Issue with k8s.io/docs/reference/setup-tools/kubeadm/kubeadm-join/ giving insecure advice #16538
Labels
priority/backlog
Higher priority than priority/awaiting-more-evidence.
sig/cluster-lifecycle
Categorizes an issue or PR as relevant to SIG Cluster Lifecycle.
This is a Bug Report
Problem:
The docs mentions (emphasis mine)
But this is not true anymore. if the discovery file contains credentials, then
kubeadm
will use them. If it doesn't contain credentials an extra--tls-bootstrap-token
needs to be provided. As it says a few sentences up:Proposed Solution:
Either remove the part about the file not being secret. Or mention very clearly that if you put credentials in the kubeconfig, then you can skip the
--tls-bootstrap-token
step but you should treat the file as a secretPage to Update:
https://kubernetes.io/docs/reference/setup-tools/kubeadm/kubeadm-join/
The text was updated successfully, but these errors were encountered: