github
/
k3s
mirror of https://github.com/k3s-io/k3s
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
k3s/cluster
History
Kubernetes Submit Queue d19773d855 Merge pull request #47835 from juju-solutions/feature/security 
Automatic merge from submit-queue (batch tested with PRs 47850, 47835, 46197, 47250, 48284)

Securing the cluster created by Juju

**What this PR does / why we need it**: This PR secures the deployments done with Juju master. Works around certain security issues inherent to kubernetes (see for example dashboard access)

**Which issue this PR fixes** *(optional, in `fixes #<issue number>(, fixes #<issue_number>, ...)` format, will close that issue when PR gets merged)*: fixes #

**Special notes for your reviewer**:

**Release note**:

```
Securing Juju kubernetes dashboard
```
 		2017-06-29 15:16:39 -07:00
..
addons Update addon-resizer version 2017-06-29 11:03:43 +02:00
aws
centos fix systemd service file for custom args. 2017-06-22 14:27:28 +08:00
gce Allow creating special node for heapster in GCE 2017-06-28 21:27:36 +02:00
gke Plumb through the ENABLE_LEGACY_ABAC flag for GKE kube-up. 2017-05-30 17:18:45 -07:00
images support to build hyperkube image on ppc64le 2017-06-22 00:53:05 +00:00
juju Merge pull request #47835 from juju-solutions/feature/security 2017-06-29 15:16:39 -07:00
kubemark Make big clusters work again after introduction of subnets 2017-06-26 21:27:04 +02:00
lib
libvirt-coreos Add Initializers to all admission control paths by default 2017-06-02 22:09:04 -04:00
local
openstack-heat Add Initializers to all admission control paths by default 2017-06-02 22:09:04 -04:00
photon-controller Add Initializers to all admission control paths by default 2017-06-02 22:09:04 -04:00
saltbase Fix typo in cluster-autoscaler config 2017-06-27 13:49:19 +02:00
skeleton
vagrant Add Initializers to all admission control paths by default 2017-06-02 22:09:04 -04:00
vsphere
windows
BUILD Replace git_repository with http_archive and use ixdy's fork of bazel tools for pkg_tar 2017-05-03 10:13:06 -07:00
OWNERS
README.md Update docs/ URLs to point to proper locations 2017-06-05 22:13:54 -07:00
clientbin.sh
common.sh Enables memcg notification in cluster/node e2e tests 2017-06-26 11:40:22 -07:00
get-kube-binaries.sh
get-kube-local.sh hack/cluster: map /run/xtables.lock into containerized kubelet filesystem 2017-05-05 23:34:06 -05:00
get-kube.sh Merge pull request #44062 from ixdy/semver-regexes 2017-05-01 12:54:44 -07:00
kube-down.sh
kube-push.sh
kube-up.sh
kube-util.sh
kubeadm.sh
kubectl.sh
log-dump.sh Allow log-dumping only N randomly-chosen nodes in the cluster 2017-06-28 23:01:08 +02:00
options.md
restore-from-backup.sh
test-e2e.sh
test-network.sh
test-smoke.sh
update-storage-objects.sh Support storageclass storage upgrades to v1 2017-05-24 10:43:56 -04:00
validate-cluster.sh fix validate-cluster.sh 2017-06-20 10:20:38 -07:00

README.md

Cluster Configuration

Deprecation Notice: This directory has entered maintenance mode and will not be accepting new providers. Please submit new automation deployments to kube-deploy. Deployments in this directory will continue to be maintained and supported at their current level of support.

The scripts and data in this directory automate creation and configuration of a Kubernetes cluster, including networking, DNS, nodes, and master components.

See the getting-started guides for examples of how to use the scripts.

cloudprovider/config-default.sh contains a set of tweakable definitions/parameters for the cluster.

The heavy lifting of configuring the VMs is done by SaltStack.

Analytics