summaryrefslogtreecommitdiff
path: root/roles/kubernetes/kubeadm/control-plane/templates/encryption-config.j2
diff options
context:
space:
mode:
Diffstat (limited to 'roles/kubernetes/kubeadm/control-plane/templates/encryption-config.j2')
-rw-r--r--roles/kubernetes/kubeadm/control-plane/templates/encryption-config.j213
1 files changed, 13 insertions, 0 deletions
diff --git a/roles/kubernetes/kubeadm/control-plane/templates/encryption-config.j2 b/roles/kubernetes/kubeadm/control-plane/templates/encryption-config.j2
new file mode 100644
index 00000000..345c9bf9
--- /dev/null
+++ b/roles/kubernetes/kubeadm/control-plane/templates/encryption-config.j2
@@ -0,0 +1,13 @@
+kind: EncryptionConfiguration
+apiVersion: apiserver.config.k8s.io/v1
+resources:
+ - resources:
+ - secrets
+ providers:
+ - secretbox:
+ keys:
+{% for key in kubernetes_secrets.encryption_config_keys %}
+ - name: key{{ loop.index }}
+ secret: {{ key }}
+{% endfor %}
+ - identity: {}
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-01 03:50:59 +0000