Use ClientCA for the signer controller

This commit is contained in:
Brad Davidson 2020-05-06 16:51:35 -07:00
parent f38082673d
commit 71561ecda2

View File

@ -131,8 +131,8 @@ func controllerManager(cfg *config.Control, runtime *config.ControlRuntime) erro
"bind-address": localhostIP.String(),
"secure-port": "0",
"use-service-account-credentials": "true",
"cluster-signing-cert-file": runtime.ServerCA,
"cluster-signing-key-file": runtime.ServerCAKey,
"cluster-signing-cert-file": runtime.ClientCA,
"cluster-signing-key-file": runtime.ClientCAKey,
}
if cfg.NoLeaderElect {
argsMap["leader-elect"] = "false"