shvyrev · November 11, 2024 09:35
diff --git a/gistfile1.txt b/gistfile1.txt
 {} ~ curl -v --insecure https://192.168.76.254:6443/api
 *   Trying 192.168.76.254:6443...
 * Connected to 192.168.76.254 (192.168.76.254) port 6443 (#0)
 * ALPN, offering h2
 * ALPN, offering http/1.1
 * successfully set certificate verify locations:
 *  CAfile: /etc/ssl/cert.pem
 *  CApath: none
 * (304) (OUT), TLS handshake, Client hello (1):
 * (304) (IN), TLS handshake, Server hello (2):
 * (304) (IN), TLS handshake, Unknown (8):
 * (304) (IN), TLS handshake, Request CERT (13):
 * (304) (IN), TLS handshake, Certificate (11):
 * (304) (IN), TLS handshake, CERT verify (15):
 * (304) (IN), TLS handshake, Finished (20):
 * (304) (OUT), TLS handshake, Certificate (11):
 * (304) (OUT), TLS handshake, Finished (20):
 * SSL connection using TLSv1.3 / AEAD-AES128-GCM-SHA256
 * ALPN, server accepted to use h2
 * Server certificate:
 *  subject: CN=kube-apiserver
 *  start date: May 23 09:28:51 2024 GMT
 *  expire date: May 23 09:45:04 2025 GMT
 *  issuer: CN=rke2-server-ca@1716456531
 *  SSL certificate verify result: self signed certificate in certificate chain (19), continuing anyway.
 * Using HTTP2, server supports multiplexing
 * Connection state changed (HTTP/2 confirmed)
 * Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
 * Using Stream ID: 1 (easy handle 0x7fc51580ca00)
 > GET /api HTTP/2
 > Host: 192.168.76.254:6443
 > user-agent: curl/7.79.1
 > accept: */*
 >
 < HTTP/2 401
 < audit-id: 7ca87d65-a5a5-499c-a89d-181a30dfa22e
 < cache-control: no-cache, private
 < content-type: application/json
 < content-length: 157
 < date: Mon, 11 Nov 2024 09:35:04 GMT
 <
 {
  "kind": "Status",
  "apiVersion": "v1",
  "metadata": {},
  "status": "Failure",
  "message": "Unauthorized",
  "reason": "Unauthorized",
  "code": 401
 * Closing
	{} ~ curl -v --insecure https://192.168.76.254:6443/api
	* Trying 192.168.76.254:6443...
	* Connected to 192.168.76.254 (192.168.76.254) port 6443 (#0)
	* ALPN, offering h2
	* ALPN, offering http/1.1
	* successfully set certificate verify locations:
	* CAfile: /etc/ssl/cert.pem
	* CApath: none
	* (304) (OUT), TLS handshake, Client hello (1):
	* (304) (IN), TLS handshake, Server hello (2):
	* (304) (IN), TLS handshake, Unknown (8):
	* (304) (IN), TLS handshake, Request CERT (13):
	* (304) (IN), TLS handshake, Certificate (11):
	* (304) (IN), TLS handshake, CERT verify (15):
	* (304) (IN), TLS handshake, Finished (20):
	* (304) (OUT), TLS handshake, Certificate (11):
	* (304) (OUT), TLS handshake, Finished (20):
	* SSL connection using TLSv1.3 / AEAD-AES128-GCM-SHA256
	* ALPN, server accepted to use h2
	* Server certificate:
	* subject: CN=kube-apiserver
	* start date: May 23 09:28:51 2024 GMT
	* expire date: May 23 09:45:04 2025 GMT
	* issuer: CN=rke2-server-ca@1716456531
	* SSL certificate verify result: self signed certificate in certificate chain (19), continuing anyway.
	* Using HTTP2, server supports multiplexing
	* Connection state changed (HTTP/2 confirmed)
	* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
	* Using Stream ID: 1 (easy handle 0x7fc51580ca00)
	> GET /api HTTP/2
	> Host: 192.168.76.254:6443
	> user-agent: curl/7.79.1
	> accept: /
	>
	< HTTP/2 401
	< audit-id: 7ca87d65-a5a5-499c-a89d-181a30dfa22e
	< cache-control: no-cache, private
	< content-type: application/json
	< content-length: 157
	< date: Mon, 11 Nov 2024 09:35:04 GMT
	<
	{
	"kind": "Status",
	"apiVersion": "v1",
	"metadata": {},
	"status": "Failure",
	"message": "Unauthorized",
	"reason": "Unauthorized",
	"code": 401
	* Closing