Browse Source
add new variable allowing additionnal audit webhook server options (#6726)
pull/6728/head
orange-llajeanne
4 years ago
committed by
GitHub
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with
4 additions and
0 deletions
-
roles/kubernetes/master/defaults/main/main.yml
-
roles/kubernetes/master/templates/apiserver-audit-webhook-config.yaml.j2
|
|
|
@ -72,6 +72,7 @@ kubernetes_audit_webhook: false |
|
|
|
# path to audit webhook config file |
|
|
|
audit_webhook_config_file: "{{ kube_config_dir }}/audit-policy/apiserver-audit-webhook-config.yaml" |
|
|
|
audit_webhook_server_url: "https://audit.app" |
|
|
|
audit_webhook_server_extra_args: {} |
|
|
|
audit_webhook_mode: batch |
|
|
|
audit_webhook_batch_max_size: 100 |
|
|
|
audit_webhook_batch_max_wait: 1s |
|
|
|
|
|
|
|
@ -3,6 +3,9 @@ kind: Config |
|
|
|
clusters: |
|
|
|
- cluster: |
|
|
|
server: {{ audit_webhook_server_url }} |
|
|
|
{% for key in audit_webhook_server_extra_args %} |
|
|
|
{{ key }}: "{{ audit_webhook_server_extra_args[key] }}" |
|
|
|
{% endfor %} |
|
|
|
name: auditsink |
|
|
|
contexts: |
|
|
|
- context: |
|
|
|
|
