github
/
k3s
mirror of https://github.com/k3s-io/k3s
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
k3s/cluster
History
Kubernetes Submit Queue dac0296f0b Merge pull request #42093 from liggitt/avoid-fake-node-names 
Automatic merge from submit-queue (batch tested with PRs 40746, 41699, 42108, 42174, 42093)

Avoid fake node names in user info

Node usernames should follow the format `system:node:<node-name>`,
but if we don't know the node name, it's worse to put a fake one in.

In the future, we plan to have a dedicated node authorizer, which would
start rejecting requests from a user with a bogus node name like this.

The right approach is to either mint correct credentials per node, or use node bootstrapping so it requests a correct client certificate itself.
 		2017-02-28 07:51:33 -08:00
..
addons Merge pull request #42065 from MrHohn/dns-autoscaler-1.1.0 2017-02-27 01:30:02 -08:00
aws AWS: Kill bash deployment 2017-02-27 14:39:25 -08:00
azure
azure-legacy enable DefaultTolerationSeconds admission controller by default 2017-02-22 00:45:56 +08:00
centos Merge pull request #41815 from kevin-wangzefeng/enable-defaulttolerationseconds-admission-controller 2017-02-26 08:09:58 -08:00
gce Merge pull request #42093 from liggitt/avoid-fake-node-names 2017-02-28 07:51:33 -08:00
gke GCE will properly regenerate basic_auth.csv on kube-apiserver start. 2017-02-25 11:31:59 -08:00
images Merge pull request #41815 from kevin-wangzefeng/enable-defaulttolerationseconds-admission-controller 2017-02-26 08:09:58 -08:00
juju Merge pull request #42058 from Cynerva/gkk/fix-action-shebangs 2017-02-27 01:29:58 -08:00
kubemark Update clusters to use 3.0.17 etcd 2017-02-23 10:08:50 +01:00
lib Add test shell stack traces 2017-01-25 13:34:16 -05:00
libvirt-coreos Merge pull request #41815 from kevin-wangzefeng/enable-defaulttolerationseconds-admission-controller 2017-02-26 08:09:58 -08:00
local Merge pull request #28469 from asalkeld/local-e2e 2016-09-11 05:44:47 -07:00
openstack-heat Merge pull request #42044 from timchenxiaoyu/daemonnotdeamon 2017-02-26 22:45:32 -08:00
ovirt
photon-controller enable DefaultTolerationSeconds admission controller by default 2017-02-22 00:45:56 +08:00
rackspace enable DefaultTolerationSeconds admission controller by default 2017-02-22 00:45:56 +08:00
saltbase Merge pull request #41700 from vishh/kube-proxy-oom-score 2017-02-25 07:07:01 -08:00
skeleton
ubuntu Merge pull request #41815 from kevin-wangzefeng/enable-defaulttolerationseconds-admission-controller 2017-02-26 08:09:58 -08:00
vagrant enable DefaultTolerationSeconds admission controller by default 2017-02-22 00:45:56 +08:00
vsphere Update generated for 2017 2017-01-01 23:11:09 -08:00
windows Fixed the issue with log rotation 2016-12-12 11:08:41 -05:00
BUILD Build release tarballs in bazel and add `make bazel-release` rule 2017-01-13 16:17:44 -08:00
OWNERS Updated top level owners file to match new format 2017-01-19 11:29:16 -08:00
README.md Fix typos and linted_packages sorting 2016-10-31 18:31:08 +01:00
clientbin.sh Refactor the common parts of cluster/kube{ctl,adm}.sh into a util script. 2017-01-26 21:29:49 -08:00
common.sh Merge pull request #40634 from Crassirostris/use-docker-log-rotation 2017-02-26 20:39:34 -08:00
get-kube-binaries.sh Automatically download missing kube binaries in kube-up/kube-down. 2016-12-13 14:59:13 -08:00
get-kube-local.sh Replace uses of --config with --pod-manifest-path 2017-02-07 14:32:37 -08:00
get-kube.sh Remove kube-up for vsphere 2016-12-22 20:15:37 +00:00
kube-down.sh Automatically download missing kube binaries in kube-up/kube-down. 2016-12-13 14:59:13 -08:00
kube-push.sh Automatically download missing kube binaries in kube-up/kube-down. 2016-12-13 14:59:13 -08:00
kube-up.sh Automatically download missing kube binaries in kube-up/kube-down. 2016-12-13 14:59:13 -08:00
kube-util.sh Split federation-{up,down} from e2e-{up,down}. 2017-02-24 14:27:31 -08:00
kubeadm.sh Refactor the common parts of cluster/kube{ctl,adm}.sh into a util script. 2017-01-26 21:29:49 -08:00
kubectl.sh Refactor the common parts of cluster/kube{ctl,adm}.sh into a util script. 2017-01-26 21:29:49 -08:00
log-dump.sh Whitelist kubemark in node_ssh_supported_providers for log dump 2017-02-21 14:02:17 +01:00
options.md
restore-from-backup.sh Extend logging in restore-from-backup script 2016-12-21 15:10:47 +01:00
test-e2e.sh
test-network.sh
test-smoke.sh
update-storage-objects.sh
validate-cluster.sh Fixed cluster validation: added -q and project flags to gcloud. 2016-12-21 14:13:14 +01:00

README.md

Cluster Configuration

Deprecation Notice: This directory has entered maintenance mode and will not be accepting new providers. Please submit new automation deployments to kube-deploy. Deployments in this directory will continue to be maintained and supported at their current level of support.

The scripts and data in this directory automate creation and configuration of a Kubernetes cluster, including networking, DNS, nodes, and master components.

See the getting-started guides for examples of how to use the scripts.

cloudprovider/config-default.sh contains a set of tweakable definitions/parameters for the cluster.

The heavy lifting of configuring the VMs is done by SaltStack.

Analytics