Kubectl – Configuration Guide
source link: https://knowledgepill.it/posts/kubernetes-kubectl-client-config/
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Kubectl client gives us possibility to configure and switch easy between multiple K8s clusters.
Config files location for kubectl
Main location for kubectl
config files is $HOME/.kube
, by default we have single config file named config:
[node1 ~]$ cd $HOME/.kube [node1 .kube]$ ls -lah total 4.0K drwxr-xr-x 1 root root 37 Mar 12 20:48 . dr-xr-x--- 1 root root 19 Nov 29 11:46 .. drwxr-x--- 3 root root 23 Mar 12 20:48 cache lrwxrwxrwx 1 root root 26 Nov 29 11:46 config -> /etc/kubernetes/admin.conf drwxr-x--- 3 root root 4.0K Mar 12 20:48 http-cache
Multiple config files and KUBECONFIG variable
We can have multiple config files by setting proper KUBECONFIG
shell variable.
For example:
export KUBECONFIG=$KUBECONFIG:/root/.kube/additional_config
Check config from kubectl
We can check current config(it will be empty because I don’t have anything in additional_config file - we’ll add something later - and this is only file in my KUBECONFIG
variable):
[node1 ~]$ kubectl config view
apiVersion: v1
clusters: []
contexts: []
current-context: ""
kind: Config
preferences: {}
users: []
Or from specific file - let’s see default file:
[node1 ~]$ kubectl config --kubeconfig=.kube/config view
apiVersion: v1
clusters:
- cluster:
certificate-authority-data: DATA+OMITTED
server: https://192.168.0.38:6443
name: kubernetes
contexts:
- context:
cluster: kubernetes
user: kubernetes-admin
name: kubernetes-admin@kubernetes
current-context: kubernetes-admin@kubernetes
kind: Config
preferences: {}
users:
- name: kubernetes-admin
user:
client-certificate-data: REDACTED
client-key-data: REDACTED
If you don’t set KUBECONFIG
variable all configuration will be taken from $HOME/.kube/config
Objects in kubectl config
kubectl
has in his config files following object types:
- clusters - info about K8s cluster - contain cluster name and connection parameters
- users - info about users by which you want connect to K8s clusters
- contexts - triple of cluster/user/namespace
Modifying config from kubectl
Add cluster
[node1 ~]$ kubectl config --kubeconfig=.kube/additional_config set-cluster dev --server=https://192.168.1.100 --certificate-authority=fake-ca Cluster "dev" set. [node1 ~]$ kubectl config --kubeconfig=.kube/additional_config set-cluster prod --server=https://10.1.1.100 --certificate-authority=fake-ca Cluster "prod" set.
Add users
[node1 ~]$ kubectl config --kubeconfig=.kube/additional_config set-credentials developer --client-certificate=fake-cert-file --client-key=fake-key-seefile User "developer" set. [node1 ~]$ kubectl config --kubeconfig=.kube/additional_config set-credentials prod_admin --client-certificate=fake-cert-file --client-key=fake-key-seefile User "prod_admin" set.
Add contexts
[node1 ~]$ kubectl config --kubeconfig=.kube/additional_config set-context simple_app_development --cluster=dev --namespace=simple_app_dev --user=developer Context "simple_app_development" created. [node1 ~]$ kubectl config --kubeconfig=.kube/additional_config set-context simple_app_production --cluster=prod --namespace=simple_app_prod --user=prod_admin Context "simple_app_production" created.
Delete cluster/user/context from config
kubectl --kubeconfig=.kube/additional_config config unset users.<name> kubectl --kubeconfig=.kube/additional_config config unset clusters.<name> kubectl --kubeconfig=.kube/additional_config config unset contexts.<name>
Sample config
[node1 ~]$ kubectl config --kubeconfig=.kube/additional_config view
apiVersion: v1
clusters:
- cluster:
certificate-authority: /root/fake-ca
server: https://192.168.1.100
name: dev
- cluster:
certificate-authority: /root/fake-ca
server: https://10.1.1.100
name: prod
contexts:
- context:
cluster: dev
namespace: simple_app_dev
user: developer
name: simple_app_development
- context:
cluster: prod
namespace: simple_app_prod
user: prod_admin
name: simple_app_production
current-context: ""
kind: Config
preferences: {}
users:
- name: developer
user:
client-certificate: /root/fake-cert-file
client-key: /root/fake-key-seefile
- name: prod_admin
user:
client-certificate: /root/fake-cert-file
client-key: /root/fake-key-seefile
Changing context we working with
To get list of contexts(no need for --kubeconfig
because we have our additional_config
added to KUBECONFIG
variable):
[node1 ~]$ kubectl config get-contexts
CURRENT NAME CLUSTER AUTHINFO NAMESPACE
simple_app_development dev developer simple_app_dev
simple_app_production prod prod_admin simple_app_prod
To set context:
[node1 ~]$ kubectl config use-context simple_app_development Switched to context "simple_app_development".
To get current context:
[node1 ~]$ kubectl config current-context simple_app_development
For those that want to know even more… Worth to read!
Kubeconfig context as bash prompt - Georgi from Gardener - shell tricks and Windows CLI aproach
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK