New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Full TLS for cluster components #822
Comments
+1 - also, I believe that kargo should setup secure by default for the control plane. The only situation where this may have a challenge is when an external etcd cluster is used : in which case bugs to consider - kubernetes/kubernetes#14977, kubernetes/kubernetes#15056, kubernetes/kubernetes#29330 , kubernetes/kubernetes#27343, https://github.com/juju-solutions/bundle-canonical-kubernetes/issues/153 there seems to be a hardcoding issue - kubernetes/kubernetes#27343 (comment) |
which pieces are missing ? I think only the localhost:8080 nginx for HA masters ? |
Stale issues rot after 30d of inactivity. If this issue is safe to close now please do so with Send feedback to sig-testing, kubernetes/test-infra and/or fejta. |
Rotten issues close after 30d of inactivity. Send feedback to sig-testing, kubernetes/test-infra and/or fejta. |
@fejta-bot: Closing this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Users want option to deploy K8s clusters by Kargo with nothing using unsecure HTTP connections, even to
localhost:port
. Related http://kubernetes.io/docs/admin/kube-apiserver/ and kubernetes/kubernetes#10159The text was updated successfully, but these errors were encountered: