* add yamllint command to travis CI
installs and runs a linter across the YAML in the
project to ensure consistency in the written YAML.
this uses yamllint and the default yamllint config with
"truthy" and "line-length" disabled.
* run dos2unix on CRLF files
* YAMLLINT: remove trailing spaces
* YAMLLint: add YAML document start
* YAMLLint: too many spaces around bracket
* YAMLLint: fix indentation
* YAMLLint: remove duplicate key
* YAMLLint: newline at end of file
* YAMLLint: Too few spaces after comma
* YAMLLint: too many spaces after colon
Edit the API server pod specification file $apiserverbin on the master node and set the --authorization-mode parameter to a value that includes RBAC, for example:--authorization-mode=Node,RBAC
Edit the API server pod specification file $apiserverbin on the master node and set the --authorization-mode parameter to a value that includes RBAC, for example:--authorization-mode=Node,RBAC
scored:true
scored:true
- id:1.2
- id:1.2
text:"Scheduler"
text:"Scheduler"
checks:
checks:
- id:1.2.1
- id:1.2.1
@ -722,7 +722,7 @@ groups:
--address parameter.
--address parameter.
scored:true
scored:true
- id:1.3
- id:1.3
text:"Controller Manager"
text:"Controller Manager"
checks:
checks:
- id:1.3.1
- id:1.3.1
@ -834,7 +834,7 @@ groups:
for the --address parameter.
for the --address parameter.
scored:true
scored:true
- id:1.4
- id:1.4
text:"Configuration Files"
text:"Configuration Files"
checks:
checks:
- id:1.4.1
- id:1.4.1
@ -1264,7 +1264,7 @@ groups:
For example, chmod -R 600 /etc/kubernetes/pki/*.key
For example, chmod -R 600 /etc/kubernetes/pki/*.key
scored:true
scored:true
- id:1.5
- id:1.5
text:"etcd"
text:"etcd"
checks:
checks:
- id:1.5.1
- id:1.5.1
@ -1389,7 +1389,7 @@ groups:
--trusted-ca-file=</path/to/ca-file>
--trusted-ca-file=</path/to/ca-file>
scored:false
scored:false
- id:1.6
- id:1.6
text:"General Security Primitives"
text:"General Security Primitives"
checks:
checks:
- id:1.6.1
- id:1.6.1
@ -1489,7 +1489,7 @@ groups:
Follow Kubernetes documentation and setup PSP and RBAC authorization for your cluster.
Follow Kubernetes documentation and setup PSP and RBAC authorization for your cluster.