Unable to configure multiple service-account-issuer or service-account-keyfile parameters for apiserver #9738
Comments
|
Fixing this may be a little more difficult than I first imagined. Kubespray is templating a KubeAdm clusterConfig file which also takes these values in as a map and throws a warning if we duplicate the keys before applying the Looks like this related to kubernetes/kubeadm#1601 |
|
The Kubernetes project currently lacks enough contributors to adequately respond to all issues. This bot triages un-triaged issues according to the following rules:
You can:
Please send feedback to sig-contributor-experience at kubernetes/community. /lifecycle stale |
k8s-ci-robot
added
the
lifecycle/stale
|
The Kubernetes project currently lacks enough active contributors to adequately respond to all issues. This bot triages un-triaged issues according to the following rules:
You can:
Please send feedback to sig-contributor-experience at kubernetes/community. /lifecycle rotten |
k8s-ci-robot
added
lifecycle/rotten
|
The Kubernetes project currently lacks enough active contributors to adequately respond to all issues and PRs. This bot triages issues according to the following rules:
You can:
Please send feedback to sig-contributor-experience at kubernetes/community. /close not-planned |
|
@k8s-triage-robot: Closing this issue, marking it as "Not Planned". In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Environment:
Cloud provider or hardware configuration:
Hardware deployment
OS (
printf "$(uname -srm)\n$(cat /etc/os-release)\n"):AlmaLinux 9Kernel
5.14.0-70.30.1.el9_0.x86_64Version of Ansible (
ansible --version):2.12Version of Python (
python --version):3.8.10Kubespray version (commit) (
git rev-parse --short HEAD):2.20.0Network plugin used:
CiliumFull inventory with variables (
ansible -i inventory/sample/inventory.ini all -m debug -a "var=hostvars[inventory_hostname]"):Standard inventory. Nothing special to note.
Command used to invoke ansible:
ansible-playbook -i myInventory -b -e @vars/kubespray.yaml upgrade-cluster.yml -t 'master' -l myServer --diffOutput of ansible run:
Ansible run completes without issue
Anything else do we need to know:
I have a requirement to configure AWS EKS pod-identity-webhook in my hardware cluster.
I am currently unable to do this with KubeSpray because the variable
kube_kubeadm_apiserver_extra_argsis a simple dict which cannot take multiple of the same keys due to the way YAML functions.This means that there is no ability to do things native to kubernetes config like specify the apiServer parameter
--service-account-key-filemultiple times or specify the--service-account-issuerparameter multiple times.The text was updated successfully, but these errors were encountered: