Browse Source
Merge pull request #2772 from cruwe/cjr-correct-perms-on-kubeconfig
make admin.conf -> .kube/config non-executable
pull/1897/merge
Andreas Krüger
6 years ago
committed by
GitHub
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with
2 additions and
2 deletions
-
roles/kubernetes/client/tasks/main.yml
-
roles/kubernetes/master/tasks/kubeadm-setup.yml
|
|
|
@ -40,7 +40,7 @@ |
|
|
|
src: "{{ kube_config_dir }}/admin.conf" |
|
|
|
dest: "/root/.kube/config" |
|
|
|
remote_src: yes |
|
|
|
mode: "0700" |
|
|
|
mode: "0600" |
|
|
|
backup: yes |
|
|
|
|
|
|
|
- name: Copy admin kubeconfig to ansible host |
|
|
|
|
|
|
|
@ -128,7 +128,7 @@ |
|
|
|
content: "{{ item.content | b64decode }}" |
|
|
|
owner: root |
|
|
|
group: root |
|
|
|
mode: 0700 |
|
|
|
mode: 0600 |
|
|
|
no_log: true |
|
|
|
register: copy_kubeadm_certs |
|
|
|
with_items: "{{ kubeadm_certs.results }}" |
|
|
|
|
