How to edit Kubernetes cluster values for OIDC?

kubernetes openid

You should be using kube-apiserver.

The Kubernetes API server validates and configures data for the api objects which include pods, services, replicationcontrollers, and others. The API Server services REST operations and provides the frontend to the cluster’s shared state through which all other components interact.

kube-apiserver [flags]

If using kops, run kops edit cluster and add:

spec:
  kubeAPIServer:
    oidcIssuerURL: ISSUER_URL
    oidcClientID: YOUR_CLIENT_ID

If you are using kube-aws, add following to cluster.yaml:

       oidc:
         enabled: true
         issuerUrl: ISSUER_URL
         clientId: YOUR_CLIENT_ID

You can read more about setup of on here, you might also consider using Kubelogin

EDIT:

kube-apiserver is running as a Docker container on your master node. Therefore, the binary is within the container, not on your host system. It is started by the master's kubelet from a file located at /etc/kubernetes/manifests. kubelet is watching this directory and will start any Pod defined here as "static pods".

To configure kube-apiserver command line arguments you need to modify /etc/kubernetes/manifests/kube-apiserver.yaml on your master.

Related

Can I host ONE VM from two servers? [closed]
CentOS Installer make ONE partition
How to search for a file when 'find' is not an option
isc-dhcp-server fails if interface not connected on reboot
Azure AD Connect authentication exception
PostgreSQL Stack Builder Installation Proxy Setting on Windows
How to query linux kernel which storage-related operations are currently being run on the level of FS / block layer / SATA controller?
Which available zone should I choose when launching an EC2 instance?
Sending auditd records to my audispd plugin
Why does `ps -x | grep foo` include the grep command?
How to get a local mysql dump of a specific AWS RDS Snapshot
8 Directional Pathfinding (A*) - Inconsistently Finding Path