kubernetes
/
minikube
mirror of https://github.com/kubernetes/minikube.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Create tutorial for using a static token file.

pull/12119/head
Andriy Dzikh 2021-08-04 10:27:45 -07:00
parent 8d20e4f49e
commit e75fbcc182
1 changed files with 30 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

30
site/content/en/docs/tutorials/token-auth-file.md Normal file
View File

@ -0,0 +1,30 @@
---
title: "Using Static Token file"
linkTitle: "Using Static Token file"
weight: 1
date: 2021-08-04
description: >
Using a static token file in Minikube
---
## Overview
A [static token file](https://kubernetes.io/docs/reference/access-authn-authz/authentication/#static-token-file) can be used to ensure only authenticated users access the API server. As minikube nodes are run in VMs/containers, this adds a complication to ensuring this token file is accessable to the node. This tutorial explains how to configure a static token file.
## Tutorial
This must be done before creating the minikube cluster.
```shell
# Create the folder that will be copied into the control plane.
mkdir -p ~/.minikube/files/etc/ca-certificates/
# Copy the token file into the folder.
cp token.csv ~/.minikube/files/etc/ca-certificates/token.csv
# Start minikube with the token auth file specified.
minikube start \
--extra-config=apiserver.token-auth-file=/etc/ca-certificates/token.csv
```
Placing files in `~/.minikube/files/` automatically copies them to the specified path in each minikube node. This means once we call `minikube start`, it is able to access the token file since it is locally present in the node.