2017-08-08 05:13:04 +00:00
|
|
|
Watching Kubernetes api-server over HTTPS
|
|
|
|
|
=========================================
|
2017-06-09 14:57:17 +03:00
|
|
|
|
2017-08-08 05:13:04 +00:00
|
|
|
Add absolute path of client side cert file and key file for Kubernetes server
|
2017-06-09 14:57:17 +03:00
|
|
|
in ``kuryr.conf``::
|
|
|
|
|
|
|
|
|
|
[kubernetes]
|
|
|
|
|
api_root = https://your_server_address:server_ssl_port
|
|
|
|
|
ssl_client_crt_file = <absolute file path eg. /etc/kubernetes/admin.crt>
|
|
|
|
|
ssl_client_key_file = <absolute file path eg. /etc/kubernetes/admin.key>
|
|
|
|
|
|
|
|
|
|
If server ssl certification verification is also to be enabled, add absolute
|
|
|
|
|
path to the ca cert::
|
|
|
|
|
|
|
|
|
|
[kubernetes]
|
|
|
|
|
ssl_ca_crt_file = <absolute file path eg. /etc/kubernetes/ca.crt>
|
|
|
|
|
ssl_verify_server_crt = True
|
|
|
|
|
|
2017-08-08 05:13:04 +00:00
|
|
|
If want to query HTTPS Kubernetes api server with ``--insecure`` mode::
|
2017-06-09 14:57:17 +03:00
|
|
|
|
|
|
|
|
[kubernetes]
|
|
|
|
|
ssl_verify_server_crt = False
|
|
|
|
|
|
