Use LB DNS name in the users kubeconfig

After bootstrapping with kubeadm we create a kubeconfig for an additional user via `kubeadm alpha kubeconfig`. However there is validation logic which prevents us from using a CNAME for the API server's advertised address, despite being able to do this when using `kubeadm init`. This workaround simply uses sed to swap out the server location so that the user has a more robust config without having to manually change it. Fixes #235 Signed-off-by: John Schnake <jschnake@vmware.com>
heptio · Jan 30, 2019 · aa74715 · aa74715
1 parent 9a9ea85
commit aa74715
Showing 1 changed file with 6 additions and 3 deletions.
diff --git a/scripts/setup-k8s-master.sh.in b/scripts/setup-k8s-master.sh.in
@@ -130,14 +130,17 @@ kubectl apply -f {{NetworkPolicyUrl}}
 # kubeconfig file for administrative access to the cluster.
 KUBECONFIG_OUTPUT=/home/ubuntu/kubeconfig
 
-# kubeadm kubeconfig will select the host's default interface as the
-# controlPlaneEndpoint. Since that is a private interface we need to manually
-# override it to the load balancer's DNS.
+# kubeadm requires --apiserver-advertise-address to be an IP address but we
+# want to use the DNS name in case the IP changes. Using the LB_IPV4 just as a
+# a dummy value to facilitate precise replacement and avoid complications with
+# ensuring we have the right IP.
 kubeadm alpha kubeconfig user \
   --client-name admin \
   --apiserver-advertise-address "${LB_IPV4}" \
   >$KUBECONFIG_OUTPUT
 
+sed -i "s~https://${LB_IPV4}:6443~https://${LB_DNS}:443~" $KUBECONFIG_OUTPUT
+
 chown ubuntu:ubuntu $KUBECONFIG_OUTPUT
 chmod 0600 $KUBECONFIG_OUTPUT