design:Add component certificate identification for client components

tiansuo114 · tiansuo114 · commit 5c05f1f82589 · 2025-04-07T13:35:40.000+08:00
Signed-off-by: tiansuo &lt;zhaoyi_114@outlook.com&gt;
diff --git a/artifacts/deploy/karmada-controller-manager.yaml b/artifacts/deploy/karmada-controller-manager.yaml
@@ -17,8 +17,8 @@ spec:
     spec:
       automountServiceAccountToken: false
       tolerations:
-      - key: node-role.kubernetes.io/master
-        operator: Exists
+        - key: node-role.kubernetes.io/master
+          operator: Exists
       containers:
         - name: karmada-controller-manager
           securityContext:
@@ -50,12 +50,15 @@ spec:
               name: metrics
               protocol: TCP
           volumeMounts:
-          - name: karmada-config
-            mountPath: /etc/karmada/config
+            - name: karmada-config
+              mountPath: /etc/karmada/config
       volumes:
         - name: karmada-config
           secret:
-            secretName: karmada-controller-manager-config
+            secretName: karmada-controller-manager-secret
+            items:
+              - key: karmada.config
+                path: karmada.config
       securityContext:
         seccompProfile:
           type: RuntimeDefault
diff --git a/artifacts/deploy/karmada-descheduler.yaml b/artifacts/deploy/karmada-descheduler.yaml
@@ -57,10 +57,20 @@ spec:
       volumes:
         - name: karmada-config
           secret:
-            secretName: karmada-descheduler-config
+            secretName: karmada-descheduler-secret
+            items:
+              - key: karmada.config
+                path: karmada.config
         - name: scheduler-estimator-client-cert
           secret:
-            secretName: karmada-descheduler-scheduler-estimator-client-cert
+            secretName: karmada-descheduler-secret
+            items:
+              - key: ca.crt
+                path: ca.crt
+              - key: grpc.crt
+                path: tls.crt
+              - key: grpc.key
+                path: tls.key
       securityContext:
         seccompProfile:
           type: RuntimeDefault
diff --git a/artifacts/deploy/karmada-scheduler.yaml b/artifacts/deploy/karmada-scheduler.yaml
@@ -59,10 +59,20 @@ spec:
       volumes:
         - name: karmada-config
           secret:
-            secretName: karmada-scheduler-config
+            secretName: karmada-scheduler-secret
+            items:
+              - key: karmada.config
+                path: karmada.config
         - name: scheduler-estimator-client-cert
           secret:
-            secretName: karmada-scheduler-scheduler-estimator-client-cert
+            secretName: karmada-scheduler-secret
+            items:
+              - key: ca.crt
+                path: ca.crt
+              - key: grpc.crt
+                path: tls.crt
+              - key: grpc.key
+                path: tls.key
       securityContext:
         seccompProfile:
           type: RuntimeDefault
diff --git a/hack/deploy-karmada.sh b/hack/deploy-karmada.sh
