AWS: Stop the master kubelet from registering as a node (like GCE does)
This commit is contained in:
		| @@ -22,13 +22,13 @@ | ||||
|   {% set api_servers_with_port = api_servers + ":6443" -%} | ||||
| {% endif -%} | ||||
|  | ||||
| # Disable registration for the kubelet running on the master on GCE. Also disable | ||||
| # Disable registration for the kubelet running on the master on AWS, GCE, Vagrant. Also disable | ||||
| # the debugging handlers (/run and /exec) to prevent arbitrary code execution on | ||||
| # the master. | ||||
| # TODO(roberthbailey): Make this configurable via an env var in config-default.sh | ||||
|  | ||||
| {% set debugging_handlers = "--enable-debugging-handlers=true" -%} | ||||
| {% if grains.cloud in ['gce', 'vagrant'] -%} | ||||
| {% if grains.cloud in ['aws', 'gce', 'vagrant'] -%} | ||||
|   {% if grains['roles'][0] == 'kubernetes-master' -%} | ||||
|     {% set api_servers_with_port = "" -%} | ||||
|     {% set debugging_handlers = "--enable-debugging-handlers=false" -%} | ||||
|   | ||||
		Reference in New Issue
	
	Block a user
	 Justin Santa Barbara
					Justin Santa Barbara