richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
66 Commits
33 Branches
82 Tags
153 MiB
Tree: 10ade2cbdc
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '10ade2cbdc'
${ noResults }
kubespray/roles/kubernetes/master/tasks/config.yml

87 lines
2.5 KiB
Raw Normal View History

Initial commit
9 years ago
  1. ---
  2. - name: get the node token values from token files
  3. slurp:
  4. src: "{{ kube_token_dir }}/{{ item }}-{{ inventory_hostname }}.token"
  5. with_items:
  6. - "system:controller_manager"
  7. - "system:scheduler"
  8. - "system:kubectl"
  9. - "system:proxy"
  10. register: tokens
  11. delegate_to: "{{ groups['kube-master'][0] }}"
  13. - name: Set token facts
  14. set_fact:
  15. controller_manager_token: "{{ tokens.results[0].content|b64decode }}"
  16. scheduler_token: "{{ tokens.results[1].content|b64decode }}"
  17. kubectl_token: "{{ tokens.results[2].content|b64decode }}"
  18. proxy_token: "{{ tokens.results[3].content|b64decode }}"
  20. - name: write the config files for api server
  21. template: src=apiserver.j2 dest={{ kube_config_dir }}/apiserver
  22. notify:
  23. - restart daemons
  25. - name: write config file for controller-manager
  26. template: src=controller-manager.j2 dest={{ kube_config_dir }}/controller-manager
  27. notify:
  28. - restart controller-manager
  30. - name: write the kubecfg (auth) file for controller-manager
  31. template: src=controller-manager.kubeconfig.j2 dest={{ kube_config_dir }}/controller-manager.kubeconfig
  32. notify:
  33. - restart controller-manager
  35. - name: write the config file for scheduler
  36. template: src=scheduler.j2 dest={{ kube_config_dir }}/scheduler
  37. notify:
  38. - restart scheduler
  40. - name: write the kubecfg (auth) file for scheduler
  41. template: src=scheduler.kubeconfig.j2 dest={{ kube_config_dir }}/scheduler.kubeconfig
  42. notify:
  43. - restart scheduler
  45. - name: write the kubecfg (auth) file for kubectl
  46. template: src=kubectl.kubeconfig.j2 dest={{ kube_config_dir }}/kubectl.kubeconfig
  48. - name: write the config files for proxy
  49. template: src=proxy.j2 dest={{ kube_config_dir }}/proxy
  50. notify:
  51. - restart daemons
  53. - name: write the kubecfg (auth) file for proxy
  54. template: src=proxy.kubeconfig.j2 dest={{ kube_config_dir }}/proxy.kubeconfig
  56. - name: populate users for basic auth in API
  57. lineinfile:
  58. dest: "{{ kube_users_dir }}/known_users.csv"
  59. create: yes
  60. line: '{{ item.value.pass }},{{ item.key }},{{ item.value.role }}'
  61. with_dict: "{{ kube_users }}"
  62. notify:
  63. - restart apiserver
  65. - name: Enable apiserver
  66. service:
  67. name: kube-apiserver
  68. enabled: yes
  69. state: started
  71. - name: Enable controller-manager
  72. service:
  73. name: kube-controller-manager
  74. enabled: yes
  75. state: started
  77. - name: Enable scheduler
  78. service:
  79. name: kube-scheduler
  80. enabled: yes
  81. state: started
  83. - name: Enable kube-proxy
  84. service:
  85. name: kube-proxy
  86. enabled: yes
  87. state: started