new file: 10_delete_kube-dns.sh
new file: 11_delete_all.sh new file: 12_uninstall_etcd.sh new file: 3_install_configure_kubernetes.sh new file: 5.1_worker_kubelet_setup.sh new file: 5.2_worker_kube-proxy_setup.sh new file: 5_worker_node_setup.sh new file: 6_client_admin_config.sh new file: 7_pod_routing.sh new file: 8_deploying_kube-dns.sh new file: 9_further_tests.sh new file: certs-dir/admin-csr.json new file: certs-dir/admin-key.pem new file: certs-dir/admin.csr new file: certs-dir/admin.kubeconfig new file: certs-dir/admin.pem new file: certs-dir/ca-config.json new file: certs-dir/ca-csr.json new file: certs-dir/ca-key.pem new file: certs-dir/ca.csr new file: certs-dir/ca.pem new file: certs-dir/encryption-config.yaml new file: certs-dir/kube-controller-manager-csr.json new file: certs-dir/kube-controller-manager-key.pem new file: certs-dir/kube-controller-manager.csr new file: certs-dir/kube-controller-manager.kubeconfig new file: certs-dir/kube-controller-manager.pem new file: certs-dir/kube-proxy-csr.json new file: certs-dir/kube-proxy-key.pem new file: certs-dir/kube-proxy.csr new file: certs-dir/kube-proxy.kubeconfig new file: certs-dir/kube-proxy.pem new file: certs-dir/kube-scheduler-csr.json new file: certs-dir/kube-scheduler-key.pem new file: certs-dir/kube-scheduler.csr new file: certs-dir/kube-scheduler.kubeconfig new file: certs-dir/kube-scheduler.pem new file: certs-dir/kubernetes-csr.json new file: certs-dir/kubernetes-key.pem new file: certs-dir/kubernetes.csr new file: certs-dir/kubernetes.pem new file: certs-dir/service-account-csr.json new file: certs-dir/service-account-key.pem new file: certs-dir/service-account.csr new file: certs-dir/service-account.pem new file: certs-dir/worker-0-csr.json new file: certs-dir/worker-0-key.pem new file: certs-dir/worker-0.csr new file: certs-dir/worker-0.kubeconfig new file: certs-dir/worker-0.pem new file: certs-dir/worker-1-csr.json new file: certs-dir/worker-1-key.pem new file: certs-dir/worker-1.csr new file: certs-dir/worker-1.kubeconfig new file: certs-dir/worker-1.pem new file: cni/bridge new file: cni/cni-plugins-amd64-v0.6.0.tgz new file: cni/dhcp new file: cni/flannel new file: cni/host-local new file: cni/ipvlan new file: cni/loopback new file: cni/macvlan new file: cni/portmap new file: cni/ptp new file: cni/sample new file: cni/tuning new file: cni/vlan new file: controller-0/apiserver new file: controller-0/config new file: controller-0/controller-manager new file: controller-0/etcd.conf new file: controller-0/etcd.service new file: controller-0/kube-apiserver.service new file: controller-0/kube-apiserver_rbac.yaml new file: controller-0/kube-controller-manager.service new file: controller-0/kube-scheduler.service new file: controller-0/kube-scheduler.yaml new file: controller-0/kubernetes.default.svc.cluster.local.conf new file: controller-0/kubernetes.repo new file: controller-0/rbac_authorizations.yaml new file: controller-0/scheduler new file: controller-1/apiserver new file: controller-1/config new file: controller-1/controller-manager new file: controller-1/etcd.conf new file: controller-1/etcd.service new file: controller-1/kube-apiserver.service new file: controller-1/kube-apiserver_rbac.yaml new file: controller-1/kube-controller-manager.service new file: controller-1/kube-scheduler.service new file: controller-1/kube-scheduler.yaml new file: controller-1/kubernetes.default.svc.cluster.local.conf new file: controller-1/kubernetes.repo new file: controller-1/rbac_authorizations.yaml new file: controller-1/scheduler new file: controller_manager_setup.sh new file: controller_setup.sh new file: controller_uninstall.sh new file: controllers new file: ctrl-mgr_vars new file: docs/0_Environment_Setup.md new file: docs/10_Create_kube-proxy_Instances.md new file: docs/11_Create_client_kubectl_admin.md new file: docs/12_Create_Pod_Routing_Rules.md new file: docs/13_Create_kube-dns_instances.md new file: docs/14_Additional_Functional_Tests.md new file: docs/15_Delete_kube-dns_Deployment.md new file: docs/16_Uninstall_etcd.md new file: docs/17_Uninstall_Everything.md new file: docs/1_GCloud_Resource_Setup.md new file: docs/2_Certificate_and_Authentication_Creation.md new file: docs/3_Install_and_Configure_etcd.md new file: docs/4_Install_and_Configure_apiserver.md new file: docs/5_Install_and_Configure_Controller_Manager.md new file: docs/6_Install_and_Configure_Scheduler.md new file: docs/7_Create_nginx_Health_Monitor.md new file: docs/8_Create_Load_Balancer.md new file: docs/9a_Create_Kubernetes_Workers_with_Docker.md new file: docs/9b_Create_Kubernetes_Workers_with_containerd.md new file: etcd-listen new file: etcd_setup.sh new file: etcd_vars new file: instance new file: kube-apiserver_setup.sh.orig new file: kube-dns.yaml new file: notes new file: old_stuff/cni/bridge new file: old_stuff/cni/cni-plugins-amd64-v0.6.0.tgz new file: old_stuff/cni/dhcp new file: old_stuff/cni/flannel new file: old_stuff/cni/host-local new file: old_stuff/cni/ipvlan new file: old_stuff/cni/loopback new file: old_stuff/cni/macvlan new file: old_stuff/cni/portmap new file: old_stuff/cni/ptp new file: old_stuff/cni/sample new file: old_stuff/cni/tuning new file: old_stuff/cni/vlan new file: old_stuff/controller-0/apiserver new file: old_stuff/controller-0/config new file: old_stuff/controller-0/controller-manager new file: old_stuff/controller-0/etcd.conf new file: old_stuff/controller-0/etcd.service new file: old_stuff/controller-0/kube-apiserver.service new file: old_stuff/controller-0/kube-apiserver_rbac.yaml new file: old_stuff/controller-0/kube-controller-manager.service new file: old_stuff/controller-0/kube-scheduler.service new file: old_stuff/controller-0/kube-scheduler.yaml new file: old_stuff/controller-0/kubernetes.default.svc.cluster.local.conf new file: old_stuff/controller-0/kubernetes.repo new file: old_stuff/controller-0/rbac_authorizations.yaml new file: old_stuff/controller-0/scheduler new file: old_stuff/controller-1/apiserver new file: old_stuff/controller-1/config new file: old_stuff/controller-1/controller-manager new file: old_stuff/controller-1/etcd.conf new file: old_stuff/controller-1/etcd.service new file: old_stuff/controller-1/kube-apiserver.service new file: old_stuff/controller-1/kube-apiserver_rbac.yaml new file: old_stuff/controller-1/kube-controller-manager.service new file: old_stuff/controller-1/kube-scheduler.service new file: old_stuff/controller-1/kube-scheduler.yaml new file: old_stuff/controller-1/kubernetes.default.svc.cluster.local.conf new file: old_stuff/controller-1/kubernetes.repo new file: old_stuff/controller-1/rbac_authorizations.yaml new file: old_stuff/controller-1/scheduler new file: old_stuff/controllers new file: scheduler_setup.sh new file: scripts/.gce_kubernetes.config new file: scripts/.variables new file: scripts/.worker_variables_0 new file: scripts/.worker_variables_1 new file: scripts/0_env_setup.sh new file: scripts/10_worker_kube-proxy_setup.sh new file: scripts/11_client_kubectl_admin_setup.sh new file: scripts/12_setup_pod_routing.sh new file: scripts/13_setup_core-dns.sh new file: scripts/13_setup_kube-dns.sh new file: scripts/14_additional_functional_tests.sh new file: scripts/14b_additional_functional_tests.sh new file: scripts/15_delete_kube-dns_pod.sh new file: scripts/16_uninstall_etcd.sh new file: scripts/17_uninstall_everything.sh new file: scripts/1_client_side_gcloud_setup.sh new file: scripts/2_cert_and_auth_create.sh new file: scripts/3_install_configure_etcd.sh new file: scripts/4_install_configure_apiserver.sh new file: scripts/5_install_configure_controller_manager.sh new file: scripts/6_install_configure_scheduler.sh new file: scripts/7_nginx_health_monitor_setup.sh new file: scripts/8_create_load_balancer.sh new file: scripts/9a_worker_kubelet_via_docker_setup.sh new file: scripts/9b_worker_kubelet_via_containerd_setup.sh new file: scripts/controller-files/kube-apiserver_rbac.yaml new file: scripts/controller-files/kubernetes.default.svc.cluster.local.conf new file: scripts/controller-files/rbac_authorizations.yaml new file: scripts/controller_manager_setup.sh new file: scripts/controller_manager_setup.sh.template new file: scripts/core-dns.yaml new file: scripts/ctrl-mgr_vars new file: scripts/etcd_setup.sh new file: scripts/etcd_vars new file: scripts/gvisor_tests.sh new file: scripts/instance new file: scripts/kube-apiserver_setup.sh new file: scripts/kube-apiserver_setup.sh.template new file: scripts/kube-dns.yaml new file: scripts/kube-dns.yaml.1 new file: scripts/kube-dns.yaml.2 new file: scripts/kube-dns.yaml.3 new file: scripts/nginx_health_monitor_setup.sh new file: scripts/scheduler_setup.sh new file: scripts/scheduler_setup.sh.template new file: scripts/untrusted.yaml new file: scripts/worker_kube-proxy_setup.sh new file: scripts/worker_kube-proxy_setup.sh.template new file: scripts/worker_kubelet_containerd_setup.sh.template new file: scripts/worker_kubelet_setup.sh new file: scripts/worker_kubelet_setup.sh.template new file: test.sh new file: test2 new file: u3_uninstall_kubernetes_controllers.sh new file: worker-0/10-bridge.conf new file: worker-0/99-loopback.conf new file: worker-0/config new file: worker-0/kube-proxy-config.yaml new file: worker-0/kube-proxy.service new file: worker-0/kubelet new file: worker-0/kubelet-config.yaml new file: worker-0/kubelet.service new file: worker-0/proxy new file: worker-1/10-bridge.conf new file: worker-1/99-loopback.conf new file: worker-1/config new file: worker-1/kube-proxy-config.yaml new file: worker-1/kube-proxy.service new file: worker-1/kubelet new file: worker-1/kubelet-config.yaml new file: worker-1/kubelet.service new file: worker-1/proxy new file: worker_kube-proxy_setup.sh new file: worker_kube-proxy_setup.sh.template new file: worker_kubelet_setup.sh new file: worker_setup.sh Initial commit
This commit is contained in:
parent
74699ed54a
commit
c556fbaad5
10
10_delete_kube-dns.sh
Executable file
10
10_delete_kube-dns.sh
Executable file
@ -0,0 +1,10 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
##
|
||||||
|
## Script to delete the kube-dns components (in case it goes wrong)
|
||||||
|
##
|
||||||
|
POD=`kubectl get pods -n kube-system | grep kube | awk '{ print $1 }'`
|
||||||
|
kubectl delete pods $POD -n kube-system
|
||||||
|
kubectl delete configmaps kube-dns -n kube-system
|
||||||
|
kubectl delete deployments kube-dns -n kube-system
|
||||||
|
kubectl delete serviceaccounts kube-dns -n kube-system
|
||||||
|
kubectl delete services kube-dns -n kube-system
|
||||||
53
11_delete_all.sh
Executable file
53
11_delete_all.sh
Executable file
@ -0,0 +1,53 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
##
|
||||||
|
## Script to completely delete the GCE infrastructure
|
||||||
|
##
|
||||||
|
echo "This script will completely remove the Kubernetes items that have been created"
|
||||||
|
|
||||||
|
. .gce_kubernetes.config
|
||||||
|
|
||||||
|
gcloud config set compute/region $GCE_REGION
|
||||||
|
gcloud config set compute/zone $GCE_ZONE
|
||||||
|
gcloud config set project $GCE_PROJECT
|
||||||
|
|
||||||
|
gcloud compute forwarding-rules delete kubernetes-forwarding-rule --region $(gcloud config get-value compute/region) --quiet
|
||||||
|
echo "Forwarding rule deleted"
|
||||||
|
|
||||||
|
gcloud compute target-pools delete kubernetes-target-pool --quiet
|
||||||
|
echo "Deleted the target pool"
|
||||||
|
|
||||||
|
gcloud compute firewall-rules delete $KUBE_NETWORK-allow-health-check --quiet
|
||||||
|
echo "Deleted the firewall rule to check health"
|
||||||
|
|
||||||
|
gcloud compute http-health-checks delete kubernetes --quiet
|
||||||
|
echo "Deleted the load balancer health check"
|
||||||
|
|
||||||
|
KUBE_CONTROLLERS=$((KUBE_CONTROLLERS-1))
|
||||||
|
KUBE_WORKERS=$((KUBE_WORKERS-1))
|
||||||
|
for ((i=0; i<=$KUBE_CONTROLLERS; i++)); do
|
||||||
|
gcloud compute instances delete controller-${i} --quiet
|
||||||
|
done
|
||||||
|
for ((i=0; i<=$KUBE_WORKERS; i++)); do
|
||||||
|
gcloud compute instances delete worker-${i} --quiet
|
||||||
|
done
|
||||||
|
echo "Compute instances deleted"
|
||||||
|
|
||||||
|
gcloud compute addresses delete $KUBE_NETWORK --region $(gcloud config get-value compute/region) --quiet
|
||||||
|
echo "Deleted the reserved static address"
|
||||||
|
|
||||||
|
gcloud compute firewall-rules delete $KUBE_EXT_FW_NAME --quiet
|
||||||
|
gcloud compute firewall-rules delete $KUBE_INT_FW_NAME --quiet
|
||||||
|
gcloud compute firewall-rules delete $KUBE_NETWORK-allow-nginx-service --quiet
|
||||||
|
echo "Internal and external firewall rules deleted"
|
||||||
|
|
||||||
|
gcloud compute routes delete kubernetes-route-10-200-0-0-24 --quiet
|
||||||
|
gcloud compute routes delete kubernetes-route-10-200-1-0-24 --quiet
|
||||||
|
gcloud compute networks subnets delete $KUBE_SUBNET --quiet
|
||||||
|
gcloud compute networks delete $KUBE_NETWORK --quiet
|
||||||
|
echo "Network, subnet, and routes deleted - all items created should now be deleted"
|
||||||
|
|
||||||
|
rm -rf certs-dir
|
||||||
|
echo "SSL keys, certificates, and kubeconfigs deleted"
|
||||||
|
|
||||||
|
rm -f ~/bin/cfssl*
|
||||||
|
echo "CloudFlare SSL tools deleted"
|
||||||
19
12_uninstall_etcd.sh
Executable file
19
12_uninstall_etcd.sh
Executable file
@ -0,0 +1,19 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
##
|
||||||
|
## Script to uninstall etcd from controllers
|
||||||
|
##
|
||||||
|
. .gce_kubernetes.config
|
||||||
|
|
||||||
|
echo "######################################"
|
||||||
|
echo "Set the gcloud compute region and zone"
|
||||||
|
echo "######################################"
|
||||||
|
gcloud config set compute/region $GCE_REGION
|
||||||
|
gcloud config set compute/zone $GCE_ZONE
|
||||||
|
gcloud config set project $GCE_PROJECT
|
||||||
|
echo "Compute region and zone set"
|
||||||
|
echo ""
|
||||||
|
|
||||||
|
KUBE_CONTROLLERS=$((KUBE_CONTROLLERS-1))
|
||||||
|
for (( i=0; i<=$KUBE_CONTROLLERS; i++ )); do
|
||||||
|
gcloud compute ssh controller-${i} -- 'sudo yum remove -y etcd; sudo rm -rf /var/lib/etcd /etc/etcd'
|
||||||
|
done
|
||||||
24
3_install_configure_kubernetes.sh
Executable file
24
3_install_configure_kubernetes.sh
Executable file
@ -0,0 +1,24 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
##
|
||||||
|
## Script to automate the Kubernetes CentOS client side pieces
|
||||||
|
##
|
||||||
|
echo "######################################
|
||||||
|
Set the gcloud compute region and zone
|
||||||
|
######################################"
|
||||||
|
gcloud config set compute/region us-west1
|
||||||
|
gcloud config set compute/zone us-west1-c
|
||||||
|
gcloud config set project kubernetescentos-205702
|
||||||
|
echo "Compute region and zone set"
|
||||||
|
|
||||||
|
for i in 0 1; do
|
||||||
|
gcloud compute scp controller_setup.sh controller-${i}:
|
||||||
|
done
|
||||||
|
|
||||||
|
gcloud compute scp controller-0/* controller-0:
|
||||||
|
gcloud compute scp controller-1/* controller-1:
|
||||||
|
|
||||||
|
echo "Controller setup scripts copied across"
|
||||||
|
for i in 0 1; do
|
||||||
|
gcloud compute ssh controller-${i} -- ~/controller_setup.sh
|
||||||
|
done
|
||||||
|
|
||||||
19
5.1_worker_kubelet_setup.sh
Executable file
19
5.1_worker_kubelet_setup.sh
Executable file
@ -0,0 +1,19 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
. .gce_kubernetes.config
|
||||||
|
echo "######################################
|
||||||
|
Set the gcloud compute region and zone
|
||||||
|
######################################"
|
||||||
|
gcloud config set compute/region $GCE_REGION
|
||||||
|
gcloud config set compute/zone $GCE_ZONE
|
||||||
|
gcloud config set project $GCE_PROJECT
|
||||||
|
echo "Compute region and zone set"
|
||||||
|
|
||||||
|
KUBE_WORKERS=$((KUBE_WORKERS-1))
|
||||||
|
|
||||||
|
for ((i=0; i<=$KUBE_WORKERS; i++)); do
|
||||||
|
echo "KUBE_POD_ADDR=$KUBE_POD_ADDR.$i.0" > .worker_variables_$i
|
||||||
|
echo "KUBE_NODE_POD_PREFIX=$KUBE_NODE_POD_PREFIX" >> .worker_variables_$i
|
||||||
|
gcloud compute scp .worker_variables_$i worker-${i}:.worker_variables
|
||||||
|
gcloud compute scp worker_kubelet_setup.sh worker-${i}:
|
||||||
|
gcloud compute ssh worker-${i} -- sudo ~/worker_kubelet_setup.sh
|
||||||
|
done
|
||||||
21
5.2_worker_kube-proxy_setup.sh
Executable file
21
5.2_worker_kube-proxy_setup.sh
Executable file
@ -0,0 +1,21 @@
|
|||||||
|
. .gce_kubernetes.config
|
||||||
|
echo "######################################
|
||||||
|
Set the gcloud compute region and zone
|
||||||
|
######################################"
|
||||||
|
gcloud config set compute/region $GCE_REGION
|
||||||
|
gcloud config set compute/zone $GCE_ZONE
|
||||||
|
gcloud config set project $GCE_PROJECT
|
||||||
|
echo "Compute region and zone set"
|
||||||
|
|
||||||
|
KUBE_WORKERS=$((KUBE_WORKERS-1))
|
||||||
|
|
||||||
|
sed "s|KUBE_POD_CIDR|$KUBE_POD_CIDR|g" worker_kube-proxy_setup.sh.template > worker_kube-proxy_setup.sh
|
||||||
|
chmod 755 worker_kube-proxy_setup.sh
|
||||||
|
for ((i=0; i<=$KUBE_WORKERS; i++)); do
|
||||||
|
gcloud compute scp worker_kube-proxy_setup.sh worker-${i}:
|
||||||
|
done
|
||||||
|
|
||||||
|
echo "Worker kube-proxy setup scripts copied across"
|
||||||
|
for ((i=0; i<=$KUBE_WORKERS; i++)); do
|
||||||
|
gcloud compute ssh worker-${i} -- sudo ~/worker_kube-proxy_setup.sh
|
||||||
|
done
|
||||||
19
5_worker_node_setup.sh
Executable file
19
5_worker_node_setup.sh
Executable file
@ -0,0 +1,19 @@
|
|||||||
|
echo "######################################
|
||||||
|
Set the gcloud compute region and zone
|
||||||
|
######################################"
|
||||||
|
gcloud config set compute/region us-west1
|
||||||
|
gcloud config set compute/zone us-west1-c
|
||||||
|
gcloud config set-value project kubernetescentos-205702
|
||||||
|
echo "Compute region and zone set"
|
||||||
|
|
||||||
|
for i in 0 1; do
|
||||||
|
gcloud scp worker_setup.sh worker-${i}:
|
||||||
|
done
|
||||||
|
|
||||||
|
gcloud scp worker-0/* worker-0:
|
||||||
|
gcloud scp worker-1/* worker-1:
|
||||||
|
|
||||||
|
echo "Controller setup scripts copied across"
|
||||||
|
for i in 0 1; do
|
||||||
|
gcloud compute ssh worker-${i} -- worker_setup.sh
|
||||||
|
done
|
||||||
24
6_client_admin_config.sh
Executable file
24
6_client_admin_config.sh
Executable file
@ -0,0 +1,24 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
##
|
||||||
|
## Script to set up the client (this system) for Kubernetes access
|
||||||
|
##
|
||||||
|
. .gce_kubernetes.config
|
||||||
|
echo "######################################
|
||||||
|
Set the gcloud compute region and zone
|
||||||
|
######################################"
|
||||||
|
gcloud config set compute/region $GCE_REGION
|
||||||
|
gcloud config set compute/zone $GCE_ZONE
|
||||||
|
gcloud config set project $GCE_PROJECT
|
||||||
|
echo "Compute region and zone set"
|
||||||
|
|
||||||
|
cd certs-dir
|
||||||
|
rm admin.kubeconfig
|
||||||
|
KUBERNETES_PUBLIC_ADDRESS=$(gcloud compute addresses describe $KUBE_NETWORK --region $GCE_REGION --format 'value(address)')
|
||||||
|
echo $KUBERNETES_PUBLIC_ADDRESS
|
||||||
|
kubectl config set-cluster $KUBE_CLUSTER --certificate-authority=ca.pem --embed-certs=true --server=https://${KUBERNETES_PUBLIC_ADDRESS}:6443 --kubeconfig=admin.kubeconfig
|
||||||
|
kubectl config set-credentials admin --client-certificate=admin.pem --client-key=admin-key.pem --kubeconfig=admin.kubeconfig
|
||||||
|
kubectl config set-context $KUBE_NETWORK --cluster=$KUBE_CLUSTER --user=admin --kubeconfig=admin.kubeconfig
|
||||||
|
kubectl config use-context $KUBE_NETWORK --kubeconfig=admin.kubeconfig
|
||||||
|
|
||||||
|
kubectl get componentstatuses --kubeconfig=admin.kubeconfig
|
||||||
|
kubectl get nodes --kubeconfig=admin.kubeconfig
|
||||||
22
7_pod_routing.sh
Executable file
22
7_pod_routing.sh
Executable file
@ -0,0 +1,22 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
##
|
||||||
|
## Script to set up the pod routing between nodes
|
||||||
|
##
|
||||||
|
. .gce_kubernetes.config
|
||||||
|
echo "######################################
|
||||||
|
Set the gcloud compute region and zone
|
||||||
|
######################################"
|
||||||
|
gcloud config set compute/region $GCE_REGION
|
||||||
|
gcloud config set compute/zone $GCE_ZONE
|
||||||
|
gcloud config set project $GCE_PROJECT
|
||||||
|
echo "Compute region and zone set"
|
||||||
|
|
||||||
|
KUBE_WORKERS=$((KUBE_WORKERS-1))
|
||||||
|
|
||||||
|
for ((i=0; i<=$KUBE_WORKERS; i++)); do
|
||||||
|
gcloud compute routes create kubernetes-pod-route-worker-${i} --network $KUBE_NETWORK --next-hop-address $KUBE_SUBNET_ADDR.2${i} --destination-range $KUBE_POD_ADDR.${i}.0/24
|
||||||
|
done
|
||||||
|
sleep 10
|
||||||
|
gcloud compute routes list --filter "network: $KUBE_NETWORK"
|
||||||
|
|
||||||
|
echo "Routes should be listed above as created"
|
||||||
22
8_deploying_kube-dns.sh
Executable file
22
8_deploying_kube-dns.sh
Executable file
@ -0,0 +1,22 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
##
|
||||||
|
## Script to deploy the kube-dns pod to the cluster
|
||||||
|
##
|
||||||
|
echo "Taking the kube-dns.yaml file from the Kubernetes the Hard Way author"
|
||||||
|
wget https://storage.googleapis.com/kubernetes-the-hard-way/kube-dns.yaml
|
||||||
|
kubectl create -f kube-dns.yaml --kubeconfig=certs-dir/admin.kubeconfig
|
||||||
|
|
||||||
|
sleep 2
|
||||||
|
kubectl get pods -l k8s-app=kube-dns -n kube-system -o wide --kubeconfig=certs-dir/admin.kubeconfig
|
||||||
|
|
||||||
|
echo "Verifying this has worked"
|
||||||
|
kubectl run busybox --image=busybox --kubeconfig=certs-dir/admin.kubeconfig --command -- sleep 3600
|
||||||
|
|
||||||
|
echo "Is the busybox pod running?"
