Still trying to figure out the ssh permissions.

Adam Heath
Showing 1 changed file with 20 additions and 9 deletions
k8s-bootstrap.yaml
--- a/k8s-bootstrap.yaml
View file @d7cb861
+++ b/k8s-bootstrap.yaml
View file @d7cb861
@@ -43,6 +43,22 @@ spec:
        key: node-role.kubernetes.io/master

      volumes:
+        - name: k8s-bootstrap-ssh-config
+          configMap:
+            name: k8s-bootstrap-config
+            defaultMode: 0600
+            items:
+              - name: SSH_CONFIG
+                path: config
+
+        - name: k8s-bootstrap-ssh-auth
+          secret:
+            secretName: cluster-ssh
+            defaultMode: 0600
+            items:
+              - name: ssh-private-key
+                path: id
+
        - name: k8s-bootstrap-scripts
          configMap:
            name: k8s-bootstrap-scripts
@@ -51,10 +67,6 @@ spec:
          emptyDir: {}
        - name: git-storage
          emptyDir: {}
-        - name: cluster-ssh
-          secret:
-            secretName: cluster-ssh
-            defaultMode: 0600

      initContainers:
        - name: clone-k8s-start-of-day
@@ -67,13 +79,12 @@ spec:
              mountPath: /tmp/k8s-bootstrap-scripts
            - name: cluster-home
              mountPath: /tmp/cluster-home
-            - name: cluster-ssh
+            - name: k8s-bootstrap-ssh-auth
              mountPath: /tmp/cluster-home/.ssh/id
-              subPath: ssh-private-key
-            - name: cluster-ssh
+              subPath: id
+            - name: k8s-bootstrap-ssh-config
              mountPath: /tmp/cluster-home/.ssh/config
-              subPath: SSH_CONFIG
-              mode: 600
+              subPath: config
            - name: git-storage
              mountPath: /tmp/git-storage
          command: ["/tmp/k8s-bootstrap-scripts/clone-start-of-day"]