diff --git a/aws/fedora-coreos/kubernetes/fcc/controller.yaml b/aws/fedora-coreos/kubernetes/fcc/controller.yaml index 810e2651..00a45956 100644 --- a/aws/fedora-coreos/kubernetes/fcc/controller.yaml +++ b/aws/fedora-coreos/kubernetes/fcc/controller.yaml @@ -115,7 +115,7 @@ systemd: ExecStartPre=-/usr/bin/podman rm bootstrap ExecStart=/usr/bin/podman run --name bootstrap \ --network host \ - --volume /etc/kubernetes/bootstrap-secrets:/etc/kubernetes/secrets:ro,z \ + --volume /etc/kubernetes/pki:/etc/kubernetes/pki:ro,z \ --volume /opt/bootstrap/assets:/assets:ro,Z \ --volume /opt/bootstrap/apply:/apply:ro,Z \ --entrypoint=/apply \ @@ -142,26 +142,26 @@ storage: mkdir -p -- auth tls/etcd tls/k8s static-manifests manifests/coredns manifests-networking awk '/#####/ {filename=$2; next} {print > filename}' assets mkdir -p /etc/ssl/etcd/etcd - mkdir -p /etc/kubernetes/bootstrap-secrets + mkdir -p /etc/kubernetes/pki mv tls/etcd/{peer*,server*} /etc/ssl/etcd/etcd/ - mv tls/etcd/etcd-client* /etc/kubernetes/bootstrap-secrets/ + mv tls/etcd/etcd-client* /etc/kubernetes/pki/ chown -R etcd:etcd /etc/ssl/etcd chmod -R 500 /etc/ssl/etcd - mv auth/* /etc/kubernetes/bootstrap-secrets/ - mv tls/k8s/* /etc/kubernetes/bootstrap-secrets/ + mv auth/* /etc/kubernetes/pki/ + mv tls/k8s/* /etc/kubernetes/pki/ mkdir -p /etc/kubernetes/manifests mv static-manifests/* /etc/kubernetes/manifests/ mkdir -p /opt/bootstrap/assets mv manifests /opt/bootstrap/assets/manifests mv manifests-networking/* /opt/bootstrap/assets/manifests/ rm -rf assets auth static-manifests tls manifests-networking - chcon -R -u system_u -t container_file_t /etc/kubernetes/bootstrap-secrets + chcon -R -u system_u -t container_file_t /etc/kubernetes/pki - path: /opt/bootstrap/apply mode: 0544 contents: inline: | #!/bin/bash -e - export KUBECONFIG=/etc/kubernetes/secrets/admin.conf + export KUBECONFIG=/etc/kubernetes/pki/admin.conf until kubectl version; do echo "Waiting for static pod control plane" sleep 5 diff --git a/aws/flatcar-linux/kubernetes/cl/controller.yaml b/aws/flatcar-linux/kubernetes/cl/controller.yaml index 9c2f800b..dab020dc 100644 --- a/aws/flatcar-linux/kubernetes/cl/controller.yaml +++ b/aws/flatcar-linux/kubernetes/cl/controller.yaml @@ -119,7 +119,7 @@ systemd: WorkingDirectory=/opt/bootstrap Environment=KUBELET_IMAGE=quay.io/poseidon/kubelet:v1.19.4 ExecStart=/usr/bin/docker run \ - -v /etc/kubernetes/bootstrap-secrets:/etc/kubernetes/secrets:ro \ + -v /etc/kubernetes/pki:/etc/kubernetes/pki:ro \ -v /opt/bootstrap/assets:/assets:ro \ -v /opt/bootstrap/apply:/apply:ro \ --entrypoint=/apply \ @@ -149,14 +149,14 @@ storage: mkdir -p -- auth tls/etcd tls/k8s static-manifests manifests/coredns manifests-networking awk '/#####/ {filename=$2; next} {print > filename}' assets mkdir -p /etc/ssl/etcd/etcd - mkdir -p /etc/kubernetes/bootstrap-secrets + mkdir -p /etc/kubernetes/pki mv tls/etcd/{peer*,server*} /etc/ssl/etcd/etcd/ - mv tls/etcd/etcd-client* /etc/kubernetes/bootstrap-secrets/ + mv tls/etcd/etcd-client* /etc/kubernetes/pki/ chown -R etcd:etcd /etc/ssl/etcd chmod -R 500 /etc/ssl/etcd chmod -R 700 /var/lib/etcd - mv auth/* /etc/kubernetes/bootstrap-secrets/ - mv tls/k8s/* /etc/kubernetes/bootstrap-secrets/ + mv auth/* /etc/kubernetes/pki/ + mv tls/k8s/* /etc/kubernetes/pki/ mkdir -p /etc/kubernetes/manifests mv static-manifests/* /etc/kubernetes/manifests/ mkdir -p /opt/bootstrap/assets @@ -169,7 +169,7 @@ storage: contents: inline: | #!