Sergey
740d8b0a26
enable kubelet client certificate rotation ( #4081 )
* enable kubelet client certificate rotation
* change to variable kubelet_rotate_certificates
5 years ago
Gautam Divgi
a8dd69cf17
Fixed cleanup-docker-orphans.sh to use docker-containerd-shim and containerd-shim ( #4418 )
5 years ago
Matthew Mosesohn
4fe2aa6bf7
Use install_cni init container for cni copy for calico/canal ( #4416 )
5 years ago
Chad Swenson
5d5c9cab19
Speed up old docker package removal ( #4408 )
Both the `yum` and `apt` modules support a list as input, this allows us avoid the slower `with_items` approach, which can take a long time with a large count of cluster nodes.
5 years ago
Matthew Mosesohn
5f12b7aedf
Remove kubedns and dnsmasq. Move dns_late phase after apps ( #4406 )
Both kubedns and dnsmasq modes are long not maintained.
We should run dns_late steps at the end because sshd
makes DNS lookups during Ansible run and has 2s timeouts
for each failed lookup trying to connect to coredns before
it is ready.
5 years ago
Bort Verwilst
d71590bbd0
add 1.14.0 checksum, remove 1.11.* checksums ( #4401 )
5 years ago
MarkusTeufelberger
9ffc65f8f3
Yamllint fixes ( #4410 )
* Lint everything in the repository with yamllint
* yamllint fixes: syntax fixes only
* yamllint fixes: move comments to play names
* yamllint fixes: indent comments in .gitlab-ci.yml file
5 years ago
ml
483f1d2ca0
Calico felix - Fix jinja2 boolean condition ( #4348 )
* Fix jinja2 boolean condition
* Convert all felix variable to booleans instead.
5 years ago
tikitavi
1babba753d
adapt inventory script to python 2.7 version ( #4407 )
5 years ago
johnstudarus
ed18a10571
Corrected cloud name ( #4316 )
The correct name is Packet, not Packet Host.
5 years ago
Dmitry Chepurovskiy
0440e45d65
Fix supplementary_addresses rendering error ( #4403 )
5 years ago
Stefan Prietl
2fb27c8521
Use static files in KubeDNS templating task ( #4379 )
This commit adapts the "Lay Down KubeDNS Template" task to use the static
files moved by pull request [1]
[1] https://github.com/kubernetes-sigs/kubespray/pull/4341
5 years ago
Qasim Sarfraz
f17f4ff963
Fix bootsrap-os role, failing to create remote_tmp ( #4384 )
* Fix bootsrap-os role, failing to create remote_tmp
* use ansible_remote_tmp hostvar
5 years ago
Sergey
e9c34fe038
Default values for variable dns_servers and dns_domain are set in two files: ( #3999 )
values from inventory in roles/kubespray-defaults/defaults/main.yml
hardcoded values in roles/container-engine/defaults/main.yml
dns_servers set empty in roles/container-engine/defaults/main.yml and skydns_server not set in docker_dns_servers variables
also set default value for manual_dns_serve
another variables in roles/container-engine/defaults not need to set
5 years ago
Dmitry Chepurovskiy
669ab10c17
Added livenessProbe for local nginx apiserver proxy liveness probe ( #4222 )
* Added configurable local apiserver proxy liveness probe
* Enable API LB healthcheck by default
* Fix template spacing and moved healthz location to nginx http section
* Fix healthcheck listen address to allow kubelet request healthcheck
5 years ago
Qasim Sarfraz
0a3cf1a087
Fix CA cert environment variable for ectd v3 ( #4381 )
5 years ago
Maxime Guyot
3511b55cf5
Increase CPU flavor for CI ( #4389 )
5 years ago
Chad Swenson
1f01b6546c
Merge pull request #4396 from verwilst/feature/k8s-1.13.5
Upgrade to k8s 1.13.5
5 years ago
Bart Verwilst
0efa3e6392
Upgrade to k8s 1.13.5
5 years ago
Matthew Mosesohn
6d7f3c4405
Reduce jinja2 filters in coredns templates ( #4390 )
5 years ago
Michael Vorburger ⛑️
85e0fb32e6
clarify that kubespray now supports kubeadm ( fixes #4089 ) ( #4366 )
5 years ago
Etienne
d0ae316934
Use proxy_env with kubeadm phase commands ( #4325 )
5 years ago
Dmitry Chepurovskiy
f6d280452f
Added support of bastion host for reset.yaml ( #4359 )
* Added support of bastion host for reset.yaml
* Empty commit to triger CI
5 years ago
Maxime Guyot
7fb5fbac37
Use wide for netchecker debug output ( #4383 )
5 years ago
Matthew Mosesohn
b7fd462944
Fix support for ansible 2.7.9 ( #4375 )
5 years ago
Matthew Mosesohn
ec08303f82
Revert "Fix #4237 : update kube cert path ( #4354 )" ( #4369 )
This reverts commit ea7a6f1cf1
.
