kubernetes

github/kubernetes

Fork 0

Commit Graph

Author	SHA1	Message	Date
Jacob Simpson	4c22e6bc6a	Certificate rotation for kubelet server certs. Replaces the current kubelet server side self signed certs with certs signed by the Certificate Request Signing API on the API server. Also renews expiring kubelet server certs as expiration approaches.	2017-05-29 12:28:01 -07:00
Jacob Simpson	e992eaec8f	Add bootstrap support to certificate manager.	2017-04-20 16:27:32 -07:00
Jacob Simpson	855627e5cb	Rotate the kubelet certificate when about to expire. Changes the kubelet so it doesn't use the cert/key files directly for starting the TLS server. Instead the TLS server reads the cert/key from the new CertificateManager component, which is responsible for requesting new certificates from the Certificate Signing Request API on the API Server.	2017-02-17 17:42:35 -08:00

Author

SHA1

Message

Date

Jacob Simpson

4c22e6bc6a

Certificate rotation for kubelet server certs.

Replaces the current kubelet server side self signed certs with certs
signed by the Certificate Request Signing API on the API server. Also
renews expiring kubelet server certs as expiration approaches.

2017-05-29 12:28:01 -07:00

Jacob Simpson

e992eaec8f

Add bootstrap support to certificate manager.

2017-04-20 16:27:32 -07:00

Jacob Simpson

855627e5cb

Rotate the kubelet certificate when about to expire.

Changes the kubelet so it doesn't use the cert/key files directly for
starting the TLS server. Instead the TLS server reads the cert/key from
the new CertificateManager component, which is responsible for
requesting new certificates from the Certificate Signing Request API on
the API Server.

2017-02-17 17:42:35 -08:00

3 Commits