initial checkin of k8s documentation #114
Open
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
First attempt at pulling together documentation on how to install k3s and work with k8s.
ranguard
requested changes
Apr 27, 2023
| @@ -0,0 +1,60 @@ | |||
| # Installation | |||
|
|
|||
There was a problem hiding this comment.
Need to add:
https://github.com/metacpan/metacpan-servers - being setting up the servers
| 1. Generate a token using `head -c48 /dev/urandom | base64 | tr -d "\n"` and store | ||
| in a secure location. | ||
|
|
||
| 2. Sign into server using ssh and an unprivileged account. |
There was a problem hiding this comment.
e.g if using flatcar the core user
| Remote tools like [kubectl](https://kubernetes.io/docs/reference/kubectl/), | ||
| [k9s](https://k9scli.io/), and [kubeseal](https://sealed-secrets.netlify.app/) | ||
| require authentication with the cluster during use. The authentication uses a | ||
| certificate assigned to the cluster during its installation. |
There was a problem hiding this comment.
I'm not sure where to create or get a cert for this auth - or how to actually start those tools - but maybe that's in the k8s repo
There was a problem hiding this comment.
The certificate was automatically created and is part of the k3s.yaml file copied to the credentials repo.
| certificate assigned to the cluster during its installation. | ||
|
|
||
| On the first server installed copy the contents of the `sudo cat | ||
| /etc/rancher/k3s/k3s.yaml` to your `~/.kube/configs/` directory as `<2 letter |
There was a problem hiding this comment.
Mention updating server: https://127.0.0.1:6443 before committing the config
| On the first server installed copy the contents of the `sudo cat | ||
| /etc/rancher/k3s/k3s.yaml` to your `~/.kube/configs/` directory as `<2 letter | ||
| code>-mc`. Also copy this file to the metacpan-credential repository's `k8s/` | ||
| directory. |
There was a problem hiding this comment.
Would be good to mention... now goto https://../metacpan0-k8s
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
First attempt at pulling together documentation on how to install k3s and work with k8s.