Merge branch 'topic/kubernetes-ng'

author: Christian Pointner <equinox@spreadspace.org> 2020-02-01 02:48:06 +0100
committer: Christian Pointner <equinox@spreadspace.org> 2020-02-01 02:48:06 +0100
commit: 844bc9826f652d6bebe55c66e44eb69bd89575bf (patch)
tree: 5c60fe1648e5a1db4b54c4ce02e72c4cf0bd8939 /roles/kubernetes/kubeadm/master/templates/encryption-config.j2
parent: updated all nexcloud instances on sk-cloudia (diff)
parent: kubernetes standalone with docker (diff)
1 files changed, 13 insertions, 0 deletions
diff --git a/roles/kubernetes/kubeadm/master/templates/encryption-config.j2 b/roles/kubernetes/kubeadm/master/templates/encryption-config.j2
new file mode 100644
index 00000000..345c9bf9
--- /dev/null
+++ b/roles/kubernetes/kubeadm/master/templates/encryption-config.j2
@@ -0,0 +1,13 @@
+kind: EncryptionConfiguration
+apiVersion: apiserver.config.k8s.io/v1
+resources:
+  - resources:
+    - secrets
+    providers:
+    - secretbox:
+        keys:
+{% for key in kubernetes_secrets.encryption_config_keys %}
+        - name: key{{ loop.index }}
+          secret: {{ key }}
+{% endfor %}
+    - identity: {}
author	Christian Pointner <equinox@spreadspace.org>	2020-02-01 02:48:06 +0100
committer	Christian Pointner <equinox@spreadspace.org>	2020-02-01 02:48:06 +0100
commit	844bc9826f652d6bebe55c66e44eb69bd89575bf (patch)
tree	5c60fe1648e5a1db4b54c4ce02e72c4cf0bd8939 /roles/kubernetes/kubeadm/master/templates/encryption-config.j2
parent	updated all nexcloud instances on sk-cloudia (diff)
parent	kubernetes standalone with docker (diff)