https://rancher.com/ logo
Title
f

future-fountain-82544

11/17/2022, 10:33 PM
It looks like the token file is in the format
K[33 random bytes hex-encoded]::server:[16 random bytes hex-encoded]
. The thing I’m not sure of is if the values are related (IE if they’re a public/private keypair or something)
c

creamy-pencil-82913

11/17/2022, 10:49 PM
No, you can’t pre-generate a full token. The first bit is the string K10 followed by the sha256 sum of the cluster CA certificate, which isn’t generated until after you start the cluster the first time.
the last bit is the --token or K3S_TOKEN value, which is randomly generated if you don’t specify one when starting the cluster
f

future-fountain-82544

11/17/2022, 10:52 PM
Gotcha ty