kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

azure: Remove permissions for nodes when dns=none

This commit is contained in:
Ciprian Hacman 2023-07-14 13:46:26 +03:00
parent ecbcd7a66c
commit 15b44bad52
1 changed files with 13 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
pkg/model/azuremodel/vmscaleset.go
View File

@ -49,6 +49,7 @@ func (b *VMScaleSetModelBuilder) Build(c *fi.CloudupModelBuilderContext) error {
} }
c.AddTask(vmss) c.AddTask(vmss)
if ig.IsControlPlane() || b.Cluster.UsesLegacyGossip() {
// Create tasks for assigning built-in roles to VM Scale Sets. // Create tasks for assigning built-in roles to VM Scale Sets.
// See https://docs.microsoft.com/en-us/azure/role-based-access-control/built-in-roles // See https://docs.microsoft.com/en-us/azure/role-based-access-control/built-in-roles
// for the ID definitions. // for the ID definitions.
@ -62,6 +63,7 @@ func (b *VMScaleSetModelBuilder) Build(c *fi.CloudupModelBuilderContext) error {
c.AddTask(b.buildRoleAssignmentTask(vmss, k, roleDefID)) c.AddTask(b.buildRoleAssignmentTask(vmss, k, roleDefID))
} }
} }
}
return nil return nil
} }