disable master client cert auth

Author: florenciacomuzzi

modules/private-k8s-cluster/main.tf

@@ -29,6 +29,8 @@ resource "google_container_cluster" "gke_cluster" {
     channel = "RAPID"
   }
 
+  enable_intranode_visibility = true
+
   cluster_autoscaling {
     enabled = true
     resource_limits {
@@ -61,6 +63,12 @@ resource "google_container_cluster" "gke_cluster" {
     }
   }
 
+  master_auth {
+    client_certificate_config {
+      issue_client_certificate = false
+    }
+  }
+
   ip_allocation_policy {
     cluster_secondary_range_name  = var.cluster_secondary_range_name
     services_secondary_range_name = var.services_secondary_range_name
@@ -94,6 +102,9 @@ resource "google_container_node_pool" "gke_nodes" {
     workload_metadata_config {
       mode = "GKE_METADATA_SERVER"
     }
+    labels = {
+      "env" = "test"
+    }
   }
 
   depends_on = [google_container_cluster.gke_cluster]