diff options
Diffstat (limited to 'vendor/gems/kubeclient/test/config/insecure.kubeconfig')
-rw-r--r-- | vendor/gems/kubeclient/test/config/insecure.kubeconfig | 25 |
1 files changed, 25 insertions, 0 deletions
diff --git a/vendor/gems/kubeclient/test/config/insecure.kubeconfig b/vendor/gems/kubeclient/test/config/insecure.kubeconfig new file mode 100644 index 00000000000..d7c28087a92 --- /dev/null +++ b/vendor/gems/kubeclient/test/config/insecure.kubeconfig @@ -0,0 +1,25 @@ +apiVersion: v1 +clusters: +- cluster: + server: https://localhost:6443 + insecure-skip-tls-verify: true + name: local +contexts: +- context: + cluster: local + namespace: default + user: user + name: Default +current-context: Default +kind: Config +preferences: {} +users: +- name: user + user: + # Providing ANY credentials in `insecure-skip-tls-verify` mode is unwise due to MITM risk. + # At least client certs are not as catastrophic as bearer tokens. + # + # This combination of insecure + client certs was once broken in kubernetes but + # is meaningful since 2015 (https://github.com/kubernetes/kubernetes/pull/15430). + client-certificate: external-cert.pem + client-key: external-key.rsa |