mirror of https://github.com/k3s-io/k3s
40 lines
1.0 KiB
Plaintext
40 lines
1.0 KiB
Plaintext
{% if grains.cloud is defined %}
|
|
{% if grains.cloud in ['aws', 'gce', 'vagrant'] %}
|
|
# TODO: generate and distribute tokens on other cloud providers.
|
|
/srv/kubernetes/known_tokens.csv:
|
|
file.managed:
|
|
- source: salt://kube-apiserver/known_tokens.csv
|
|
# - watch_in:
|
|
# - service: kube-apiserver
|
|
{% endif %}
|
|
{% endif %}
|
|
|
|
{% if grains['cloud'] is defined and grains.cloud in [ 'aws', 'gce' ] %}
|
|
/srv/kubernetes/basic_auth.csv:
|
|
file.managed:
|
|
- source: salt://kube-apiserver/basic_auth.csv
|
|
{% endif %}
|
|
|
|
/var/log/kube-apiserver.log:
|
|
file.managed:
|
|
- user: root
|
|
- group: root
|
|
- mode: 644
|
|
|
|
# Copy kube-apiserver manifest to manifests folder for kubelet.
|
|
/etc/kubernetes/manifests/kube-apiserver.manifest:
|
|
file.managed:
|
|
- source: salt://kube-apiserver/kube-apiserver.manifest
|
|
- template: jinja
|
|
- user: root
|
|
- group: root
|
|
- mode: 644
|
|
- makedirs: true
|
|
- dir_mode: 755
|
|
|
|
#stop legacy kube-apiserver service
|
|
stop_kube-apiserver:
|
|
service.dead:
|
|
- name: kube-apiserver
|
|
- enable: None
|