7500746e7f
For now, this is focused on a fixed set of flags that makes the audit log show up under /var/log/kube-apiserver-audit.log and behave similarly to /var/log/kube-apiserver.log. Allowing other customization would require significantly more complex changes. Audit log rotation is handled externally by the wildcard /var/log/*.log already configured in configure-helper.sh.
36 lines
787 B
Plaintext
36 lines
787 B
Plaintext
logrotate:
|
|
pkg:
|
|
- installed
|
|
|
|
{% set logrotate_files = ['kube-scheduler', 'kube-proxy', 'kubelet', 'kube-apiserver', 'kube-apiserver-audit', 'kube-controller-manager', 'kube-addons', 'docker'] %}
|
|
{% for file in logrotate_files %}
|
|
/etc/logrotate.d/{{ file }}:
|
|
file:
|
|
- managed
|
|
- source: salt://logrotate/conf
|
|
- template: jinja
|
|
- user: root
|
|
- group: root
|
|
- mode: 644
|
|
- context:
|
|
file: {{ file }}
|
|
{% endfor %}
|
|
|
|
/etc/logrotate.d/docker-containers:
|
|
file:
|
|
- managed
|
|
- source: salt://logrotate/docker-containers
|
|
- template: jinja
|
|
- user: root
|
|
- group: root
|
|
- mode: 644
|
|
|
|
/etc/cron.hourly/logrotate:
|
|
file:
|
|
- managed
|
|
- source: salt://logrotate/cron
|
|
- template: jinja
|
|
- user: root
|
|
- group: root
|
|
- mode: 755
|