|
||||||
|
kubectl get pods -l run=busybox --kubeconfig=certs-dir/admin.kubeconfig
|
||||||
|
|
||||||
|
echo "Get the pod name"
|
||||||
|
POD_NAME=$(kubectl get pods -l run=busybox --kubeconfig=certs-dir/admin.kubeconfig -o jsonpath="{.items[0].metadata.name}")
|
||||||
|
|
||||||
|
echo "Is the DNS pod functional?"
|
||||||
|
kubectl exec -ti --kubeconfig=certs-dir/admin.kubeconfig $POD_NAME -- nslookup kubernetes
|
||||||
55
9_further_tests.sh
Executable file
55
9_further_tests.sh
Executable file
@ -0,0 +1,55 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
##
|
||||||
|
## Further set of tests to ensure that Kubernetes is working as expected
|
||||||
|
##
|
||||||
|
. .gce_kubernetes.config
|
||||||
|
|
||||||
|
echo "######################################"
|
||||||
|
echo "Set the gcloud compute region and zone"
|
||||||
|
echo "######################################"
|
||||||
|
gcloud config set compute/region $GCE_REGION
|
||||||
|
gcloud config set compute/zone $GCE_ZONE
|
||||||
|
gcloud config set project $GCE_PROJECT
|
||||||
|
echo "Compute region and zone set"
|
||||||
|
echo ""
|
||||||
|
|
||||||
|
echo "Testing the encryption of data at rest via the key created earlier"
|
||||||
|
kubectl create secret generic super-secret --from-literal="mykey=mydata" --kubeconfig=certs-dir/admin.kubeconfig
|
||||||
|
|
||||||
|
gcloud compute ssh controller-0 \
|
||||||
|
--command "sudo ETCDCTL_API=3 etcdctl get \
|
||||||
|
--endpoints=https://127.0.0.1:2379 \
|
||||||
|
--cacert=/etc/etcd/ca.pem \
|
||||||
|
--cert=/etc/etcd/kubernetes.pem \
|
||||||
|
--key=/etc/etcd/kubernetes-key.pem \
|
||||||
|
/registry/secrets/default/super-secret | hexdump -C"
|
||||||
|
|
||||||
|
echo "Output should be prefixed with k8s:enc:aescbc:v1:key1
|
||||||
|
|
||||||
|
Testing application (nginx) deployments"
|
||||||
|
kubectl run nginx --image=nginx --kubeconfig=certs-dir/admin.kubeconfig
|
||||||
|
echo "Waiting 10 seconds for the pod to start ..."
|
||||||
|
sleep 10
|
||||||
|
kubectl get pods -l run=nginx -o wide --kubeconfig=certs-dir/admin.kubeconfig
|
||||||
|
|
||||||
|
echo "nginx should be listed as running"
|
||||||
|
POD_NAME=$(kubectl get pods -l run=nginx --kubeconfig=certs-dir/admin.kubeconfig -o jsonpath="{.items[0].metadata.name}")
|
||||||
|
echo "You'll need to switch to another terminal and test with 'curl --head http://127.0.0.1:8080' Press Ctrl+C once completed"
|
||||||
|
kubectl port-forward $POD_NAME 8080:80 --kubeconfig=certs-dir/admin.kubeconfig
|
||||||
|
|
||||||
|
echo "Displaying the logs from the nginx container"
|
||||||
|
kubectl logs $POD_NAME --kubeconfig=certs-dir/admin.kubeconfig
|
||||||
|
|
||||||
|
echo "Executing a command inside a container"
|
||||||
|
kubectl exec -it $POD_NAME --kubeconfig=certs-dir/admin.kubeconfig -- nginx -v
|
||||||
|
|
||||||
|
echo "Exposing a container as a service (in this example NodePort)"
|
||||||
|
kubectl expose deployment nginx --port 80 --type NodePort --kubeconfig=certs-dir/admin.kubeconfig
|
||||||
|
NODE_PORT=$(kubectl get svc nginx --kubeconfig=certs-dir/admin.kubeconfig --output=jsonpath='{range .spec.ports[0]}{.nodePort}')
|
||||||
|
echo "Creating a firewall rule to allow access to the exposed node"
|
||||||
|
gcloud compute firewall-rules create kubernetes-centos-allow-nginx-service --allow=tcp:${NODE_PORT} --network $KUBE_NETWORK
|
||||||
|
echo "Retrieving the external IP"
|
||||||
|
EXTERNAL_IP=$(gcloud compute instances describe worker-0 --format 'value(networkInterfaces[0].accessConfigs[0].natIP)')
|
||||||
|
curl -I http://${EXTERNAL_IP}:${NODE_PORT}
|
||||||
|
|
||||||
|
echo "Functional tests should now be completed successfully"
|
||||||
16
certs-dir/admin-csr.json
Normal file
16
certs-dir/admin-csr.json
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
{
|
||||||
|
"CN": "admin",
|
||||||
|
"key": {
|
||||||
|
"algo": "rsa",
|
||||||
|
"size": 2048
|
||||||
|
},
|
||||||
|
"names": [
|
||||||
|
{
|
||||||
|
"C": "US",
|
||||||
|
"L": "Portland",
|
||||||
|
"O": "system:masters",
|
||||||
|
"OU": "Kubernetes - CentOS",
|
||||||
|
"ST": "Oregon"
|
||||||
|
}
|
||||||
|
]
|
||||||
|
}
|
||||||
27
certs-dir/admin-key.pem
Normal file
27
certs-dir/admin-key.pem
Normal file
@ -0,0 +1,27 @@
|
|||||||
|
-----BEGIN RSA PRIVATE KEY-----
|
||||||
|
MIIEpAIBAAKCAQEAvyyv+YOpqaf5hx2sS7NuTui76SedgM4lIwaapTmbeaeEFeKY
|
||||||
|
seWVxwIsCmB6WniUmCaW2U/bOtWHcoO+hu/vEMF1PLXH40KJBZZAey6Kvi5DtFFA
|
||||||
|
x7GCbyMSF3Ho7IlVxDWjROp6JF2kUrnPtmSGIL7Zuar2KUPUSOWPJgkFGvBlQbYY
|
||||||
|
ws6cjDDKqznCrnv6bN4tkOilORSlR4Jy6Qy1ZbPC+Xv1aOpXpPig73R7TSdyyp6h
|
||||||
|
qkT47VrIJKIPt5TJY2k1EvMCzwKoCbeZBLm8Q9S70f8JMjyecZ7A9hyhlzfQJs6G
|
||||||
|
DxROy8ZxM8/3euUPi6WI2xjXa63JkjkFv1vTmQIDAQABAoIBAEXXxqaqwmZYFuKV
|
||||||
|
Jag2cntjrZsdvP4c0hZ8yCzK4hFM8QWp1k1P6itdkMdtveWlnewEVSIpeZeCAU0F
|
||||||
|
8qqLp9SASRuX8eIGIdcnsIEQXOHkNxn+gWMzZ8rAjlCAbi9UcUAQtIht/ZehmnIa
|
||||||
|
rlcdXJ9D+nlJi0tCG6FSNL0ZmILhZQT8zx83ltinvDlHYOZWiwKLLXY+mlsCzwQO
|
||||||
|
XGwEurnDfhkk6mPMdsb2a3WxheetwyZwTo6KR06lX+BEIPXW6YMN1ly5Avivf6Jo
|
||||||
|
qhz7DGudntDV6Z/FFVOU05+/yhLNtSPzoGO7FYlgJNTAPKSF6h/9rd5zmBENnkOv
|
||||||
|
mIYWSm0CgYEA37xeG3d4/QMGXQHu6fusaY3gH54MxPr3S6MnQPyCMhblPM7h353y
|
||||||
|
x/+J1h1ZojFfsQCrci7mIQt9AMClNKAIkGZH77MDvC75W0SXaJQBFgablBclGUtv
|
||||||
|
9dG2GU9ZmvrB7bBQtlnl13NwzCyT5242m6jRC2tqlNW/Cg1PkffSdicCgYEA2r5C
|
||||||
|
ZqdPhy06q7/8NFfZRUQ+hFDiWVLbAXHVDBzg1Sk2C8y2+uUJLOv/julyIbSYQ8Jo
|
||||||
|
O0Ql0vxzP4//Bh3/FWqqmGn7MKq5Lkxzswa37cBRdCFm2oKYufBM/2fbI2jER4ch
|
||||||
|
e1U3F4HYNAOpqaz1zfe5c4X3/KyPdQN/KQYhQD8CgYAG/Bx8AwjV7Ug/kxXgXCkP
|
||||||
|
yowasJZ5d9RMmjVZhAiUg754XYUTtBymPcYR1yy7MYtpPTodAHXSxkcKxPjjYbOi
|
||||||
|
vm60fwQ41caXINcRPr2h8GbfArH3zjEanYdv1thXTEjNoNmEN95DEamN1j5v1TMD
|
||||||
|
PQv5rUrQhrPGHpBDYFdDtQKBgQCj26QYC7sKUrpBkCZX+3q5ZX7DVWfJa8S81021
|
||||||
|
rihJ5X4j5q0nUszFxt+AaaViVEs/bvDvfIQtAYk/kxmBtpSvsWCrnbBZ63mekgyV
|
||||||
|
jjHXupoJuT+37d6EYtr69Ax3APMPdc2B+vqy9ERF6nx8qyDSsoBMZo22zHkGOaFW
|
||||||
|
1M2xtwKBgQC3PV+SD0t2fqjNeh06Xn6D5Zqjjq6zpmAIUH1h1fLTApBsyZ9RdLVg
|
||||||
|
gVtpbBF0lCgZCUb6qXkLFDdIaZHSHR+r4UNhsNYxuPQvj/cVIWGJeljU03FWzRXO
|
||||||
|
hWHOBeac5co0Gx/vp1CMoADaOTf4h49HkjACTxstfHF2YNLaN3ie3g==
|
||||||
|
-----END RSA PRIVATE KEY-----
|
||||||
17
certs-dir/admin.csr
Normal file
17
certs-dir/admin.csr
Normal file
@ -0,0 +1,17 @@
|
|||||||
|
-----BEGIN CERTIFICATE REQUEST-----
|
||||||
|
MIICvTCCAaUCAQAweDELMAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8G
|
||||||
|
A1UEBxMIUG9ydGxhbmQxFzAVBgNVBAoTDnN5c3RlbTptYXN0ZXJzMRwwGgYDVQQL
|
||||||
|
ExNLdWJlcm5ldGVzIC0gQ2VudE9TMQ4wDAYDVQQDEwVhZG1pbjCCASIwDQYJKoZI
|
||||||
|
hvcNAQEBBQADggEPADCCAQoCggEBAL8sr/mDqamn+YcdrEuzbk7ou+knnYDOJSMG
|
||||||
|
mqU5m3mnhBXimLHllccCLApgelp4lJgmltlP2zrVh3KDvobv7xDBdTy1x+NCiQWW
|
||||||
|
QHsuir4uQ7RRQMexgm8jEhdx6OyJVcQ1o0TqeiRdpFK5z7ZkhiC+2bmq9ilD1Ejl
|
||||||
|
jyYJBRrwZUG2GMLOnIwwyqs5wq57+mzeLZDopTkUpUeCcukMtWWzwvl79WjqV6T4
|
||||||
|
oO90e00ncsqeoapE+O1ayCSiD7eUyWNpNRLzAs8CqAm3mQS5vEPUu9H/CTI8nnGe
|
||||||
|
wPYcoZc30CbOhg8UTsvGcTPP93rlD4uliNsY12utyZI5Bb9b05kCAwEAAaAAMA0G
|
||||||
|
CSqGSIb3DQEBCwUAA4IBAQCoq9kBIb72a6dNolRP8j/e/iEUcZO+j4M2mpAJUm0s
|
||||||
|
A4C16vlvRo59htdSAomCDk1DbZPfOrNrt2MYJRBlm/836F541um6RudRUD9fEWZo
|
||||||
|
jbtKfKyv4rCaUu+glYznUgVGgEpquVaTa1kK2afBQQtxfpX+OPDctFQSiPaA+nWZ
|
||||||
|
x/5ykTfy9V/i3PNL8PK/oakvrCG4Dl0z3C1C41YjuKgpIRpuB9ntf6u0d/8LX55L
|
||||||
|
To5+0nCv5xdvflvRIzyUc2KPDylp70/BdfPeDNMthQIlDVZhMwio3tx5O3tmLrJZ
|
||||||
|
s2NECAchfxxWH2cjvIqxOy6FhizmfIwA96okN08HxUdm
|
||||||
|
-----END CERTIFICATE REQUEST-----
|
||||||
19
certs-dir/admin.kubeconfig
Normal file
19
certs-dir/admin.kubeconfig
Normal file
@ -0,0 +1,19 @@
|
|||||||
|
apiVersion: v1
|
||||||
|
clusters:
|
||||||
|
- cluster:
|
||||||
|
certificate-authority-data: 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
|
||||||
|
server: https://127.0.0.1:6443
|
||||||
|
name: kube-cluster
|
||||||
|
contexts:
|
||||||
|
- context:
|
||||||
|
cluster: kube-cluster
|
||||||
|
user: admin
|
||||||
|
name: default
|
||||||
|
current-context: default
|
||||||
|
kind: Config
|
||||||
|
preferences: {}
|
||||||
|
users:
|
||||||
|
- name: admin
|
||||||
|
user:
|
||||||
|
client-certificate-data: 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
|
||||||
|
client-key-data: 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
|
||||||
24
certs-dir/admin.pem
Normal file
24
certs-dir/admin.pem
Normal file
@ -0,0 +1,24 @@
|
|||||||
|
-----BEGIN CERTIFICATE-----
|
||||||
|
MIID7TCCAtWgAwIBAgIUeGQGfpEo3cbqmvHOCEoNTh/2n68wDQYJKoZIhvcNAQEL
|
||||||
|
BQAwaDELMAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8GA1UEBxMIUG9y
|
||||||
|
dGxhbmQxEzARBgNVBAoTCkt1YmVybmV0ZXMxCzAJBgNVBAsTAkNBMRMwEQYDVQQD
|
||||||
|
EwpLdWJlcm5ldGVzMB4XDTE4MDcwNDAxNTEwMFoXDTE5MDcwNDAxNTEwMFoweDEL
|
||||||
|
MAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8GA1UEBxMIUG9ydGxhbmQx
|
||||||
|
FzAVBgNVBAoTDnN5c3RlbTptYXN0ZXJzMRwwGgYDVQQLExNLdWJlcm5ldGVzIC0g
|
||||||
|
Q2VudE9TMQ4wDAYDVQQDEwVhZG1pbjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC
|
||||||
|
AQoCggEBAL8sr/mDqamn+YcdrEuzbk7ou+knnYDOJSMGmqU5m3mnhBXimLHllccC
|
||||||
|
LApgelp4lJgmltlP2zrVh3KDvobv7xDBdTy1x+NCiQWWQHsuir4uQ7RRQMexgm8j
|
||||||
|
Ehdx6OyJVcQ1o0TqeiRdpFK5z7ZkhiC+2bmq9ilD1EjljyYJBRrwZUG2GMLOnIww
|
||||||
|
yqs5wq57+mzeLZDopTkUpUeCcukMtWWzwvl79WjqV6T4oO90e00ncsqeoapE+O1a
|
||||||
|
yCSiD7eUyWNpNRLzAs8CqAm3mQS5vEPUu9H/CTI8nnGewPYcoZc30CbOhg8UTsvG
|
||||||
|
cTPP93rlD4uliNsY12utyZI5Bb9b05kCAwEAAaN/MH0wDgYDVR0PAQH/BAQDAgWg
|
||||||
|
MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0G
|
||||||
|
A1UdDgQWBBTIU9v7m/ej7qwpGdqHlGpguSWthzAfBgNVHSMEGDAWgBTfqs3yL4KG
|
||||||
|
oVHsruKsx0SoHa/5/DANBgkqhkiG9w0BAQsFAAOCAQEAx/n8OqVFcsJdasKi2iMQ
|
||||||
|
KQCxjhzWe/wRduLQ1+Nkhebfo8GOjTY4lXkyzHi+S2xNiYl0tdB/8u92XJ11R4iM
|
||||||
|
4+OopMOUkyt5n+kW38r1D3Jue5AcjlAHsf+iMjGDA4k/qQkaAA+q1Nxc4mPFCgZv
|
||||||
|
0a8XppLaXBHxmidu6uu7J+aoiNJR/BhRL6QO7Eu0L4LiIqrhXUMvXGjfIDeMvePJ
|
||||||
|
kBd0DZ7i7FJbexMPA4KAqGYX1yXEAJHF6HdkYCv3NFrtAaQrKxiI9b/cC/VuttuX
|
||||||
|
lJWfQ/MO1m2/KScqlf1Fh3EsRxQnsmyTszIveRVVzMPNcAAF2uHGX/lyAE/w/EGv
|
||||||
|
FQ==
|
||||||
|
-----END CERTIFICATE-----
|
||||||
13
certs-dir/ca-config.json
Normal file
13
certs-dir/ca-config.json
Normal file
@ -0,0 +1,13 @@
|
|||||||
|
{
|
||||||
|
"signing": {
|
||||||
|
"default": {
|
||||||
|
"expiry": "8760h"
|
||||||
|
},
|
||||||
|
"profiles": {
|
||||||
|
"kubernetes": {
|
||||||
|
"usages": ["signing", "key encipherment", "server auth", "client auth"],
|
||||||
|
"expiry": "8760h"
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
16
certs-dir/ca-csr.json
Normal file
16
certs-dir/ca-csr.json
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
{
|
||||||
|
"CN": "Kubernetes",
|
||||||
|
"key": {
|
||||||
|
"algo": "rsa",
|
||||||
|
"size": 2048
|
||||||
|
},
|
||||||
|
"names": [
|
||||||
|
{
|
||||||
|
"C": "US",
|
||||||
|
"L": "Portland",
|
||||||
|
"O": "Kubernetes",
|
||||||
|
"OU": "CA",
|
||||||
|
"ST": "Oregon"
|
||||||
|
}
|
||||||
|
]
|
||||||
|
}
|
||||||
27
certs-dir/ca-key.pem
Normal file
27
certs-dir/ca-key.pem
Normal file
@ -0,0 +1,27 @@
|
|||||||
|
-----BEGIN RSA PRIVATE KEY-----
|
||||||
|
MIIEowIBAAKCAQEA7X9PGTx2t45hocH0OmOHGKje7VdQpB/MvwDdbAZvzelij+tW
|
||||||
|
f4NRR26f/h+viCznYEXbO7nulH/c//QKwsYjOdns3GrMDK1mCsjqSKuoBfqEbYUP
|
||||||
|
Gx78kk9Pu3detTUQrSwv0mwPgh7ci11MuBEUKu3ETtnzNSP/E9dgL4HpkzSI0SPd
|
||||||
|
ZQYWtKOuDSDc9cCMcDdpaUWSjJ5YgApvXH2lgLuibWY+EiXIzXR4rmNJIY0tJ6yg
|
||||||
|
1OpNHYmO6IJG3qAG+NapNomQtIGmgXbmC/BC9/kEcw7ET6OB9tOvSF1Q0NKfoSKA
|
||||||
|
1Q6cjxwEEDnXwlxzeI8yEL9fVV2U1ZQ2gG40dQIDAQABAoIBAEJQKMrYGiHYjKQ4
|
||||||
|
3rOq9J7LECvfFHIvOuEeIbU2+uLYxp9+y5EhHoG+fsfbGwz/1L8J4lQD73zhUtjY
|
||||||
|
0GRgJJfTpJJK85yakgJy5Q/Tdj/tGirmWzhsZ4OGx7GFfBlGrthbnSK473+alGQJ
|
||||||
|
chF3G1V9PDH0Izd0TJXCrmW1dX2XRN0uHqSxEl0fgU4jdnFWyhvksgt+RIOXFxZM
|
||||||
|
9HrldcWdgX8/NwEolUGOuvWurYL5xBxiAWoVxI42Le7kRSX072en5vy6NpKS8E5A
|
||||||
|
aCTw6SHyCIJO+ASKEYVOMHMOHMSOas2QvrewreDT3P1pvo/7smlYZfKyjz1OU4WO
|
||||||
|
4AFtUQECgYEA/BtEcuyPOj+s6tUxcRfqauzKmZpvEWSBt7Jxu+z+ddAEiRTNnEEC
|
||||||
|
MNtcnk3s0oyQci3oWNeFQ4IuhqQeGFlO++sk99M1H5tNiLsVbFcbpSKAYt7+GPY3
|
||||||
|
q6fzojqb6kQYzU+3VLP85aNspN8Tkv1xzg0vkNIjG/ioBNEZ1vAS08ECgYEA8SpI
|
||||||
|
SULmtYjRPGAeBwCq+uC9b6ANMNCnJWEazzive90oNIu4F3rwfzIYzA83AKqgKI5S
|
||||||
|
uoJkvBp8JOrW7QDRUy1DzsksTP5gvt1++XTpAz+KMi/AVctabtWEdoUJ9+UOGvQZ
|
||||||
|
STGn1N2kkwGoX9t6gxoNpTPNmy2gIe7fRisJvbUCgYA9Ek3umSfJMIuvB55Gi0ia
|
||||||
|
Rmp9809co0BZQ70RjUPHPnEa1BNK+uSQ+VLidnYcOzjyr/RNMUhzJiInM7Kmq1va
|
||||||
|
4we9kUiZM4IA0XFLIX7s7gKz8NkVKvApgTIf5prGkWCAvALpXgCxkHlNJ00Smprr
|
||||||
|
E36mUoF20THCmPTtgJLPAQKBgFrhfTYmgPyeH4NqEUbASK6cLKc5IF9p8eMTMeAv
|
||||||
|
U2oREIqksG4gxSqZvWCAx1B3/DzsTV69rqp4LJpY6T+NFFUM9MWjaA9nuRuUKrpl
|
