Puppet Class: k8s::base_dirs
- Defined in:
- modules/k8s/manifests/base_dirs.pp
Overview
SPDX-License-Identifier: Apache-2.0
2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 |
# File 'modules/k8s/manifests/base_dirs.pp', line 2
class k8s::base_dirs {
# TODO: This directory is created by kubernetes debian packages >= 1.23
file { '/etc/kubernetes':
ensure => directory,
owner => 'root',
group => 'root',
mode => '0755',
}
# Ensure /etc/kubernetes/pki is created with generic read permissions as
# multiple users will need to access certificates within.
#
# cfssl::cert does create this resource with more tight permissions
# (based on the owner of the certificate) if not defined in advance.
# FIXME: https://phabricator.wikimedia.org/T337826
$cert_dir = '/etc/kubernetes/pki'
unless defined(File[$cert_dir]) {
file { $cert_dir:
ensure => 'directory',
owner => 'root',
group => 'root',
mode => '0755',
}
}
}
|