Skip to content
/ k8s-client-gen Public

Bash script to create client certificates signed by the kubernetes CA

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

PeeK1e/k8s-client-gen

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
.gitignore
.gitignore
 
 
README.md
README.md
 
 
gen-client-conf.sh
gen-client-conf.sh
 
 
rbac.yaml
rbac.yaml
 
 

Repository files navigation

TL;DR

You will need an already functioning kubeconfig whith permissions to approve CSRs

Run NAME=jason bash gen-client-conf.sh to generate a kubeconfig and certificate signed for the user and group jason

There is a Role and RoleBinding for an read only User in the rbac.yaml

Dependencies

openssl
kubectl
yq      # go-yq
base64
cat
tr

The Script

This is a simple bash script creating a user certificate via a certificate signing request.

To set the username set the NAME environment variable.

Run the script to generate a certificate and kubeconfig.

The config will be output to $(pwd)/kubeconfig.yaml

About

Bash script to create client certificates signed by the kubernetes CA

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Languages