Last active
October 9, 2023 01:47
Revisions
-
ktsakalozos revised this gist
Apr 28, 2020 . 1 changed file with 2 additions and 1 deletion.There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,6 +1,6 @@ #!/bin/bash set -eu export SNAP_NAME="microk8s" export SNAP_DATA="/var/snap/microk8s/current/" @@ -86,5 +86,6 @@ $SNAP/bin/sed -i '/username/d' ${SNAP_DATA}/credentials/proxy.config $SNAP/bin/sed -i 's/AUTHTYPE/token/g' ${SNAP_DATA}/credentials/proxy.config $SNAP/bin/sed -i 's/PASSWORD/'"${proxy_token}"'/g' ${SNAP_DATA}/credentials/proxy.config echo "Restarting microK8s" $SNAP/microk8s-stop.wrapper || true $SNAP/microk8s-start.wrapper -
Apr 28, 2020 . 1 changed file with 3 additions and 9 deletions.There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -1,6 +1,6 @@ #!/bin/bash set -eux export SNAP_NAME="microk8s" export SNAP_DATA="/var/snap/microk8s/current/" @@ -16,15 +16,10 @@ then exit 0 fi if echo "$*" | grep -v -q -- '--kubeconfig'; then exit_if_no_permissions fi # Backup BACKUP=$SNAP_DATA/var/log/ca-backup/ echo "Backing up certificates under $BACKUP" @@ -39,8 +34,8 @@ rm -rf ${SNAP_DATA}/certs/csr.conf produce_certs rm -rf .srl # Create the basic tokens echo "Creating new kubeconfig file" mkdir -p ${SNAP_DATA}/credentials admin_token=`grep admin ${SNAP_DATA}/credentials/basic_auth.csv | cut -d, -f1` ca_data=$(cat ${SNAP_DATA}/certs/ca.crt | ${SNAP}/usr/bin/base64 -w 0) @@ -91,6 +86,5 @@ $SNAP/bin/sed -i '/username/d' ${SNAP_DATA}/credentials/proxy.config $SNAP/bin/sed -i 's/AUTHTYPE/token/g' ${SNAP_DATA}/credentials/proxy.config $SNAP/bin/sed -i 's/PASSWORD/'"${proxy_token}"'/g' ${SNAP_DATA}/credentials/proxy.config $SNAP/microk8s-stop.wrapper || true $SNAP/microk8s-start.wrapper -
Apr 28, 2020 . 1 changed file with 1 addition and 1 deletion.There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -82,7 +82,7 @@ $SNAP/bin/sed -i 's/NAME/kubelet/g' ${SNAP_DATA}/credentials/kubelet.config $SNAP/bin/sed -i 's/CADATA/'"${ca_data}"'/g' ${SNAP_DATA}/credentials/kubelet.config $SNAP/bin/sed -i '/username/d' ${SNAP_DATA}/credentials/kubelet.config $SNAP/bin/sed -i 's/AUTHTYPE/token/g' ${SNAP_DATA}/credentials/kubelet.config $SNAP/bin/sed -i 's/PASSWORD/'"${kubelet_token}"'/g' ${SNAP_DATA}/credentials/kubelet.config cp ${SNAP}/client.config.template ${SNAP_DATA}/credentials/proxy.config $SNAP/bin/sed -i 's/NAME/kubeproxy/g' ${SNAP_DATA}/credentials/proxy.config -
Apr 28, 2020 .There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters. Learn more about bidirectional Unicode charactersOriginal file line number Diff line number Diff line change @@ -0,0 +1,96 @@ #!/bin/bash set -eu export SNAP_NAME="microk8s" export SNAP_DATA="/var/snap/microk8s/current/" export SNAP="/snap/microk8s/current/" export PATH="$SNAP/usr/sbin:$SNAP/usr/bin:$SNAP/sbin:$SNAP/bin:$PATH" source $SNAP/actions/common/utils.sh if [ -e ${SNAP_DATA}/var/lock/clustered.lock ] then echo "This MicroK8s deployment is acting as a node in a cluster. Please use the microk8s refresh-cert command on the master" echo "and then return to this node to perform a microk8s leave and re-join." exit 0 fi exit_if_stopped if echo "$*" | grep -v -q -- '--kubeconfig'; then exit_if_no_permissions fi echo "Stopping MicroK8s" $SNAP/microk8s-stop.wrapper # Backup BACKUP=$SNAP_DATA/var/log/ca-backup/ echo "Backing up certificates under $BACKUP" mkdir -p $SNAP_DATA/var/log/ca-backup/ cp -r ${SNAP_DATA}/certs $BACKUP cp -r ${SNAP_DATA}/credentials $BACKUP/ echo "Creating new certificates" rm -rf ${SNAP_DATA}/certs/ca.crt rm -rf ${SNAP_DATA}/certs/front-proxy-ca.crt rm -rf ${SNAP_DATA}/certs/csr.conf produce_certs rm -rf .srl echo "Creating new kubeconfig file" # Create the basic tokens mkdir -p ${SNAP_DATA}/credentials admin_token=`grep admin ${SNAP_DATA}/credentials/basic_auth.csv | cut -d, -f1` ca_data=$(cat ${SNAP_DATA}/certs/ca.crt | ${SNAP}/usr/bin/base64 -w 0) # Create the client kubeconfig cp ${SNAP}/client.config.template ${SNAP_DATA}/credentials/client.config $SNAP/bin/sed -i 's/PASSWORD/'"${admin_token}"'/g' ${SNAP_DATA}/credentials/client.config $SNAP/bin/sed -i 's/CADATA/'"${ca_data}"'/g' ${SNAP_DATA}/credentials/client.config $SNAP/bin/sed -i 's/NAME/admin/g' ${SNAP_DATA}/credentials/client.config $SNAP/bin/sed -i 's/AUTHTYPE/password/g' ${SNAP_DATA}/credentials/client.config $SNAP/bin/sed -i 's/PASSWORD/'"${admin_token}"'/g' ${SNAP_DATA}/credentials/client.config # Create the known tokens proxy_token=`grep kube-proxy ${SNAP_DATA}/credentials/known_tokens.csv | cut -d, -f1` hostname=$(hostname) kubelet_token=`grep kubelet-0 ${SNAP_DATA}/credentials/known_tokens.csv | cut -d, -f1` controller_token=`grep kube-controller-manager ${SNAP_DATA}/credentials/known_tokens.csv | cut -d, -f1` scheduler_token=`grep kube-scheduler ${SNAP_DATA}/credentials/known_tokens.csv | cut -d, -f1` # Create the client kubeconfig for the controller cp ${SNAP}/client.config.template ${SNAP_DATA}/credentials/controller.config $SNAP/bin/sed -i 's/CADATA/'"${ca_data}"'/g' ${SNAP_DATA}/credentials/controller.config $SNAP/bin/sed -i 's/NAME/controller/g' ${SNAP_DATA}/credentials/controller.config $SNAP/bin/sed -i '/username/d' ${SNAP_DATA}/credentials/controller.config $SNAP/bin/sed -i 's/AUTHTYPE/token/g' ${SNAP_DATA}/credentials/controller.config $SNAP/bin/sed -i 's/PASSWORD/'"${controller_token}"'/g' ${SNAP_DATA}/credentials/controller.config # Create the client kubeconfig for the scheduler cp ${SNAP}/client.config.template ${SNAP_DATA}/credentials/scheduler.config $SNAP/bin/sed -i 's/CADATA/'"${ca_data}"'/g' ${SNAP_DATA}/credentials/scheduler.config $SNAP/bin/sed -i 's/NAME/scheduler/g' ${SNAP_DATA}/credentials/scheduler.config $SNAP/bin/sed -i '/username/d' ${SNAP_DATA}/credentials/scheduler.config $SNAP/bin/sed -i 's/AUTHTYPE/token/g' ${SNAP_DATA}/credentials/scheduler.config $SNAP/bin/sed -i 's/PASSWORD/'"${scheduler_token}"'/g' ${SNAP_DATA}/credentials/scheduler.config # Create the proxy and kubelet kubeconfig cp ${SNAP}/client.config.template ${SNAP_DATA}/credentials/kubelet.config $SNAP/bin/sed -i 's/NAME/kubelet/g' ${SNAP_DATA}/credentials/kubelet.config $SNAP/bin/sed -i 's/CADATA/'"${ca_data}"'/g' ${SNAP_DATA}/credentials/kubelet.config $SNAP/bin/sed -i '/username/d' ${SNAP_DATA}/credentials/kubelet.config $SNAP/bin/sed -i 's/AUTHTYPE/token/g' ${SNAP_DATA}/credentials/kubelet.config $SNAP/in/sed -i 's/PASSWORD/'"${kubelet_token}"'/g' ${SNAP_DATA}/credentials/kubelet.config cp ${SNAP}/client.config.template ${SNAP_DATA}/credentials/proxy.config $SNAP/bin/sed -i 's/NAME/kubeproxy/g' ${SNAP_DATA}/credentials/proxy.config $SNAP/bin/sed -i 's/CADATA/'"${ca_data}"'/g' ${SNAP_DATA}/credentials/proxy.config $SNAP/bin/sed -i '/username/d' ${SNAP_DATA}/credentials/proxy.config $SNAP/bin/sed -i 's/AUTHTYPE/token/g' ${SNAP_DATA}/credentials/proxy.config $SNAP/bin/sed -i 's/PASSWORD/'"${proxy_token}"'/g' ${SNAP_DATA}/credentials/proxy.config echo "Starting MicroK8s" $SNAP/microk8s-start.wrapper