kubespray/roles/kubernetes
Tomas Zvala 30c77ea4c1
Add the option to enable default Pod Security Configuration (#9017)
* Add the option to enable default Pod Security Configuration

Enable Pod Security in all namespaces by default with the option to
exempt some namespaces. Without the change only namespaces explicitly
configured will receive the admission plugin treatment.

* Fix the PR according to code review comments

* Revert the latest changes

- leave the empty file when kube_pod_security_use_default, but add comment explaining the empty file
- don't attempt magic at conditionally adding PodSecurity to kube_apiserver_admission_plugins_needs_configuration
2022-08-18 01:16:36 -07:00
..
client [kubeconfig] generate admin kube config from /etc/kubernetes/admin.conf instead of the workaround of using kubeadm init phase kubeadm admin which fails with cri-dockerd 2022-06-15 00:57:20 -07:00
control-plane Add the option to enable default Pod Security Configuration (#9017) 2022-08-18 01:16:36 -07:00
kubeadm [kubeadm] use v1beta3 configuration version 2022-06-15 00:57:20 -07:00
node pid reserved must be str (#9124) 2022-07-30 20:14:27 -07:00
node-label/tasks Use a variable for standardizing kubectl invocation (#8329) 2022-01-05 02:26:32 -08:00
preinstall Disable DNSStubListener for Flatcar Linux (#9160) 2022-08-18 00:56:49 -07:00
tokens Rename ansible groups to use _ instead of - (#7552) 2021-04-29 05:20:50 -07:00