Open lethargosapatheia opened 7 months ago
/sig cli auth
/triage accepted /remove sig-auth
Just a couple notes about this issue. There are a few reasons why this seems to be happening:
#heading
in the link.I think for a longer term fix for this issue we need to work with sig-docs on consolidating and fixing up the existing kubectl documentation (it is very fractured and duplicated at the moment) and in the mean time we can append some kind of "this is a global flag" text to the front of the flag help text so it gets explicitly called out in the generated docs. Please see here for the place in the code base where this is configured.
In addition to all of this, I'm going to bring this up on the next bi-weekly sig-cli.
/remove-sig auth
The docs generator lives inside https://github.com/kubernetes-sigs/reference-docs/
Let's make this a documentation issue.
/transfer website
/sig docs
/priority backlog
Before we fix the generator code, we ought to merge it - see https://github.com/kubernetes-sigs/reference-docs/pull/349
What happened?
When creating a secret,
--certificate-authority
is mentioned as an option to use a certificate authority in the documentation: https://kubernetes.io/docs/reference/kubectl/generated/kubectl_create/kubectl_create_secret_tls/This is terribly ambiguous, because, if you haven't used tls secrets before, you might be led to believe that this refers to the CA certificate you're supposed to be inserting in the secret, which is not the case. It actually refers to the CA certificate you can use when running
kubectl
to connect to and to authenticate the API.This option is also not present in the
kubectl
help at all, and neither is it present in the tls secret help (kubectl secret tls --help
). So it doesn't seem to be documented otherwise.What did you expect to happen?
A clearer description of the
--certificate-authority
option and documentation in the help menu ofkubectl
.How can we reproduce it (as minimally and precisely as possible)?
Check
--certificate-authority
in https://kubernetes.io/docs/reference/kubectl/generated/kubectl_create/kubectl_create_secret_tls/Anything else we need to know?
No response
Kubernetes version
Cloud provider
OS version
Install tools
Container runtime (CRI) and version (if applicable)
Related plugins (CNI, CSI, ...) and versions (if applicable)