Andrey Smirnov 31e56e63db fix: update in-cluster kubeconfig validity to match other certs ...

Talos generates in-cluster kubeconfig for the kube-scheduler and
kube-controller-manager to authenticate to kube-apiserver. Bug was that
validity of that kubeconfig was set to 24h by mistake. Fix that by
bumping validity to default for other Kubernetes certs (1 year).

Add a certificate refresh at 50% of the validity.

Fix bugs with copying secret resources which was leading to updates not
being propagated correctly.

Signed-off-by: Andrey Smirnov <smirnov.andrey@gmail.com>

2021-03-01 11:16:04 -08:00

..

api.go

test: add integration test framework

2019-11-05 17:21:38 +03:00

apply-config.go

test: upgrade master to master tests

2021-02-24 07:56:44 -08:00

diskusage.go

test: clean up integration test code, fix flakes

2020-10-19 15:44:14 -07:00

dmesg.go

chore: enable nlreturn linter

2020-11-09 06:48:07 -08:00

etcd.go

test: update integration tests to use wrapped client for etcd APIs

2021-02-18 08:08:48 -08:00

events.go

fix: update in-cluster kubeconfig validity to match other certs

2021-03-01 11:16:04 -08:00

generate-config.go

fix: correct response structure for GenerateConfig API

2021-02-11 06:34:10 -08:00

logs.go

chore: enable nlreturn linter

2020-11-09 06:48:07 -08:00

network-interfaces.go

feat: implement network interfaces list API

2020-11-27 10:48:45 -08:00

reboot.go

test: stabilize upgrade test by running health check several times

2020-12-11 08:31:01 -08:00

reset.go

test: add support for IPv6 in talosctl cluster create

2021-02-09 13:28:53 -08:00

version.go

test: clean up integration test code, fix flakes

2020-10-19 15:44:14 -07:00