||||||
|
BT5VHoYFGqz6Ig0sZ2umfPgvGF6t6C1+Ceoc0F0ZvdLJyeRH2CaOXAgDbJn9A6TU
|
||||||
|
qSoVAoGBALmlxYN2axBDLNo4h9rDQloIQdn+H4JH0p4KyjMfiwPzXyIcmRdiefQI
|
||||||
|
W7NICeHhUFg9cTeIesnQMXzPvgvjuWV+PcTPmoKOYgGU9JYmLPDJ2bsYSCZraVQb
|
||||||
|
rh9eNikuQPA61sigZ+c1pdJMxzvqxyfCJ7MQZDRRH7GAhxn1Hf6P
|
||||||
|
-----END RSA PRIVATE KEY-----
|
||||||
17
certs-dir/ca.csr
Normal file
17
certs-dir/ca.csr
Normal file
@ -0,0 +1,17 @@
|
|||||||
|
-----BEGIN CERTIFICATE REQUEST-----
|
||||||
|
MIICrTCCAZUCAQAwaDELMAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8G
|
||||||
|
A1UEBxMIUG9ydGxhbmQxEzARBgNVBAoTCkt1YmVybmV0ZXMxCzAJBgNVBAsTAkNB
|
||||||
|
MRMwEQYDVQQDEwpLdWJlcm5ldGVzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
|
||||||
|
CgKCAQEA7X9PGTx2t45hocH0OmOHGKje7VdQpB/MvwDdbAZvzelij+tWf4NRR26f
|
||||||
|
/h+viCznYEXbO7nulH/c//QKwsYjOdns3GrMDK1mCsjqSKuoBfqEbYUPGx78kk9P
|
||||||
|
u3detTUQrSwv0mwPgh7ci11MuBEUKu3ETtnzNSP/E9dgL4HpkzSI0SPdZQYWtKOu
|
||||||
|
DSDc9cCMcDdpaUWSjJ5YgApvXH2lgLuibWY+EiXIzXR4rmNJIY0tJ6yg1OpNHYmO
|
||||||
|
6IJG3qAG+NapNomQtIGmgXbmC/BC9/kEcw7ET6OB9tOvSF1Q0NKfoSKA1Q6cjxwE
|
||||||
|
EDnXwlxzeI8yEL9fVV2U1ZQ2gG40dQIDAQABoAAwDQYJKoZIhvcNAQELBQADggEB
|
||||||
|
AA24J8zL73fiAnmpUMAvmyQQ5ZgYp342OIbsuLi7fHToF3J6fSpLY4CPyvN3UF00
|
||||||
|
2fmt3CewA+8ytmjQKIGVxghLe6VRRdcYqPOIbfSb2xeNzJj0W6OUXkINwhqIU8Rq
|
||||||
|
1sOh1oBdd0N5pLZcK1DAEJ04Bvc+53NzntSkwXpoAQga/R0hns4dPRqif13vTCPD
|
||||||
|
97Bk9FEOVFF7ypkedR/wd/htO9OKga6VchHdtbLGES94yn/PJNPwx6NgPMLJ2kMZ
|
||||||
|
w2c7P48nvGfOQexPc37XIILJnOVSa8HOqkIlH8venAS5DvcZpqdTkyM9gNv9+/dy
|
||||||
|
EiqMfTrqWZuArv+fK/0wnxA=
|
||||||
|
-----END CERTIFICATE REQUEST-----
|
||||||
23
certs-dir/ca.pem
Normal file
23
certs-dir/ca.pem
Normal file
@ -0,0 +1,23 @@
|
|||||||
|
-----BEGIN CERTIFICATE-----
|
||||||
|
MIIDxDCCAqygAwIBAgIUKi4Fnok+d8mN/+TtttkULwd0mnwwDQYJKoZIhvcNAQEL
|
||||||
|
BQAwaDELMAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8GA1UEBxMIUG9y
|
||||||
|
dGxhbmQxEzARBgNVBAoTCkt1YmVybmV0ZXMxCzAJBgNVBAsTAkNBMRMwEQYDVQQD
|
||||||
|
EwpLdWJlcm5ldGVzMB4XDTE4MDcwNDAxNTEwMFoXDTIzMDcwMzAxNTEwMFowaDEL
|
||||||
|
MAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8GA1UEBxMIUG9ydGxhbmQx
|
||||||
|
EzARBgNVBAoTCkt1YmVybmV0ZXMxCzAJBgNVBAsTAkNBMRMwEQYDVQQDEwpLdWJl
|
||||||
|
cm5ldGVzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7X9PGTx2t45h
|
||||||
|
ocH0OmOHGKje7VdQpB/MvwDdbAZvzelij+tWf4NRR26f/h+viCznYEXbO7nulH/c
|
||||||
|
//QKwsYjOdns3GrMDK1mCsjqSKuoBfqEbYUPGx78kk9Pu3detTUQrSwv0mwPgh7c
|
||||||
|
i11MuBEUKu3ETtnzNSP/E9dgL4HpkzSI0SPdZQYWtKOuDSDc9cCMcDdpaUWSjJ5Y
|
||||||
|
gApvXH2lgLuibWY+EiXIzXR4rmNJIY0tJ6yg1OpNHYmO6IJG3qAG+NapNomQtIGm
|
||||||
|
gXbmC/BC9/kEcw7ET6OB9tOvSF1Q0NKfoSKA1Q6cjxwEEDnXwlxzeI8yEL9fVV2U
|
||||||
|
1ZQ2gG40dQIDAQABo2YwZDAOBgNVHQ8BAf8EBAMCAQYwEgYDVR0TAQH/BAgwBgEB
|
||||||
|
/wIBAjAdBgNVHQ4EFgQU36rN8i+ChqFR7K7irMdEqB2v+fwwHwYDVR0jBBgwFoAU
|
||||||
|
36rN8i+ChqFR7K7irMdEqB2v+fwwDQYJKoZIhvcNAQELBQADggEBACaUXqxTWRKc
|
||||||
|
LHjCPaun0TwpXINO00/x/z9Fpj5IhrwsVKlo+quobjiVy9VMf7QRlbzVi0HFZISs
|
||||||
|
qBMAcHNvBxOmuCAe2gkHDWEvY3G/TwjK//R+j+d9EN10W0NJdFTBTr/NzOQUg5Ye
|
||||||
|
PloszPx0Jpi2oMpTCk1AahWP9xBgBFVB+Vao3y7moBGoNiZ348tw48OXp7pG5Sag
|
||||||
|
A6/A5YzGJ4fYMmzU65qxddNa3+a2XleYyy8g4om+fDuKT56HiZiPQKK8OQW5sp51
|
||||||
|
98xkZPQWPlyfUR5iDU7zl4qzT9PK58mFVDTbnf3g+9iKTyAv50vyflkG522sxdi5
|
||||||
|
TFBPPInZ1jI=
|
||||||
|
-----END CERTIFICATE-----
|
||||||
11
certs-dir/encryption-config.yaml
Normal file
11
certs-dir/encryption-config.yaml
Normal file
@ -0,0 +1,11 @@
|
|||||||
|
kind: EncryptionConfig
|
||||||
|
apiVersion: v1
|
||||||
|
resources:
|
||||||
|
- resources:
|
||||||
|
- secrets
|
||||||
|
providers:
|
||||||
|
- aescbc:
|
||||||
|
keys:
|
||||||
|
- name: key1
|
||||||
|
secret: P0bSRM4eag88PjJpXOEKEE1DheDfTJpeMNxL2BqCKvw=
|
||||||
|
- identity: {}
|
||||||
16
certs-dir/kube-controller-manager-csr.json
Normal file
16
certs-dir/kube-controller-manager-csr.json
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
{
|
||||||
|
"CN": "system:kube-controller-manager",
|
||||||
|
"key": {
|
||||||
|
"algo": "rsa",
|
||||||
|
"size": 2048
|
||||||
|
},
|
||||||
|
"names": [
|
||||||
|
{
|
||||||
|
"C": "US",
|
||||||
|
"L": "Portland",
|
||||||
|
"O": "system:kube-controller-manager",
|
||||||
|
"OU": "Kubernetes - CentOS",
|
||||||
|
"ST": "Oregon"
|
||||||
|
}
|
||||||
|
]
|
||||||
|
}
|
||||||
27
certs-dir/kube-controller-manager-key.pem
Normal file
27
certs-dir/kube-controller-manager-key.pem
Normal file
@ -0,0 +1,27 @@
|
|||||||
|
-----BEGIN RSA PRIVATE KEY-----
|
||||||
|
MIIEpAIBAAKCAQEA4L73jeHHKN0Jb0tk+0Hbqf7IgvJsFOBe0do0zN1uQ0+vFk7z
|
||||||
|
eAzHJeyLo5I3soTp7KotC7OjyS57t0r4WDaaT/pdthYRCt/qeDY96fAq7fGCqvik
|
||||||
|
ji1BDvigaQ/ioqAfGPpA1ZEK+/DGDu71/odI3MDsnj9w2oMpsSfct1HW3DKCvW+C
|
||||||
|
f+s8DpaAG5tw9LDK2bdfxm9PHaqVek77tfMyiojj+8NF/13+Ggqd7Qv2d00Z1nby
|
||||||
|
k1lHhXSrWfAiJbsOvkwOufPVaoW/FwqAgImSzDDjBfVRuvqlOIQdw1vzl5EXcENY
|
||||||
|
2xejv9vWGmnw+QjXN6u5iBNpvxmmFxF/BXCNVQIDAQABAoIBABPaKonY4LvGUpgH
|
||||||
|
I+Nh3OJ2RAX1HgD2FMoaqUFTafL+LewdizoWftzluSv4tXzKatNh8Nqwwo350inN
|
||||||
|
sIQyRo08A10bM+QvBUobGHr6oQAlrjImBnscmjuVUK4XHiDZXgXZzTJQPpUknooh
|
||||||
|
J4+VKaV+UShlWDWlEmC4sbFrxDvs++QY568e0f5RueMgNppqDDKQm+mUYF7ufYsi
|
||||||
|
zHzR5r5ZtpL4hM2wAp/0A5nvendST8Bg4QcPeIpL8wF/6ee0FcO3ZVdwvB9HOWC7
|
||||||
|
MfLuhhR0N2Hc04QQg2lRV6YnaifYptZcG3Q6iE9dXomFm+o/olxAPVLUDUIz7gir
|
||||||
|
53bTEeECgYEA6JknS73vyM+ZSWu1122Gd4T9P/4lhks0nc+TK36KWnxX8lgRCUnn
|
||||||
|
zodDxR/AERU468RFUr7hkmLJH8SMrxv763T6UnUr09h0nOP7cNwsRG6q4rNA+4Jg
|
||||||
|
8HGtNN2z24rGxqsQheOHiMoZK5iv0VhZGI/pl2+SIRk2bY/JUg7oxO0CgYEA91uR
|
||||||
|
f8RNve41Umuz0WWHKguBGeR9LCFyc/JbmnWoGbazRNWpqwh5ZnRHmKNqNuSLAC67
|
||||||
|
tggvYNvkwT+8AfrYJYztZMLPXcW/NK+miO/Uhw8EQwGMV/NZCGhZMEsZPmxGD+V7
|
||||||
|
nxR8DIxZjh8EfDwDbf/0TK2mBzuR7kDiMbTtBQkCgYAv2kpuV748NxGXPFSl5H+U
|
||||||
|
mUSs5LF9pn1Ftk3V1evK3+gMELg4i/7ny4ZSyMxv90jFoJSOiHzJ7A7qvTogUIaM
|
||||||
|
k31od3iz1cVv/ateNb3Zulbn2u8Uj2c4MHrs9GurUCrC9rCoiv34U3PIN1p8nEuA
|
||||||
|
NSNep3KN4q0C72EAw9Z5pQKBgQCSzV6B1JBLC4fL3a2/taDNXDyHkGqVeVhC5fBl
|
||||||
|
sDRO5nZogOIMZqAeJR6kwT91SpgQSKwQ8bSkqHyQEHJVPnlvd78gUNnfDlBXRXPx
|
||||||
|
y1x3t3rRBac0P3F0ovFjzv4xZPMD1i9TD0Y78EPqLBBuZvOmIgTsSRbDLiCCpTFZ
|
||||||
|
TMZqeQKBgQCFQttgSb2/LpOUKA2bQHkJJgMEBd3EvKDDI+GQ8WWeFnkcUccWBOI5
|
||||||
|
6qtp9hnlP8DodYS331aP5GMMUmOo0wMgz1UbPUImHxAoV7sNO0oCm14pAzejhu/9
|
||||||
|
tqZscDd+QMlJzJtd0lYJ2BQgufifaDDg2H82Kujo2WO11+iLwhLdnQ==
|
||||||
|
-----END RSA PRIVATE KEY-----
|
||||||
18
certs-dir/kube-controller-manager.csr
Normal file
18
certs-dir/kube-controller-manager.csr
Normal file
@ -0,0 +1,18 @@
|
|||||||
|
-----BEGIN CERTIFICATE REQUEST-----
|
||||||
|
MIIC5zCCAc8CAQAwgaExCzAJBgNVBAYTAlVTMQ8wDQYDVQQIEwZPcmVnb24xETAP
|
||||||
|
BgNVBAcTCFBvcnRsYW5kMScwJQYDVQQKEx5zeXN0ZW06a3ViZS1jb250cm9sbGVy
|
||||||
|
LW1hbmFnZXIxHDAaBgNVBAsTE0t1YmVybmV0ZXMgLSBDZW50T1MxJzAlBgNVBAMT
|
||||||
|
HnN5c3RlbTprdWJlLWNvbnRyb2xsZXItbWFuYWdlcjCCASIwDQYJKoZIhvcNAQEB
|
||||||
|
BQADggEPADCCAQoCggEBAOC+943hxyjdCW9LZPtB26n+yILybBTgXtHaNMzdbkNP
|
||||||
|
rxZO83gMxyXsi6OSN7KE6eyqLQuzo8kue7dK+Fg2mk/6XbYWEQrf6ng2PenwKu3x
|
||||||
|
gqr4pI4tQQ74oGkP4qKgHxj6QNWRCvvwxg7u9f6HSNzA7J4/cNqDKbEn3LdR1twy
|
||||||
|
gr1vgn/rPA6WgBubcPSwytm3X8ZvTx2qlXpO+7XzMoqI4/vDRf9d/hoKne0L9ndN
|
||||||
|
GdZ28pNZR4V0q1nwIiW7Dr5MDrnz1WqFvxcKgICJksww4wX1Ubr6pTiEHcNb85eR
|
||||||
|
F3BDWNsXo7/b1hpp8PkI1zeruYgTab8ZphcRfwVwjVUCAwEAAaAAMA0GCSqGSIb3
|
||||||
|
DQEBCwUAA4IBAQCbIwk2f9xHPikvszZad32XLSRfU7BuGjQ2klc0eeZzVI2IAfSX
|
||||||
|
DaCmzVYpAmqBTesCm6L3wS1cSG81siXyuHE/XM2RHnSkoJ9IuDHHDzyRCOHC0zFQ
|
||||||
|
MQr2Feulbz+Z4AqrM5s4BrgwcbUbpBkjgd+AnEBZ/MxHJ1gBKN7R0A30mr874YPw
|
||||||
|
8WFSjgtrWsthyqtAsRSWJxldFc3kZMlWlxQjdOFqY69q1zZksZwGfOQ76Br1Fntd
|
||||||
|
70fPFV3lwjx2A7SWgk01F2K6YlqEakz6uF8+nHnKmHZi+so/Gx46ZO1f6EWBO6ap
|
||||||
|
7jjmVsvKS3+FkB/2paZp77QTdOceWgc1U5o1
|
||||||
|
-----END CERTIFICATE REQUEST-----
|
||||||
19
certs-dir/kube-controller-manager.kubeconfig
Normal file
19
certs-dir/kube-controller-manager.kubeconfig
Normal file
@ -0,0 +1,19 @@
|
|||||||
|
apiVersion: v1
|
||||||
|
clusters:
|
||||||
|
- cluster:
|
||||||
|
certificate-authority-data: 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
|
||||||
|
server: https://127.0.0.1:6443
|
||||||
|
name: kube-cluster
|
||||||
|
contexts:
|
||||||
|
- context:
|
||||||
|
cluster: kube-cluster
|
||||||
|
user: system:kube-controller-manager
|
||||||
|
name: default
|
||||||
|
current-context: default
|
||||||
|
kind: Config
|
||||||
|
preferences: {}
|
||||||
|
users:
|
||||||
|
- name: system:kube-controller-manager
|
||||||
|
user:
|
||||||
|
client-certificate-data: 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
|
||||||
|
client-key-data: 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
|
||||||
24
certs-dir/kube-controller-manager.pem
Normal file
24
certs-dir/kube-controller-manager.pem
Normal file
@ -0,0 +1,24 @@
|
|||||||
|
-----BEGIN CERTIFICATE-----
|
||||||
|
MIIEFzCCAv+gAwIBAgIUIPEc1MakZxakBf2fGpT3uH6af7YwDQYJKoZIhvcNAQEL
|
||||||
|
BQAwaDELMAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8GA1UEBxMIUG9y
|
||||||
|
dGxhbmQxEzARBgNVBAoTCkt1YmVybmV0ZXMxCzAJBgNVBAsTAkNBMRMwEQYDVQQD
|
||||||
|
EwpLdWJlcm5ldGVzMB4XDTE4MDcwNDAxNTEwMFoXDTE5MDcwNDAxNTEwMFowgaEx
|
||||||
|
CzAJBgNVBAYTAlVTMQ8wDQYDVQQIEwZPcmVnb24xETAPBgNVBAcTCFBvcnRsYW5k
|
||||||
|
MScwJQYDVQQKEx5zeXN0ZW06a3ViZS1jb250cm9sbGVyLW1hbmFnZXIxHDAaBgNV
|
||||||
|
BAsTE0t1YmVybmV0ZXMgLSBDZW50T1MxJzAlBgNVBAMTHnN5c3RlbTprdWJlLWNv
|
||||||
|
bnRyb2xsZXItbWFuYWdlcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
|
||||||
|
AOC+943hxyjdCW9LZPtB26n+yILybBTgXtHaNMzdbkNPrxZO83gMxyXsi6OSN7KE
|
||||||
|
6eyqLQuzo8kue7dK+Fg2mk/6XbYWEQrf6ng2PenwKu3xgqr4pI4tQQ74oGkP4qKg
|
||||||
|
Hxj6QNWRCvvwxg7u9f6HSNzA7J4/cNqDKbEn3LdR1twygr1vgn/rPA6WgBubcPSw
|
||||||
|
ytm3X8ZvTx2qlXpO+7XzMoqI4/vDRf9d/hoKne0L9ndNGdZ28pNZR4V0q1nwIiW7
|
||||||
|
Dr5MDrnz1WqFvxcKgICJksww4wX1Ubr6pTiEHcNb85eRF3BDWNsXo7/b1hpp8PkI
|
||||||
|
1zeruYgTab8ZphcRfwVwjVUCAwEAAaN/MH0wDgYDVR0PAQH/BAQDAgWgMB0GA1Ud
|
||||||
|
JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW
|
||||||
|
BBQfzRroxaNHmLslw5GDbSmQksrsNDAfBgNVHSMEGDAWgBTfqs3yL4KGoVHsruKs
|
||||||
|
x0SoHa/5/DANBgkqhkiG9w0BAQsFAAOCAQEAsGFIX/5YCpvyoOt4JhYXLjUpnqc/
|
||||||
|
81nBqM2ArjAsOyr0hKfjr36M/VkpHMIKx7Xd1qdxGAWk6/Y86cpYv4Vml+lVl4dp
|
||||||
|
pgA+YjjkV5VDqi5isMlMrD/qd+a9mGGL3F+k8xUhk4VwUlyKCT9AoU2V8Ljv4X0N
|
||||||
|
AV5zIGGgOLQb/SbWW7/aUMF0856cVoMYGBZzWPKomo8wmFlA+dVgUOuzYf+OpZjq
|
||||||
|
diAfr7SGSWJUSsOo25MosEmAvOuFDonkIyy4PMJE0VeofkgddZyaRz4HhugVYD1E
|
||||||
|
WeTaiubtwVzDx2FH6fMvF8IYzZYwlG4iw4LoMMpBCaMdIsyFAWcheL0nYg==
|
||||||
|
-----END CERTIFICATE-----
|
||||||
16
certs-dir/kube-proxy-csr.json
Normal file
16
certs-dir/kube-proxy-csr.json
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
{
|
||||||
|
"CN": "system:kube-proxy",
|
||||||
|
"key": {
|
||||||
|
"algo": "rsa",
|
||||||
|
"size": 2048
|
||||||
|
},
|
||||||
|
"names": [
|
||||||
|
{
|
||||||
|
"C": "US",
|
||||||
|
"L": "Portland",
|
||||||
|
"O": "system:node-proxier",
|
||||||
|
"OU": "Kubernetes - CentOS",
|
||||||
|
"ST": "Oregon"
|
||||||
|
}
|
||||||
|
]
|
||||||
|
}
|
||||||
27
certs-dir/kube-proxy-key.pem
Normal file
27
certs-dir/kube-proxy-key.pem
Normal file
@ -0,0 +1,27 @@
|
|||||||
|
-----BEGIN RSA PRIVATE KEY-----
|
||||||
|
MIIEpAIBAAKCAQEA1/X4U8Rf+oDwjqmM3sxckI/YM7hg0RJX2YlKk+6N+b0xoacO
|
||||||
|
T2TztB5Y5oLvQ+iCj/7y1NGJIRSztCieqhhf0Vbp+IUXr0ej1zSGAPKkPIs2G+zI
|
||||||
|
GgceNr22TyKHgq0W0OphQfalROh09o7xm0Ns0QDSsuNCYcidi5PZlL1MAGet9lbo
|
||||||
|
03zjYs/fYVeD+Lz66pSH3Iub5kBmbbmTK+q+MiIMYKqaXgFXvkroeJo8U3PpFkHJ
|
||||||
|
3543ev3vGJ/et+mFMDFvgIrQewrjFqldD97Jeu6REqsFU4q2s8lVoT/qNJuV9UlS
|
||||||
|
8YSoXAgCvPxkRFjYADMucNNZh/T5Bj2g5ph73wIDAQABAoIBAQDMSSbQxpAr/NCR
|
||||||
|
gx14nERrk0ZnFmCvJPTpGI/tg9nVhfxu+AH3ZH2LwrFBzFXdHRJ0eCzo2BUpr9WV
|
||||||
|
9F6ydEAfXGIS7oNLES+RIWQpfV2Sz/UtUTywMk+IZMkR7o3VNTrCARRjO5d2qZYK
|
||||||
|
rYkq4AsNYgPtqEBhE07Ee+V0Z+R+89Yno2YwZZYf3uQagj9zCH9szpe/rdXNAXlV
|
||||||
|
Ivdu4ZaB7DPe2/kiTwB2c1z+5r1GAsyn6xmoxnLEEMK9MNOeRNjw9d3RdP4cRSZu
|
||||||
|
aKYB9ORlVVJnQ/6vN+c2CEdaZbFBGtt0jOugbs572uicVq2MrBKaLpNgRsjhz/ub
|
||||||
|
kmBYbcTBAoGBANiM8G7BHn1fnYLvDRUlVPtaK9atg0AhjsTzRVhRAWGSbp40kfkO
|
||||||
|
LYM1o460OdRTqs/kFOPCNPknWClLOL46gix6ygcwtJ1XlrG3Q0Ljw1N3VgOCLezj
|
||||||
|
/EUaOWWRfkZSM97en1DaiV/6IAI1eAr6DHXQxLB03wvMMbz8kzhslY8RAoGBAP9N
|
||||||
|
h0o+2hbeusoV2QwRvHF7Qgez1CGuJnFX2SBHWsASIf4ckfgpLwV6ZDEdqgzAjBAK
|
||||||
|
zm+NGGQd//sdD7Y11JkYcvuxrzQEWIXUYZU6E9pmTHtPVTSRlrnB//BQlYwrfuEF
|
||||||
|
bz7gr56YD+gvcojuFvfcD9B4X5kX1k5/hyjdDzvvAoGAMfXSQrsrXaGBpYOhcQ97
|
||||||
|
28Gh+5Vsgo87cRTvGsEVoH04KCfYxa0PswXdBj9uWB41emEUsLdNoW4CWQSRwtGc
|
||||||
|
1sY9dgs2oFZk3ft5+SSzG76ciZKvJcgzm33BYD2A9Jhifzi9aNoCd7ItUFUlrOKj
|
||||||
|
