|
|
|
@ -14,7 +14,7 @@ etcd: |
|
|
|
keyFile: {{ kube_config_dir }}/ssl/etcd/node-{{ inventory_hostname }}-key.pem |
|
|
|
{% if kubernetes_audit %} |
|
|
|
auditPolicy: |
|
|
|
logDir: {{ audit_log_mountpath }} |
|
|
|
logDir: {{ audit_log_hostpath }} |
|
|
|
logMaxAge: {{ audit_log_maxage }} |
|
|
|
path: {{ audit_policy_file }} |
|
|
|
{% endif %} |
|
|
|
@ -88,15 +88,6 @@ controllerManagerExtraArgs: |
|
|
|
node-monitor-grace-period: {{ kube_controller_node_monitor_grace_period }} |
|
|
|
node-monitor-period: {{ kube_controller_node_monitor_period }} |
|
|
|
pod-eviction-timeout: {{ kube_controller_pod_eviction_timeout }} |
|
|
|
{% if kubernetes_audit %} |
|
|
|
apiServerExtraVolumes: |
|
|
|
- name: {{ audit_policy_name }} |
|
|
|
hostPath: {{ audit_policy_hostpath }} |
|
|
|
mountPath: {{ audit_policy_mountpath }} |
|
|
|
- name: {{ audit_log_name }} |
|
|
|
hostPath: {{ audit_log_hostpath }} |
|
|
|
mountPath: {{ audit_log_mountpath }} |
|
|
|
{% endif %} |
|
|
|
{% if cloud_provider is defined and cloud_provider in ["openstack"] and openstack_cacert is defined %} |
|
|
|
controllerManagerExtraVolumes: |
|
|
|
- name: openstackcacert |
|
|
|
|
Erwan Miran
6 years ago