richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
447 Commits
29 Branches
81 Tags
151 MiB
Tree: 5691086ba2
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '5691086ba2'
${ noResults }
kubespray/roles/kubernetes/secrets/tasks/main.yml

37 lines
873 B
Raw Normal View History

generate secrets on deployment machine test travis with sudo=true instead of required
8 years ago
fix add nodes to the cluster
8 years ago
generate secrets on deployment machine test travis with sudo=true instead of required
8 years ago
  1. ---
  2. - include: check-certs.yml
  4. - name: Make sure the certificate directory exits
  5. file:
  6. path={{ kube_cert_dir }}
  7. state=directory
  8. mode=o-rwx
  9. group={{ kube_cert_group }}
  11. - name: Make sure the tokens directory exits
  12. file:
  13. path={{ kube_token_dir }}
  14. state=directory
  15. mode=o-rwx
  16. group={{ kube_cert_group }}
  18. - name: Make sure the users directory exits
  19. file:
  20. path={{ kube_users_dir }}
  21. state=directory
  22. mode=o-rwx
  23. group={{ kube_cert_group }}
  25. - name: Populate users for basic auth in API
  26. lineinfile:
  27. dest: "{{ kube_users_dir }}/known_users.csv"
  28. create: yes
  29. line: '{{ item.value.pass }},{{ item.key }},{{ item.value.role }}'
  30. backup: yes
  31. with_dict: "{{ kube_users }}"
  32. when: inventory_hostname in "{{ groups['kube-master'] }}"
  33. notify: set secret_changed
  35. - include: gen_certs.yml
  37. - include: gen_tokens.yml