mirror of
https://github.com/k3s-io/k3s.git
synced 2026-02-03 20:39:49 -05:00
ac38633c71
* Bump rootlesskit tov 1.1.1, last of the v1 line * Migrate to urfavecli v2 * Disable StringSlice seperattion Signed-off-by: Derek Nola <derek.nola@suse.com>
89 lines
2.5 KiB
Go
89 lines
2.5 KiB
Go
package cmds
|
|
|
|
import (
|
|
"github.com/k3s-io/k3s/pkg/version"
|
|
"github.com/urfave/cli/v2"
|
|
)
|
|
|
|
const CertCommand = "certificate"
|
|
|
|
type CertRotateCA struct {
|
|
CACertPath string
|
|
Force bool
|
|
}
|
|
|
|
var (
|
|
ServicesList cli.StringSlice
|
|
CertRotateCAConfig CertRotateCA
|
|
CertRotateCommandFlags = []cli.Flag{
|
|
DebugFlag,
|
|
ConfigFlag,
|
|
LogFile,
|
|
AlsoLogToStderr,
|
|
DataDirFlag,
|
|
&cli.StringSliceFlag{
|
|
Name: "service",
|
|
Aliases: []string{"s"},
|
|
Usage: "List of services to manage certificates for. Options include (admin, api-server, controller-manager, scheduler, supervisor, " + version.Program + "-controller, " + version.Program + "-server, cloud-controller, etcd, auth-proxy, kubelet, kube-proxy)",
|
|
Destination: &ServicesList,
|
|
},
|
|
}
|
|
CertRotateCACommandFlags = []cli.Flag{
|
|
DataDirFlag,
|
|
&cli.StringFlag{
|
|
Name: "server",
|
|
Aliases: []string{"s"},
|
|
Usage: "(cluster) Server to connect to",
|
|
EnvVars: []string{version.ProgramUpper + "_URL"},
|
|
Value: "https://127.0.0.1:6443",
|
|
Destination: &ServerConfig.ServerURL,
|
|
},
|
|
&cli.StringFlag{
|
|
Name: "path",
|
|
Usage: "Path to directory containing new CA certificates",
|
|
Destination: &CertRotateCAConfig.CACertPath,
|
|
Required: true,
|
|
},
|
|
&cli.BoolFlag{
|
|
Name: "force",
|
|
Usage: "Force certificate replacement, even if consistency checks fail",
|
|
Destination: &CertRotateCAConfig.Force,
|
|
},
|
|
}
|
|
)
|
|
|
|
func NewCertCommands(check, rotate, rotateCA func(ctx *cli.Context) error) *cli.Command {
|
|
return &cli.Command{
|
|
Name: CertCommand,
|
|
Usage: "Manage K3s certificates",
|
|
SkipFlagParsing: false,
|
|
Subcommands: []*cli.Command{
|
|
{
|
|
Name: "check",
|
|
Usage: "Check " + version.Program + " component certificates on disk",
|
|
SkipFlagParsing: false,
|
|
Action: check,
|
|
Flags: append(CertRotateCommandFlags, &cli.StringFlag{
|
|
Name: "output",
|
|
Aliases: []string{"o"},
|
|
Usage: "Format output. Options: text, table",
|
|
Value: "text",
|
|
}),
|
|
},
|
|
{
|
|
Name: "rotate",
|
|
Usage: "Rotate " + version.Program + " component certificates on disk",
|
|
SkipFlagParsing: false,
|
|
Action: rotate,
|
|
Flags: CertRotateCommandFlags,
|
|
},
|
|
{
|
|
Name: "rotate-ca",
|
|
Usage: "Write updated " + version.Program + " CA certificates to the datastore",
|
|
SkipFlagParsing: false,
|
|
Action: rotateCA,
|
|
Flags: CertRotateCACommandFlags,
|
|
},
|
|
},
|
|
}
|
|
}
|