github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
b95fa62fe1
kubernetes/cluster
History
Kubernetes Submit Queue 1834039960 Merge pull request #32203 from dgoodwin/kubediscovery 
Automatic merge from submit-queue

Alpha JWS Discovery API for locating an apiserver securely

This PR contains an early alpha prototype of the JWS discovery API outlined in proposal #30707.

CA certificate, API endpoints, and the token to be used to authenticate to this discovery API are currently passed in as secrets. If the caller provides a valid token ID, a JWS signed blob of ClusterInfo containing the API endpoints and the CA cert to use will be returned to the caller. This is used by the alpha kubeadm to allow seamless, very quick cluster setup with simple commands well suited for copy paste.

Current TODO list:

- [x] Allow the use of arbitrary strings as token ID/token, we're currently treating them as raw keys.
- [x] Integrate the building of the pod container, move to cluster/images/kube-discovery.
  - [x] Build for: amd64, arm, arm64 and ppc64le. (just replace GOARCH=)
  - [x] Rename to gcr.io/google_containers/kube-discovery-ARCH:1.0
  - [x] Cleanup rogue files in discovery sub-dir.
  - [x] Move pkg/discovery/ to cmd/discovery/app.

There is additional pending work to return a kubeconfig rather than ClusterInfo, however I believe this is slated for post-alpha.
2016-09-23 08:19:19 -07:00
..
addons remove cpu limits for dns pod. The current limits are not based on usage profiles 2016-09-21 19:14:52 -07:00
aws bump master cidr range from /30 to /29 2016-09-16 13:41:58 -07:00
azure azure kube-up respects AZURE_RESOURCE_GROUP 2016-07-08 11:59:32 -07:00
azure-legacy [squash] Rename and move to storageclass/ 2016-08-22 14:11:01 +02:00
centos Merge pull request #30847 from bmoylan/fix/centos-docker-download 2016-09-10 16:35:20 -07:00
gce Merge pull request #33197 from adityakali/core 2016-09-23 03:50:15 -07:00
gke Setting the default image for GKE tests to Container_VM. 2016-09-20 14:29:23 -07:00
images Merge pull request #32203 from dgoodwin/kubediscovery 2016-09-23 08:19:19 -07:00
juju Revert "Use a Deployment for kube-dns" 2016-09-10 20:29:00 -07:00
kubemark Allow for configuring max inflight requests in kubemark 2016-09-01 11:46:37 +02:00
lib Add a verbosity concept to kubernetes scripts 2016-08-04 22:01:22 -07:00
libvirt-coreos [squash] Rename and move to storageclass/ 2016-08-22 14:11:01 +02:00
local Merge pull request #28469 from asalkeld/local-e2e 2016-09-11 05:44:47 -07:00
mesos/docker Fix Bash script 2016-08-29 14:01:44 +02:00
openstack-heat Merge pull request #27783 from jianhuiz/openstack-heat-network 2016-09-07 16:25:02 -07:00
ovirt
photon-controller [squash] Rename and move to storageclass/ 2016-08-22 14:11:01 +02:00
rackspace Remove "All rights reserved" from all the headers. 2016-06-29 17:47:36 -07:00
saltbase Merge pull request #32264 from dshulyak/enable_hostpath_provisioner 2016-09-20 00:30:42 -07:00
skeleton Remove "All rights reserved" from all the headers. 2016-06-29 17:47:36 -07:00
ubuntu fix the appending bug 2016-09-21 16:36:08 +08:00
vagrant Merge pull request #32264 from dshulyak/enable_hostpath_provisioner 2016-09-20 00:30:42 -07:00
vsphere Merge pull request #30845 from YuPengZTE/master 2016-09-10 00:22:10 -07:00
common.sh Show errors in tars_from_version 2016-09-19 16:26:07 +02:00
get-kube-local.sh Remove "All rights reserved" from all the headers. 2016-06-29 17:47:36 -07:00
get-kube.sh Merge pull request #25473 from andreykurilin/get_kube 2016-07-05 11:27:47 -07:00
kube-down.sh Remove "All rights reserved" from all the headers. 2016-06-29 17:47:36 -07:00
kube-push.sh Remove "All rights reserved" from all the headers. 2016-06-29 17:47:36 -07:00
kube-up.sh Remove "All rights reserved" from all the headers. 2016-06-29 17:47:36 -07:00
kube-util.sh Unset KUBERNETES_PROVIDER when KUBERNETES_CONFORMANCE_TEST is set 2016-07-11 18:43:37 +02:00
kubectl.sh Make releases work 2016-07-12 21:52:54 -07:00
log-dump.sh Copy rotated logs in e2e tests 2016-09-16 19:12:18 +02:00
options.md Minion->Name rename: cluster/vagrant, docs and Vagrantfile 2015-12-02 12:45:12 -08:00
OWNERS Remove myself from a bunch of OWNERS files, as I am too overloaded 2016-05-11 13:34:51 -07:00
README.md add maintenance notice to cluster/README 2016-06-13 11:47:30 -07:00
test-e2e.sh Remove "All rights reserved" from all the headers. 2016-06-29 17:47:36 -07:00
test-network.sh Remove "All rights reserved" from all the headers. 2016-06-29 17:47:36 -07:00
test-smoke.sh Remove "All rights reserved" from all the headers. 2016-06-29 17:47:36 -07:00
update-storage-objects.sh Remove "All rights reserved" from all the headers. 2016-06-29 17:47:36 -07:00
validate-cluster.sh Remove "All rights reserved" from all the headers. 2016-06-29 17:47:36 -07:00

README.md

Cluster Configuration

Deprecation Notice: This directory has entered maintainence mode and will not be accepting new providers. Please submit new automation deployments to kube-deploy. Deployments in this directory will continue to be maintained and supported at their current level of support.

The scripts and data in this directory automate creation and configuration of a Kubernetes cluster, including networking, DNS, nodes, and master components.

See the getting-started guides for examples of how to use the scripts.

cloudprovider/config-default.sh contains a set of tweakable definitions/parameters for the cluster.

The heavy lifting of configuring the VMs is done by SaltStack.

Analytics