richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Set exact user for Kubelet services

pull/2524/head
avoidik 6 years ago
parent
f07734596e
commit
e375678674
3 changed files with 3 additions and 0 deletions
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 1
      roles/kubernetes/node/templates/kubelet.docker.service.j2
  2. 1
      roles/kubernetes/node/templates/kubelet.host.service.j2
  3. 1
      roles/kubernetes/node/templates/kubelet.rkt.service.j2

1
roles/kubernetes/node/templates/kubelet.docker.service.j2
View File

@ -5,6 +5,7 @@ After=docker.service
Wants=docker.socket Wants=docker.socket
[Service] [Service]
User=root
EnvironmentFile={{kube_config_dir}}/kubelet.env EnvironmentFile={{kube_config_dir}}/kubelet.env
ExecStart={{ bin_dir }}/kubelet \ ExecStart={{ bin_dir }}/kubelet \
$KUBE_LOGTOSTDERR \ $KUBE_LOGTOSTDERR \

1
roles/kubernetes/node/templates/kubelet.host.service.j2
View File

@ -5,6 +5,7 @@ After=docker.service
Wants=docker.socket Wants=docker.socket
[Service] [Service]
User=root
EnvironmentFile=-{{kube_config_dir}}/kubelet.env EnvironmentFile=-{{kube_config_dir}}/kubelet.env
{% if kubelet_flexvolumes_plugins_dir is defined %} {% if kubelet_flexvolumes_plugins_dir is defined %}
ExecStartPre=-/bin/mkdir -p {{ kubelet_flexvolumes_plugins_dir }} ExecStartPre=-/bin/mkdir -p {{ kubelet_flexvolumes_plugins_dir }}

1
roles/kubernetes/node/templates/kubelet.rkt.service.j2
View File

@ -4,6 +4,7 @@ Documentation=https://github.com/GoogleCloudPlatform/kubernetes
Wants=network.target Wants=network.target
[Service] [Service]
User=root
Restart=on-failure Restart=on-failure
RestartSec=10s RestartSec=10s
TimeoutStartSec=0 TimeoutStartSec=0

Write Preview
Loading…
Cancel
Save