert subject

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-03-28 12:05:21 -07:00