Specify openstack metadata endpoint to be HTTPS #56892
Assignees
Labels
area/provider/openstack
Issues or PRs related to openstack provider
kind/feature
Categorizes issue or PR as related to a new feature.
Comments
k8s-ci-robot
added
the
kind/feature
k8s-github-robot
added
the
needs-sig
|
/sig openstack |
k8s-ci-robot
added
the
area/provider/openstack
k8s-github-robot
removed
the
needs-sig
|
@bputt i have a fix in progress for kubeadm+config_drive (and a tip about privileged containers) over at kubernetes/kubeadm#588 I am not familiar with this pattern of a https:// based metadata url, is this a public cloud provider? can you name names? :) Thanks, |
|
@dims thanks for working on the other issue. I can't provide information about the provider, but I was able to modify the source code and add some https logic to get everything working. I may submit a PR in January. |
|
/close |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Is this a BUG REPORT or FEATURE REQUEST?:
/kind feature
What happened: The openstack cloud-provider plugin doesn't allow you to update the metadata url to use HTTPS. The HTTP option is not available for me.
I'm not able to use the config drive, so the metadata url is my only option: #47392
You can see the url is statically set:
https://github.com/kubernetes/kubernetes/blob/master/pkg/cloudprovider/providers/openstack/metadata.go
metadataUrlTemplate = "http://169.254.169.254/openstack/%s/meta_data.json"What you expected to happen:
I'd like to be able to configure the ability to use HTTPS and specify a ca-cert
Anything else we need to know?:
Self signed certs
Environment:
kubectl version): 1.8.4uname -a): Linux 3.10The text was updated successfully, but these errors were encountered: