c12s-kubespray/roles/kubernetes/master/tasks/encrypt-at-rest.yml at 80379f6cab211af51313e6a46e319c8219cf53a1 - C12s/c12s-kubespray - Forgejo

C12s/c12s-kubespray

Andreas Krüger d5ce5874e8 Streamline path to certs dir (#3836 )

* Streamline path to certs dir

* More fixes

* Set path to etcd certs in kubernetes defaults instead

2018-12-06 23:11:53 -08:00

10 lines

260 B

YAML

Raw Blame History

 ---
 - name: Write secrets for encrypting secret data at rest
   template:
     src: secrets_encryption.yaml.j2
     dest: "{{ kube_cert_dir }}/secrets_encryption.yaml"
     owner: root
     group: "{{ kube_cert_group }}"
     mode: 0640
   tags:
     - kube-apiserver