Kubernetes users work a bit odd as in that they are just defined in the CommonName of the certificate signing. The initial code used to build this launch script, is based on the work of Kelsey Hightower (Kubernetes the hard way). That version skips over the whole authentication & RBAC by using the internal port (master:8080). This does result in issues down the line. That version also did not use the kubeconfig as extensive as what is actually advised in the community.
This version uses the kubeconfig as far as possible. This reduced the configs overall a bit, as well as that we now have users signing into the api servers.