.. | ||
templates | ||
.helmignore | ||
Chart.yaml | ||
create_audit_policy.sh | ||
README.md | ||
README.md.gotmpl | ||
values.yaml |
kubeadm
KubeZero Kubeadm cluster config
Homepage: https://kubezero.com
Maintainers
Name | Url | |
---|---|---|
Stefan Reimer | stefan@zero-downtime.net |
Requirements
Kubernetes: >= 1.25.0
Values
Key | Type | Default | Description |
---|---|---|---|
api.apiAudiences | string | "istio-ca" |
|
api.awsIamAuth.enabled | bool | false |
|
api.awsIamAuth.kubeAdminRole | string | "arn:aws:iam::000000000000:role/KubernetesNode" |
|
api.awsIamAuth.workerNodeRole | string | "arn:aws:iam::000000000000:role/KubernetesNode" |
|
api.endpoint | string | "kube-api.changeme.org:6443" |
|
api.etcdServers | string | "https://etcd:2379" |
|
api.extraArgs | object | {} |
|
api.listenPort | int | 6443 |
|
api.oidcEndpoint | string | "" |
s3://${CFN[ConfigBucket]}/k8s/$CLUSTERNAME |
api.serviceAccountIssuer | string | "" |
https://s3.${REGION}.amazonaws.com/${CFN[ConfigBucket]}/k8s/$CLUSTERNAME |
domain | string | "changeme.org" |
|
etcd.extraArgs | object | {} |
|
etcd.nodeName | string | "etcd" |
|
etcd.state | string | "new" |
|
global.clusterName | string | "pleasechangeme" |
|
global.highAvailable | bool | false |
|
listenAddress | string | "0.0.0.0" |
Needs to be set to primary node IP |
nodeName | string | "kubezero-node" |
set to $HOSTNAME |
protectKernelDefaults | bool | false |
|
systemd | bool | false |
Set to false for openrc, eg. on Gentoo or Alpine |
Resources
-
https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/troubleshooting-kubeadm/
-
https://godoc.org/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3
-
https://pkg.go.dev/k8s.io/kubernetes/cmd/kubeadm/app/apis/kubeadm/v1beta3
-
https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/control-plane-flags/
-
https://godoc.org/k8s.io/kube-proxy/config/v1alpha1#KubeProxyConfiguration