cmd/checkpoint: use kubelet's client certs for the kubelet API #348

ericchiang · 2017-03-02T23:14:27Z

Use the client certs in the kubelet's kubeconfig to talk to the
kubelet API. This has no effect currently, but will once the
kubelet enables API auth. We assume the kubelet's client certs
originate from the same CA that cert auth trusts.

These are checkpointer changes split out from #345 so we can
do a release then import it later once we turn on kubelet auth.

cc @pbx0

Use the client certs in the kubelet's kubeconfig to talk to the kubelet API. This has on effect currently, but will once the kubelet enables API auth. We assume the kubelet's client certs originate from the same CA that cert auth trusts.

peebs · 2017-03-02T23:31:18Z

rktbot run checkpointer tests

ericchiang · 2017-03-02T23:59:59Z

@pbx0 all green!

k8s-ci-robot added the cncf-cla: yes Indicates the PR's author has signed the CNCF CLA. label Mar 2, 2017

peebs approved these changes Mar 3, 2017

View reviewed changes

aaronlevy merged commit e054c5b into kubernetes-retired:master Mar 3, 2017

ericchiang deleted the checkpointer-use-kubelet-client-cert branch March 3, 2017 18:12

ericchiang mentioned this pull request Mar 3, 2017

use a client cert for API server to kubelet communication #345

Merged

5 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

cmd/checkpoint: use kubelet's client certs for the kubelet API #348

cmd/checkpoint: use kubelet's client certs for the kubelet API #348

ericchiang commented Mar 2, 2017 •

edited

Loading

peebs commented Mar 2, 2017

ericchiang commented Mar 2, 2017

cmd/checkpoint: use kubelet's client certs for the kubelet API #348

cmd/checkpoint: use kubelet's client certs for the kubelet API #348

Conversation

ericchiang commented Mar 2, 2017 • edited Loading

peebs commented Mar 2, 2017

ericchiang commented Mar 2, 2017

ericchiang commented Mar 2, 2017 •

edited

Loading