istio
/
istio.io
mirror of https://github.com/istio/istio.io.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Kops Docs: Fix ServiceAccountVolume proposed configuration (#8893) 

Seems that after merging https://github.com/kubernetes/kops/pull/9534
there is no need to specify paths for key-files for service Account
Token Volume Projection.

Instead, current configuration proposed is making Istio unable to verify
JWT token with errors. In this commit, we remove the paths, letting Kops
handles the default ones that are working as expected.

Signed-off-by: dntosas <ntosas@gmail.com>
This commit is contained in:
Jim Ntosas 2021-02-02 23:43:50 +02:00 committed by GitHub
parent 6dd91af7cb
commit d65c3631ee
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 0 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
content/en/docs/setup/platform-setup/kops/index.md
View File

@ -24,9 +24,6 @@ If you wish to run Istio [Secret Discovery Service](https://www.envoyproxy.io/do
- api
- istio-ca
serviceAccountIssuer: kubernetes.default.svc
serviceAccountKeyFile:
- /srv/kubernetes/server.key
serviceAccountSigningKeyFile: /srv/kubernetes/server.key
{{< /text >}}
1. Perform the update: