Merge pull request #31491 from dims/fixes-issue-13598

Automatic merge from submit-queue Allow secure access to apiserver from Admission Controllers * Allow options.InsecurePort to be set to 0 to switch off insecure access * In NewSelfClient, Set the TLSClientConfig to the cert and key files if InsecurePort is switched off * Mint a bearer token that allows the client(s) created in NewSelfClient to talk to the api server * Add a new authenticator that checks for this specific bearer token Fixes #13598
2016-09-21 21:31:56 -07:00
parent 03c698ce44 364dd1a752
commit c46bc88f04
10 changed files with 166 additions and 30 deletions
--- a/hack/verify-flags/known-flags.txt
+++ b/hack/verify-flags/known-flags.txt
@@ -506,6 +506,7 @@ tcp-services
 terminated-pod-gc-threshold
 test-flags
 test-timeout
+tls-ca-file
 tls-cert-file
 tls-private-key-file
 to-version