Provide another way to sign certificates for volcano admission controller #649
Labels
kind/feature
Categorizes issue or PR as related to a new feature.
Milestone
Comments
volcano-sh-bot
added
the
kind/feature
|
/cc @RainbowMango |
|
@hzxuzhonghu , I'd like to know the root cause of the issue? for example, does k8s support current way? how can we sure openssl & cfssl can resolve the problem? |
|
BY the tool, we donot rely on k8s to sign a certificate, so definitely this can be resolved |
|
/cc @nicklhy |
|
what''s next steps? |
|
@RainbowMango Are you still interested in this ? |
This was referenced Feb 19, 2020
Closed
|
This is done in #709 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
/kind feature
Currently, we use this script to create a csr and use kubernetes to sign the certificate,
https://github.com/volcano-sh/volcano/blob/master/installer/dockerfile/webhook-manager/gen-admission-secret.sh
However, there are at least two users reported failure installing volcano with certificate not found. https://volcano-sh.slack.com/archives/CGEDAT353/p1577347378003400, this is mainly caused by vendor customized k8s.
So i would propose to provide another way to generate a certificate, maybe with
opensslorCFSSLThe text was updated successfully, but these errors were encountered: