Merge pull request #49045 from ericchiang/remove-anytoken-authenticator-option

Automatic merge from submit-queue (batch tested with PRs 49058, 49072, 49137, 49182, 49045) *: remove --insecure-allow-any-token option ~Since the authenticator is still used in e2e tests, don't remove the actual package. Maybe a follow up?~ edit: e2e and integration tests have been switched over to the tokenfile authenticator instead. ```release-note The --insecure-allow-any-token flag has been removed from kube-apiserver. Users of the flag should use impersonation headers instead for debugging. ``` closes #49031 cc @kubernetes/sig-auth-pr-reviews
2025-11-02 11:18:16 +00:00 · 2017-07-19 10:27:29 -07:00
parent 7dc0322b0c e2f2ab67f2
commit b78fc209a4
16 changed files with 55 additions and 212 deletions
--- a/hack/make-rules/test-cmd-util.sh
+++ b/hack/make-rules/test-cmd-util.sh
@@ -4133,8 +4133,9 @@ runTests() {
    -s "http://127.0.0.1:${API_PORT}"
  )

+  # token defined in hack/testdata/auth-tokens.csv
  kube_flags_with_token=(
-    -s "https://127.0.0.1:${SECURE_API_PORT}" --token=admin/system:masters --insecure-skip-tls-verify=true
+    -s "https://127.0.0.1:${SECURE_API_PORT}" --token=admin-token --insecure-skip-tls-verify=true
  )

  if [[ -z "${ALLOW_SKEW:-}" ]]; then