nUrdFhjgnMgvcXqUPKBQoQECgYALf+qAJaSdMxsmzyUfrgzW775hqm/7tGR25oYZ
|
||||||
|
Nh2YWTi+wXqxuukrTgAFVli6ilHExzfVPn3CxLcrEHwMsRAKdVd4juBdb3StUouy
|
||||||
|
tRL/22vGgiRMYeJwK5Tjtj2GOs9UQ3JnWqeOdTsCMmDuWgsezwLHWSS1OKWmk4f7
|
||||||
|
BzoQcQKBgQC+QTjBS8LwNAGSLpJI1wcsL2IGVv5pMFHQlsh+kEOqUMVsQIyS9GL9
|
||||||
|
gcVQ5UnxJjN5NlPOdU0V8pz+v6UA19NAO6EGN+ssL+g8YH/2Q0lLJDYYWsM6hEEx
|
||||||
|
1bB1wWS19gnHgxjBdvmHVuVZQwnIJW9Rhmd0ipF7Y7kWKriGTLQb+A==
|
||||||
|
-----END RSA PRIVATE KEY-----
|
||||||
18
certs-dir/kube-proxy.csr
Normal file
18
certs-dir/kube-proxy.csr
Normal file
@ -0,0 +1,18 @@
|
|||||||
|
-----BEGIN CERTIFICATE REQUEST-----
|
||||||
|
MIICzzCCAbcCAQAwgYkxCzAJBgNVBAYTAlVTMQ8wDQYDVQQIEwZPcmVnb24xETAP
|
||||||
|
BgNVBAcTCFBvcnRsYW5kMRwwGgYDVQQKExNzeXN0ZW06bm9kZS1wcm94aWVyMRww
|
||||||
|
GgYDVQQLExNLdWJlcm5ldGVzIC0gQ2VudE9TMRowGAYDVQQDExFzeXN0ZW06a3Vi
|
||||||
|
ZS1wcm94eTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANf1+FPEX/qA
|
||||||
|
8I6pjN7MXJCP2DO4YNESV9mJSpPujfm9MaGnDk9k87QeWOaC70Pogo/+8tTRiSEU
|
||||||
|
s7QonqoYX9FW6fiFF69Ho9c0hgDypDyLNhvsyBoHHja9tk8ih4KtFtDqYUH2pUTo
|
||||||
|
dPaO8ZtDbNEA0rLjQmHInYuT2ZS9TABnrfZW6NN842LP32FXg/i8+uqUh9yLm+ZA
|
||||||
|
Zm25kyvqvjIiDGCqml4BV75K6HiaPFNz6RZByd+eN3r97xif3rfphTAxb4CK0HsK
|
||||||
|
4xapXQ/eyXrukRKrBVOKtrPJVaE/6jSblfVJUvGEqFwIArz8ZERY2AAzLnDTWYf0
|
||||||
|
+QY9oOaYe98CAwEAAaAAMA0GCSqGSIb3DQEBCwUAA4IBAQAVXZ1J6b/v4UnhkWOq
|
||||||
|
kk4qsqeJ2gt15TZUok2K0Rc8CnYLuJxoruaPsA+k3kBc2B2jSMovwR91jgnobdJh
|
||||||
|
LVF0u4BGnq6d3BGqFntqXgQMDa5FwrFIEUFUWKbvx1S+XajisdTxyPPjuGvcN4fJ
|
||||||
|
Q+b1vkG0Esld33BspD3uhcpM3AYasOf6n6D/NR1AF9mjRjHFFBu3Pi9LpheLGiLh
|
||||||
|
rDxmfCDvMf1rykiLbjaTFA+Qw5cW14zXrajJl3BfWMgrR4WP3RnoUheov9FiOJbN
|
||||||
|
NU/KUGa8DTzdk5SybkLcYjhzzkPdpJaZ+9Xy0PBlVdOkRhpld3xG6imrLB9l06Gj
|
||||||
|
Opo6
|
||||||
|
-----END CERTIFICATE REQUEST-----
|
||||||
19
certs-dir/kube-proxy.kubeconfig
Normal file
19
certs-dir/kube-proxy.kubeconfig
Normal file
@ -0,0 +1,19 @@
|
|||||||
|
apiVersion: v1
|
||||||
|
clusters:
|
||||||
|
- cluster:
|
||||||
|
certificate-authority-data: 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
|
||||||
|
server: https://:6443
|
||||||
|
name: kube-cluster
|
||||||
|
contexts:
|
||||||
|
- context:
|
||||||
|
cluster: kube-cluster
|
||||||
|
user: system:kube-proxy
|
||||||
|
name: default
|
||||||
|
current-context: default
|
||||||
|
kind: Config
|
||||||
|
preferences: {}
|
||||||
|
users:
|
||||||
|
- name: system:kube-proxy
|
||||||
|
user:
|
||||||
|
client-certificate-data: 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
|
||||||
|
client-key-data: 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
|
||||||
24
certs-dir/kube-proxy.pem
Normal file
24
certs-dir/kube-proxy.pem
Normal file
@ -0,0 +1,24 @@
|
|||||||
|
-----BEGIN CERTIFICATE-----
|
||||||
|
MIID/zCCAuegAwIBAgIUXqnNf8S64Cil4KL8JHAy0rUsbKQwDQYJKoZIhvcNAQEL
|
||||||
|
BQAwaDELMAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8GA1UEBxMIUG9y
|
||||||
|
dGxhbmQxEzARBgNVBAoTCkt1YmVybmV0ZXMxCzAJBgNVBAsTAkNBMRMwEQYDVQQD
|
||||||
|
EwpLdWJlcm5ldGVzMB4XDTE4MDcwNDAxNTEwMFoXDTE5MDcwNDAxNTEwMFowgYkx
|
||||||
|
CzAJBgNVBAYTAlVTMQ8wDQYDVQQIEwZPcmVnb24xETAPBgNVBAcTCFBvcnRsYW5k
|
||||||
|
MRwwGgYDVQQKExNzeXN0ZW06bm9kZS1wcm94aWVyMRwwGgYDVQQLExNLdWJlcm5l
|
||||||
|
dGVzIC0gQ2VudE9TMRowGAYDVQQDExFzeXN0ZW06a3ViZS1wcm94eTCCASIwDQYJ
|
||||||
|
KoZIhvcNAQEBBQADggEPADCCAQoCggEBANf1+FPEX/qA8I6pjN7MXJCP2DO4YNES
|
||||||
|
V9mJSpPujfm9MaGnDk9k87QeWOaC70Pogo/+8tTRiSEUs7QonqoYX9FW6fiFF69H
|
||||||
|
o9c0hgDypDyLNhvsyBoHHja9tk8ih4KtFtDqYUH2pUTodPaO8ZtDbNEA0rLjQmHI
|
||||||
|
nYuT2ZS9TABnrfZW6NN842LP32FXg/i8+uqUh9yLm+ZAZm25kyvqvjIiDGCqml4B
|
||||||
|
V75K6HiaPFNz6RZByd+eN3r97xif3rfphTAxb4CK0HsK4xapXQ/eyXrukRKrBVOK
|
||||||
|
trPJVaE/6jSblfVJUvGEqFwIArz8ZERY2AAzLnDTWYf0+QY9oOaYe98CAwEAAaN/
|
||||||
|
MH0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD
|
||||||
|
AjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTaJpFsQn0I1NV03VIlhc10iIPpwzAf
|
||||||
|
BgNVHSMEGDAWgBTfqs3yL4KGoVHsruKsx0SoHa/5/DANBgkqhkiG9w0BAQsFAAOC
|
||||||
|
AQEAxd6oYnzCWgEXmQfIeAhzOpX6uEmqjj56jfOCTFwwgbPrBkD3cdJmFjX8ZUiS
|
||||||
|
vL1GaLch5obiCWAbLiRTk1Q0TLQaN2BIFPp79j4XWrehV2rbdcT5N4z2FsFHfph+
|
||||||
|
a4Cuxsh7dsh9tGWRqyZ+aHCucMB9u6pdWzHwZXvf6iQz8HI8hswmIYHpHHXn6p+J
|
||||||
|
kv8IROYYtZOni8mcFuFryTKcSm/xEn01LwqwRKpQQ4pRaLw+P+7m6VUC2ySUrIyc
|
||||||
|
Js0bKGGpYnR4f/Y8RuQJ6shr3WUJklzNn5wwKIUxKri4jcEjWqt+AzlyjB4xGoQP
|
||||||
|
FMuM1gq7JwKmETdffoN+vnVd7A==
|
||||||
|
-----END CERTIFICATE-----
|
||||||
16
certs-dir/kube-scheduler-csr.json
Normal file
16
certs-dir/kube-scheduler-csr.json
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
{
|
||||||
|
"CN": "system:kube-scheduler",
|
||||||
|
"key": {
|
||||||
|
"algo": "rsa",
|
||||||
|
"size": 2048
|
||||||
|
},
|
||||||
|
"names": [
|
||||||
|
{
|
||||||
|
"C": "US",
|
||||||
|
"L": "Portland",
|
||||||
|
"O": "system:kube-scheduler",
|
||||||
|
"OU": "Kubernetes - CentOS",
|
||||||
|
"ST": "Oregon"
|
||||||
|
}
|
||||||
|
]
|
||||||
|
}
|
||||||
27
certs-dir/kube-scheduler-key.pem
Normal file
27
certs-dir/kube-scheduler-key.pem
Normal file
@ -0,0 +1,27 @@
|
|||||||
|
-----BEGIN RSA PRIVATE KEY-----
|
||||||
|
MIIEpAIBAAKCAQEAr7wRBULEE61hUDCaaAvpFYiFT+2YFbR/mtAnqikGzeaa2XoZ
|
||||||
|
rGdIUKbZOOkYlfW1cGMSuGR8td0GehDphouL7la+mYzasIjBIGBi3i/YWb1CAKwC
|
||||||
|
m2uEuhotqjPbP6pHK2fbNV4Fgsq2/x/l3WV3TTf20cNf67eRrKN/5evdBPRkNrmN
|
||||||
|
2if4O1WZMkOuUdP30bKCdWEM1cv7VFFnJuPADdluiotaPTES9G/iXKNJ6E0SCRTo
|
||||||
|
EoFmq+H1/WBM18g7L5qWxAkM1ZGu1ZbHZnRaT6XMW+4tE2vTxGvu3ID5McbR1zU4
|
||||||
|
wi2pLqf/iUEbkT8U0E+mIVdk0vtuiU9zyDNj+wIDAQABAoIBAB31DWG8M/i2wbQN
|
||||||
|
1QSPozhMgY1Sj26Dyoz1lw1m2QYYnaUdL2s4YBd/meAdvFcz/64c9YABgVDvUL9W
|
||||||
|
Srjo6P3EQ9GhNVaKuYFvbOs7dMI3hRzgNcGQ3ptrAwXUuTdtK5y2o6PBV2cob3Gm
|
||||||
|
WmUXevLq62Ruzdc8/9RSOudTAeZqCp1oeW7v+EzZMRARqo4DS+KJM/kVSw9n9YdV
|
||||||
|
0+yxDQURm4QYKAQ9UthcBeY64GqeqMmh5X1+RTOiHMPWRNhrkAtbxFk3MgQ5nlFJ
|
||||||
|
1kOscbdh4pGc5Nz5WEzFDB6g/SsCz/clt4f+GPeLRzrfoy2adh6Fx7p8iQe1Pc6s
|
||||||
|
kleKdwECgYEA3EgHZ9ThmW7cLqgC9mjcoWBtF6VNWgNc4qSvtJ34IQEE16b1bxYT
|
||||||
|
ntIgw2mZJmAgcmeBzv2kpv4K5XWclhzHADTied6M2wChJNfQNuEb+jKz/G8QVQKT
|
||||||
|
2AJg2azlkQm57B7XfY6rST235G2WebLQMKFCjsIM6IPoiqfxFpdrr2ECgYEAzDri
|
||||||
|
YxP/5yqqCumDqPonx/biGC1DimKK2OiQ2W6AKMNaNoSLSKJ0pB/EwfTyVrv7arzr
|
||||||
|
M34uuHxzykaeNcxRmoLtR/P6PdosJmJpis2xV94rDbbNA492zAwp2/+8f/zJ081R
|
||||||
|
NFVio6N7RTioBNSuDMP/SoLZHbZpYVyX/lJ93NsCgYEAyFbqBVDjbPwaXISJTTnJ
|
||||||
|
jyt3jE3Wr8rnK2nEM2yIQtv+X3OFPGbDqWpKSe88Tl6Wo/XnZS3iFc5ucooow42g
|
||||||
|
n1t5roTtbjCAXlW5FHBfVYnPkAIixG33sDlZhB9vGh3SbiEOsy6SMaZkHOheNoie
|
||||||
|
N9wyAEwUGVP+pjxfU8CbO4ECgYEAxN6Scp3J1kXbSs+VOiOCi5Eim9muPM0HOVbe
|
||||||
|
oqqRYjoGUX1tYqQvujJhkfKUVSW6k0bvl2CwmuhlGfz+7684jrBdGTpH5K3WV14Q
|
||||||
|
jVwA80nXyM2JTUBTbRjglREt3VaKG+DUwZT5k/K4lp6p4JY//VBGXMZLkwfPB6qh
|
||||||
|
XeiZKXcCgYAX/CVgcRJ6UZUbPc8DOgkMKIJvGogKxtR4cZFTt1G6fERdwE3pBSbq
|
||||||
|
4qvzd4n1XlqLzatJ1NzIkIQN15009/YGrv5JrDYbRCgLnMcKHe1/lvv/TaMay8QO
|
||||||
|
ulvkXaGtxlZyZSPhEe5H2EiEoveG1klDlx+uW/uGTJWtkBy/r2sTRA==
|
||||||
|
-----END RSA PRIVATE KEY-----
|
||||||
18
certs-dir/kube-scheduler.csr
Normal file
18
certs-dir/kube-scheduler.csr
Normal file
@ -0,0 +1,18 @@
|
|||||||
|
-----BEGIN CERTIFICATE REQUEST-----
|
||||||
|
MIIC1TCCAb0CAQAwgY8xCzAJBgNVBAYTAlVTMQ8wDQYDVQQIEwZPcmVnb24xETAP
|
||||||
|
BgNVBAcTCFBvcnRsYW5kMR4wHAYDVQQKExVzeXN0ZW06a3ViZS1zY2hlZHVsZXIx
|
||||||
|
HDAaBgNVBAsTE0t1YmVybmV0ZXMgLSBDZW50T1MxHjAcBgNVBAMTFXN5c3RlbTpr
|
||||||
|
dWJlLXNjaGVkdWxlcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK+8
|
||||||
|
EQVCxBOtYVAwmmgL6RWIhU/tmBW0f5rQJ6opBs3mmtl6GaxnSFCm2TjpGJX1tXBj
|
||||||
|
ErhkfLXdBnoQ6YaLi+5WvpmM2rCIwSBgYt4v2Fm9QgCsAptrhLoaLaoz2z+qRytn
|
||||||
|
2zVeBYLKtv8f5d1ld0039tHDX+u3kayjf+Xr3QT0ZDa5jdon+DtVmTJDrlHT99Gy
|
||||||
|
gnVhDNXL+1RRZybjwA3ZboqLWj0xEvRv4lyjSehNEgkU6BKBZqvh9f1gTNfIOy+a
|
||||||
|
lsQJDNWRrtWWx2Z0Wk+lzFvuLRNr08Rr7tyA+THG0dc1OMItqS6n/4lBG5E/FNBP
|
||||||
|
piFXZNL7bolPc8gzY/sCAwEAAaAAMA0GCSqGSIb3DQEBCwUAA4IBAQCZu7jNPSkf
|
||||||
|
q2TBwTZKDyUpXa09Cr39QV1SCBUh4x41byri14gZSLkvCtVW/vBrff4K4VApdX1C
|
||||||
|
RdqYZu8vmn4mDGaFCgN76+q9lRM56yK3Xx8Y/iJhPwVHFLkttDMtVyJuttf3Mzea
|
||||||
|
Iv2jN8gVaHet+XdZPRKRTLzGm9azUA4fWA3MnFAcCxuEwbAf9g9EwppFYrhKpEvc
|
||||||
|
MbsOR9zzqHc0JqS9Ss6pccW4sWR4K/m2xz8WZDvjFyyE5qDarTorbxzleJdiABbj
|
||||||
|
w6QD1JJTjhNexh3bb04zFgjWaBSzxp5y5GtF9E2Rtg36j1j7uCtO5+i2Zt6grXDK
|
||||||
|
zJS0P1DWCUmm
|
||||||
|
-----END CERTIFICATE REQUEST-----
|
||||||
19
certs-dir/kube-scheduler.kubeconfig
Normal file
19
certs-dir/kube-scheduler.kubeconfig
Normal file
@ -0,0 +1,19 @@
|
|||||||
|
apiVersion: v1
|
||||||
|
clusters:
|
||||||
|
- cluster:
|
||||||
|
certificate-authority-data: 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
|
||||||
|
server: https://127.0.0.1:6443
|
||||||
|
name: kube-cluster
|
||||||
|
contexts:
|
||||||
|
- context:
|
||||||
|
cluster: kube-cluster
|
||||||
|
user: system:kube-scheduler
|
||||||
|
name: default
|
||||||
|
current-context: default
|
||||||
|
kind: Config
|
||||||
|
preferences: {}
|
||||||
|
users:
|
||||||
|
- name: system:kube-scheduler
|
||||||
|
user:
|
||||||
|
client-certificate-data: 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
|
||||||
|
client-key-data: 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
|
||||||
24
certs-dir/kube-scheduler.pem
Normal file
24
certs-dir/kube-scheduler.pem
Normal file
@ -0,0 +1,24 @@
|
|||||||
|
-----BEGIN CERTIFICATE-----
|
||||||
|
MIIEBTCCAu2gAwIBAgIUbEdSdEPP0j0jYDoyrfWhluOl9j4wDQYJKoZIhvcNAQEL
|
||||||
|
BQAwaDELMAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8GA1UEBxMIUG9y
|
||||||
|
dGxhbmQxEzARBgNVBAoTCkt1YmVybmV0ZXMxCzAJBgNVBAsTAkNBMRMwEQYDVQQD
|
||||||
|
EwpLdWJlcm5ldGVzMB4XDTE4MDcwNDAxNTEwMFoXDTE5MDcwNDAxNTEwMFowgY8x
|
||||||
|
CzAJBgNVBAYTAlVTMQ8wDQYDVQQIEwZPcmVnb24xETAPBgNVBAcTCFBvcnRsYW5k
|
||||||
|
MR4wHAYDVQQKExVzeXN0ZW06a3ViZS1zY2hlZHVsZXIxHDAaBgNVBAsTE0t1YmVy
|
||||||
|
bmV0ZXMgLSBDZW50T1MxHjAcBgNVBAMTFXN5c3RlbTprdWJlLXNjaGVkdWxlcjCC
|
||||||
|
ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK+8EQVCxBOtYVAwmmgL6RWI
|
||||||
|
hU/tmBW0f5rQJ6opBs3mmtl6GaxnSFCm2TjpGJX1tXBjErhkfLXdBnoQ6YaLi+5W
|
||||||
|
vpmM2rCIwSBgYt4v2Fm9QgCsAptrhLoaLaoz2z+qRytn2zVeBYLKtv8f5d1ld003
|
||||||
|
9tHDX+u3kayjf+Xr3QT0ZDa5jdon+DtVmTJDrlHT99GygnVhDNXL+1RRZybjwA3Z
|
||||||
|
boqLWj0xEvRv4lyjSehNEgkU6BKBZqvh9f1gTNfIOy+alsQJDNWRrtWWx2Z0Wk+l
|
||||||
|
zFvuLRNr08Rr7tyA+THG0dc1OMItqS6n/4lBG5E/FNBPpiFXZNL7bolPc8gzY/sC
|
||||||
|
AwEAAaN/MH0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr
|
||||||
|
BgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSp3+OxsQ4zegs4FAag7LuR
|
||||||
|
eKVHPzAfBgNVHSMEGDAWgBTfqs3yL4KGoVHsruKsx0SoHa/5/DANBgkqhkiG9w0B
|
||||||
|
AQsFAAOCAQEAOUJXIdbldNep025Z3WCWMtfwa9ms+hw4xvBMd0m8/UC1YFCAjX2e
|
||||||
|
F8qwhFcwm+4S5leohUh1J3uF6/sts1dTQpYWO74JM2ywufch/ihtLyBRUL3e/oSZ
|
||||||
|
eJyxJvDvgEHXu1/XuS4oUZf2kULVpywBiLsVdwYWxZyH0rRpUwoAdl3Q4wv2lJ7f
|
||||||
|
ERu4P1rsTAkE2SDotNs4wwAkhbH5S4zyNOC+PO0hOiIHTgQOUqdeFJgkCU7HPXaL
|
||||||
|
eouOo9asrQmBY1sdIY/PRBND6YdUaDYZZuBshBYFWvief97iaPZwUdtJ/qzsRDTS
|
||||||
|
3XEeuX0rkKg7NN9Q0Z2vG1t1u1NE8Wt4bA==
|
||||||
|
-----END CERTIFICATE-----
|
||||||
16
certs-dir/kubernetes-csr.json
Normal file
16
certs-dir/kubernetes-csr.json
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
{
|
||||||
|
"CN": "kubernetes",
|
||||||
|
"key": {
|
||||||
|
"algo": "rsa",
|
||||||
|
"size": 2048
|
||||||
|
},
|
||||||
|
"names": [
|
||||||
|
{
|
||||||
|
"C": "US",
|
||||||
|
"L": "Portland",
|
||||||
|
"O": "Kubernetes",
|
||||||
|
"OU": "Kubernetes - CentOS",
|
||||||
|
"ST": "Oregon"
|
||||||
|
}
|
||||||
|
]
|
||||||
|
}
|
||||||
27
certs-dir/kubernetes-key.pem
Normal file
27
certs-dir/kubernetes-key.pem
Normal file
@ -0,0 +1,27 @@
|
|||||||
|
-----BEGIN RSA PRIVATE KEY-----
|
||||||
|
MIIEpAIBAAKCAQEAy85wXKLOv+pNzOxqX/MxI6gkedi1JXpj7c3sxHlFiaVrFLBT
|
||||||
|
+Yz1GkDMWLs0Us/4UsrDu57PnIW1SuLv2UDTNOopWm05Mm7Af70QBbqWxbzqqaF5
|
||||||
|
GE2V7aZZebXrEUr+E9/WngpWKP0E3hGqLBwyKmhyfGsKvhqkIinZqkbXhIxnbDkN
|
||||||
|
ya9zq46CwAUMjgUVP5khdq8hhvfjAPmnrLSUDY7iOiT2+S5dDuu8qs53B+2xdiMT
|
||||||
|
KQHLjb2YSrzE8BO+ZZcDfvZL3A+OiyYInh1IfdGIEnuccnyuMU40108rKd9nscLd
|
||||||
|
uSGWISMMvrNWoSJ+Mn5vDB1NcJFWj42JxspRvQIDAQABAoIBAQCLH2viQJ0DsuzT
|
||||||
|
A1uGDhuwLHph1sWpRMfsMFL8t4/5azsSj19zjX5PIoab14bbNO5djd5ZOAqe3UMp
|
||||||
|
UIrL8g17JJGAEekmfSXYzPWgA4QijVhe3UQti+DZrmGLzNwfHOMeLAF0NrgkGLv2
|
||||||
|
33Yb0E+KVWw5dFSL+uGqFIlqTBuYdYpJXtI2W4ZsqGepuT/0IBxOpOBhgbbJKAFZ
|
||||||
|
eQh1iWHKe+JnUDs28n/TJL5ceQ9Mkdu2oWcokGwN7estD5BBkdb4tv5QBbr4xMAN
|
||||||
|
5ORDNXCXeg93Cn3PuU73lk4AYusons3IcsqDuLGTSAyAvpbtWp8nMhLbSsya4JM6
|
||||||
|
zuMyOcqBAoGBAM6+vPzaICmNMm2nMZO2IYQ8/Vuk9TcLAXpbZIVnDEe6mrJZA9Fa
|
||||||
|
Cci1lPoSeCXwe+g959tMFySsm0M5/ZdarycSzDFPZeFxqqhvnpLd2SoNQ8IAVmXz