/bin/bash -e - export KUBECONFIG=/etc/kubernetes/secrets/admin.conf + export KUBECONFIG=/etc/kubernetes/pki/admin.conf until kubectl version; do echo "Waiting for static pod control plane" sleep 5 diff --git a/azure/fedora-coreos/kubernetes/fcc/controller.yaml b/azure/fedora-coreos/kubernetes/fcc/controller.yaml index 2a71f7ce..d651551e 100644 --- a/azure/fedora-coreos/kubernetes/fcc/controller.yaml +++ b/azure/fedora-coreos/kubernetes/fcc/controller.yaml @@ -114,7 +114,7 @@ systemd: ExecStartPre=-/usr/bin/podman rm bootstrap ExecStart=/usr/bin/podman run --name bootstrap \ --network host \ - --volume /etc/kubernetes/bootstrap-secrets:/etc/kubernetes/secrets:ro,z \ + --volume /etc/kubernetes/pki:/etc/kubernetes/pki:ro,z \ --volume /opt/bootstrap/assets:/assets:ro,Z \ --volume /opt/bootstrap/apply:/apply:ro,Z \ --entrypoint=/apply \ @@ -141,26 +141,26 @@ storage: mkdir -p -- auth tls/etcd tls/k8s static-manifests manifests/coredns manifests-networking awk '/#####/ {filename=$2; next} {print > filename}' assets mkdir -p /etc/ssl/etcd/etcd - mkdir -p /etc/kubernetes/bootstrap-secrets + mkdir -p /etc/kubernetes/pki mv tls/etcd/{peer*,server*} /etc/ssl/etcd/etcd/ - mv tls/etcd/etcd-client* /etc/kubernetes/bootstrap-secrets/ + mv tls/etcd/etcd-client* /etc/kubernetes/pki/ chown -R etcd:etcd /etc/ssl/etcd chmod -R 500 /etc/ssl/etcd - mv auth/* /etc/kubernetes/bootstrap-secrets/ - mv tls/k8s/* /etc/kubernetes/bootstrap-secrets/ + mv auth/* /etc/kubernetes/pki/ + mv tls/k8s/* /etc/kubernetes/pki/ mkdir -p /etc/kubernetes/manifests mv static-manifests/* /etc/kubernetes/manifests/ mkdir -p /opt/bootstrap/assets mv manifests /opt/bootstrap/assets/manifests mv manifests-networking/* /opt/bootstrap/assets/manifests/ rm -rf assets auth static-manifests tls manifests-networking - chcon -R -u system_u -t container_file_t /etc/kubernetes/bootstrap-secrets + chcon -R -u system_u -t container_file_t /etc/kubernetes/pki - path: /opt/bootstrap/apply mode: 0544 contents: inline: | #!/bin/bash -e - export KUBECONFIG=/etc/kubernetes/secrets/admin.conf + export KUBECONFIG=/etc/kubernetes/pki/admin.conf until kubectl version; do echo "Waiting for static pod control plane" sleep 5 diff --git a/azure/flatcar-linux/kubernetes/cl/controller.yaml b/azure/flatcar-linux/kubernetes/cl/controller.yaml index 9c2f800b..dab020dc 100644 --- a/azure/flatcar-linux/kubernetes/cl/controller.yaml +++ b/azure/flatcar-linux/kubernetes/cl/controller.yaml @@ -119,7 +119,7 @@ systemd: WorkingDirectory=/opt/bootstrap Environment=KUBELET_IMAGE=quay.io/poseidon/kubelet:v1.19.4 ExecStart=/usr/bin/docker run \ - -v /etc/kubernetes/bootstrap-secrets:/etc/kubernetes/secrets:ro \ + -v /etc/kubernetes/pki:/etc/kubernetes/pki:ro \ -v /opt/bootstrap/assets:/assets:ro \ -v /opt/bootstrap/apply:/apply:ro \ --entrypoint=/apply \ @@ -149,14 +149,14 @@ storage: mkdir -p -- auth tls/etcd tls/k8s static-manifests manifests/coredns manifests-networking awk '/#####/ {filename=$2; next} {print > filename}' assets mkdir -p /etc/ssl/etcd/etcd - mkdir -p /etc/kubernetes/bootstrap-secrets + mkdir -p /etc/kubernetes/pki mv tls/etcd/{peer*,server*} /etc/ssl/etcd/etcd/ - mv tls/etcd/etcd-client* /etc/kubernetes/bootstrap-secrets/ + mv tls/etcd/etcd-client* /etc/kubernetes/pki/ chown -R etcd:etcd /etc/ssl/etcd chmod -R 500 /etc/ssl/etcd chmod -R 700 /var/lib/etcd - mv auth/* /etc/kubernetes/bootstrap-secrets/ - mv tls/k8s/* /etc/kubernetes/bootstrap-secrets/ + mv auth/* /etc/kubernetes/pki/ + mv tls/k8s/* /etc/kubernetes/pki/ mkdir -p /etc/kubernetes/manifests mv static-manifests/* /etc/kubernetes/manifests/ mkdir -p /opt/bootstrap/assets @@ -169,7 +169,7 @@ storage: contents: inline: | #!/bin/bash -e - export KUBECONFIG=/etc/kubernetes/secrets/admin.conf + export KUBECONFIG=/etc/kubernetes/pki/admin.conf until kubectl version; do echo "Waiting for static pod control plane" sleep 5 diff --git a/bare-metal/fedora-coreos/kubernetes/fcc/controller.yaml b/bare-metal/fedora-coreos/kubernetes/fcc/controller.yaml index 1919265b..3f523db4 100644 --- a/bare-metal/fedora-coreos/kubernetes/fcc/controller.yaml +++ b/bare-metal/fedora-coreos/kubernetes/fcc/controller.yaml @@ -125,7 +125,7 @@ systemd: ExecStartPre=-/usr/bin/podman rm bootstrap ExecStart=/usr/bin/podman run --name bootstrap \ --network host \ - --volume /etc/kubernetes/bootstrap-secrets:/etc/kubernetes/secrets:ro,z \ + --volume /etc/kubernetes/pki:/etc/kubernetes/pki:ro,z \ --volume /opt/bootstrap/assets:/assets:ro,Z \ --volume /opt/bootstrap/apply:/apply:ro,Z \ --entrypoint=/apply \ @@ -152,26 +152,26 @@ storage: mkdir -p -- auth tls/etcd tls/k8s static-manifests manifests/coredns manifests-networking awk '/#####/ {filename=$2; next} {print > filename}' assets mkdir -p /etc/ssl/etcd/etcd - mkdir -p /etc/kubernetes/bootstrap-secrets + mkdir -p /etc/kubernetes/pki mv tls/etcd/{peer*,server*} /etc/ssl/etcd/etcd/ - mv tls/etcd/etcd-client* /etc/kubernetes/bootstrap-secrets/ + mv tls/etcd/etcd-client* /etc/kubernetes/pki/ chown -R etcd:etcd /etc/ssl/etcd chmod -R 500 /etc/ssl/etcd - mv auth/* /etc/kubernetes/bootstrap-secrets/ - mv tls/k8s/* /etc/kubernetes/bootstrap-secrets/ + mv auth/* /etc/kubernetes/pki/ + mv tls/k8s/* /etc/kubernetes/pki/ mkdir -p /etc/kubernetes/manifests mv static-manifests/* /etc/kubernetes/manifests/ mkdir -p /opt/bootstrap/assets mv manifests /opt/bootstrap/assets/manifests mv manifests-networking/* /opt/bootstrap/assets/manifests/ rm -rf assets auth static-manifests tls manifests-networking - chcon -R -u system_u -t container_file_t /etc/kubernetes/bootstrap-secrets + chcon -R -u system_u -t container_file_t /etc/kubernetes/pki - path: /opt/bootstrap/apply mode: 0544 contents: inline: | #!