c12s-kubespray/roles/kubernetes/secrets
Vincent Schwarzer ea1f072c7e Granular authentication Control
It is now possible to deactivate selected authentication methods
(basic auth, token auth) inside the cluster by adding
removing the required arguments to the Kube API Server and generating
the secrets accordingly.

The x509 authentification is currently not optional because disabling it
would affect the kubectl clients deployed on the master nodes.
2017-03-14 16:57:35 +01:00
..
defaults Rework inventory all by real groups' vars 2017-02-23 09:43:42 +01:00
files Increase SSL TTL to 3650 days 2017-02-24 15:38:13 +01:00
handlers generate secrets on deployment machine 2016-02-13 06:51:54 +01:00
meta Vault security hardening and role isolation 2017-02-08 21:41:36 +00:00
tasks Granular authentication Control 2017-03-14 16:57:35 +01:00
templates fix load balancer DNS name index evaluation in openssl.conf 2017-02-16 00:16:13 +03:00