|
||||||
|
VcBnYai9JbiL+T3w37OYAaDh/Ltdlpj9m9/Nna7x5j5GVDgoQepRT3zdAoGBAPxc
|
||||||
|
eRNlNl8XA2DyHW9e5rp5wgJb/RsdBM8aOXIA+phIdgEnynqtaQl8t4Ks5SXCK1wR
|
||||||
|
r12YoPHXCMr8U0UtDSaYk4mUq/l3IL80FAitVSTcUCOIfTqapa4oMqjewMtpscdP
|
||||||
|
jCyDPpaDe3HNosJ67bE0VA+ScvA1gr3k59koEuphAoGBAMFzko0aYVvgBd66wlYP
|
||||||
|
5x7AnuWA3f6qKrDeEZoOCVyYzCWzyzG6iUsoNYUlgQ0nEBoIywnVEha79/AYtCRK
|
||||||
|
s3fhS/Wb8J3Z6TEAeKW+NnT1woAmJrHw1j1ZvvTQQBqFxythV0DKLEPpEb4UXVU8
|
||||||
|
gP0Sfch0CtgcoLOHX94sRS91AoGAeFpFp9lSJ+FazCZLoWyaDv64ZtWmDQM24uo3
|
||||||
|
0UXkPTH5jS2D5CPFfy/KePipw+spMJyCjNmYkB2kZOIXeFs29Vw4qJmNtsh4hpd4
|
||||||
|
ona/r3eehIO4bXWJZFhpaJ3rRlde4JXwXN4uwCtueOTAJY3ow+UX3eFTDXoHozaC
|
||||||
|
187DzqECgYB+Nq+Y3C7gXfpMv0JHayeV6j3rXQd4na1tFb8skCUOWqfC91raJiik
|
||||||
|
wiTH2na3hC2eFkcg+Egg9+CG0ZaPIEEXslZ4FupMA0txdZAHrV68DrZMRQGQAFc4
|
||||||
|
wBi362aVVxtZer5NYeSGl2lNPf4er2F+y6YzUkrHaSuKdcmlaijKUw==
|
||||||
|
-----END RSA PRIVATE KEY-----
|
||||||
17
certs-dir/kubernetes.csr
Normal file
17
certs-dir/kubernetes.csr
Normal file
@ -0,0 +1,17 @@
|
|||||||
|
-----BEGIN CERTIFICATE REQUEST-----
|
||||||
|
MIICvjCCAaYCAQAweTELMAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8G
|
||||||
|
A1UEBxMIUG9ydGxhbmQxEzARBgNVBAoTCkt1YmVybmV0ZXMxHDAaBgNVBAsTE0t1
|
||||||
|
YmVybmV0ZXMgLSBDZW50T1MxEzARBgNVBAMTCmt1YmVybmV0ZXMwggEiMA0GCSqG
|
||||||
|
SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLznBcos6/6k3M7Gpf8zEjqCR52LUlemPt
|
||||||
|
zezEeUWJpWsUsFP5jPUaQMxYuzRSz/hSysO7ns+chbVK4u/ZQNM06ilabTkybsB/
|
||||||
|
vRAFupbFvOqpoXkYTZXtpll5tesRSv4T39aeClYo/QTeEaosHDIqaHJ8awq+GqQi
|
||||||
|
KdmqRteEjGdsOQ3Jr3OrjoLABQyOBRU/mSF2ryGG9+MA+aestJQNjuI6JPb5Ll0O
|
||||||
|
67yqzncH7bF2IxMpAcuNvZhKvMTwE75llwN+9kvcD46LJgieHUh90YgSe5xyfK4x
|
||||||
|
TjTXTysp32exwt25IZYhIwy+s1ahIn4yfm8MHU1wkVaPjYnGylG9AgMBAAGgADAN
|
||||||
|
BgkqhkiG9w0BAQsFAAOCAQEAR7n+yC+uXE49FZ/+NdwGpXWJVh5Bc2CYJ5sbwe3a
|
||||||
|
YtQu/4X5XQLKCGzWuBW+Q7taw800jrc8D2zNC4VtlLIoKH6D5phiO2pwq/4g8cl4
|
||||||
|
ax4LRXoOrbcDdR6+WMCtPHmod7EKoSIKrzYSiL3Axcil06e3SOSi82cqa2q05akE
|
||||||
|
FwR5VXAgIr7RvVNeADn7t130x6HHap3AcGlqRrK4UuNDWizOsblsri/sx0F05a5C
|
||||||
|
qDmcSnoLttF3pIasJm13XJzcJ/b7jDFDJcJDntbMb0mTS7NTEWxHqEsZ/VfU+Jmh
|
||||||
|
2Ml5S0HuaC1Z4Ws+qMY4AhWbZBzxzVDy1zqGflUdR/SI4A==
|
||||||
|
-----END CERTIFICATE REQUEST-----
|
||||||
25
certs-dir/kubernetes.pem
Normal file
25
certs-dir/kubernetes.pem
Normal file
@ -0,0 +1,25 @@
|
|||||||
|
-----BEGIN CERTIFICATE-----
|
||||||
|
MIIEKTCCAxGgAwIBAgIUfS7PAfCmBij80ccLBuoOXpzKHbgwDQYJKoZIhvcNAQEL
|
||||||
|
BQAwaDELMAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8GA1UEBxMIUG9y
|
||||||
|
dGxhbmQxEzARBgNVBAoTCkt1YmVybmV0ZXMxCzAJBgNVBAsTAkNBMRMwEQYDVQQD
|
||||||
|
EwpLdWJlcm5ldGVzMB4XDTE4MDcwNDAxNTEwMFoXDTE5MDcwNDAxNTEwMFoweTEL
|
||||||
|
MAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8GA1UEBxMIUG9ydGxhbmQx
|
||||||
|
EzARBgNVBAoTCkt1YmVybmV0ZXMxHDAaBgNVBAsTE0t1YmVybmV0ZXMgLSBDZW50
|
||||||
|
T1MxEzARBgNVBAMTCmt1YmVybmV0ZXMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw
|
||||||
|
ggEKAoIBAQDLznBcos6/6k3M7Gpf8zEjqCR52LUlemPtzezEeUWJpWsUsFP5jPUa
|
||||||
|
QMxYuzRSz/hSysO7ns+chbVK4u/ZQNM06ilabTkybsB/vRAFupbFvOqpoXkYTZXt
|
||||||
|
pll5tesRSv4T39aeClYo/QTeEaosHDIqaHJ8awq+GqQiKdmqRteEjGdsOQ3Jr3Or
|
||||||
|
joLABQyOBRU/mSF2ryGG9+MA+aestJQNjuI6JPb5Ll0O67yqzncH7bF2IxMpAcuN
|
||||||
|
vZhKvMTwE75llwN+9kvcD46LJgieHUh90YgSe5xyfK4xTjTXTysp32exwt25IZYh
|
||||||
|
Iwy+s1ahIn4yfm8MHU1wkVaPjYnGylG9AgMBAAGjgbkwgbYwDgYDVR0PAQH/BAQD
|
||||||
|
AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA
|
||||||
|
MB0GA1UdDgQWBBSjYtUJ8CtwIZgMJwPsivXwjfkuMTAfBgNVHSMEGDAWgBTfqs3y
|
||||||
|
L4KGoVHsruKsx0SoHa/5/DA3BgNVHREEMDAuggCCEmt1YmVybmV0ZXMuZGVmYXVs
|
||||||
|
dIcECiAAAYcECvAACocECvAAC4cEfwAAATANBgkqhkiG9w0BAQsFAAOCAQEAcNh4
|
||||||
|
lI4xCNpKjorfL4yl9ATQuwF70LlUftubB/n4jQudonD+dGV5N5RtihJp6NPJ0b00
|
||||||
|
+EaPEF5W9W01zrecAB+WnN+ihQ6//AEXfxuakP6KgTMQTKqZ6XgbGqe6/08stW/j
|
||||||
|
Lhl4LJPhNotBQ9QXgFrHgTX4TvAV1/Y8luwIIwjCLSMb4Mu6SJ3Lsf1NZ9aUfKT6
|
||||||
|
ZqE/SjK5E25MwjqBr4gmMoqzRGQv4cKng/XzXyHhWKwEDXZ5el1/4dALnWSkImIq
|
||||||
|
btOEjBLQq4MXPvVbowHtNpPOJTlTvzpT+jNzCCGQcLLIAsAYeYTPKHWHGNtwpoqP
|
||||||
|
eZ31Scj6x5ckP0QOrw==
|
||||||
|
-----END CERTIFICATE-----
|
||||||
16
certs-dir/service-account-csr.json
Normal file
16
certs-dir/service-account-csr.json
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
{
|
||||||
|
"CN": "service-accounts",
|
||||||
|
"key": {
|
||||||
|
"algo": "rsa",
|
||||||
|
"size": 2048
|
||||||
|
},
|
||||||
|
"names": [
|
||||||
|
{
|
||||||
|
"C": "US",
|
||||||
|
"L": "Portland",
|
||||||
|
"O": "Kubernetes",
|
||||||
|
"OU": "Kubernetes - CentOS",
|
||||||
|
"ST": "Oregon"
|
||||||
|
}
|
||||||
|
]
|
||||||
|
}
|
||||||
27
certs-dir/service-account-key.pem
Normal file
27
certs-dir/service-account-key.pem
Normal file
@ -0,0 +1,27 @@
|
|||||||
|
-----BEGIN RSA PRIVATE KEY-----
|
||||||
|
MIIEpAIBAAKCAQEAtx0Z2dZbcff823ZRbT4tu3zpYIUeaE81MikMdt/Jh2Y9XhRQ
|
||||||
|
P2Jsof9uRJ1zqEIZPM3Tn9/SAWh+Jolmsg4Py4eizyGKxAFhMqcWKa+lTwZH09Ln
|
||||||
|
Cy6e9Ee96wK9kslTjCfziMhXdL6nBAWhtgOLSUkSTgLkL2gl/HHBxW66bKlIn+EY
|
||||||
|
8GHamTS9yPqCvurMgVoJaBLltbdvSWyjkzIgaslbCtoJ7myXlpMQgjPWW90iIUlv
|
||||||
|
bld1+nx7eaoJghj2Weqv1hGHc0z/qiDgMVoFFQ7BtE0pu7ctMQ/fIjh9bkKVo7Xo
|
||||||
|
5swZOJl0wd9Ey20CZPNCKXZSeG4J+gwgqllJiwIDAQABAoIBAGUUkl2Wn5oVC6bV
|
||||||
|
9HL6XOJfPLDEKxnnh3TuBexk8mlkvcF+MyIaId93EhacV+jsu+O9tvFM6y9N0D1T
|
||||||
|
obXuXze54ty2JlS2ckI0y94tEHLEA8hhZprcnHA6XhMpyx4JNq5qq1u5Q9W1HJry
|
||||||
|
xOalpDDLPmiD3hRxSG7HGPD0g8JQ7TXdhnp6qguvQJj1U45LT8nWSmfmBmV9QYaq
|
||||||
|
1zjkssuYgBARl3Dg7BoGcqGpuktVnPAe2y8dhvLfG1gQiZpn5XGq8efkJ0ZjeML+
|
||||||
|
BzEho/jBTUhBzpec4yB0xM75o0Jj1IWd0cjPLhNXFN1jkFYOKdogrOiVLeAaZMPV
|
||||||
|
MNhsj6ECgYEA2CwHzDkC1PYvzrbE5yq2Lh/Zv1W3Vp4b17jUpBm8b1ISRqyXcHRF
|
||||||
|
43LhQX74luPUDUFaAun9xR+N7aMRiSFkVKQfPGv/JKd/ac1dasOaI19r/cKut/P0
|
||||||
|
qFAye/vjAHrzvwBtjEDnXNVEJKkv1jlA00a6d7t5IrIkLLmQhJNJ2BECgYEA2NnX
|
||||||
|
eLeBLspKbawMk1oTE4rclYShTRLXPszNtT7pLCUC/yncyfX0talFNfcXz12K2ivm
|
||||||
|
p3hSmZQP5zmhL7yGPYp046VbV3LtIWzhnd5mDdzqHZxpjp7Tt2L/wU8eYhTZXXWz
|
||||||
|
oQWkt51qIUTjVOL7CigIcCB9EQ3kU7x11KWRQ9sCgYEArhH+kXfTDPPVGWrZcaBW
|
||||||
|
JRwmtkjqokgc+X/vUtkagLWg2+I87CPk5ztpodkBileZOLdIKRKM87/uBM6L31XR
|
||||||
|
OcsTEA+S28w48FSbhc5Of29mQWgUUzKR7zrs/COf7pITVtmcXRUieQGOpsrKJ4Hg
|
||||||
|
7oCExMdkywiR0qX2dps4GlECgYBSoM8lxGaI+bPajlBMZWoXbDYZEuyTfbZey5Mm
|
||||||
|
mM4ocAHwUHc8zWdtQQ6KPZjo/u/Fqiy9a2+t7WkR5jexBNjx4iwgAgYIEFajAeYG
|
||||||
|
TZP9fEwI9GyUV5i8rBBgDFG7dc5Nemfz1z6oaGbkPmeRFNwrRo3Qi9CcCvsRnSIY
|
||||||
|
4O21OQKBgQCpzzWS4J46jPjaay8O4lvfVbn5u8PoobcTHQlwra/BHvctD3CSDERA
|
||||||
|
iu5do7YnHqhLgQmYYnjWePJrrOKifVKx3LIBbYSXAbBot3v5Qw5rdIfv5VKCbmq8
|
||||||
|
uPOn3BiuuZQw9e30ZMxXUj3hNyWLqN6fcBodIqcq6R54E2tSgP2gHg==
|
||||||
|
-----END RSA PRIVATE KEY-----
|
||||||
17
certs-dir/service-account.csr
Normal file
17
certs-dir/service-account.csr
Normal file
@ -0,0 +1,17 @@
|
|||||||
|
-----BEGIN CERTIFICATE REQUEST-----
|
||||||
|
MIICxDCCAawCAQAwfzELMAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8G
|
||||||
|
A1UEBxMIUG9ydGxhbmQxEzARBgNVBAoTCkt1YmVybmV0ZXMxHDAaBgNVBAsTE0t1
|
||||||
|
YmVybmV0ZXMgLSBDZW50T1MxGTAXBgNVBAMTEHNlcnZpY2UtYWNjb3VudHMwggEi
|
||||||
|
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3HRnZ1ltx9/zbdlFtPi27fOlg
|
||||||
|
hR5oTzUyKQx238mHZj1eFFA/Ymyh/25EnXOoQhk8zdOf39IBaH4miWayDg/Lh6LP
|
||||||
|
IYrEAWEypxYpr6VPBkfT0ucLLp70R73rAr2SyVOMJ/OIyFd0vqcEBaG2A4tJSRJO
|
||||||
|
AuQvaCX8ccHFbrpsqUif4RjwYdqZNL3I+oK+6syBWgloEuW1t29JbKOTMiBqyVsK
|
||||||
|
2gnubJeWkxCCM9Zb3SIhSW9uV3X6fHt5qgmCGPZZ6q/WEYdzTP+qIOAxWgUVDsG0
|
||||||
|
TSm7ty0xD98iOH1uQpWjtejmzBk4mXTB30TLbQJk80IpdlJ4bgn6DCCqWUmLAgMB
|
||||||
|
AAGgADANBgkqhkiG9w0BAQsFAAOCAQEAVCq69W5ik/fQN8v9p+3BeW8YXDqu3fLB
|
||||||
|
JQmcs+vkisbimseYiGqIMki4rt4PzdgTyh+CeYnlgB7V7BPd4Iwwn0hIZpQHgs++
|
||||||
|
gk0Dw1b8sApraNBv7innGV0K7qeKNiWGk1hDPfGlteUaMQzI+AUBoYt8u4GDLulY
|
||||||
|
XqnR90g0wrHYbu+iqOZgdP/HrTBpMKskkB62sekgixRGMsrIuyRm3jTepJqf+lly
|
||||||
|
IyiD9k9E1BVSPT7SZUrbBbSuhkaE1gIEuZdsCYVgYpP7pKXaBvxprqF/SIhl2H/5
|
||||||
|
I8dotCPcnBydkcr+HUkddP3E5W8khowt1pypL6P4/5+JxRz13oyz/A==
|
||||||
|
-----END CERTIFICATE REQUEST-----
|
||||||
24
certs-dir/service-account.pem
Normal file
24
certs-dir/service-account.pem
Normal file
@ -0,0 +1,24 @@
|
|||||||
|
-----BEGIN CERTIFICATE-----
|
||||||
|
MIID9DCCAtygAwIBAgIUZ2y4xZXmHejF4V/wupN82PtnOpkwDQYJKoZIhvcNAQEL
|
||||||
|
BQAwaDELMAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8GA1UEBxMIUG9y
|
||||||
|
dGxhbmQxEzARBgNVBAoTCkt1YmVybmV0ZXMxCzAJBgNVBAsTAkNBMRMwEQYDVQQD
|
||||||
|
EwpLdWJlcm5ldGVzMB4XDTE4MDcwNDAxNTEwMFoXDTE5MDcwNDAxNTEwMFowfzEL
|
||||||
|
MAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8GA1UEBxMIUG9ydGxhbmQx
|
||||||
|
EzARBgNVBAoTCkt1YmVybmV0ZXMxHDAaBgNVBAsTE0t1YmVybmV0ZXMgLSBDZW50
|
||||||
|
T1MxGTAXBgNVBAMTEHNlcnZpY2UtYWNjb3VudHMwggEiMA0GCSqGSIb3DQEBAQUA
|
||||||
|
A4IBDwAwggEKAoIBAQC3HRnZ1ltx9/zbdlFtPi27fOlghR5oTzUyKQx238mHZj1e
|
||||||
|
FFA/Ymyh/25EnXOoQhk8zdOf39IBaH4miWayDg/Lh6LPIYrEAWEypxYpr6VPBkfT
|
||||||
|
0ucLLp70R73rAr2SyVOMJ/OIyFd0vqcEBaG2A4tJSRJOAuQvaCX8ccHFbrpsqUif
|
||||||
|
4RjwYdqZNL3I+oK+6syBWgloEuW1t29JbKOTMiBqyVsK2gnubJeWkxCCM9Zb3SIh
|
||||||
|
SW9uV3X6fHt5qgmCGPZZ6q/WEYdzTP+qIOAxWgUVDsG0TSm7ty0xD98iOH1uQpWj
|
||||||
|
tejmzBk4mXTB30TLbQJk80IpdlJ4bgn6DCCqWUmLAgMBAAGjfzB9MA4GA1UdDwEB
|
||||||
|
/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/
|
||||||
|
BAIwADAdBgNVHQ4EFgQULvG/qjHA5aCxOiwZ9OnXLeW68OQwHwYDVR0jBBgwFoAU
|
||||||
|
36rN8i+ChqFR7K7irMdEqB2v+fwwDQYJKoZIhvcNAQELBQADggEBACxsoOIYYfyC
|
||||||
|
MPgDK7CrSIpaa3+dtbXrNOmSfuZIt+/SyARRK8c3H/TBPtlUJvYBDRwh2Dy85/+/
|
||||||
|
InLfPR0dAKBY6EGNJ6mH+Yc4FJUXk6/kqbPc1zWg1oonCO9H1px1E1IZe0TAF6gK
|
||||||
|
0cGNtzR6JtxlSWqOemwFRDCKLvjdGrB5JC/OarJuYfu2tWUmwNk7Mtxr/PKGe9yv
|
||||||
|
TCpUh+pGJmHLnKE4B+ncG0IPI4sBAMc1MlfFLEX59Sbn9+ofem/3ue2UFt7DMD0V
|
||||||
|
n0ZgeHbNMrBfLOiBFjQPNh4QuXb2s0qsVXe8RpOc85qoIgrc30tSNKV0rqyQ3LV2
|
||||||
|
Au20tqMPajc=
|
||||||
|
-----END CERTIFICATE-----
|
||||||
16
certs-dir/worker-0-csr.json
Normal file
16
certs-dir/worker-0-csr.json
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
{
|
||||||
|
"CN": "system:node:worker-0",
|
||||||
|
"key": {
|
||||||
|
"algo": "rsa",
|
||||||
|
"size": 2048
|
||||||
|
},
|
||||||
|
"names": [
|
||||||
|
{
|
||||||
|
"C": "US",
|
||||||
|
"L": "Portland",
|
||||||
|
"O": "system:nodes",
|
||||||
|
"OU": "Kubernetes - CentOS",
|
||||||
|
"ST": "Oregon"
|
||||||
|
}
|
||||||
|
]
|
||||||
|
}
|
||||||
27
certs-dir/worker-0-key.pem
Normal file
27
certs-dir/worker-0-key.pem
Normal file
@ -0,0 +1,27 @@
|
|||||||
|
-----BEGIN RSA PRIVATE KEY-----
|
||||||
|
MIIEpAIBAAKCAQEArmaKsGNE1WRu4XUdLBU3FogoiBD9DwQI/HKSluyIUdo94YiD
|
||||||
|
+/ehP6CmjlloQen3+MIp15ZicVrniAv5zmcMcv5iPRnV9sF8XBSS6jJS3aqh2n6F
|
||||||
|
n0BanGpSwrJJd/WcOEnnqVtryQGKHL2jPUC95xehPbhOsY1fpk124oJKoiLlEomI
|
||||||
|
R0RPaGOf24zRgpU7aueC5u5lG+147C2IMtpPxfWcGUYHmIdaU9qvcQz5/YlGSBBe
|
||||||
|
YaaiRSTb6m2Y9IXR2d6h95JnatbWcuO8U9Mhmq1uhhm+ukA2u4Jrd7NMLwEC/TG+
|
||||||
|
hCzK3Avi2WFp5fqkXRaeJQAUFoS588XZTHVCBQIDAQABAoIBAF0zz8qUQqUIF3nF
|
||||||
|
7OEyNU6FVaPh8Ful/Gdtk4m0vuV/jLKLEn4FyNcIM/q/LUiMkUkP+uyMIfASdMnw
|
||||||
|
HICB8dVCvZ2JwR8uKBfNpvYiDscH+ZebJi4FZmdRKwmB3mGNkP9D/9oyUVgKypSx
|
||||||
|
hBuoDdUCe9lQNj4NH6DwpShIGTqsKMxnLpRgz1Ura3M275xZGR3xqQI5/t9+V2m3
|
||||||
|
Rcpgr9GN9lvlGah7V38KLckOctkY4knNrv4TL+CQWfqVTxzwzJuxijoQJMnfZcSQ
|
||||||
|
EAth1vCULjjzW0BuGJou4ko+i+wayJZik0JV4fCpgNEg3owWYj3LhL3QEPrFoVhP
|
||||||
|
+3xQf8ECgYEAwvb4+KMZvqOeYQygh96zDVICGfzcgKgHsTLMfZl7dQx0u5QcEjHi
|
||||||
|
u6+DuwnZrXJRgXgMHWq8QDiIVxcyPOEmjc4Oa9bHY1v51BXIO78MMoi7//PFWRbv
|
||||||
|
BuocK+XtyImIAFqy++hds6KpRQWwjF0WRruXPAhOMG/ItHbP9TSLLWcCgYEA5P9/
|
||||||
|
Shblp+F2ERdp3pvAG69UdcAQP0CT3abLO/BzIP6E6ZHxyGS8PlFLSHciBURg2fXo
|
||||||
|
eQOHsYv3bXjz80YC7Ho547YtYLmTzVttcwxmyQtQDUqg963GL6P3/eUIXReup8Hf
|
||||||
|
Z/AP2U+FksGNMs/165Nc+1z7OYd1/2v+SJRChbMCgYEAmFf30AFSep7LgTYmskSY
|
||||||
|
UM5GChyGCJpD+HijRXmK+LlU9cYT8Tu92b6aBqr5xwhPHAW8IbhnhR8nmjXr8ZpV
|
||||||
|
T/U1W5qmjsMuAkVLAzSTyWEC1kubZ7P97r88aCjwlwSwmuZEeYbmwRlXfzGk9OlA
|
||||||
|
IOEwmZ47yqlugWVdtlLqdf0CgYAQ/8pyNIrt0HXURPmt9b/oDjbl2tEZ8PBJFvWl
|
||||||
|
SG8zdtFlCVl6d8fllGFTSsyyuWW7KF8OhK2RB4Phk4YAfCUBav1bIw3xTTVknDHe
|
||||||
|
xX/n0rgplG2olTTOGozxQwxA5N4pQ+IStCZpClcvEsEpkXh++VyAqGFZ3u1qfZjN
|
||||||
|
yHu7swKBgQCngawlrXp+OZye7PIsvVmg1bE81Gsc9FCEZHIsEGUwBp868rfl+0ay
|
||||||
|
RJbEvYYkabkKuIJP6zoaHfozLqpB+dQX4xdpv8A7B3vyRbOHWlNLwdMdf/Is1W1f
|
||||||
|
fQXkX9DzPfMIUkcozmQjZyRCHVEanlqwhmstLl8/0LpMKmJu7xuA5A==
|
||||||
|
-----END RSA PRIVATE KEY-----
|
||||||
17
certs-dir/worker-0.csr
Normal file
17
certs-dir/worker-0.csr
Normal file
@ -0,0 +1,17 @@
|
|||||||
|
-----BEGIN CERTIFICATE REQUEST-----
|
||||||
|
MIICyzCCAbMCAQAwgYUxCzAJBgNVBAYTAlVTMQ8wDQYDVQQIEwZPcmVnb24xETAP
|
||||||
|
BgNVBAcTCFBvcnRsYW5kMRUwEwYDVQQKEwxzeXN0ZW06bm9kZXMxHDAaBgNVBAsT
|
||||||
|
E0t1YmVybmV0ZXMgLSBDZW50T1MxHTAbBgNVBAMTFHN5c3RlbTpub2RlOndvcmtl
|
||||||
|
ci0wMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmaKsGNE1WRu4XUd
|
||||||
|
LBU3FogoiBD9DwQI/HKSluyIUdo94YiD+/ehP6CmjlloQen3+MIp15ZicVrniAv5
|
||||||
|
zmcMcv5iPRnV9sF8XBSS6jJS3aqh2n6Fn0BanGpSwrJJd/WcOEnnqVtryQGKHL2j
|
||||||
|
PUC95xehPbhOsY1fpk124oJKoiLlEomIR0RPaGOf24zRgpU7aueC5u5lG+147C2I
|
||||||
|
MtpPxfWcGUYHmIdaU9qvcQz5/YlGSBBeYaaiRSTb6m2Y9IXR2d6h95JnatbWcuO8
|
||||||
|
U9Mhmq1uhhm+ukA2u4Jrd7NMLwEC/TG+hCzK3Avi2WFp5fqkXRaeJQAUFoS588XZ
|
||||||
|
THVCBQIDAQABoAAwDQYJKoZIhvcNAQELBQADggEBADa7iOhoCYIiTbXM/6Ob188m
|
||||||
|
6GTfi7NI12wt407jx/tRr/rIorOwH1BhkUmL79sPRA5tlrEnvBjzCU4epbjH4cjX
|
||||||
|
2NzSnFkHOV9Sf7VaBMoTrHfsA/wg7TWrXJV+UoY2Y5+2nyB4KXKaENnSIaBzZ8pD
|
||||||
|
RAFENV5/6n0o2Kk38qRa2pNz6lUdjW4xQ8w4Fs7ERvQCW1Vm005/pcCM0RsB4jgD
|
||||||
|
4VsG2K3v07njEHoqXqyU/bMFiFJnzjsuIfiM5De4tX80DJgCrm9ItY8Yea4qwPbu
|
||||||
|
lYmcvVb2nQXghAny69eFKGmTpn5bwCyFLBIZ1c7or3SdqxL2TYEu7IqkwvyKcvU=
|
||||||
|
-----END CERTIFICATE REQUEST-----
|
||||||
19
certs-dir/worker-0.kubeconfig
Normal file
19
certs-dir/worker-0.kubeconfig
Normal file
@ -0,0 +1,19 @@
|
|||||||
|
apiVersion: v1
|
||||||
|
clusters:
|
||||||
|
- cluster:
|
||||||
|
certificate-authority-data: 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
|
||||||
|
server: https://:6443
|
||||||
|
name: kube-cluster
|
||||||
|
contexts:
|
||||||
|
- context:
|
||||||
|
cluster: kube-cluster
|
||||||
|
user: system:node:worker-0
|
||||||
|
name: default
|
||||||
|
current-context: default
|
||||||
|
kind: Config
|
||||||
|
preferences: {}
|
||||||
|
users:
|
||||||
|
- name: system:node:worker-0
|
||||||
|
user:
|
||||||
|
client-certificate-data: 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
|
||||||
|
client-key-data: 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
|
||||||
24
certs-dir/worker-0.pem
Normal file
24
certs-dir/worker-0.pem
Normal file
@ -0,0 +1,24 @@
|
|||||||
|
-----BEGIN CERTIFICATE-----
|
||||||
|
MIIEFjCCAv6gAwIBAgIUVJUQAhRIZaDSOO+Rq0zcjUSFGvUwDQYJKoZIhvcNAQEL
|
||||||
|
BQAwaDELMAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8GA1UEBxMIUG9y
|
||||||
|
dGxhbmQxEzARBgNVBAoTCkt1YmVybmV0ZXMxCzAJBgNVBAsTAkNBMRMwEQYDVQQD
|
||||||
|
EwpLdWJlcm5ldGVzMB4XDTE4MDcwNDAxNTEwMFoXDTE5MDcwNDAxNTEwMFowgYUx
|
||||||
|
CzAJBgNVBAYTAlVTMQ8wDQYDVQQIEwZPcmVnb24xETAPBgNVBAcTCFBvcnRsYW5k
|
||||||
|
MRUwEwYDVQQKEwxzeXN0ZW06bm9kZXMxHDAaBgNVBAsTE0t1YmVybmV0ZXMgLSBD
|
||||||
|
ZW50T1MxHTAbBgNVBAMTFHN5c3RlbTpub2RlOndvcmtlci0wMIIBIjANBgkqhkiG
|
||||||
|
9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmaKsGNE1WRu4XUdLBU3FogoiBD9DwQI/HKS
|
||||||
|
luyIUdo94YiD+/ehP6CmjlloQen3+MIp15ZicVrniAv5zmcMcv5iPRnV9sF8XBSS
|
||||||
|
6jJS3aqh2n6Fn0BanGpSwrJJd/WcOEnnqVtryQGKHL2jPUC95xehPbhOsY1fpk12
|
||||||
|
4oJKoiLlEomIR0RPaGOf24zRgpU7aueC5u5lG+147C2IMtpPxfWcGUYHmIdaU9qv
|
||||||
|
cQz5/YlGSBBeYaaiRSTb6m2Y9IXR2d6h95JnatbWcuO8U9Mhmq1uhhm+ukA2u4Jr
|
||||||
|
d7NMLwEC/TG+hCzK3Avi2WFp5fqkXRaeJQAUFoS588XZTHVCBQIDAQABo4GZMIGW
|
||||||
|
MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw
|
||||||
|
DAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUeA8pHxA8XdRiueAx8DnVGOxgVNEwHwYD
|
||||||
|
VR0jBBgwFoAU36rN8i+ChqFR7K7irMdEqB2v+fwwFwYDVR0RBBAwDoIId29ya2Vy
|
||||||
|
LTCCAIIAMA0GCSqGSIb3DQEBCwUAA4IBAQB1mGPv2HLY9mfcwijhxStqfpPBUSqs
|
||||||
|
3KcI8FfhJLi5sYZPK2lKIS5ZDh3TRl+IMDNHM4Kvzw3jC6p9fPxyhegltCocMbAA
|
||||||
|
XdYPI6KZ6P+08BnWxyr0bpe834AcqNhnbHim0WtwQolORe106nZzVi/EDSNUWbnQ
|
||||||
|
0b3gOnUsg+4EFHoGk2VwH2w9UxUxOFDVVzZ5UBzdasH2hsK+W1UdvFAyWw5vKu91
|
||||||
|
MEOQN51Mx4cCnQRVnF8EpAsKtueDqqsqnTZIsGdygQNhGDYcmIk/4ljE039SX7d7
|
||||||
|
9naSLKiMByo7M3qiSzvC4+UhoKeIgDYcRnH7MM17TX06j6/NFvbFplrx
|
||||||
|
-----END CERTIFICATE-----
|
||||||
16
certs-dir/worker-1-csr.json
Normal file
16
certs-dir/worker-1-csr.json
Normal file
@ -0,0 +1,16 @@
|
|||||||
|
{
|
||||||
|
"CN": "system:node:worker-1",
|
||||||
|
"key": {
|
||||||
|
"algo": "rsa",
|
||||||
|
"size": 2048
|
||||||
|
},
|
||||||
|
"names": [
|
||||||
|
{
|
||||||
|
"C": "US",
|
||||||
|
"L": "Portland",
|
||||||
|
"O": "system:nodes",
|
||||||
|
"OU": "Kubernetes - CentOS",
|
||||||
|
"ST": "Oregon"
|
||||||
|
}
|
||||||
|
]
|
||||||
|
}
|
||||||
27
certs-dir/worker-1-key.pem
Normal file
27
certs-dir/worker-1-key.pem
Normal file
@ -0,0 +1,27 @@
|
|||||||
|
-----BEGIN RSA PRIVATE KEY-----
|
||||||
|
MIIEowIBAAKCAQEAvnKFvCMAOAKxMgHwHUrW4us7CIbUgCD0ghyo/cGTs80nXylw
|
||||||
|
geG1WhkVT+G0l1hy60fMIYH9W08otMy6S43LAXkADI76ndcsFSGqxcvCCTP5AMZo
|
||||||
|
RUv3OdAkEwkaOM+m2zNIsjThQFlYKIAGBMByPEQxuMimXyZ11/YNOVf1ATudybUd
|
||||||
|
wKAQw5hreHbo8CW7pPbONDbZrI7px0RWIHmVp7VnD6liGg4zJcgMvK/jQ+6noWDK
|
||||||
|
XSsKs/HT3h7pt2UIIyyTd6d8Em/NTQaAVsAjiwVX+mviZa75qmgHT8HNZF0A9EoS
|
||||||
|
bB2UvU+MrcpwGLj3pA6sXfWzLPLXl3I0+9pHZQIDAQABAoIBAHswaQFBQqr4UtYe
|
||||||
|
GstX1ZgCwLTLQjl/F6nyD/3UcU4krgsIKxZYgY4+G2MIhGBBflRipNAn3VJq6dHJ
|
||||||
|
e9fTaDUTp8x3z/S5cnJYzLYVDvYVAERYEqqAcPKciDkn8iY9a5jum19qhSmyoSvR
|
||||||
|
ZBM+yKXjFqaIY9W4cxG2vucQ1hJs9YlizXZV9bFsndCjRlkYGq7CFjT86bahrIXG
|
||||||
|
5pRZ1xFcBJ+r7S+N4I0dxYqaQT5/prWS/tVzDAuIWEBm0PheG3L0mn1IK/re9BQc
|
||||||
|
pF7bgjwKA10LKykwx+deMopuUi6lMY1H3UqtlM3djyp2JGBBp3vGD5euR+o67JDm
|
||||||
|
CFuXmiECgYEA++BOt7xgF3yhFjdSj5mM5uDwT5f9Nr77KTgCqO/cDQop48J6/Rvf
|
||||||
|
0gosy8wr083dX8haV6B2D/pYuhmJWOcTzoAzMFcx3J7NC2VYFpt4YBD69BXpZsM2
|
||||||
|
q0Ndo8+zZwaQXxxRVPES4K3W2muaidM7Rx4/KSfsHMROB2r0K2ClHKcCgYEAwZC/
|
||||||
|
TDYuzIuBaRQcC60VQeg61W5DNblIwSSEUcQO2cIxw2NN6YmKN8iqphm588ZCI9MS
|
||||||
|
mI/c7G76tt7rW5R3LK7PX0Aiqk2lRqUnF0q3Z1mx41e9hIu9bsUdEtEqS7eQoPWH
|
||||||
|
iC2hVxbZSbaiBGD96JQ428deqmgMA0OFX4qvgRMCgYEAo/gaRrJzO9b+ZyAMtz8W
|
||||||
|
4xZ8WtRvGzyo9ORpluDPOA3txz/MIQoMYwgMsX9w6KmT+87KQVFMiopHSJ9nMmD8
|
||||||
|
G+qJaGbbJuyaP1jyR4Vej+t983hwQV3EMSnhw8pq2B8FzWT57Xoi9/EzdW2nZSIF
|
||||||
|
7P5bz8cVhoSk519RJQv9cPECgYAUuNJB7msEKssn3KdD+LuV2q6xuqQnVDadtrMT
|
||||||
|
rdGJLmj1aeQlZDwPzMO4FHj7x/W8sBQFkSEtjpP4j9TScQpxFiXNJKiRYs6WyYdt
|
||||||
|
zunjfo60r+fyEKOvABsksI++m2A4WxCvW3MyR5frdEnT/i4wf+22WZmg1JK0pr3Y
|
||||||
|
hJhVUQKBgFmf/hVk79gQ+p5azLqjZeK2Mj6ExE1kj6j6y6SJtwHj/DiiReLvEnqF
|
||||||
|
FvOsVjdS/dTGYLEfP2cD/RwedSsCbRW3VNHkXAzp69lACln+XtnDmB2sSRsfvC9O
|
||||||
|
qVfYEgXtEgAWJMIEJIWIIdOr5ZpcUP/1Hh3Phl1URzGvaCAsmI9n
|
||||||
|
-----END RSA PRIVATE KEY-----
|
||||||
17
certs-dir/worker-1.csr
Normal file
17
certs-dir/worker-1.csr
Normal file
@ -0,0 +1,17 @@
|
|||||||
|
-----BEGIN CERTIFICATE REQUEST-----
|
||||||
|
MIICyzCCAbMCAQAwgYUxCzAJBgNVBAYTAlVTMQ8wDQYDVQQIEwZPcmVnb24xETAP
|
||||||
|
BgNVBAcTCFBvcnRsYW5kMRUwEwYDVQQKEwxzeXN0ZW06bm9kZXMxHDAaBgNVBAsT
|
||||||
|
E0t1YmVybmV0ZXMgLSBDZW50T1MxHTAbBgNVBAMTFHN5c3RlbTpub2RlOndvcmtl
|
||||||
|
ci0xMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnKFvCMAOAKxMgHw
|
||||||
|
HUrW4us7CIbUgCD0ghyo/cGTs80nXylwgeG1WhkVT+G0l1hy60fMIYH9W08otMy6
|
||||||
|
S43LAXkADI76ndcsFSGqxcvCCTP5AMZoRUv3OdAkEwkaOM+m2zNIsjThQFlYKIAG
|
||||||
|
BMByPEQxuMimXyZ11/YNOVf1ATudybUdwKAQw5hreHbo8CW7pPbONDbZrI7px0RW
|
||||||
|
IHmVp7VnD6liGg4zJcgMvK/jQ+6noWDKXSsKs/HT3h7pt2UIIyyTd6d8Em/NTQaA
|
||||||
|
VsAjiwVX+mviZa75qmgHT8HNZF0A9EoSbB2UvU+MrcpwGLj3pA6sXfWzLPLXl3I0
|
||||||
|
+9pHZQIDAQABoAAwDQYJKoZIhvcNAQELBQADggEBADku4LtyAocUg9SvpZS1Vpmb
|
||||||
|
85ZPJmALX4lgP/IxPq4eryMKfPnwNrRE3cxc43SEukMfskAd0I8XCQJYqbEIb0hp
|
||||||
|
sDc7QTHtUZyihjyFCGhqUg157aYZSjSPsm7Hhdy+kIWU2BPgO/fFrpqUjh+ndJPA
|
||||||
|
HCG23Vn9ueTMh/wDzDCfBQlkMHGkNPKad/3JZQt1nulFM9ym5DwCbhlT8gi6LPZ+
|
||||||
|
ikeW2k6zEEBsXVkFnMmIm2gXS7HQrDZo+igMu0L/YX75E+MCNcVZ+qlCx22B8796
|
||||||
|
lcL/1PBmR2FDgtvNYNWWsm0bIGPmutz2Uc53c0pZiAPPtpgohNSTflqbMtfgmK8=
|
||||||
|
-----END CERTIFICATE REQUEST-----
|
||||||
19
certs-dir/worker-1.kubeconfig
Normal file
19
certs-dir/worker-1.kubeconfig
Normal file
@ -0,0 +1,19 @@
|
|||||||
|
apiVersion: v1
|
||||||
|
clusters:
|
||||||
|
- cluster:
|
||||||
|
certificate-authority-data: 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
|
||||||
|
server: https://:6443
|
||||||
|
name: kube-cluster
|
||||||
|
contexts:
|
||||||
|
- context:
|
||||||
|
cluster: kube-cluster
|
||||||
|
user: system:node:worker-1
|
||||||
|
name: default
|
||||||
|
current-context: default
|
||||||
|
kind: Config
|
||||||
|
preferences: {}
|
||||||
|
users:
|
||||||
|
- name: system:node:worker-1
|
||||||
|
user:
|
||||||
|
client-certificate-data: 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
|
||||||
|
client-key-data: LS0tLS1CRUdJTiBSU0EgUFJJVkFURSBLRVktLS0tLQpNSUlFb3dJQkFBS0NBUUVBdm5LRnZDTUFPQUt4TWdId0hVclc0dXM3Q0liVWdDRDBnaHlvL2NHVHM4MG5YeWx3CmdlRzFXaGtWVCtHMGwxaHk2MGZNSVlIOVcwOG90TXk2UzQzTEFYa0FESTc2bmRjc0ZTR3F4Y3ZDQ1RQNUFNWm8KUlV2M09kQWtFd2thT00rbTJ6TklzalRoUUZsWUtJQUdCTUJ5UEVReHVNaW1YeVoxMS9ZTk9WZjFBVHVkeWJVZAp3S0FRdzVocmVIYm84Q1c3cFBiT05EYlpySTdweDBSV0lIbVZwN1ZuRDZsaUdnNHpKY2dNdksvalErNm5vV0RLClhTc0tzL0hUM2g3cHQyVUlJeXlUZDZkOEVtL05UUWFBVnNBaml3VlgrbXZpWmE3NXFtZ0hUOEhOWkYwQTlFb1MKYkIyVXZVK01yY3B3R0xqM3BBNnNYZld6TFBMWGwzSTArOXBIWlFJREFRQUJBb0lCQUhzd2FRRkJRcXI0VXRZZQpHc3RYMVpnQ3dMVExRamwvRjZueUQvM1VjVTRrcmdzSUt4WllnWTQrRzJNSWhHQkJmbFJpcE5BbjNWSnE2ZEhKCmU5ZlRhRFVUcDh4M3ovUzVjbkpZekxZVkR2WVZBRVJZRXFxQWNQS2NpRGtuOGlZOWE1anVtMTlxaFNteW9TdlIKWkJNK3lLWGpGcWFJWTlXNGN4RzJ2dWNRMWhKczlZbGl6WFpWOWJGc25kQ2pSbGtZR3E3Q0ZqVDg2YmFocklYRwo1cFJaMXhGY0JKK3I3UytONEkwZHhZcWFRVDUvcHJXUy90VnpEQXVJV0VCbTBQaGVHM0wwbW4xSUsvcmU5QlFjCnBGN2JnandLQTEwTEt5a3d4K2RlTW9wdVVpNmxNWTFIM1VxdGxNM2RqeXAySkdCQnAzdkdENWV1UitvNjdKRG0KQ0Z1WG1pRUNnWUVBKytCT3Q3eGdGM3loRmpkU2o1bU01dUR3VDVmOU5yNzdLVGdDcU8vY0RRb3A0OEo2L1J2ZgowZ29zeTh3cjA4M2RYOGhhVjZCMkQvcFl1aG1KV09jVHpvQXpNRmN4M0o3TkMyVllGcHQ0WUJENjlCWHBac00yCnEwTmRvOCt6WndhUVh4eFJWUEVTNEszVzJtdWFpZE03Ung0L0tTZnNITVJPQjJyMEsyQ2xIS2NDZ1lFQXdaQy8KVERZdXpJdUJhUlFjQzYwVlFlZzYxVzVETmJsSXdTU0VVY1FPMmNJeHcyTk42WW1LTjhpcXBobTU4OFpDSTlNUwptSS9jN0c3NnR0N3JXNVIzTEs3UFgwQWlxazJsUnFVbkYwcTNaMW14NDFlOWhJdTlic1VkRXRFcVM3ZVFvUFdICmlDMmhWeGJaU2JhaUJHRDk2SlE0MjhkZXFtZ01BME9GWDRxdmdSTUNnWUVBby9nYVJySnpPOWIrWnlBTXR6OFcKNHhaOFd0UnZHenlvOU9ScGx1RFBPQTN0eHovTUlRb01Zd2dNc1g5dzZLbVQrODdLUVZGTWlvcEhTSjluTW1EOApHK3FKYUdiYkp1eWFQMWp5UjRWZWordDk4M2h3UVYzRU1Tbmh3OHBxMkI4RnpXVDU3WG9pOS9FemRXMm5aU0lGCjdQNWJ6OGNWaG9TazUxOVJKUXY5Y1BFQ2dZQVV1TkpCN21zRUtzc24zS2REK0x1VjJxNnh1cVFuVkRhZHRyTVQKcmRHSkxtajFhZVFsWkR3UHpNTzRGSGo3eC9XOHNCUUZrU0V0anBQNGo5VFNjUXB4RmlYTkpLaVJZczZXeVlkdAp6dW5qZm82MHIrZnlFS092QUJza3NJKyttMkE0V3hDdlczTXlSNWZyZEVuVC9pNHdmKzIyV1ptZzFKSzBwcjNZCmhKaFZVUUtCZ0ZtZi9oVms3OWdRK3A1YXpMcWpaZUsyTWo2RXhFMWtqNmo2eTZTSnR3SGovRGlpUmVMdkVucUYKRnZPc1ZqZFMvZFRHWUxFZlAyY0QvUndlZFNzQ2JSVzNWTkhrWEF6cDY5bEFDbG4rWHRuRG1CMnNTUnNmdkM5TwpxVmZZRWdYdEVnQVdKTUlFSklXSUlkT3I1WnBjVVAvMUhoM1BobDFVUnpHdmFDQXNtSTluCi0tLS0tRU5EIFJTQSBQUklWQVRFIEtFWS0tLS0tCg==
|
||||||
24
certs-dir/worker-1.pem
Normal file
24
certs-dir/worker-1.pem
Normal file
@ -0,0 +1,24 @@
|
|||||||
|
-----BEGIN CERTIFICATE-----
|
||||||
|
MIIEFjCCAv6gAwIBAgIUTPldrmLA/QjLFx+xHbOOmyrRapUwDQYJKoZIhvcNAQEL
|
||||||
|
BQAwaDELMAkGA1UEBhMCVVMxDzANBgNVBAgTBk9yZWdvbjERMA8GA1UEBxMIUG9y
|
||||||
|
dGxhbmQxEzARBgNVBAoTCkt1YmVybmV0ZXMxCzAJBgNVBAsTAkNBMRMwEQYDVQQD
|
||||||
|
EwpLdWJlcm5ldGVzMB4XDTE4MDcwNDAxNTEwMFoXDTE5MDcwNDAxNTEwMFowgYUx
|
||||||
|
CzAJBgNVBAYTAlVTMQ8wDQYDVQQIEwZPcmVnb24xETAPBgNVBAcTCFBvcnRsYW5k
|
||||||
|
MRUwEwYDVQQKEwxzeXN0ZW06bm9kZXMxHDAaBgNVBAsTE0t1YmVybmV0ZXMgLSBD
|
||||||
|
ZW50T1MxHTAbBgNVBAMTFHN5c3RlbTpub2RlOndvcmtlci0xMIIBIjANBgkqhkiG
|
||||||
|
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnKFvCMAOAKxMgHwHUrW4us7CIbUgCD0ghyo
|
||||||
|
/cGTs80nXylwgeG1WhkVT+G0l1hy60fMIYH9W08otMy6S43LAXkADI76ndcsFSGq
|
||||||
|
xcvCCTP5AMZoRUv3OdAkEwkaOM+m2zNIsjThQFlYKIAGBMByPEQxuMimXyZ11/YN
|
||||||
|
OVf1ATudybUdwKAQw5hreHbo8CW7pPbONDbZrI7px0RWIHmVp7VnD6liGg4zJcgM
|
||||||
|
vK/jQ+6noWDKXSsKs/HT3h7pt2UIIyyTd6d8Em/NTQaAVsAjiwVX+mviZa75qmgH
|
||||||
|
T8HNZF0A9EoSbB2UvU+MrcpwGLj3pA6sXfWzLPLXl3I0+9pHZQIDAQABo4GZMIGW
|
||||||
|
MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw
|
||||||
|
DAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUGDd4yLfDVUe9/C6gkWBmSbMiarIwHwYD
|
||||||
|
VR0jBBgwFoAU36rN8i+ChqFR7K7irMdEqB2v+fwwFwYDVR0RBBAwDoIId29ya2Vy
|
||||||
|
LTGCAIIAMA0GCSqGSIb3DQEBCwUAA4IBAQBRPjyCGNO2Hk4qjxNGzh/WMNjyzIkH
|
||||||
|
7OfgWjND9m7xZcEHUfQ9Uw/B8NS+dr1ZImV56HHYo28DK4WWcWAlM7rtQi4zi/3W
|
||||||
|
GyeSiYrGHhFvoQqaVwyzxuLfZ3zX3xpAiLpVa8HfdGHIJcHSzSkoKpSAFW+trb1O
|
||||||
|
0VArdOWRMymWP4foier8BZYFErgwjEmXrluT47khYCv/ZlCxgWABEZ6XQz05SiKD
|
||||||
|
E66Q41gyk1RMPY63/xYnmv/XImJlEjkIMyw9ABiHgr3MZuxUO2GDCRZ0EtCMaPbD
|
||||||
|
QyO20NRHFon+Oob4SezCBOQCt1YBjX2OEJonB8Gya7sOuTVg9586MNLD
|
||||||
|
-----END CERTIFICATE-----
|
||||||
BIN
cni/bridge
Executable file
BIN
cni/bridge
Executable file
Binary file not shown.
