mirror of
https://github.com/outbackdingo/terraform-render-bootstrap.git
synced 2026-01-27 10:20:45 +00:00
74c299bf2c
* kube-controller-manager Pods can start control loops with credentials that have been granted relevant controller manager roles or using generated service accounts bound to each role * During the migration of the control plane from self-hosted to static pods (https://github.com/poseidon/terraform-render-bootstrap/pull/148) the flag for using separate service accounts was inadvertently dropped * Restore the --use-service-account-credentials flag used before v1.16 Related: * https://kubernetes.io/docs/reference/access-authn-authz/rbac/#controller-roles * https://github.com/poseidon/terraform-render-bootstrap/pull/225