/bin/bash -e - export KUBECONFIG=/etc/kubernetes/secrets/admin.conf + export KUBECONFIG=/etc/kubernetes/pki/admin.conf until kubectl version; do echo "Waiting for static pod control plane" sleep 5 diff --git a/bare-metal/flatcar-linux/kubernetes/cl/controller.yaml b/bare-metal/flatcar-linux/kubernetes/cl/controller.yaml index 3ce8b1ef..ff7f4864 100644 --- a/bare-metal/flatcar-linux/kubernetes/cl/controller.yaml +++ b/bare-metal/flatcar-linux/kubernetes/cl/controller.yaml @@ -130,7 +130,7 @@ systemd: WorkingDirectory=/opt/bootstrap Environment=KUBELET_IMAGE=quay.io/poseidon/kubelet:v1.19.4 ExecStart=/usr/bin/docker run \ - -v /etc/kubernetes/bootstrap-secrets:/etc/kubernetes/secrets:ro \ + -v /etc/kubernetes/pki:/etc/kubernetes/pki:ro \ -v /opt/bootstrap/assets:/assets:ro \ -v /opt/bootstrap/apply:/apply:ro \ --entrypoint=/apply \ @@ -163,14 +163,14 @@ storage: mkdir -p -- auth tls/etcd tls/k8s static-manifests manifests/coredns manifests-networking awk '/#####/ {filename=$2; next} {print > filename}' assets mkdir -p /etc/ssl/etcd/etcd - mkdir -p /etc/kubernetes/bootstrap-secrets + mkdir -p /etc/kubernetes/pki mv tls/etcd/{peer*,server*} /etc/ssl/etcd/etcd/ - mv tls/etcd/etcd-client* /etc/kubernetes/bootstrap-secrets/ + mv tls/etcd/etcd-client* /etc/kubernetes/pki/ chown -R etcd:etcd /etc/ssl/etcd chmod -R 500 /etc/ssl/etcd chmod -R 700 /var/lib/etcd - mv auth/* /etc/kubernetes/bootstrap-secrets/ - mv tls/k8s/* /etc/kubernetes/bootstrap-secrets/ + mv auth/* /etc/kubernetes/pki/ + mv tls/k8s/* /etc/kubernetes/pki/ mkdir -p /etc/kubernetes/manifests mv static-manifests/* /etc/kubernetes/manifests/ mkdir -p /opt/bootstrap/assets @@ -183,7 +183,7 @@ storage: contents: inline: | #!/bin/bash -e - export KUBECONFIG=/etc/kubernetes/secrets/admin.conf + export KUBECONFIG=/etc/kubernetes/pki/admin.conf until kubectl version; do echo "Waiting for static pod control plane" sleep 5 diff --git a/digital-ocean/fedora-coreos/kubernetes/fcc/controller.yaml b/digital-ocean/fedora-coreos/kubernetes/fcc/controller.yaml index f7f5adc4..dfa89e40 100644 --- a/digital-ocean/fedora-coreos/kubernetes/fcc/controller.yaml +++ b/digital-ocean/fedora-coreos/kubernetes/fcc/controller.yaml @@ -126,7 +126,7 @@ systemd: ExecStartPre=-/usr/bin/podman rm bootstrap ExecStart=/usr/bin/podman run --name bootstrap \ --network host \ - --volume /etc/kubernetes/bootstrap-secrets:/etc/kubernetes/secrets:ro,z \ + --volume /etc/kubernetes/pki:/etc/kubernetes/pki:ro,z \ --volume /opt/bootstrap/assets:/assets:ro,Z \ --volume /opt/bootstrap/apply:/apply:ro,Z \ --entrypoint=/apply \ @@ -148,26 +148,26 @@ storage: mkdir -p -- auth tls/etcd tls/k8s static-manifests manifests/coredns manifests-networking awk '/#####/ {filename=$2; next} {print > filename}' assets mkdir -p /etc/ssl/etcd/etcd - mkdir -p /etc/kubernetes/bootstrap-secrets + mkdir -p /etc/kubernetes/pki mv tls/etcd/{peer*,server*} /etc/ssl/etcd/etcd/ - mv tls/etcd/etcd-client* /etc/kubernetes/bootstrap-secrets/ + mv tls/etcd/etcd-client* /etc/kubernetes/pki/ chown -R etcd:etcd /etc/ssl/etcd chmod -R 500 /etc/ssl/etcd - mv auth/* /etc/kubernetes/bootstrap-secrets/ - mv tls/k8s/* /etc/kubernetes/bootstrap-secrets/ + mv