bkeadm/pkg/initialize/bkeconsole/resource/oauth-webhook/webhook-config.yaml-代码预览-bkeadm:基于 Kubernetes 的容器编排工具项目 - AtomGit

729bfb78创建于 2025年8月23日历史提交

apiVersion: v1
kind: Config
clusters:
  - name: oauth-webhook
    cluster:
      certificate-authority: /var/lib/rancher/k3s/webhook/ca.pem    # 用来验证远程服务的CA
      server: https://oauth-webhook.openfuyao-system.svc.cluster.local:9095/oauth/tokenauth/fuyao         # 远程服务URL
# users指代APIServer的Webhook配置
users:
  - name: kubernetes
    user:
      client-certificate: /var/lib/rancher/k3s/webhook/server.crt     # Webhook插件使用的证书
      client-key: /var/lib/rancher/k3s/webhook/server.key         # 与证书匹配的密钥
current-context: webhook
contexts:
  - context:
      cluster: oauth-webhook
      user: kubernetes
    name: webhook