Eirik A

The experiments for this in https://github.com/clux/kube-rs/pull/311 did leave a lot to be desired in terms of usability (which is primarily why it still clones like it does today). Resurrecting this...

Oh, interesting. There's presumably a flag in your `~/.kube/config` for accepting invalid certs as well, right? I think that flag, if it exists, should map to the one exposed by...

Okay. It sounds like this is incorrectly wired up at the very least. Sorry, I'm not really able to help at the moment. If you are able to help diagnose...

Yeah, we've run into quite a few catalina issues in general, didn't realize this bug was related to that. Appreciate all the digging you've done here @davidB - lots of...

Ugh, kind of needed a new reqwest version, might leave it in master for https://github.com/seanmonstar/reqwest/issues/740 for now - they are meant to "release this week".

> FWIW GKE team is aware of the issue, and it's likely to be addressed. However, it's fair to assume that there will be a bunch of GKE clusters around...

Am considering reverting this hack in the next version of kube for a few reasons: - probably not wise to override root configuration of certs just for poor catalina defaults...

It's been close to two years since we put in the hacky fix. The original hack was to allow long certs (of lifetime > 825 days) on mac because of...

Hey @aviramha , we'd definitely be interested to see what you are trying. We [parse](https://github.com/kube-rs/kube-rs/blob/c976f9ee7d3aab59b9fa2f017d01e986e0bb3afa/kube-client/src/config/file_config.rs#L95-L97) into this part of the kubeconfig, if you are trying to fix for mac cert...

> It's been close to two years since we put in the hacky fix. The original hack was to allow long certs (of lifetime > 825 days) on mac because...