auth/* /etc/kubernetes/pki/ + mv tls/k8s/* /etc/kubernetes/pki/ mkdir -p /etc/kubernetes/manifests mv static-manifests/* /etc/kubernetes/manifests/ mkdir -p /opt/bootstrap/assets mv manifests /opt/bootstrap/assets/manifests mv manifests-networking/* /opt/bootstrap/assets/manifests/ rm -rf assets auth static-manifests tls manifests-networking - chcon -R -u system_u -t container_file_t /etc/kubernetes/bootstrap-secrets + chcon -R -u system_u -t container_file_t /etc/kubernetes/pki - path: /opt/bootstrap/apply mode: 0544 contents: inline: | #!/bin/bash -e - export KUBECONFIG=/etc/kubernetes/secrets/admin.conf + export KUBECONFIG=/etc/kubernetes/pki/admin.conf until kubectl version; do echo "Waiting for static pod control plane" sleep 5 diff --git a/digital-ocean/flatcar-linux/kubernetes/cl/controller.yaml b/digital-ocean/flatcar-linux/kubernetes/cl/controller.yaml index 5e7732ff..c57a0737 100644 --- a/digital-ocean/flatcar-linux/kubernetes/cl/controller.yaml +++ b/digital-ocean/flatcar-linux/kubernetes/cl/controller.yaml @@ -129,7 +129,7 @@ systemd: WorkingDirectory=/opt/bootstrap Environment=KUBELET_IMAGE=quay.io/poseidon/kubelet:v1.19.4 ExecStart=/usr/bin/docker run \ - -v /etc/kubernetes/bootstrap-secrets:/etc/kubernetes/secrets:ro \ + -v /etc/kubernetes/pki:/etc/kubernetes/pki:ro \ -v /opt/bootstrap/assets:/assets:ro \ -v /opt/bootstrap/apply:/apply:ro \ --entrypoint=/apply \ @@ -156,14 +156,14 @@ storage: mkdir -p -- auth tls/etcd tls/k8s static-manifests manifests/coredns manifests-networking awk '/#####/ {filename=$2; next} {print > filename}' assets mkdir -p /etc/ssl/etcd/etcd - mkdir -p /etc/kubernetes/bootstrap-secrets + mkdir -p /etc/kubernetes/pki mv tls/etcd/{peer*,server*} /etc/ssl/etcd/etcd/ - mv tls/etcd/etcd-client* /etc/kubernetes/bootstrap-secrets/ + mv tls/etcd/etcd-client* /etc/kubernetes/pki/ chown -R etcd:etcd /etc/ssl/etcd chmod -R 500 /etc/ssl/etcd chmod -R 700 /var/lib/etcd - mv auth/* /etc/kubernetes/bootstrap-secrets/ - mv tls/k8s/* /etc/kubernetes/bootstrap-secrets/ + mv auth/* /etc/kubernetes/pki/ + mv tls/k8s/* /etc/kubernetes/pki/ mkdir -p /etc/kubernetes/manifests mv static-manifests/* /etc/kubernetes/manifests/ mkdir -p /opt/bootstrap/assets @@ -176,7 +176,7 @@ storage: contents: inline: | #!/bin/bash -e - export KUBECONFIG=/etc/kubernetes/secrets/admin.conf + export KUBECONFIG=/etc/kubernetes/pki/admin.conf until kubectl version; do echo "Waiting for static pod control plane" sleep 5 diff --git a/google-cloud/fedora-coreos/kubernetes/fcc/controller.yaml b/google-cloud/fedora-coreos/kubernetes/fcc/controller.yaml index 2a3516d3..0502228c 100644 --- a/google-cloud/fedora-coreos/kubernetes/fcc/controller.yaml +++ b/google-cloud/fedora-coreos/kubernetes/fcc/controller.yaml @@ -114,7 +114,7 @@ systemd: ExecStartPre=-/usr/bin/podman rm bootstrap ExecStart=/usr/bin/podman run --name bootstrap \ --network host \ - --volume /etc/kubernetes/bootstrap-secrets:/etc/kubernetes/secrets:ro,z \ + --volume /etc/kubernetes/pki:/etc/kubernetes/pki:ro,z \ --volume /opt/bootstrap/assets:/assets:ro,Z \ --volume /opt/bootstrap/apply:/apply:ro,Z \ --entrypoint=/apply \ @@ -141,26 +141,26 @@ storage: mkdir -p -- auth tls/etcd tls/k8s static-manifests manifests/coredns manifests-networking awk '/#####/ {filename=$2; next} {print > filename}' assets mkdir -p /etc/ssl/etcd/etcd - mkdir -p /etc/kubernetes/bootstrap-secrets + mkdir -p /etc/kubernetes/pki mv tls/etcd/{peer*,server*} /etc/ssl/etcd/etcd/ - mv tls/etcd/etcd-client* /etc/kubernetes/bootstrap-secrets/ + mv tls/etcd/etcd-client* /etc/kubernetes/pki/ chown -R etcd:etcd /etc/ssl/etcd chmod -R 500 /etc/ssl/etcd - mv auth/* /etc/kubernetes/bootstrap-secrets/ - mv tls/k8s/* /etc/kubernetes/bootstrap-secrets/ + mv auth/* /etc/kubernetes/pki/ + mv tls/k8s/* /etc/kubernetes/pki/ mkdir -p /etc/kubernetes/manifests mv static-manifests/* /etc/kubernetes/manifests/ mkdir -p /opt/bootstrap/assets mv manifests /opt/bootstrap/assets/manifests mv manifests-networking/* /opt/bootstrap/assets/manifests/ rm -rf assets auth static-manifests tls manifests-networking - chcon -R -u system_u -t container_file_t /etc/kubernetes/bootstrap-secrets + chcon -R -u system_u -t container_file_t /etc/kubernetes/pki - path: /opt/bootstrap/apply mode: 0544 contents: inline: | #!/bin/bash -e - export KUBECONFIG=/etc/kubernetes/secrets/admin.conf + export KUBECONFIG=/etc/kubernetes/pki/admin.conf until kubectl version; do echo "Waiting for static pod control plane" sleep 5 diff --git a/google-cloud/flatcar-linux/kubernetes/cl/controller.yaml b/google-cloud/flatcar-linux/kubernetes/cl/controller.yaml index 924f1884..a0b5c234 100644 --- a/google-cloud/flatcar-linux/kubernetes/cl/controller.yaml +++ b/google-cloud/flatcar-linux/kubernetes/cl/controller.yaml @@ -117,7 +117,7 @@ systemd: WorkingDirectory=/opt/bootstrap Environment=KUBELET_IMAGE=quay.io/poseidon/kubelet:v1.19.4 ExecStart=/usr/bin/docker run \ - -v /etc/kubernetes/bootstrap-secrets:/etc/kubernetes/secrets:ro \ + -v /etc/kubernetes/pki:/etc/kubernetes/pki:ro \ -v /opt/bootstrap/assets:/assets:ro \ -v /opt/bootstrap/apply:/apply:ro \ --entrypoint=/apply \ @@ -147,14 +147,14 @@ storage: mkdir -p -- auth tls/etcd tls/k8s static-manifests manifests/coredns manifests-networking awk '/#####/ {filename=$2; next} {print > filename}' assets mkdir -p /etc/ssl/etcd/etcd - mkdir -p /etc/kubernetes/bootstrap-secrets + mkdir -p /etc/kubernetes/pki mv tls/etcd/{peer*,server*} /etc/ssl/etcd/etcd/ - mv tls/etcd/etcd-client* /etc/kubernetes/bootstrap-secrets/ + mv tls/etcd/etcd-client* /etc/kubernetes/pki/ chown -R etcd:etcd /etc/ssl/etcd chmod -R 500 /etc/ssl/etcd chmod -R 700 /var/lib/etcd - mv auth/* /etc/kubernetes/bootstrap-secrets/ - mv tls/k8s/* /etc/kubernetes/bootstrap-secrets/ + mv auth/* /etc/kubernetes/pki/ + mv tls/k8s/* /etc/kubernetes/pki/ mkdir -p /etc/kubernetes/manifests mv static-manifests/* /etc/kubernetes/manifests/ mkdir -p /opt/bootstrap/assets @@ -167,7 +167,7 @@ storage: contents: inline: | #!/bin/bash -e - export KUBECONFIG=/etc/kubernetes/secrets/admin.conf + export KUBECONFIG=/etc/kubernetes/pki/admin.conf until kubectl version; do echo "Waiting for static pod control plane" sleep 5