BIN
cni/cni-plugins-amd64-v0.6.0.tgz
Normal file
BIN
cni/cni-plugins-amd64-v0.6.0.tgz
Normal file
Binary file not shown.
BIN
cni/flannel
Executable file
BIN
cni/flannel
Executable file
Binary file not shown.
BIN
cni/host-local
Executable file
BIN
cni/host-local
Executable file
Binary file not shown.
BIN
cni/ipvlan
Executable file
BIN
cni/ipvlan
Executable file
Binary file not shown.
BIN
cni/loopback
Executable file
BIN
cni/loopback
Executable file
Binary file not shown.
BIN
cni/macvlan
Executable file
BIN
cni/macvlan
Executable file
Binary file not shown.
BIN
cni/portmap
Executable file
BIN
cni/portmap
Executable file
Binary file not shown.
BIN
cni/sample
Executable file
BIN
cni/sample
Executable file
Binary file not shown.
BIN
cni/tuning
Executable file
BIN
cni/tuning
Executable file
Binary file not shown.
26
controller-0/apiserver
Normal file
26
controller-0/apiserver
Normal file
@ -0,0 +1,26 @@
|
|||||||
|
###
|
||||||
|
# kubernetes system config
|
||||||
|
#
|
||||||
|
# The following values are used to configure the kube-apiserver
|
||||||
|
#
|
||||||
|
|
||||||
|
# The address on the local server to listen to.
|
||||||
|
#KUBE_API_ADDRESS="--insecure-bind-address=127.0.0.1"
|
||||||
|
|
||||||
|
# The port on the local server to listen on.
|
||||||
|
#KUBE_API_PORT="--port=6443"
|
||||||
|
|
||||||
|
# Port minions listen on
|
||||||
|
KUBELET_PORT="--kubelet-port=10250"
|
||||||
|
|
||||||
|
# Comma separated list of nodes in the etcd cluster
|
||||||
|
KUBE_ETCD_SERVERS="--etcd-servers=https://10.240.0.10:2379,https://10.240.0.11:2379"
|
||||||
|
|
||||||
|
# Address range to use for services
|
||||||
|
KUBE_SERVICE_ADDRESSES="--service-cluster-ip-range=10.32.0.0/16"
|
||||||
|
|
||||||
|
# default admission control policies
|
||||||
|
KUBE_ADMISSION_CONTROL="--enable-admission-plugins=Initializers,NamespaceLifecycle,NodeRestriction,LimitRanger,ServiceAccount,DefaultStorageClass,ResourceQuota"
|
||||||
|
|
||||||
|
# Add your own!
|
||||||
|
KUBE_API_ARGS="--advertise-address=10.240.0.10 --allow-privileged=true --apiserver-count=2 --audit-log-maxage=30 --audit-log-maxbackup=3 audit-log-maxsize=100 audit-log-path=/var/log/audit/audit.log --authorization-mode=Node,RBAC --bind-address=0.0.0.0 --client-ca-file=/var/lib/kubernetes/ca.pem --enable-swagger-ui=true --etcd-cafile=/var/lib/kubernetes/ca.pem --etcd-certfile=/var/lib/kubernetes/kubernetes.pem --etcd-keyfile=/var/lib/kubernetes/kubernetes-key.pem --event-ttl=1h --experimental-encryption-provider-config=/var/lib/kubernetes/encryption-config.yaml --kubelet-certificate-authority=/var/lib/kubernetes/ca.pem --kubelet-client-certificate=/var/lib/kubernetes/kubernetes.pem --kubelet-client-key=/var/lib/kubernetes/kubernetes-key.pem --kubelet-https=true --runtime-config=api/all --service-account-key-file=/var/lib/kubernetes/service-account.pem --service-node-port-range=30000-32767 --tls-cert-file=/var/lib/kubernetes/kubernetes.pem --tls-private-key-file=/var/lib/kubernetes/kubernetes-key.pem --v=2"
|
||||||
13
controller-0/config
Normal file
13
controller-0/config
Normal file
@ -0,0 +1,13 @@
|
|||||||
|
|
||||||
|
# This file controls the state of SELinux on the system.
|
||||||
|
# SELINUX= can take one of these three values:
|
||||||
|
# enforcing - SELinux security policy is enforced.
|
||||||
|
# permissive - SELinux prints warnings instead of enforcing.
|
||||||
|
# disabled - No SELinux policy is loaded.
|
||||||
|
#SELINUX=enforcing
|
||||||
|
SELINUX=permissive
|
||||||
|
# SELINUXTYPE= can take one of three two values:
|
||||||
|
# targeted - Targeted processes are protected,
|
||||||
|
# minimum - Modification of targeted policy. Only selected processes are protected.
|
||||||
|
# mls - Multi Level Security protection.
|
||||||
|
SELINUXTYPE=targeted
|
||||||
7
controller-0/controller-manager
Normal file
7
controller-0/controller-manager
Normal file
@ -0,0 +1,7 @@
|
|||||||
|
###
|
||||||
|
# The following values are used to configure the kubernetes controller-manager
|
||||||
|
|
||||||
|
# defaults from config and apiserver should be adequate
|
||||||
|
|
||||||
|
# Add your own!
|
||||||
|
KUBE_CONTROLLER_MANAGER_ARGS="--address=0.0.0.0 --cluster-cidr=10.200.0.0/16 --cluster-name=kubernetes --cluster-signing-cert-file=/var/lib/kubernetes/ca.pem --cluster-signing-key-file=/var/lib/kubernetes/ca-key.pem --kubeconfig=/var/lib/kubernetes/kube-controller-manager.kubeconfig --leader-elect=true --root-ca-file=/var/lib/kubernetes/ca.pem --service-account-private-key-file=/var/lib/kubernetes/service-account-key.pem --service-cluster-ip-range=10.32.0.0/24 --use-service-account-credentials=true --v=2"
|
||||||
69
controller-0/etcd.conf
Normal file
69
controller-0/etcd.conf
Normal file
@ -0,0 +1,69 @@
|
|||||||
|
#[Member]
|
||||||
|
#ETCD_CORS=""
|
||||||
|
ETCD_DATA_DIR="/var/lib/etcd/default.etcd"
|
||||||
|
#ETCD_WAL_DIR=""
|
||||||
|
ETCD_LISTEN_PEER_URLS="https://10.240.0.10:2380"
|
||||||
|
ETCD_LISTEN_CLIENT_URLS="https://10.240.0.10:2379,https://127.0.0.1:2379"
|
||||||
|
#ETCD_MAX_SNAPSHOTS="5"
|
||||||
|
#ETCD_MAX_WALS="5"
|
||||||
|
ETCD_NAME="controller-0"
|
||||||
|
#ETCD_SNAPSHOT_COUNT="100000"
|
||||||
|
#ETCD_HEARTBEAT_INTERVAL="100"
|
||||||
|
#ETCD_ELECTION_TIMEOUT="1000"
|
||||||
|
#ETCD_QUOTA_BACKEND_BYTES="0"
|
||||||
|
#ETCD_MAX_REQUEST_BYTES="1572864"
|
||||||
|
#ETCD_GRPC_KEEPALIVE_MIN_TIME="5s"
|
||||||
|
#ETCD_GRPC_KEEPALIVE_INTERVAL="2h0m0s"
|
||||||
|
#ETCD_GRPC_KEEPALIVE_TIMEOUT="20s"
|
||||||
|
#
|
||||||
|
#[Clustering]
|
||||||
|
ETCD_INITIAL_ADVERTISE_PEER_URLS="https://10.240.0.10:2380"
|
||||||
|
ETCD_ADVERTISE_CLIENT_URLS="https://10.240.0.10:2379"
|
||||||
|
#ETCD_DISCOVERY=""
|
||||||
|
#ETCD_DISCOVERY_FALLBACK="proxy"
|
||||||
|
#ETCD_DISCOVERY_PROXY=""
|
||||||
|
#ETCD_DISCOVERY_SRV=""
|
||||||
|
ETCD_INITIAL_CLUSTER="controller-0=https://10.240.0.10:2380,controller-1=https://10.240.0.11:2380"
|
||||||
|
ETCD_INITIAL_CLUSTER_TOKEN="etcd-cluster"
|
||||||
|
ETCD_INITIAL_CLUSTER_STATE="new"
|
||||||
|
#ETCD_STRICT_RECONFIG_CHECK="true"
|
||||||
|
#ETCD_ENABLE_V2="true"
|
||||||
|
#
|
||||||
|
#[Proxy]
|
||||||
|
#ETCD_PROXY="off"
|
||||||
|
#ETCD_PROXY_FAILURE_WAIT="5000"
|
||||||
|
#ETCD_PROXY_REFRESH_INTERVAL="30000"
|
||||||
|
#ETCD_PROXY_DIAL_TIMEOUT="1000"
|
||||||
|
#ETCD_PROXY_WRITE_TIMEOUT="5000"
|
||||||
|
#ETCD_PROXY_READ_TIMEOUT="0"
|
||||||
|
#
|
||||||
|
#[Security]
|
||||||
|
ETCD_CERT_FILE="/etc/etcd/kubernetes.pem"
|
||||||
|
ETCD_KEY_FILE="/etc/etcd/kubernetes-key.pem"
|
||||||
|
ETCD_CLIENT_CERT_AUTH="true"
|
||||||
|
ETCD_TRUSTED_CA_FILE="/etc/etcd/ca.pem"
|
||||||
|
#ETCD_AUTO_TLS="false"
|
||||||
|
ETCD_PEER_CERT_FILE="/etc/etcd/kubernetes.pem"
|
||||||
|
ETCD_PEER_KEY_FILE="/etc/etcd/kubernetes-key.pem"
|
||||||
|
ETCD_PEER_CLIENT_CERT_AUTH="true"
|
||||||
|
ETCD_PEER_TRUSTED_CA_FILE="/etc/etcd/ca.pem"
|
||||||
|
#ETCD_PEER_AUTO_TLS="false"
|
||||||
|
#
|
||||||
|
#[Logging]
|
||||||
|
#ETCD_DEBUG="false"
|
||||||
|
#ETCD_LOG_PACKAGE_LEVELS=""
|
||||||
|
#ETCD_LOG_OUTPUT="default"
|
||||||
|
#
|
||||||
|
#[Unsafe]
|
||||||
|
#ETCD_FORCE_NEW_CLUSTER="false"
|
||||||
|
#
|
||||||
|
#[Version]
|
||||||
|
#ETCD_VERSION="false"
|
||||||
|
#ETCD_AUTO_COMPACTION_RETENTION="0"
|
||||||
|
#
|
||||||
|
#[Profiling]
|
||||||
|
#ETCD_ENABLE_PPROF="false"
|
||||||
|
#ETCD_METRICS="basic"
|
||||||
|
#
|
||||||
|
#[Auth]
|
||||||
|
#ETCD_AUTH_TOKEN="simple"
|
||||||
18
controller-0/etcd.service
Normal file
18
controller-0/etcd.service
Normal file
@ -0,0 +1,18 @@
|
|||||||
|
[Unit]
|
||||||
|
Description=Etcd Server
|
||||||
|
After=network.target
|
||||||
|
After=network-online.target
|
||||||
|
Wants=network-online.target
|
||||||
|
|
||||||
|
[Service]
|
||||||
|
Type=notify
|
||||||
|
WorkingDirectory=/var/lib/etcd/
|
||||||
|
EnvironmentFile=-/etc/etcd/etcd.conf
|
||||||
|
User=etcd
|
||||||
|
# set GOMAXPROCS to number of processors
|
||||||
|
ExecStart=/bin/bash -c "GOMAXPROCS=$(nproc) /usr/bin/etcd --name=${ETCD_NAME} --data-dir=${ETCD_DATA_DIR} --listen-client-urls=${ETCD_LISTEN_CLIENT_URLS} --listen-peer-urls=${ETCD_LISTEN_PEER_URLS} --initial-advertise-peer-urls=${ETCD_INITIAL_ADVERTISE_PEER_URLS} --advertise-client-urls=${ETCD_ADVERTISE_CLIENT_URLS} --initial-cluster=${ETCD_INITIAL_CLUSTER} --initial-cluster-token=${ETCD_INITIAL_CLUSTER_TOKEN} --initial-cluster-state=${ETCD_INITIAL_CLUSTER_STATE} --cert-file=${ETCD_CERT_FILE} --key-file=${ETCD_KEY_FILE} --client-cert-auth=${ETCD_CLIENT_CERT_AUTH} --trusted-ca-file=${ETCD_TRUSTED_CA_FILE} --peer-cert-file=${ETCD_PEER_CERT_FILE} --peer-key-file=${ETCD_PEER_KEY_FILE} --peer-client-cert-auth=${ETCD_PEER_CLIENT_CERT_AUTH} --peer-trusted-ca-file=${ETCD_PEER_TRUSTED_CA_FILE}"
|
||||||
|
Restart=on-failure
|
||||||
|
LimitNOFILE=65536
|
||||||
|
|
||||||
|
[Install]
|
||||||
|
WantedBy=multi-user.target
|
||||||
27
controller-0/kube-apiserver.service
Normal file
27
controller-0/kube-apiserver.service
Normal file
@ -0,0 +1,27 @@
|
|||||||
|
[Unit]
|
||||||
|
Description=Kubernetes API Server
|
||||||
|
Documentation=https://github.com/GoogleCloudPlatform/kubernetes
|
||||||
|
After=network.target
|
||||||
|
After=etcd.service
|
||||||
|
|
||||||
|
[Service]
|
||||||
|
EnvironmentFile=-/etc/kubernetes/config
|
||||||
|
EnvironmentFile=-/etc/kubernetes/apiserver
|
||||||
|
#User=kube
|
||||||
|
ExecStart=/usr/local/bin/kube-apiserver \
|
||||||
|
$KUBE_LOGTOSTDERR \
|
||||||
|
$KUBE_LOG_LEVEL \
|
||||||
|
$KUBE_ETCD_SERVERS \
|
||||||
|
$KUBE_API_ADDRESS \
|
||||||
|
$KUBE_API_PORT \
|
||||||
|
$KUBELET_PORT \
|
||||||
|
$KUBE_ALLOW_PRIV \
|
||||||
|
$KUBE_SERVICE_ADDRESSES \
|
||||||
|
$KUBE_ADMISSION_CONTROL \
|
||||||
|
$KUBE_API_ARGS
|
||||||
|
Restart=on-failure
|
||||||
|
Type=notify
|
||||||
|
LimitNOFILE=65536
|
||||||
|
|
||||||
|
[Install]
|
||||||
|
WantedBy=multi-user.target
|
||||||
13
controller-0/kube-apiserver_rbac.yaml
Normal file
13
controller-0/kube-apiserver_rbac.yaml
Normal file
@ -0,0 +1,13 @@
|
|||||||
|
apiVersion: rbac.authorization.k8s.io/v1beta1
|
||||||
|
kind: ClusterRoleBinding
|
||||||
|
metadata:
|
||||||
|
name: system:kube-apiserver
|
||||||
|
namespace: ""
|
||||||
|
roleRef:
|
||||||
|
apiGroup: rbac.authorization.k8s.io
|
||||||
|
kind: ClusterRole
|
||||||
|
name: system:kube-apiserver-to-kubelet
|
||||||
|
subjects:
|
||||||
|
- apiGroup: rbac.authorization.k8s.io
|
||||||
|
kind: User
|
||||||
|
name: kubernetes
|
||||||
18
controller-0/kube-controller-manager.service
Normal file
18
controller-0/kube-controller-manager.service
Normal file
@ -0,0 +1,18 @@
|
|||||||
|
[Unit]
|
||||||
|
Description=Kubernetes Controller Manager
|
||||||
|
Documentation=https://github.com/GoogleCloudPlatform/kubernetes
|
||||||
|
|
||||||
|
[Service]
|
||||||
|
EnvironmentFile=-/etc/kubernetes/config
|
||||||
|
EnvironmentFile=-/etc/kubernetes/controller-manager
|
||||||
|
#User=kube
|
||||||
|
ExecStart=/usr/local/bin/kube-controller-manager \
|
||||||
|
$KUBE_LOGTOSTDERR \
|
||||||
|
$KUBE_LOG_LEVEL \
|
||||||
|
$KUBE_MASTER \
|
||||||
|
$KUBE_CONTROLLER_MANAGER_ARGS
|
||||||
|
Restart=on-failure
|
||||||
|
LimitNOFILE=65536
|
||||||
|
|
||||||
|
[Install]
|
||||||
|
WantedBy=multi-user.target
|
||||||
13
controller-0/kube-scheduler.service
Normal file
13
controller-0/kube-scheduler.service
Normal file
@ -0,0 +1,13 @@
|
|||||||
|
[Unit]
|
||||||
|
Description=Kubernetes Scheduler
|
||||||
|
Documentation=https://github.com/kubernetes/kubernetes
|
||||||
|
|
||||||
|
[Service]
|
||||||
|
ExecStart=/usr/local/bin/kube-scheduler \
|
||||||
|
--config=/etc/kubernetes/kube-scheduler.yaml \
|
||||||
|
--v=2
|
||||||
|
Restart=on-failure
|
||||||
|
RestartSec=5
|
||||||
|
|
||||||
|
[Install]
|
||||||
|
WantedBy=multi-user.target
|
||||||
6
controller-0/kube-scheduler.yaml
Normal file
6
controller-0/kube-scheduler.yaml
Normal file
@ -0,0 +1,6 @@
|
|||||||
|
apiVersion: componentconfig/v1alpha1
|
||||||
|
kind: KubeSchedulerConfiguration
|
||||||
|
clientConnection:
|
||||||
|
kubeconfig: "/var/lib/kubernetes/kube-scheduler.kubeconfig"
|
||||||
|
leaderElection:
|
||||||
|
leaderElect: true
|
||||||
9
controller-0/kubernetes.default.svc.cluster.local.conf
Normal file
9
controller-0/kubernetes.default.svc.cluster.local.conf
Normal file
@ -0,0 +1,9 @@
|
|||||||
|
server {
|
||||||
|
listen 80;
|
||||||
|
server_name kubernetes.default.svc.cluster.local;
|
||||||
|
|
||||||
|
location /healthz {
|
||||||
|
proxy_pass https://127.0.0.1:6443/healthz;
|
||||||
|
proxy_ssl_trusted_certificate /var/lib/kubernetes/ca.pem;
|
||||||
|
}
|
||||||
|
}
|
||||||
8
controller-0/kubernetes.repo
Normal file
8
controller-0/kubernetes.repo
Normal file
@ -0,0 +1,8 @@
|
|||||||
|
[kubernetes]
|
||||||
|
name=Kubernetes
|
||||||
|
baseurl=https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64
|
||||||
|
enabled=1
|
||||||
|
gpgcheck=1
|
||||||
|
repo_gpgcheck=1
|
||||||
|
gpgkey=https://packages.cloud.google.com/yum/doc/yum-key.gpg
|
||||||
|
https://packages.cloud.google.com/yum/doc/rpm-package-key.gpg
|
||||||
19
controller-0/rbac_authorizations.yaml
Normal file
19
controller-0/rbac_authorizations.yaml
Normal file
@ -0,0 +1,19 @@
|
|||||||
|
apiVersion: rbac.authorization.k8s.io/v1beta1
|
||||||
|
kind: ClusterRole
|
||||||
|
metadata:
|
||||||
|
annotations:
|
||||||
|
rbac.authorization.kubernetes.io/autoupdate: "true"
|
||||||
|
labels:
|
||||||
|
kubernetes.io/bootstrapping: rbac-defaults
|
||||||
|
name: system:kube-apiserver-to-kubelet
|
||||||
|
rules:
|
||||||
|
- apiGroups:
|
||||||
|
- ""
|
||||||
|
resources:
|
||||||
|
- nodes/proxy
|
||||||
|
- nodes/stats
|
||||||
|
- nodes/log
|
||||||
|
- nodes/spec
|
||||||
|
- nodes/metrics
|
||||||
|
verbs:
|
||||||
|
- "*"
|
||||||
7
controller-0/scheduler
Normal file
7
controller-0/scheduler
Normal file
@ -0,0 +1,7 @@
|
|||||||
|
###
|
||||||
|
# kubernetes scheduler config
|
||||||
|
|
||||||
|
# default config should be adequate
|
||||||
|
|
||||||
|
# Add your own!
|
||||||
|
KUBE_SCHEDULER_ARGS="--config=/etc/kubernetes/kube-scheduler.yaml --v=2"
|
||||||
26
controller-1/apiserver
Normal file
26
controller-1/apiserver
Normal file
@ -0,0 +1,26 @@
|
|||||||
|
###
|
||||||
|
# kubernetes system config
|
||||||
|
#
|
||||||
|
# The following values are used to configure the kube-apiserver
|
||||||
|
#
|
||||||
|
|
||||||
|
# The address on the local server to listen to.
|
||||||
|
#KUBE_API_ADDRESS="--insecure-bind-address=127.0.0.1"
|
||||||
|
|
||||||
|
# The port on the local server to listen on.
|
||||||
|
#KUBE_API_PORT="--port=6443"
|
||||||
|
|
||||||
|
# Port minions listen on
|
||||||
|
KUBELET_PORT="--kubelet-port=10250"
|
||||||
|
|
||||||
|
# Comma separated list of nodes in the etcd cluster
|
||||||
|
KUBE_ETCD_SERVERS="--etcd-servers=https://10.240.0.10:2379,https://10.240.0.11:2379"
|
||||||
|
|
||||||
|
# Address range to use for services
|
||||||
|
KUBE_SERVICE_ADDRESSES="--service-cluster-ip-range=10.32.0.0/16"
|
||||||
|
|
||||||
|
# default admission control policies
|
||||||
|
KUBE_ADMISSION_CONTROL="--enable-admission-plugins=Initializers,NamespaceLifecycle,NodeRestriction,LimitRanger,ServiceAccount,DefaultStorageClass,ResourceQuota"
|
||||||
|
|
||||||
|
# Add your own!
|
||||||
|
KUBE_API_ARGS="--advertise-address=10.240.0.11 --allow-privileged=true --apiserver-count=2 --audit-log-maxage=30 --audit-log-maxbackup=3 audit-log-maxsize=100 audit-log-path=/var/log/audit/audit.log --authorization-mode=Node,RBAC --bind-address=0.0.0.0 --client-ca-file=/var/lib/kubernetes/ca.pem --enable-swagger-ui=true --etcd-cafile=/var/lib/kubernetes/ca.pem --etcd-certfile=/var/lib/kubernetes/kubernetes.pem --etcd-keyfile=/var/lib/kubernetes/kubernetes-key.pem --event-ttl=1h --experimental-encryption-provider-config=/var/lib/kubernetes/encryption-config.yaml --kubelet-certificate-authority=/var/lib/kubernetes/ca.pem --kubelet-client-certificate=/var/lib/kubernetes/kubernetes.pem --kubelet-client-key=/var/lib/kubernetes/kubernetes-key.pem --kubelet-https=true --runtime-config=api/all --service-account-key-file=/var/lib/kubernetes/service-account.pem --service-node-port-range=30000-32767 --tls-cert-file=/var/lib/kubernetes/kubernetes.pem --tls-private-key-file=/var/lib/kubernetes/kubernetes-key.pem --v=2"
|
||||||
13
controller-1/config
Normal file
13
controller-1/config
Normal file
@ -0,0 +1,13 @@
|
|||||||
|
|
||||||
|
# This file controls the state of SELinux on the system.
|
||||||
|
# SELINUX= can take one of these three values:
|
||||||
|
# enforcing - SELinux security policy is enforced.
|
||||||
|
# permissive - SELinux prints warnings instead of enforcing.
|
||||||
|
# disabled - No SELinux policy is loaded.
|
||||||
|
#SELINUX=enforcing
|
||||||
|
SELINUX=permissive
|
||||||
|
# SELINUXTYPE= can take one of three two values:
|
||||||
|
# targeted - Targeted processes are protected,
|
||||||
|
# minimum - Modification of targeted policy. Only selected processes are protected.
|
||||||
|
# mls - Multi Level Security protection.
|
||||||
|
SELINUXTYPE=targeted
|
||||||
7
controller-1/controller-manager
Normal file
7
controller-1/controller-manager
Normal file
@ -0,0 +1,7 @@
|
|||||||
|
###
|
||||||
|
# The following values are used to configure the kubernetes controller-manager
|
||||||
|
|
||||||
|
# defaults from config and apiserver should be adequate
|
||||||
|
|
||||||
|
# Add your own!
|
||||||
|
KUBE_CONTROLLER_MANAGER_ARGS="--address=0.0.0.0 --cluster-cidr=10.200.0.0/16 --cluster-name=kubernetes --cluster-signing-cert-file=/var/lib/kubernetes/ca.pem --cluster-signing-key-file=/var/lib/kubernetes/ca-key.pem --kubeconfig=/var/lib/kubernetes/kube-controller-manager.kubeconfig --leader-elect=true --root-ca-file=/var/lib/kubernetes/ca.pem --service-account-private-key-file=/var/lib/kubernetes/service-account-key.pem --service-cluster-ip-range=10.32.0.0/24 --use-service-account-credentials=true --v=2"
|
||||||
69
controller-1/etcd.conf
Normal file
69
controller-1/etcd.conf
Normal file
@ -0,0 +1,69 @@
|
|||||||
|
#[Member]
|
||||||
|
#ETCD_CORS=""
|
||||||
|
ETCD_DATA_DIR="/var/lib/etcd/default.etcd"
|
||||||
|
#ETCD_WAL_DIR=""
|
||||||
|
ETCD_LISTEN_PEER_URLS="https://10.240.0.11:2380"
|
||||||
|
ETCD_LISTEN_CLIENT_URLS="https://10.240.0.11:2379,https://127.0.0.1:2379"
|
||||||
|
#ETCD_MAX_SNAPSHOTS="5"
|
||||||
|
#ETCD_MAX_WALS="5"
|
||||||
|
ETCD_NAME="controller-1"
|
||||||
|
#ETCD_SNAPSHOT_COUNT="100000"
|
||||||
|
#ETCD_HEARTBEAT_INTERVAL="100"
|
||||||
|
#ETCD_ELECTION_TIMEOUT="1000"
|
||||||
|
#ETCD_QUOTA_BACKEND_BYTES="0"
|
||||||
|
#ETCD_MAX_REQUEST_BYTES="1572864"
|
||||||
|
#ETCD_GRPC_KEEPALIVE_MIN_TIME="5s"
|
||||||
|
#ETCD_GRPC_KEEPALIVE_INTERVAL="2h0m0s"
|
||||||
|
#ETCD_GRPC_KEEPALIVE_TIMEOUT="20s"
|
||||||
|
#
|
||||||
|
#[Clustering]
|
||||||
|
ETCD_INITIAL_ADVERTISE_PEER_URLS="https://10.240.0.11:2380"
|
||||||
|
ETCD_ADVERTISE_CLIENT_URLS="https://10.240.0.11:2379"
|
||||||
|
#ETCD_DISCOVERY=""
|
||||||
|
#ETCD_DISCOVERY_FALLBACK="proxy"
|
||||||
|
#ETCD_DISCOVERY_PROXY=""
|
||||||
|
#ETCD_DISCOVERY_SRV=""
|
||||||
|
ETCD_INITIAL_CLUSTER="controller-0=https://10.240.0.10:2380,controller-1=https://10.240.0.11:2380"
|
||||||
|
ETCD_INITIAL_CLUSTER_TOKEN="etcd-cluster"
|
||||||
|
ETCD_INITIAL_CLUSTER_STATE="new"
|
||||||
|
#ETCD_STRICT_RECONFIG_CHECK="true"
|
||||||
|
#ETCD_ENABLE_V2="true"
|
||||||
|
#
|
||||||
|
#[Proxy]
|
||||||
|
#ETCD_PROXY="off"
|
||||||
|
#ETCD_PROXY_FAILURE_WAIT="5000"
|
||||||
|
#ETCD_PROXY_REFRESH_INTERVAL="30000"
|
||||||
|
#ETCD_PROXY_DIAL_TIMEOUT="1000"
|
||||||
|
#ETCD_PROXY_WRITE_TIMEOUT="5000"
|
||||||
|
#ETCD_PROXY_READ_TIMEOUT="0"
|
||||||
|
#
|
||||||
|
#[Security]
|
||||||
|
ETCD_CERT_FILE="/etc/etcd/kubernetes.pem"
|
||||||
|
ETCD_KEY_FILE="/etc/etcd/kubernetes-key.pem"
|
||||||
|
ETCD_CLIENT_CERT_AUTH="true"
|
||||||
|
ETCD_TRUSTED_CA_FILE="/etc/etcd/ca.pem"
|
||||||
|
#ETCD_AUTO_TLS="false"
|
||||||
|
ETCD_PEER_CERT_FILE="/etc/etcd/kubernetes.pem"
|
||||||
|
ETCD_PEER_KEY_FILE="/etc/etcd/kubernetes-key.pem"
|
||||||
|
ETCD_PEER_CLIENT_CERT_AUTH="true"
|
||||||
|
ETCD_PEER_TRUSTED_CA_FILE="/etc/etcd/ca.pem"
|
||||||
|
#ETCD_PEER_AUTO_TLS="false"
|
||||||
|
#
|
||||||
|
#[Logging]
|
||||||
|
#ETCD_DEBUG="false"
|
||||||
|
#ETCD_LOG_PACKAGE_LEVELS=""
|
||||||
|
#ETCD_LOG_OUTPUT="default"
|
||||||
|
#
|
||||||
|
#[Unsafe]
|
||||||
|
#ETCD_FORCE_NEW_CLUSTER="false"
|
||||||
|
#
|
||||||
|
#[Version]
|
||||||
|
#ETCD_VERSION="false"
|
||||||
|
#ETCD_AUTO_COMPACTION_RETENTION="0"
|
||||||
|
#
|
||||||
|
#[Profiling]
|
||||||
|
#ETCD_ENABLE_PPROF="false"
|
||||||
|
#ETCD_METRICS="basic"
|
||||||
|
#
|
||||||
|
#[Auth]
|
||||||
|
#ETCD_AUTH_TOKEN="simple"
|
||||||
18
controller-1/etcd.service
Normal file
18
controller-1/etcd.service
Normal file
@ -0,0 +1,18 @@
|
|||||||
|
[Unit]
|
||||||
|
Description=Etcd Server
|
||||||
|
After=network.target
|
||||||
|
After=network-online.target
|
||||||
|
Wants=network-online.target
|
||||||
|
|
||||||
|
[Service]
|
||||||
|
Type=notify
|
||||||
|
WorkingDirectory=/var/lib/etcd/
|
||||||
|
EnvironmentFile=-/etc/etcd/etcd.conf
|
||||||
|
User=etcd
|
||||||
|
# set GOMAXPROCS to number of processors
|
||||||
|
ExecStart=/bin/bash -c "GOMAXPROCS=$(nproc) /usr/bin/etcd --name=${ETCD_NAME} --data-dir=${ETCD_DATA_DIR} --listen-client-urls=${ETCD_LISTEN_CLIENT_URLS} --listen-peer-urls=${ETCD_LISTEN_PEER_URLS} --initial-advertise-peer-urls=${ETCD_INITIAL_ADVERTISE_PEER_URLS} --advertise-client-urls=${ETCD_ADVERTISE_CLIENT_URLS} --initial-cluster=${ETCD_INITIAL_CLUSTER} --initial-cluster-token=${ETCD_INITIAL_CLUSTER_TOKEN} --initial-cluster-state=${ETCD_INITIAL_CLUSTER_STATE} --cert-file=${ETCD_CERT_FILE} --key-file=${ETCD_KEY_FILE} --client-cert-auth=${ETCD_CLIENT_CERT_AUTH} --trusted-ca-file=${ETCD_TRUSTED_CA_FILE} --peer-cert-file=${ETCD_PEER_CERT_FILE} --peer-key-file=${ETCD_PEER_KEY_FILE} --peer-client-cert-auth=${ETCD_PEER_CLIENT_CERT_AUTH} --peer-trusted-ca-file=${ETCD_PEER_TRUSTED_CA_FILE}"
|
||||||
|
Restart=on-failure
|
||||||
|
LimitNOFILE=65536
|
||||||
|
|
||||||
|
[Install]
|
||||||
|
WantedBy=multi-user.target
|
||||||
27
controller-1/kube-apiserver.service
Normal file
27
controller-1/kube-apiserver.service
Normal file
@ -0,0 +1,27 @@
|
|||||||
|
[Unit]
|
||||||
|
Description=Kubernetes API Server
|
||||||
|
Documentation=https://github.com/GoogleCloudPlatform/kubernetes
|
||||||
|
After=network.target
|
||||||
|
After=etcd.service
|
||||||
|
|
||||||
|
[Service]
|
||||||
|
EnvironmentFile=-/etc/kubernetes/config
|
||||||
|
EnvironmentFile=-/etc/kubernetes/apiserver
|
||||||
|
#User=kube
|
||||||
|
ExecStart=/usr/local/bin/kube-apiserver \
|
||||||
|
$KUBE_LOGTOSTDERR \
|
||||||
|
$KUBE_LOG_LEVEL \
|
||||||
|
$KUBE_ETCD_SERVERS \
|
||||||
|
$KUBE_API_ADDRESS \
|
||||||
|
$KUBE_API_PORT \
|
||||||
|
$KUBELET_PORT \
|
||||||
|
$KUBE_ALLOW_PRIV \
|
||||||
|
$KUBE_SERVICE_ADDRESSES \
|
||||||
|
$KUBE_ADMISSION_CONTROL \
|
||||||
|
$KUBE_API_ARGS
|
||||||
|
Restart=on-failure
|
||||||
|
Type=notify
|
||||||
|
LimitNOFILE=65536
|
||||||
|
|
||||||
|
[Install]
|
||||||
|
WantedBy=multi-user.target
|
||||||
13
controller-1/kube-apiserver_rbac.yaml
Normal file
13
controller-1/kube-apiserver_rbac.yaml
Normal file
@ -0,0 +1,13 @@
|
|||||||
|
apiVersion: rbac.authorization.k8s.io/v1beta1
|
||||||
|
kind: ClusterRoleBinding
|
||||||
|
metadata:
|
||||||
|
name: system:kube-apiserver
|
||||||
|
namespace: ""
|
||||||
|
roleRef:
|
||||||
|
apiGroup: rbac.authorization.k8s.io
|
||||||
|
kind: ClusterRole
|
||||||
|
name: system:kube-apiserver-to-kubelet
|
||||||
|
subjects:
|
||||||
|
- apiGroup: rbac.authorization.k8s.io
|
||||||
|
kind: User
|
||||||
|
name: kubernetes
|
||||||
18
controller-1/kube-controller-manager.service
Normal file
18
controller-1/kube-controller-manager.service
Normal file
@ -0,0 +1,18 @@
|
|||||||
|
[Unit]
|
||||||
|
Description=Kubernetes Controller Manager
|
||||||
|
Documentation=https://github.com/GoogleCloudPlatform/kubernetes
|
||||||
|
|
||||||
|
[Service]
|
||||||
|
EnvironmentFile=-/etc/kubernetes/config
|
||||||
|
EnvironmentFile=-/etc/kubernetes/controller-manager
|
||||||
|
#User=kube
|
||||||
|
ExecStart=/usr/local/bin/kube-controller-manager \
|
||||||
|
$KUBE_LOGTOSTDERR \
|
||||||
|
$KUBE_LOG_LEVEL \
|
||||||
|
$KUBE_MASTER \
|
||||||
|
$KUBE_CONTROLLER_MANAGER_ARGS
|
||||||
|
Restart=on-failure
|
||||||
|
LimitNOFILE=65536
|
||||||
|
|
||||||
|
[Install]
|
||||||
|
WantedBy=multi-user.target
|
||||||
13
controller-1/kube-scheduler.service
Normal file
13
controller-1/kube-scheduler.service
Normal file
@ -0,0 +1,13 @@
|
|||||||
|
[Unit]
|
||||||
|
Description=Kubernetes Scheduler
|
||||||
|
Documentation=https://github.com/kubernetes/kubernetes
|
||||||
|
|
||||||
|
[Service]
|
||||||
|
ExecStart=/usr/local/bin/kube-scheduler \
|
||||||
|
--config=/etc/kubernetes/kube-scheduler.yaml \
|
||||||
|
--v=2
|
||||||
|
Restart=on-failure
|
||||||
|
RestartSec=5
|
||||||
|
|
||||||
|
[Install]
|
||||||
|
WantedBy=multi-user.target
|
||||||
6
controller-1/kube-scheduler.yaml
Normal file
6
controller-1/kube-scheduler.yaml
Normal file
@ -0,0 +1,6 @@
|
|||||||
|
apiVersion: componentconfig/v1alpha1
|
||||||
|
kind: KubeSchedulerConfiguration
|
||||||
|
clientConnection:
|
||||||
|
kubeconfig: "/var/lib/kubernetes/kube-scheduler.kubeconfig"
|
||||||
|
leaderElection:
|
||||||
|
leaderElect: true
|
||||||
9
controller-1/kubernetes.default.svc.cluster.local.conf
Normal file
9
controller-1/kubernetes.default.svc.cluster.local.conf
Normal file
@ -0,0 +1,9 @@
|
|||||||
|
server {
|
||||||
|
listen 80;
|
||||||
|
server_name kubernetes.default.svc.cluster.local;
|
||||||
|
|
||||||
|
location /healthz {
|
||||||
|
proxy_pass https://127.0.0.1:6443/healthz;
|
||||||
|
proxy_ssl_trusted_certificate /var/lib/kubernetes/ca.pem;
|
||||||
|
}
|
||||||
|
}
|
||||||
8
controller-1/kubernetes.repo
Normal file
8
controller-1/kubernetes.repo
Normal file
@ -0,0 +1,8 @@
|
|||||||
|
[kubernetes]
|
||||||
|
name=Kubernetes
|
||||||
|
baseurl=https://packages.cloud.google.com/yum/repos/kubernetes-el7-x86_64
|
||||||
|
enabled=1
|
||||||
|
gpgcheck=1
|
||||||
|
repo_gpgcheck=1
|
||||||
|
gpgkey=https://packages.cloud.google.com/yum/doc/yum-key.gpg
|
||||||
|
https://packages.cloud.google.com/yum/doc/rpm-package-key.gpg
|
||||||
19
controller-1/rbac_authorizations.yaml
Normal file
19
controller-1/rbac_authorizations.yaml
Normal file
@ -0,0 +1,19 @@
|
|||||||
|
apiVersion: rbac.authorization.k8s.io/v1beta1
|
||||||
|
kind: ClusterRole
|
||||||
|
metadata:
|
||||||
|
annotations:
|
||||||
|
rbac.authorization.kubernetes.io/autoupdate: "true"
|
||||||
|
labels:
|
||||||
|
kubernetes.io/bootstrapping: rbac-defaults
|
||||||
|
name: system:kube-apiserver-to-kubelet
|
||||||
|
rules:
|
||||||
|
- apiGroups:
|
||||||
|
- ""
|
||||||
|
resources:
|
||||||
|
- nodes/proxy
|
||||||
|
- nodes/stats
|
||||||
|
- nodes/log
|
||||||
|
- nodes/spec
|
||||||
|
- nodes/metrics
|
||||||
|
verbs:
|
||||||
|
- "*"
|
||||||
7
controller-1/scheduler
Normal file
7
controller-1/scheduler
Normal file
@ -0,0 +1,7 @@
|
|||||||
|
###
|
||||||
|
# kubernetes scheduler config
|
||||||
|
|
||||||
|
# default config should be adequate
|
||||||
|
|
||||||
|
# Add your own!
|
||||||
|
KUBE_SCHEDULER_ARGS="--config=/etc/kubernetes/kube-scheduler.yaml --v=2"
|
||||||
19
controller_manager_setup.sh
Executable file
19
controller_manager_setup.sh
Executable file
@ -0,0 +1,19 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
##
|
||||||
|
## Script to automate the Kubernetes CentOS client side pieces
|
||||||
|
##
|
||||||
|
|
||||||
|
sudo curl https://storage.googleapis.com/kubernetes-release/release/v1.10.3/bin/linux/amd64/kube-controller-manager -o /usr/local/bin/kube-controller-manager
|
||||||
|
sudo chmod 755 /usr/local/bin/kube-controller-manager
|
||||||
|
|
||||||
|
sudo mkdir -p /var/lib/kubernetes
|
||||||
|
|
||||||
|
sudo mv kube-controller-manager.kubeconfig /var/lib/kubernetes/
|
||||||
|
sudo mv kube-controller-manager.service /etc/systemd/system/
|
||||||
|
sudo mv controller-manager /etc/kubernetes/
|
||||||
|
|
||||||
|
sudo systemctl daemon-reload
|
||||||
|
sudo systemctl start kube-controller-manager
|
||||||
|
sudo systemctl enable kube-controller-manager
|
||||||
|
|
||||||
|
echo "The next step is to create the Kubernetes Scheduler"
|
||||||
56
controller_setup.sh
Executable file
56
controller_setup.sh
Executable file
@ -0,0 +1,56 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
##
|
||||||
|
## Script to automate the Kubernetes CentOS client side pieces
|
||||||
|
##
|
||||||
|
sudo mv kubernetes.repo /etc/yum.d.repos/
|
||||||
|
sudo yum install -y docker etcd kubectl
|
||||||
|
sudo systemctl start docker && sudo systemctl enable docker
|
||||||
|
|
||||||
|
sudo setenforce 0
|
||||||
|
sudo mv config /etc/selinux/
|
||||||
|
sudo mkdir -p /etc/kubernetes
|
||||||
|
|
||||||
|
sudo cp ca.pem kubernetes-key.pem kubernetes.pem /etc/etcd/
|
||||||
|
sudo mv etcd.conf /etc/etcd/
|
||||||
|
sudo chown etcd:etcd /etc/etcd/*.pem
|
||||||
|
sudo rm -rf /var/lib/etcd/default.etcd
|
||||||
|
sudo systemctl start etcd
|
||||||
|
sudo systemctl enable etcd
|
||||||
|
sudo etcdctl --ca-file /etc/etcd/ca.pem --cert-file /etc/etcd/kubernetes.pem --key-file /etc/etcd/kubernetes-key.pem --endpoints https://127.0.0.1:2379 member list
|
||||||
|
|
||||||
|
sudo curl https://storage.googleapis.com/kubernetes-release/release/v1.10.3/bin/linux/amd64/kube-apiserver -o /usr/local/bin/kube-apiserver
|
||||||
|
sudo curl https://storage.googleapis.com/kubernetes-release/release/v1.10.3/bin/linux/amd64/kube-controller-manager -o /usr/local/bin/kube-controller-manager
|
||||||
|
sudo curl https://storage.googleapis.com/kubernetes-release/release/v1.10.3/bin/linux/amd64/kube-scheduler -o /usr/local/bin/kube-scheduler
|
||||||
|
sudo chmod 755 /usr/local/bin/kub*
|
||||||
|
|
||||||
|
sudo mkdir -p /var/lib/kubernetes
|
||||||
|
sudo mv ca.pem ca-key.pem kubernetes.pem kubernetes-key.pem service-account.pem service-account-key.pem encryption-config.yaml /var/lib/kubernetes/
|
||||||
|
|
||||||
|
sudo mv kube-apiserver.service /etc/systemd/system/
|
||||||
|
sudo mv apiserver /etc/kubernetes/
|
||||||
|
|
||||||
|
sudo mv kube-controller-manager.kubeconfig /var/lib/kubernetes/
|
||||||
|
sudo mv kube-controller-manager.service /etc/systemd/system/
|
||||||
|
sudo mv controller-manager /etc/kubernetes/
|
||||||
|
|
||||||
|
sudo mv kube-scheduler.kubeconfig /var/lib/kubernetes/
|
||||||
|
sudo mv kube-scheduler.service /etc/systemd/system/
|
||||||
|
sudo mv scheduler /etc/kubernetes/
|
||||||
|
|
||||||
|
sudo systemctl daemon-reload
|
||||||
|
sudo systemctl start kube-apiserver kube-controller-manager kube-scheduler
|
||||||
|
sudo systemctl enable kube-apiserver kube-controller kube-scheduler
|
||||||
|
|
||||||
|
sudo yum install -y nginx
|
||||||
|
|
||||||
|
sudo mv kubernetes.default.svc.cluster.local.conf /etc/nginx/conf.d/kubernetes.default.svc.cluster.local.conf
|
||||||
|
sudo systemctl start nginx && sudo systemctl enable nginx
|
||||||
|
|
||||||
|
kubectl get componentstatuses --kubeconfig admin.kubeconfig
|
||||||
|
|
||||||
|
curl -H "Host: kubernetes.default.svc.cluster.local" -i http://127.0.0.1/healthz
|
||||||
|
|
||||||
|
kubectl apply -f rbac_authorizations.yaml --kubeconfig admin.kubeconfig
|
||||||
|
kubectl apply -f kube-apiserver_rbac.yaml --kubeconfig admin.kubeconfig
|
||||||
|
|
||||||
|
echo "The next step is to create the Load Balancer"
|
||||||
19
controller_uninstall.sh
Executable file
19
controller_uninstall.sh
Executable file
@ -0,0 +1,19 @@
|
|||||||
|
#!/bin/bash
|
||||||
|
##
|
||||||
|
## Script to uninstall Kubernetes from the controllers
|
||||||
|
##
|
||||||
|
sudo rm /etc/nginx/conf.d/kubernetes.default.svc.cluster.local.conf
|
||||||
|
sudo yum remove -y nginx
|
||||||
|
|
||||||
|
sudo systemctl stop kube-scheduler kube-controller-manager kube-apiserver && sudo systemctl disable kube-scheduler kube-controller-manager kube-apiserver
|
||||||
|
|
||||||
|
sudo rm -f /etc/kubernetes/scheduler /etc/systemd/system/kube-scheduler.service /var/lib/kubernetes/kube-scheduler.kubeconfig
|
||||||
|
sudo rm -f /etc/kubernetes/controller-manager /etc/systemd/system/kube-controller-manager.service /var/lib/kubernetes/kube-controller-manager.kubeconfig
|
||||||
|
sudo rm -f /etc/kubernetes/apiserver /etc/systemd/system/kube-apiserver.service
|
||||||
|
sudo rm -rf /var/lib/kubernetes
|
||||||
|
sudo rm -f /usr/local/bin/kub*
|
||||||
|
|
||||||
|
sudo systemctl stop etcd && sudo systemctl disable etcd
|
||||||
|
sudo yum remove -y etcd kubectl
|
||||||
|
sudo rm -rf /etc/etcd /var/lib/etcd
|
||||||
|
|
||||||
1
controllers
Normal file
1
controllers
Normal file
@ -0,0 +1 @@
|
|||||||
|
hello
|
||||||
Some files were not shown because too many files have changed in this diff Show More
Loading…
Reference in New Issue
Block a user