@ -21,6 +21,7 @@ kubernetes_etcd_snapshot_retention: 5
|
|||||||
|
|
||||||
kubernetes_type: k8s # Mandatory, String. choice K8s | k3s
|
kubernetes_type: k8s # Mandatory, String. choice K8s | k3s
|
||||||
|
|
||||||
|
kube_apiserver_arg_audit_log_maxbackup: 2
|
||||||
|
|
||||||
kubelet_arg_system_reserved_cpu: 450m
|
kubelet_arg_system_reserved_cpu: 450m
|
||||||
kubelet_arg_system_reserved_memory: 512Mi
|
kubelet_arg_system_reserved_memory: 512Mi
|
||||||
|
|||||||
@ -26,6 +26,7 @@ etcd-snapshot-schedule-cron: "{{ kubernetes_etcd_snapshot_cron_schedule }}"
|
|||||||
flannel-backend: none
|
flannel-backend: none
|
||||||
kube-apiserver-arg:
|
kube-apiserver-arg:
|
||||||
- audit-log-path=/var/lib/rancher/k3s/server/logs/audit.log
|
- audit-log-path=/var/lib/rancher/k3s/server/logs/audit.log
|
||||||
|
- audit-log-maxbackup={{ kube_apiserver_arg_audit_log_maxbackup }}
|
||||||
- audit-policy-file=/var/lib/rancher/k3s/server/audit.yaml
|
- audit-policy-file=/var/lib/rancher/k3s/server/audit.yaml
|
||||||
# - admission-control-config-file=/var/lib/rancher/k3s/server/psa.yaml
|
# - admission-control-config-file=/var/lib/rancher/k3s/server/psa.yaml
|
||||||
{% if kubernetes_config.cluster.oidc.enabled | default(false) | bool -%}
|
{% if kubernetes_config.cluster.oidc.enabled | default(false) | bool -%}
|
||||||
|
|||||||
Reference in New Issue
Block a user