k8s: rename masters to control-plane nodes

author: Christian Pointner <equinox@spreadspace.org> 2022-05-07 22:45:49 +0200
committer: Christian Pointner <equinox@spreadspace.org> 2022-05-07 23:53:19 +0200
commit: c09b07327b688a6a47f523a15c1a5c29d4f476d0 (patch)
tree: 6c243d60a3fb142c582761f1baab1c00f7081342 /roles/kubernetes/kubeadm/control-plane/templates/encryption-config.j2
parent: cosmetic changes (diff)
1 files changed, 13 insertions, 0 deletions
diff --git a/roles/kubernetes/kubeadm/control-plane/templates/encryption-config.j2 b/roles/kubernetes/kubeadm/control-plane/templates/encryption-config.j2
new file mode 100644
index 00000000..345c9bf9
--- /dev/null
+++ b/roles/kubernetes/kubeadm/control-plane/templates/encryption-config.j2
@@ -0,0 +1,13 @@
+kind: EncryptionConfiguration
+apiVersion: apiserver.config.k8s.io/v1
+resources:
+  - resources:
+    - secrets
+    providers:
+    - secretbox:
+        keys:
+{% for key in kubernetes_secrets.encryption_config_keys %}
+        - name: key{{ loop.index }}
+          secret: {{ key }}
+{% endfor %}
+    - identity: {}
author	Christian Pointner <equinox@spreadspace.org>	2022-05-07 22:45:49 +0200
committer	Christian Pointner <equinox@spreadspace.org>	2022-05-07 23:53:19 +0200
commit	c09b07327b688a6a47f523a15c1a5c29d4f476d0 (patch)
tree	6c243d60a3fb142c582761f1baab1c00f7081342 /roles/kubernetes/kubeadm/control-plane/templates/encryption-config.j2
parent	cosmetic changes (diff)