Kubernetes/k8s-deploy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
master
k8s-deploy/env/avroid_prod/k8s-avroid-office.prod.local/inventory/hardening.yaml
Denis Patrakeev c624512d29 [hotfix] add hardening prod k8s (!8) 
Co-authored-by: denis.patrakeev <denis.patrakeev@avroid.tech>
Reviewed-on: https://git.avroid.tech/K8s/k8s-deploy/pulls/8
2025-01-24 18:40:40 +03:00

11 lines
398 B
YAML
Raw Permalink Blame History

---
# https://github.com/kubernetes-sigs/kubespray/blob/master/docs/operations/hardening.md
# list of admission plugins that needs to be configured
# https://kubernetes.io/docs/reference/access-authn-authz/admission-controllers/
kube_apiserver_enable_admission_plugins:
- ServiceAccount
- NodeRestriction
- ResourceQuota
- PodNodeSelector
kube_apiserver_admission_control_config_file: true
Reference in New Issue View Git Blame Copy Permalink