From 63e8e6fa2a73572bb0620c69b586a5be5e5c8875 Mon Sep 17 00:00:00 2001
From: trisberg <trisberg@pivotal.io>
Date: Thu, 7 Jun 2018 10:18:03 -0400
Subject: [PATCH 1/2] Changing to use kubeadm as the bootstrapper

---
 docs/creating-a-kubernetes-cluster.md | 31 +++++++++------------------
 1 file changed, 10 insertions(+), 21 deletions(-)

diff --git a/docs/creating-a-kubernetes-cluster.md b/docs/creating-a-kubernetes-cluster.md
index 10cbd73156d4..91769be07e21 100644
--- a/docs/creating-a-kubernetes-cluster.md
+++ b/docs/creating-a-kubernetes-cluster.md
@@ -82,36 +82,25 @@ To use a k8s cluster running in GKE:
     default](https://github.com/kubernetes/minikube/pull/2547),the
     MutatingAdmissionWebhook plugin must be manually enabled._
 
-    _Until minikube [makes this the
-    default](https://github.com/kubernetes/minikube/issues/1647), the
-    certificate controller must be told where to find the cluster CA certs on
-    the VM._
-
-    _Starting with v0.26.0 minikube defaults to the `kubeadm` bootstrapper, so 
-      we need to explicitly set the bootstrapper to be `localkube` for our extra-config
-      settings to work._
-
 For Linux use:
 
 ```shell
-minikube start \
-  --kubernetes-version=v1.10.0 \
+minikube start --memory=8192 --cpus=4 \
+  --kubernetes-version=v1.10.3 \
   --vm-driver=kvm2 \
-  --bootstrapper=localkube \
-  --extra-config=apiserver.Admission.PluginNames=DenyEscalatingExec,LimitRanger,NamespaceExists,NamespaceLifecycle,ResourceQuota,ServiceAccount,DefaultStorageClass,MutatingAdmissionWebhook \
-  --extra-config=controller-manager.ClusterSigningCertFile="/var/lib/localkube/certs/ca.crt" \
-  --extra-config=controller-manager.ClusterSigningKeyFile="/var/lib/localkube/certs/ca.key"
+  --bootstrapper=kubeadm \
+  --extra-config=apiserver.authorization-mode=RBAC \
+  --extra-config=apiserver.admission-control="DenyEscalatingExec,LimitRanger,NamespaceExists,NamespaceLifecycle,ResourceQuota,ServiceAccount,DefaultStorageClass,MutatingAdmissionWebhook"
 ```
 For macOS use:
 
 ```shell
-minikube start \
-  --kubernetes-version=v1.10.0 \
+minikube start --memory=8192 --cpus=4 \
+  --kubernetes-version=v1.10.3 \
   --vm-driver=hyperkit \
-  --bootstrapper=localkube \
-  --extra-config=apiserver.Admission.PluginNames=DenyEscalatingExec,LimitRanger,NamespaceExists,NamespaceLifecycle,ResourceQuota,ServiceAccount,DefaultStorageClass,MutatingAdmissionWebhook \
-  --extra-config=controller-manager.ClusterSigningCertFile="/var/lib/localkube/certs/ca.crt" \
-  --extra-config=controller-manager.ClusterSigningKeyFile="/var/lib/localkube/certs/ca.key"
+  --bootstrapper=kubeadm \
+  --extra-config=apiserver.authorization-mode=RBAC \
+  --extra-config=apiserver.admission-control="DenyEscalatingExec,LimitRanger,NamespaceExists,NamespaceLifecycle,ResourceQuota,ServiceAccount,DefaultStorageClass,MutatingAdmissionWebhook"
 ```
 
 ### Minikube with GCR

From 4816cb4b54501bb50ff1643a40a4a9bcc292f1b4 Mon Sep 17 00:00:00 2001
From: trisberg <trisberg@pivotal.io>
Date: Wed, 13 Jun 2018 15:10:31 -0400
Subject: [PATCH 2/2] Update Minikube configuration

- removing extra-config for RBAC since that is the default

- changing to k8s v1.10.4

- adding back extra-config for cert and key files
---
 docs/creating-a-kubernetes-cluster.md | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/docs/creating-a-kubernetes-cluster.md b/docs/creating-a-kubernetes-cluster.md
index 91769be07e21..fce218a46203 100644
--- a/docs/creating-a-kubernetes-cluster.md
+++ b/docs/creating-a-kubernetes-cluster.md
@@ -86,20 +86,22 @@ For Linux use:
 
 ```shell
 minikube start --memory=8192 --cpus=4 \
-  --kubernetes-version=v1.10.3 \
+  --kubernetes-version=v1.10.4 \
   --vm-driver=kvm2 \
   --bootstrapper=kubeadm \
-  --extra-config=apiserver.authorization-mode=RBAC \
+  --extra-config=controller-manager.cluster-signing-cert-file="/var/lib/localkube/certs/ca.crt" \
+  --extra-config=controller-manager.cluster-signing-key-file="/var/lib/localkube/certs/ca.key" \
   --extra-config=apiserver.admission-control="DenyEscalatingExec,LimitRanger,NamespaceExists,NamespaceLifecycle,ResourceQuota,ServiceAccount,DefaultStorageClass,MutatingAdmissionWebhook"
 ```
 For macOS use:
 
 ```shell
 minikube start --memory=8192 --cpus=4 \
-  --kubernetes-version=v1.10.3 \
+  --kubernetes-version=v1.10.4 \
   --vm-driver=hyperkit \
   --bootstrapper=kubeadm \
-  --extra-config=apiserver.authorization-mode=RBAC \
+  --extra-config=controller-manager.cluster-signing-cert-file="/var/lib/localkube/certs/ca.crt" \
+  --extra-config=controller-manager.cluster-signing-key-file="/var/lib/localkube/certs/ca.key" \
   --extra-config=apiserver.admission-control="DenyEscalatingExec,LimitRanger,NamespaceExists,NamespaceLifecycle,ResourceQuota,ServiceAccount,DefaultStorageClass,MutatingAdmissionWebhook"
 ```