Add InsecureSkipTLSVerification field to Cluster.

Signed-off-by: RainbowMango <renhongcai@huawei.com>
2021-02-02 15:10:13 +08:00 · 2021-02-02 15:10:13 +08:00 · 59b8bb46b5
parent 77830aada3
commit 59b8bb46b5
2 changed files with 14 additions and 0 deletions
--- a/artifacts/deploy/cluster.karmada.io_clusters.yaml
+++ b/artifacts/deploy/cluster.karmada.io_clusters.yaml
@ -58,6 +58,13 @@ spec:
                description: The API endpoint of the member cluster. This can be a
                  hostname, hostname:port, IP or IP:port.
                type: string
+              insecureSkipTLSVerification:
+                description: InsecureSkipTLSVerification indicates that the karmada
+                  control plane should not confirm the validity of the serving certificate
+                  of the cluster it is connecting to. This will make the HTTPS connection
+                  between the karmada control plane and the member cluster insecure.
+                  Defaults to false.
+                type: boolean
              manageMode:
                description: ManageMode specifies the relationship between control
                  plane and member cluster, the mode determines how to reach each
--- a/pkg/apis/cluster/v1alpha1/types.go
+++ b/pkg/apis/cluster/v1alpha1/types.go
@ -54,6 +54,13 @@ type ClusterSpec struct {
 	// +optional
 	SecretRef *LocalSecretReference `json:"secretRef,omitempty"`

+	// InsecureSkipTLSVerification indicates that the karmada control plane should not confirm the validity of the serving
+	// certificate of the cluster it is connecting to. This will make the HTTPS connection between the karmada control
+	// plane and the member cluster insecure.
+	// Defaults to false.
+	// +optional
+	InsecureSkipTLSVerification bool `json:"insecureSkipTLSVerification,omitempty"`
+
 	// Provider represents the cloud provider name of the member cluster.
 	// +optional
 	Provider string `json:"provider,omitempty"`