Skip to content

Commit

Permalink
Merge pull request #353 from weaveworks/fix-350
Browse files Browse the repository at this point in the history 
Fix port forwarding for 1.11
  • Loading branch information
@errordeveloper
errordeveloper authored Dec 18, 2018
2 parents eb48752 + d7076bb commit c229234
Show file tree
Hide file tree
Showing 4 changed files with 59 additions and 12 deletions.
27 changes: 25 additions & 2 deletions pkg/nodebootstrap/assets.go
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

9 changes: 1 addition & 8 deletions pkg/nodebootstrap/assets/10-eksclt.al2.conf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,23 +10,16 @@ EnvironmentFile=/etc/eksctl/kubelet.local.env

ExecStart=
ExecStart=/usr/bin/kubelet \
--address=0.0.0.0 \
--node-ip=${NODE_IP} \
--cluster-dns=${CLUSTER_DNS} \
--max-pods=${MAX_PODS} \
--authentication-token-webhook \
--authorization-mode=Webhook \
--allow-privileged=true \
--pod-infra-container-image=602401143452.dkr.ecr.${AWS_DEFAULT_REGION}.amazonaws.com/eks/pause-amd64:3.1 \
--cloud-provider=aws \
--cluster-domain=cluster.local \
--cni-bin-dir=/opt/cni/bin \
--cni-conf-dir=/etc/cni/net.d \
--container-runtime=docker \
--network-plugin=cni \
--cgroup-driver=cgroupfs \
--register-node=true \
--kubeconfig=/etc/eksctl/kubeconfig.yaml \
--feature-gates=RotateKubeletServerCertificate=true \
--anonymous-auth=false \
--client-ca-file=/etc/eksctl/ca.crt
--config=/etc/eksctl/kubelet-config.json
30 changes: 30 additions & 0 deletions pkg/nodebootstrap/assets/kubelet-config.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,30 @@
{
"kind": "KubeletConfiguration",
"apiVersion": "kubelet.config.k8s.io/v1beta1",
"address": "0.0.0.0",
"authentication": {
"anonymous": {
"enabled": false
},
"webhook": {
"cacheTTL": "2m0s",
"enabled": true
},
"x509": {
"clientCAFile": "/etc/eksctl/ca.crt"
}
},
"authorization": {
"mode": "Webhook",
"webhook": {
"cacheAuthorizedTTL": "5m0s",
"cacheUnauthorizedTTL": "30s"
}
},
"clusterDomain": "cluster.local",
"cgroupDriver": "cgroupfs",
"featureGates": {
"RotateKubeletServerCertificate": true
},
"serverTLSBootstrap": true
}
5 changes: 3 additions & 2 deletions pkg/nodebootstrap/userdata_al2.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,8 +23,9 @@ func makeAmazonLinux2Config(spec *api.ClusterConfig, nodeGroupID int) (configFil
"metadata.env": {content: strings.Join(makeMetadata(spec), "\n")},
"kubelet.env": {content: strings.Join(makeKubeletParams(spec, nodeGroupID), "\n")},
// TODO: https://github.com/weaveworks/eksctl/issues/161
"ca.crt": {content: string(spec.CertificateAuthorityData)},
"kubeconfig.yaml": {content: string(clientConfigData)},
"kubelet-config.json": {isAsset: true},
"ca.crt": {content: string(spec.CertificateAuthorityData)},
"kubeconfig.yaml": {content: string(clientConfigData)},
},
}

Expand Down

0 comments on commit c229234

Please sign in to comment.