summaryrefslogtreecommitdiffstats
path: root/roles/openshift_master_certificates
diff options
context:
space:
mode:
authorAndrew Butcher <abutcher@redhat.com>2017-06-27 13:20:42 -0400
committerAndrew Butcher <abutcher@redhat.com>2017-06-27 16:09:30 -0400
commit0090224d431a9a6553e13e6d8b959de0866607e7 (patch)
tree3443d55caac599590230e9257804b898773af84b /roles/openshift_master_certificates
parentdf511d532a0cf24f4f732b8affc0a97775c8edb9 (diff)
downloadopenshift-0090224d431a9a6553e13e6d8b959de0866607e7.tar.gz
openshift-0090224d431a9a6553e13e6d8b959de0866607e7.tar.bz2
openshift-0090224d431a9a6553e13e6d8b959de0866607e7.tar.xz
openshift-0090224d431a9a6553e13e6d8b959de0866607e7.zip
Generate loopback kubeconfig separately to preserve OpenShift CA certificate.
Diffstat (limited to 'roles/openshift_master_certificates')
-rw-r--r--roles/openshift_master_certificates/tasks/main.yml2
1 files changed, 1 insertions, 1 deletions
diff --git a/roles/openshift_master_certificates/tasks/main.yml b/roles/openshift_master_certificates/tasks/main.yml
index 62413536b..d9ffb1b6f 100644
--- a/roles/openshift_master_certificates/tasks/main.yml
+++ b/roles/openshift_master_certificates/tasks/main.yml
@@ -74,10 +74,10 @@
- name: Generate the loopback master client config
command: >
{{ hostvars[openshift_ca_host].openshift.common.client_binary }} adm create-api-client-config
+ --certificate-authority={{ openshift_ca_cert }}
{% for named_ca_certificate in openshift.master.named_certificates | default([]) | oo_collect('cafile') %}
--certificate-authority {{ named_ca_certificate }}
{% endfor %}
- --certificate-authority={{ openshift_ca_cert }}
--client-dir={{ openshift_generated_configs_dir }}/master-{{ hostvars[item].openshift.common.hostname }}
--groups=system:masters,system:openshift-master
--master={{ hostvars[item].openshift.master.loopback_api_url }}