TouchInstinct
/
kubespray
310
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
kubespray/roles/kubernetes/master/tasks
History
Andreas Krüger 3d6fd49179 Added option for encrypting secrets to etcd v.2 (#2428) 
* Added option for encrypting secrets to etcd

* Fix keylength to 32

* Forgot the default

* Rename secrets.yaml to secrets_encryption.yaml

* Fix static path for secrets file to use ansible variable

* Rename secrets.yaml.j2 to secrets_encryption.yaml.j2

* Base64 encode the token

* Fixed merge error

* Changed path to credentials dir

* Update path to secrets file which is now readable inside the apiserver container. Set better file permissions

* Add encryption option to k8s-cluster.yml
 		2018-03-15 22:20:05 +03:00
..
encrypt-at-rest.yml Added option for encrypting secrets to etcd v.2 (#2428) 2018-03-15 22:20:05 +03:00
kubeadm-cleanup-old-certs.yml Upgrade to kubeadm (#1667) 2017-09-26 10:38:58 +01:00
kubeadm-migrate-certs.yml Support for disabling apiserver insecure port 2017-12-05 09:13:45 -06:00
kubeadm-setup.yml Use include/import tasks (#2192) 2018-01-29 14:37:48 +03:00
main.yml Added option for encrypting secrets to etcd v.2 (#2428) 2018-03-15 22:20:05 +03:00
pre-upgrade.yml Add etcd key and cert environment variables for use with client auth 2018-01-02 13:52:17 -05:00
static-pod-setup.yml Renamed variable from disable_volume_zone_conflict to volume_cross_zone_attachment and removed cloud provider condition; fix identation 2018-01-23 13:14:00 +00:00
users-file.yml Set filemode to 0640 (#2315) 2018-02-21 23:13:46 +03:00