switch controller manager to secure port#207
Merged
openshift-merge-robot merged 1 commit intoopenshift:masterfrom Apr 4, 2019
Merged
switch controller manager to secure port#207openshift-merge-robot merged 1 commit intoopenshift:masterfrom
openshift-merge-robot merged 1 commit intoopenshift:masterfrom
Conversation
openshift-ci-robot
added
approved
mfojtik
force-pushed
the
switch-to-secure-port
branch
from
662f92b to
4d54ada
Compare
Contributor
|
/lgtm |
mfojtik
force-pushed
the
switch-to-secure-port
branch
from
4d54ada to
57a1bfa
Compare
|
New changes are detected. LGTM label has been removed. |
openshift-ci-robot
added
size/M
Contributor
Author
|
adding lgtm back, fixed the liveness probe port |
Contributor
Author
|
/retest |
Contributor
|
/retest Please review the full test history for this PR and help us cut down flakes. |
1 similar comment
Contributor
|
/retest Please review the full test history for this PR and help us cut down flakes. |
Contributor
|
/retest |
soltysh
approved these changes
Apr 3, 2019
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: mfojtik, soltysh, sttts The full list of commands accepted by this bot can be found here. The pull request process is described here DetailsNeeds approval from an approver in each of these files:
Approvers can indicate their approval by writing |
Contributor
Author
|
/retest |
Contributor
|
/hold |
openshift-ci-robot
added
the
do-not-merge/hold
Contributor
|
/hold cancel |
openshift-ci-robot
removed
the
do-not-merge/hold
Contributor
|
/assign @s-urbaniak This also needs a change on the monitoring side. |
Contributor
|
/cc @s-urbaniak |
Contributor
|
/retest Please review the full test history for this PR and help us cut down flakes. |
1 similar comment
Contributor
|
/retest Please review the full test history for this PR and help us cut down flakes. |
s-urbaniak
added a commit
to s-urbaniak/cluster-monitoring-operator
that referenced
this pull request
Apr 5, 2019
In accordance to openshift/cluster-kube-scheduler-operator#88 and openshift/cluster-kube-controller-manager-operator#207 we can now enable TLS for the kube scheduler as well the controller manager.
s-urbaniak
added a commit
to s-urbaniak/cluster-monitoring-operator
that referenced
this pull request
Apr 5, 2019
…le TLS In accordance to openshift/cluster-kube-scheduler-operator#88 and openshift/cluster-kube-controller-manager-operator#207 we can now enable TLS for the kube scheduler as well the controller manager.
Contributor
|
/retest |
s-urbaniak
added a commit
to s-urbaniak/cluster-monitoring-operator
that referenced
this pull request
Apr 8, 2019
In accordance to openshift/cluster-kube-controller-manager-operator#207 we can now enable TLS for the controller manager.
s-urbaniak
added a commit
to s-urbaniak/cluster-monitoring-operator
that referenced
this pull request
Apr 10, 2019
…le TLS In accordance to openshift/cluster-kube-scheduler-operator#88 and openshift/cluster-kube-controller-manager-operator#207 we can now enable TLS for the kube scheduler as well the controller manager.
s-urbaniak
added a commit
to s-urbaniak/installer
that referenced
this pull request
Apr 10, 2019
Recently, the control plane switched to secure ports in [1] and [2]. This aligns them in the installer. [1] openshift/cluster-kube-scheduler-operator#88 [2] openshift/cluster-kube-controller-manager-operator#207
s-urbaniak
added a commit
to s-urbaniak/cluster-monitoring-operator
that referenced
this pull request
Apr 12, 2019
…le TLS In accordance to openshift/cluster-kube-scheduler-operator#88 and openshift/cluster-kube-controller-manager-operator#207 we can now enable TLS for the kube scheduler as well the controller manager.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
7 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Rebase landed, we should switch the port to secure again. This updates controller manager default config and set the insecure port to 0 and also update the init container to check the secure port.
Also sets the
cert-dirto/var/run/kubernetes.