This change modified the certs dir for Kubernetes, but did not move the directories for existing clusters.
5 years ago
Maxime Guyot
e640233947
Use sample inventory file in doc ( #4052 )
5 years ago
Dmitry Chepurovskiy
ea7a6f1cf1
Fix #4237 : update kube cert path ( #4354 )
5 years ago
Peter Metz
38009a215a
fix(contrib/metallb): adds missing become: true in role ( #4356 )
On CoreOS, without this, it fails to kubectl apply MetalLB due to lack of privileges.
5 years ago
Matthew Mosesohn
150a969cf4
Forcefully delete pods when necessary ( #4328 )
Pods on down/unresponsive nodes can't be deleted without
--force --grace-period=0.
Fixes #4314
5 years ago
Manuel Cintron
3c4cbf133e
Adding ability to override dashboard replica count ( #4344 )
5 years ago
Matthew Mosesohn
fd2c47b56a
Move most coredns templates to static files ( #4341 )
* Move most coredns templates to static files
This should speed up the task slightly
* yaml lint fixes
5 years ago
tikitavi
2560c4dda3
fixing dump of ordered dictionaries in inventory script ( #4343 )
5 years ago
tikitavi
254a0ab69d
fix inventory script ( #4342 )
hosts are ordered dictionary
remove ansible_user from inventory file
5 years ago
tikitavi
7b3e59ed0a
fix inventory script ( #4339 )
- fix order of entries when the new yaml file is created
- fix group in case there are no hosts in it
5 years ago
tikitavi
44de04be89
update inventory builder for public and private IP per node ( #4323 )
5 years ago
Bort Verwilst
33024731e4
Upgrade to k8s 1.13.4 ( #4319 )
5 years ago
chadswilson
d469282f1c
add blockSize to IPPool spec for Calico >= v3.3.0 ( #4224 )
* add blockSize to IPPool spec for Calico >= v3.3.0
* fix "cidr" spec in Calico IPPool resource for my PR
5 years ago
Matthew Mosesohn
acbf3db233
Remove hard dependence on facts for all nodes ( #4304 )
* Remove hard dependence on facts for all nodes
* Update main.yaml
* Update main.yaml
5 years ago
Matthew Mosesohn
adf6a7121f
Reenable set_facts task for dns_late ( #4312 )
5 years ago
tikitavi
b73f009c07
rewrite inventory script to create inventory file in YAML format ( #4303 )
* rewrite inventory script to create inventory file in YAML format
* minor fixes to inventory script
* change requirments for the inventory script
5 years ago
Bort Verwilst
bbfd2dc2bd
Add 1.12.6, sort arm64 descending ( #4308 )
* Add 1.12.6, sort arm64 descending
* remove 1.10.x checksums (EOL anyways)
5 years ago
Matthew Mosesohn
4fe61968cf
Set default value for local_path_provisioner_enabled in role ( #4309 )
5 years ago
Anupam Basak
9e8e069b23
remove kube bridge on reset ( #4250 )
5 years ago
Peter Metz
26ca58419f
feat(external-provisioner): adds support for local-path-provisioner ( #4232 )
* feat(external-provisioner/local-path-provisioner): adds support for local path provisioner
Helpful for local development but also in production workloads (once the
permission model is worked out) where you have redundancy built into the
software uses the PVCs (e.g. database cluster with synchronous
replication)
* feat(local-path-provisioner): adds debug flag, image tag group var
* fix(local-path-provisioner): moves image repo/tag to download role
* test(gce_centos7-flannel): enables local-path-provisioner in test case
* fix(addons): add image repo/tag to commented default values
* fix(local-path-provisioner): typo in jinja template for local path provisioner
* style(local-path-provisioner): debug flag condition re-formatted
* fix(local-path-provisioner): adds missing default value for debug flag
* fix(local-path-provisioner): syntax fix for debug if condition end
* fix(local-path-provisioner): jinja template syntax: if condition white space
5 years ago
etharendil
063faaae1c
recursive option for kube ansible module ( #4273 )
kube ansible module can be used with recursive: true
which sill process the directory used in -f, --filename recursively
5 years ago
Maxime Guyot
131c3d4d5b
Add link to Kubespray.io ( #4240 )
5 years ago
Christian Berendt
44ee4b507c
terraform: use openstackclient instead of novaclient ( #4280 )
The openstackclient is the preferred CLI for OpenStack
environments and should be used instead of novaclient.
5 years ago
Maxime Guyot
c36a0226d0
Add more links to the docs ( #4204 )
5 years ago
hikoz
67832aada9
changed_when:false ( #4189 )
5 years ago