Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

集群apiserver证书支持直接配置IP和域名 #3002

Merged
merged 2 commits into from
Mar 5, 2024
Merged

集群apiserver证书支持直接配置IP和域名 #3002

merged 2 commits into from
Mar 5, 2024

Conversation

denglouping
Copy link
Collaborator

集群apiserver证书支持直接配置IP和域名

@abstractmj abstractmj requested review from bingoct and wingyao666 March 1, 2024 09:34
bingoct
bingoct reviewed Mar 4, 2024
View reviewed changes
Copy link
Collaborator

@bingoct bingoct left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

PTAL

bcs-ops/readme.md Outdated
| 环境变量 | 默认值 | 说明 |
| ------------------------- | --------------------------- |--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| `ENABLE_APISERVER_HA` | `false` | apiserver ha 模式,默认关闭。 |
| `APISERVER_HA_MODE` | `bcs-apiserver-proxy` | 模式选择,支持 [bcs-apiserver-proxy](https://github.com/TencentBlueKing/bk-bcs/blob/625be3183d99ee3500123016a6dea99d78165565/docs/features/bcs-apiserver-proxy/bcs-apiserver-proxy.md#L1), [kube-vip](https://kube-vip.io/), external |

This comment was marked as outdated.

Sign in to view

bcs-ops/functions/k8s.sh
|| utils::log "ERROR" "failed to ${op_type} ${vips} ${path}"
fi

utils::log "OK" "${op_type} ${vips} ${path}"
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

op_type 为 list 的时候,vips 没有值。或者赋值的时候使用 ${3:-""} 默认空值。

bcs-ops/functions/k8s.sh Outdated
add)
for vip in ${vips//,/ };do
if [[ -n "${vip}" ]];then
yq e -i '(select(.apiServer != null)|.apiServer.certSANs) += ["'${vip}'"]' ${path}
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

使用 unique 去重。https://mikefarah.gitbook.io/yq/operators/unique

bcs-ops/k8s/render_kubeadm Outdated
@@ -316,6 +318,8 @@ safe_source() {
fi
}

safe_source "${ROOT_DIR}/functions/k8s.sh"
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

放到 line 325 的 source_files内。

@abstractmj abstractmj merged commit ec822f3 into TencentBlueKing:master Mar 5, 2024
10 of 11 checks passed
wenxinlee2015 added a commit that referenced this pull request Mar 5, 2024
@wenxinlee2015
Merge remote-tracking branch 'github-bk-bcs/master'
b62bfde 
* github-bk-bcs/master:
  集群apiserver证书支持直接配置IP和域名 (#3002)
  1. 新增客户端metrics (#2863)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bingoct bingoct bingoct approved these changes

@wingyao666 wingyao666 Awaiting requested review from wingyao666

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@denglouping @bingoct @abstractmj