kube api serverarguments in the
/etc/kubernetes/manifests/kube-apiserver.yaml. Each argument should be on a separate line. More information about the OIDC attributes can be found in the Authenticating reference documentation.
~/.kube/configand change the cluster ip.
kube config. Run the following command:
k8s-oidc-helper. The output of the command should look as follows:
users:and append it to your existing user list in the
~/.kube/config. Now you have 2 users: one from the new cluster configuration and one that you added.
"email_verified": truein the decoded message. Test connection of the new user:
id-tokenand api server arguments work and email is extracted from a request.
kubectl create -f admin.yaml, Do the test again: