Issue certificate to host.docker.internal

[skhaz]

What would you like to be added:
I want the certificate issued on kind-control-plane to be issued to host.docker.internal too; with this, I can use it with docker-compose

Why is this needed:
In my docker-compose file, I have this line

extra_hosts:
  - "host.docker.internal:host-gateway"

With this, I can connect to kind. However, the certificate is issued to localhost; with this change, other people will be able to use docker-compose along with Kind.

The error

app-1       | panic: Get "https://host.docker.internal:33345/apis/apps/v1/namespaces/argo/deployments": x509: certificate is valid for kind-control-plane, kubernetes, kubernetes.default, kubernetes.default.svc, kubernetes.default.svc.cluster.local, localhost, not host.docker.internal

[BenTheElder]

There’s past discussion of this in the tracker, will circle back to this later. in the meantime you can add additional host names yourself (sample config in past discussions)

[skhaz]

I could not find it. Could you please give an example @BenTheElder?

[BenTheElder]

#566 (comment) (though drop the version field from the sample patch there, it's not necessary as the certSAN field is stable in kubeadm and v1beta1 is not used in current Kubernetes realases)

[skhaz]

Thank you

[skhaz]

For reference

kind: Cluster
apiVersion: kind.x-k8s.io/v1alpha4
kubeadmConfigPatchesJSON6902:
- group: kubeadm.k8s.io
  version: v1beta3
  kind: ClusterConfiguration
  patch: |
    - op: add
      path: /apiServer/certSANs/-
      value: host.docker.internal

[BenTheElder]

(though drop the version field from the sample patch there, it's not necessary as the certSAN field is stable in kubeadm and v1beta1 is not used in current Kubernetes realases)

ugh, forgot, #1332

this should be v1beta3 for current kubernetes. To target all recent versions you could also include a patch for v1beta2 and v1beta3 and the matching patch will be used.