k3s/cluster/juju/layers/kubernetes/templates/master.json

{
"apiVersion": "v1",
"kind": "Pod",
"metadata": {"name":"k8s-master"},
"spec":{
  "hostNetwork": true,
  "containers":[
    {
      "name": "controller-manager",
      "image": "gcr.io/google_containers/hyperkube-{{ arch }}:{{ version }}",
      "command": [
              "/hyperkube",
              "controller-manager",
              "--master=127.0.0.1:8080",
              "--service-account-private-key-file=/srv/kubernetes/server.key",
              "--root-ca-file=/srv/kubernetes/ca.crt",
              "--min-resync-period=3m",
              "--v=2"
      ],
      "volumeMounts": [
        {
          "name": "data",
          "mountPath": "/srv/kubernetes"
        }
      ]
    },
    {
      "name": "apiserver",
      "image": "gcr.io/google_containers/hyperkube-{{ arch }}:{{ version }}",
      "command": [
              "/hyperkube",
              "apiserver",
              "--service-cluster-ip-range={{ cidr }}",
              "--insecure-bind-address=0.0.0.0",
              {% if etcd_dir -%}
              "--etcd-cafile={{ etcd_ca }}",
              "--etcd-keyfile={{ etcd_key }}",
              "--etcd-certfile={{ etcd_cert }}",
              {%- endif %}
              "--etcd-servers={{ connection_string }}",
              "--admission-control=NamespaceLifecycle,LimitRanger,SecurityContextDeny,ServiceAccount,ResourceQuota",
              "--client-ca-file=/srv/kubernetes/ca.crt",
              "--basic-auth-file=/srv/kubernetes/basic_auth.csv",
              "--min-request-timeout=300",
              "--tls-cert-file=/srv/kubernetes/server.crt",
              "--tls-private-key-file=/srv/kubernetes/server.key",
              "--token-auth-file=/srv/kubernetes/known_tokens.csv",
              "--allow-privileged=true",
              "--v=4"
      ],
      "volumeMounts": [
        {
          "name": "data",
          "mountPath": "/srv/kubernetes"
        },
        {% if etcd_dir -%}
        {
          "name": "etcd-tls",
          "mountPath": "{{ etcd_dir }}"
        }
        {%- endif %}
      ]
    },
    {
      "name": "scheduler",
      "image": "gcr.io/google_containers/hyperkube-{{ arch }}:{{ version }}",
      "command": [
              "/hyperkube",
              "scheduler",
              "--master=127.0.0.1:8080",
              "--v=2"
        ]
    },
    {
      "name": "setup",
      "image": "gcr.io/google_containers/hyperkube-{{ arch }}:{{ version }}",
      "command": [
              "/setup-files.sh",
              "IP:{{ private_address }},IP:{{ public_address }},DNS:kubernetes,DNS:kubernetes.default,DNS:kubernetes.default.svc,DNS:kubernetes.default.svc.cluster.local"
      ],
      "volumeMounts": [
        {
          "name": "data",
          "mountPath": "/data"
        }
      ]
    }
  ],
  "volumes": [
    {
      "hostPath": {
          "path": "/srv/kubernetes"
      },
      "name": "data"
    },
    {% if etcd_dir -%}
    {
      "hostPath": {
        "path": "{{ etcd_dir }}"
      },
      "name": "etcd-tls"
    }
    {%- endif %}
  ]
 }
}