From 3d551f9e647f67a7721d107ae4771f9fa02eaf5f Mon Sep 17 00:00:00 2001
From: Johannes Aubart <johannes.aubart@sap.com>
Date: Fri, 29 Jun 2018 15:01:37 +0200
Subject: [PATCH] added workaround for certmanager crash (and other problems)
 to readme

---
 README.md | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)

diff --git a/README.md b/README.md
index e08f9e7..615756a 100644
--- a/README.md
+++ b/README.md
@@ -43,6 +43,8 @@ k8s/bin/tf destroy -force
 setup/cleanup.sh
 ```
 
+Don't forget the [workaround](#workaround)!
+
 
 ## Step 1: Clone the Repositories and get Dependencies
 
@@ -125,6 +127,29 @@ kube-system     kube-apiserver-hcdnc
 [...]
 ```
 
+## <a name="workaround"></a>Step 4.5: Workaround
+
+There is currently an issue with session affinities in Kubernetes, which can break your cluster. 
+While the problem has been fixed (see https://github.com/kubernetes/kubernetes/commit/f2405cf2942739996af2bb76347c2cb0641153aa), 
+this commit is not yet included in a release. 
+
+Until that happens, use the following workaround:
+
+```
+kubectl edit svc kubernetes
+```
+
+Delete the following lines: 
+
+```
+  sessionAffinity: ClientIP
+  sessionAffinityConfig:
+    clientIP:
+      timeoutSeconds: 10800
+```
+
+Kubernetes will automatically add `sessionAffinity: None`.
+
 ## Step 5-9: Gardener Setup (Automated)
 
 Steps 5-9 are automated. In case you need more control follow