Kubernetes Master Configuration for Dex (kubeadm)

master-dex-config.yaml

kind: ClusterConfiguration
apiVersion: kubeadm.k8s.io/v1beta1
apiServer:
  extraArgs:
    authorization-mode: Node,RBAC
    cloud-provider: aws
    oidc-issuer-url: https://dex.alicek106.com
    oidc-client-id: example-app
    oidc-ca-file: /etc/ssl/oidc-certs/ca.pem
    oidc-username-claim: email
    oidc-groups-claim: groups
  extraVolumes:
  - name: "oidc-cert-dir"
    hostPath: "/root/go/src/github.com/dexidp/dex/examples/k8s/ssl"
    mountPath: "/etc/ssl/oidc-certs"
    readOnly: true
    pathType: DirectoryOrCreate
  timeoutForControlPlane: 4m0s
certificatesDir: /etc/kubernetes/pki
clusterName: kubernetes
controlPlaneEndpoint: ""
controllerManager:
  extraArgs:
    cloud-provider: aws
dns:
  type: CoreDNS
etcd:
  local:
    dataDir: /var/lib/etcd
imageRepository: k8s.gcr.io
kubernetesVersion: v1.15.1
networking:
  dnsDomain: cluster.local
  podSubnet: 192.168.0.0/16 # Pod Subnet
  serviceSubnet: 10.96.0.0/12
scheduler: {}

---
kind: ClusterStatus
apiVersion: kubeadm.k8s.io/v1beta1
apiEndpoints:
  ip-10-43-0-20.ap-northeast-2.compute.internal: # Private DNS of Master Instance
    advertiseAddress: 10.43.0.20 # Join Advertise Address
    bindPort: 6443
---
apiVersion: kubeadm.k8s.io/v1beta1
kind: InitConfiguration
nodeRegistration:
  kubeletExtraArgs:
    cloud-provider: aws