github.com/enmand/kubernetes@v1.2.0-alpha.0/docs/admin/high-availability/kube-apiserver.yaml

github.com/enmand/kubernetes@v1.2.0-alpha.0/docs/admin/high-availability/kube-apiserver.yaml (about)

     1  apiVersion: v1
     2  kind: Pod
     3  metadata:
     4    name: kube-apiserver
     5  spec:
     6    hostNetwork: true
     7    containers:
     8    - name: kube-apiserver
     9      image: gcr.io/google_containers/kube-apiserver:9680e782e08a1a1c94c656190011bd02
    10      command:
    11      - /bin/sh
    12      - -c
    13      - /usr/local/bin/kube-apiserver --address=127.0.0.1 --etcd-servers=http://127.0.0.1:4001
    14        --cloud-provider=gce   --admission-control=NamespaceLifecycle,LimitRanger,SecurityContextDeny,ServiceAccount,DenyEscalatingExec,ResourceQuota
    15        --service-cluster-ip-range=10.0.0.0/16 --client-ca-file=/srv/kubernetes/ca.crt
    16        --basic-auth-file=/srv/kubernetes/basic_auth.csv --cluster-name=e2e-test-bburns
    17        --tls-cert-file=/srv/kubernetes/server.cert --tls-private-key-file=/srv/kubernetes/server.key
    18        --secure-port=443 --token-auth-file=/srv/kubernetes/known_tokens.csv  --v=2
    19        --allow-privileged=False 1>>/var/log/kube-apiserver.log 2>&1
    20      ports:
    21      - containerPort: 443
    22        hostPort: 443
    23        name: https
    24      - containerPort: 7080
    25        hostPort: 7080
    26        name: http
    27      - containerPort: 8080
    28        hostPort: 8080
    29        name: local
    30      volumeMounts:
    31      - mountPath: /srv/kubernetes
    32        name: srvkube
    33        readOnly: true
    34      - mountPath: /var/log/kube-apiserver.log
    35        name: logfile
    36      - mountPath: /etc/ssl
    37        name: etcssl
    38        readOnly: true
    39      - mountPath: /usr/share/ssl
    40        name: usrsharessl
    41        readOnly: true
    42      - mountPath: /var/ssl
    43        name: varssl
    44        readOnly: true
    45      - mountPath: /usr/ssl
    46        name: usrssl
    47        readOnly: true
    48      - mountPath: /usr/lib/ssl
    49        name: usrlibssl
    50        readOnly: true
    51      - mountPath: /usr/local/openssl
    52        name: usrlocalopenssl
    53        readOnly: true
    54      - mountPath: /etc/openssl
    55        name: etcopenssl
    56        readOnly: true
    57      - mountPath: /etc/pki/tls
    58        name: etcpkitls
    59        readOnly: true
    60    volumes:
    61    - hostPath:
    62        path: /srv/kubernetes
    63      name: srvkube
    64    - hostPath:
    65        path: /var/log/kube-apiserver.log
    66      name: logfile
    67    - hostPath:
    68        path: /etc/ssl
    69      name: etcssl
    70    - hostPath:
    71        path: /usr/share/ssl
    72      name: usrsharessl
    73    - hostPath:
    74        path: /var/ssl
    75      name: varssl
    76    - hostPath:
    77        path: /usr/ssl
    78      name: usrssl
    79    - hostPath:
    80        path: /usr/lib/ssl
    81      name: usrlibssl
    82    - hostPath:
    83        path: /usr/local/openssl
    84      name: usrlocalopenssl
    85    - hostPath:
    86        path: /etc/openssl
    87      name: etcopenssl
    88    - hostPath:
    89        path: /etc/pki/tls
    90      name: etcpkitls