Ciprian Hacman
Ciprian Hacman
@fernando-gallego As you can see in https://github.com/kubernetes/kops/issues/13976, someone managed to find it for NLB. The PR was just a nice extra check in this case.
The `--cloud-provider=external` flag has not been removed for kubelet, it is only deprecated (see https://github.com/kubernetes/kubernetes/pull/110066 for some background).
Is this a good idea from security point of view? Having `HCLOUD_TOKEN` on each node is not exactly a good practice. Maybe use the hcloud API only when `HCLOUD_TOKEN` is...
If I recall correctly, a Secret is only sent to a node [if a pod on that node requires it](https://kubernetes.io/docs/concepts/configuration/secret/#information-security-for-secrets). Adding the token to `hcloud-csi-node` would expose the secret to...
At the moment Hetzner firewall cannot be applied to load balancers, so this is not technically possible: https://docs.hetzner.com/cloud/firewalls/faq/#can-firewalls-be-applied-to-my-hetzner-cloud-load-balancers Even if not quite the same, you could use an ingress behind...
@rmja This may be similar or a duplicate of https://github.com/hetznercloud/hcloud-cloud-controller-manager/issues/288.
/ok-to-test
/check-cla /easycla
At the moment there is no plan to add Windows support to Kops. Not to say that we don't want to have it, but none of the active maintainers expressed...
/hold for fixing tests by @justinsb