1826e445fe
This change introduces config fields to the v1beta2 format, that allow certificate key to be specified in the config file. This certificate key is a hex encoded AES key, that is used to encrypt certificates and keys, needed for secondary control plane nodes to join. The same key is used for the decryption during control plane join. It is important to note, that this key is never uploaded to the cluster. It can only be specified on either command line or the config file. The new fields can be used like so: --- apiVersion: kubeadm.k8s.io/v1beta2 kind: InitConfiguration certificateKey: "yourSecretHere" --- apiVersion: kubeadm.k8s.io/v1beta2 kind: JoinConfiguration controlPlane: certificateKey: "yourSecretHere" --- Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>
60 lines
1.8 KiB
Python
60 lines
1.8 KiB
Python
load("@io_bazel_rules_go//go:def.bzl", "go_library", "go_test")
|
|
|
|
go_library(
|
|
name = "go_default_library",
|
|
srcs = [
|
|
"bootstraptokenstring.go",
|
|
"conversion.go",
|
|
"defaults.go",
|
|
"defaults_unix.go",
|
|
"defaults_windows.go",
|
|
"doc.go",
|
|
"register.go",
|
|
"types.go",
|
|
"zz_generated.conversion.go",
|
|
"zz_generated.deepcopy.go",
|
|
"zz_generated.defaults.go",
|
|
],
|
|
importpath = "k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta1",
|
|
visibility = ["//visibility:public"],
|
|
deps = [
|
|
"//cmd/kubeadm/app/apis/kubeadm:go_default_library",
|
|
"//cmd/kubeadm/app/constants:go_default_library",
|
|
"//staging/src/k8s.io/api/core/v1:go_default_library",
|
|
"//staging/src/k8s.io/apimachinery/pkg/apis/meta/v1:go_default_library",
|
|
"//staging/src/k8s.io/apimachinery/pkg/conversion:go_default_library",
|
|
"//staging/src/k8s.io/apimachinery/pkg/runtime:go_default_library",
|
|
"//staging/src/k8s.io/apimachinery/pkg/runtime/schema:go_default_library",
|
|
"//staging/src/k8s.io/cluster-bootstrap/token/api:go_default_library",
|
|
"//staging/src/k8s.io/cluster-bootstrap/token/util:go_default_library",
|
|
"//vendor/github.com/pkg/errors:go_default_library",
|
|
],
|
|
)
|
|
|
|
go_test(
|
|
name = "go_default_test",
|
|
srcs = [
|
|
"bootstraptokenstring_test.go",
|
|
"conversion_test.go",
|
|
],
|
|
embed = [":go_default_library"],
|
|
deps = [
|
|
"//cmd/kubeadm/app/apis/kubeadm:go_default_library",
|
|
"//vendor/github.com/pkg/errors:go_default_library",
|
|
],
|
|
)
|
|
|
|
filegroup(
|
|
name = "package-srcs",
|
|
srcs = glob(["**"]),
|
|
tags = ["automanaged"],
|
|
visibility = ["//visibility:private"],
|
|
)
|
|
|
|
filegroup(
|
|
name = "all-srcs",
|
|
srcs = [":package-srcs"],
|
|
tags = ["automanaged"],
|
|
visibility = ["//visibility:public"],
|
|
)
|