kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
kops/tests/integration/update_cluster/public-jwks
History
Ciprian Hacman ca408f7e8f Set default volume type to "gp3" for etcd-manager volumes in AWS 2021-01-27 06:23:27 +02:00
..
data Set default container runtime to containerd 2021-01-16 14:55:35 +00:00
README.md Update script and testdata CA keypair 2020-09-12 16:21:15 -04:00
ca.crt Update script and testdata CA keypair 2020-09-12 16:21:15 -04:00
ca.key Update script and testdata CA keypair 2020-09-12 16:21:15 -04:00
id_rsa.pub Expose JWKS via a feature-flag 2020-08-30 10:15:11 -04:00
in-v1alpha2.yaml Set default container runtime to containerd 2021-01-16 14:55:35 +00:00
kubernetes.tf Set default volume type to "gp3" for etcd-manager volumes in AWS 2021-01-27 06:23:27 +02:00

README.md

Simple test of (experimental) JWKS functionality

We have to use a fixed CA because the fingerprint is inserted into the AWS WebIdentity configuration.

ca.crt & ca.key generated with:

openssl req -new -newkey rsa:512 -days 3650 -nodes -x509 -subj "/CN=kubernetes" -keyout ca.key -out ca.crt -config <(cat /etc/ssl/openssl.cnf <(printf "[ v3_ca ]\nkeyUsage = critical,keyCertSign,cRLSign"))