kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
apiserver/pkg/authentication/request
History
Jacob Simpson 68a92a4526 Add metric for remaining life of authenticating certificates 
When incoming requests to the API server are authenticated by a
certificate, the expiration of the certificate can affect the validity
of the authentication. With auto rotation of certificates, which is
starting with kubelet certificates, the goal is to use shorter lifetimes
and let the kubelet renew the certificate as desired. Monitoring
certificates which are approaching expiration and not renewing would be
an early warning sign that nodes are about to stop participating in the
cluster.

Kubernetes-commit: 49a19c6011e05363a8baf8e99c917d11a9496568
 		2017-08-29 13:16:14 +00:00
..
anonymous Use buildozer to delete licenses() rules except under third_party/ 2017-08-29 13:15:24 +00:00
bearertoken Use buildozer to delete licenses() rules except under third_party/ 2017-08-29 13:15:24 +00:00
headerrequest Use buildozer to delete licenses() rules except under third_party/ 2017-08-29 13:15:24 +00:00
union Use buildozer to delete licenses() rules except under third_party/ 2017-08-29 13:15:24 +00:00
websocket Use buildozer to delete licenses() rules except under third_party/ 2017-08-29 13:15:24 +00:00
x509 Add metric for remaining life of authenticating certificates 2017-08-29 13:16:14 +00:00