Drop removed flag --insecure-port

ref kubernetes/kubernetes#106859

docs/extensions/controlplane-webhooks.md

@@ -41,7 +41,7 @@ The `command` field of the `kube-apiserver` container **shall** contain the [kub
 * admission plugins (`--enable-admission-plugins`, `--disable-admission-plugins`)
 * secure communications (`--etcd-cafile`, `--etcd-certfile`, `--etcd-keyfile`, ...)
 * audit log (`--audit-log-*`)
-* ports (`--insecure-port`, `--secure-port`)
+* ports (`--secure-port`)
 
 The kube-apiserver command line **shall not** contain any provider-specific flags, such as:
 

pkg/operation/botanist/component/kubeapiserver/deployment.go

@@ -496,7 +496,6 @@ func (k *kubeAPIServer) computeKubeAPIServerCommand() []string {
 		out = append(out, kutil.FeatureGatesToCommandLineParameter(k.values.FeatureGates))
 	}
 
-	out = append(out, "--insecure-port=0")
 	out = append(out, "--kubelet-preferred-address-types=InternalIP,Hostname,ExternalIP")
 	out = append(out, fmt.Sprintf("--kubelet-client-certificate=%s/%s", volumeMountPathKubeAPIServerToKubelet, secrets.DataKeyCertificate))
 	out = append(out, fmt.Sprintf("--kubelet-client-key=%s/%s", volumeMountPathKubeAPIServerToKubelet, secrets.DataKeyPrivateKey))

pkg/operation/botanist/component/kubeapiserver/kube_apiserver_test.go

@@ -1709,7 +1709,6 @@ rules:
 						"--encryption-provider-config=/etc/kubernetes/etcd-encryption-secret/encryption-configuration.yaml",
 						"--event-ttl="+eventTTL.String(),
 						"--external-hostname="+externalHostname,
-						"--insecure-port=0",
 						"--kubelet-preferred-address-types=InternalIP,Hostname,ExternalIP",
 						"--kubelet-client-certificate=/srv/kubernetes/apiserver-kubelet/tls.crt",
 						"--kubelet-client-key=/srv/kubernetes/apiserver-kubelet/tls.key",