David
01c86af77f
Make proxy protocol in upcloud LB configurable ( #10971 )
8 months ago
jaszil
e250bb65bb
[Terraform-Openstack] Add optional Octavia loadbalancer for Master Nodes ( #10924 )
* terraform-openstack add optional master lb
* remove unnecessary spaces
* remove unnecessary spaces
* fix ci warnings
9 months ago
Max Gautier
667bb2c913
Remove holmsten from approver (contrib/terraform) ( #10936 )
As they're no longer in kubernetes-sigs org.
9 months ago
Alin Dragomir
b34b7e0385
Add new OpenStack Cloud for terraform ( #10910 )
9 months ago
raviranjan
200b630319
Adding egress IPv6 for node-local-dns queries
1 year ago
R. P. Taylor
6497ecc767
workaround for terraform bug related to no_floating and extra_groups ( #10764 )
10 months ago
R. P. Taylor
54fb75f0e0
don't overwrite changes to openstack allowed_address_pairs ( #10760 )
10 months ago
ERIK
78eb74c252
Pin equinix provider version ( #10809 )
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
10 months ago
Max Gautier
d583d331b5
Convert exoscale tf provider to new version ( #10646 )
This is untested. It passes terraform validate to un-broke the CI.
1 year ago
Arthur Outhenin-Chalandre
7ba85710ad
Update to ansible 2.15 ( #10481 )
* ansible: upgrade to version >= 2.15.5
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
* tests: update requirements
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
* contrib/openstack: fix wrong gitignore pattern
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
* tests: add missing tzdata requirement
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
* tests: remove some molecules tests
Those doesn't work in Ansible 2.15. Ansible can't load builtin now
apparently and these tests are not worth it.
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
---------
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
1 year ago
Mustafa Mertcan Çam
e52d70885e
terraform-aws: variable driven ami selection ( #10520 )
* modify variables.tf to accept AMI attributes via variables
* update README to guide users on utilizing variable-driven AMI configuration
* fix markdown lint error
1 year ago
Robin Wallace
5194d8306e
upcloud: update terraform provider strict anti-affinity ( #10474 )
1 year ago
Fredrik Liv
d669b93c4f
terraform-openstack: Added possibility to enable dhcp flag critical on one interface ( #10446 )
* terraform-openstack: Updated extra partitions to use empty list by default
* terraform-openstack: Added possibility to enable dhcp flag critical on one interface
1 year ago
Yoshitaka Fujii
89a0f515c7
Added terraform support for NIFCLOUD ( #10227 )
* Add NIFCLOUD
* Add tf-validate-nifcloud in gitlab-ci
1 year ago
Vasubabu
feeea7e512
Enabled module_name in provider meta for Equinix ( #10044 )
1 year ago
Qasim Mehmood
ab6d204641
Remove deprecated provider, fix flatcar configs, enable CI tests and refactor hetzner terraform ( #10002 )
* Remove deprecated provider and fix flatcar configs
* Refactor for DRYness
* Add missing line endings
* Enable tests for hetzner terraform in CI
* Add missing inventory for CI tests
1 year ago
Maxime Leroy
9a8bf0e38a
fix(contrib/terraform): do not add access_ip when not wanted ( #9869 )
1 year ago
Maxime Leroy
659fa0eddc
feat(contrib/terraform): support custom ssh port ( #9836 )
1 year ago
Maxime Leroy
835811ec84
fix(contrib/terraform): do not set ssh port ( #9828 )
Signed-off-by: Maxime Leroy <19607336+maxime1907@users.noreply.github.com>
1 year ago
Robin Wallace
5bb54ef6a2
upcloud: add server groups and target port for lb ( #9831 )
1 year ago
Sean Knight
8a2e1189fb
correct typo hhttps -> https ( #9763 )
1 year ago
Bas
2c93c997cf
pre-commit autocorrected files ( #9750 )
1 year ago
Florian Ruynat
1f36df666d
Update fedora35 vagrant box url ( #9699 )
* Update fedora35 vagrant box url
* Update Terraform to 1.3.7
* Update Vagrant to 2.3.4
1 year ago
Cristian Calin
64dbf2e429
update equinox terraform code to fix kubespray CI ( #9702 )
* add terraform lock files to ignore list
* move contrib/terraform/metal to contrib/terraform/equinix to reflect upstream change
1 year ago
Mathieu Parent
58fe1a0ed6
Terraform vsphere cleanup ( #9672 )
* contrib/terraform/vsphere: mark vsphere_password as sensitive
Signed-off-by: Mathieu Parent <math.parent@gmail.com>
* contrib/terraform/vsphere: remove unused modules
Signed-off-by: Mathieu Parent <math.parent@gmail.com>
1 year ago
Mathieu Parent
c80bb0007a
contrib/terraform/gcp: allow extra ingress firewalls ( #9658 )
Signed-off-by: Mathieu Parent <math.parent@gmail.com>
Signed-off-by: Mathieu Parent <math.parent@gmail.com>
1 year ago
Fredrik Liv
ffad2152b3
Added override variable, additional server groups and cloudinit config ( #9452 )
1 year ago
florianow
8267922a16
add flatcar support for Hetzner ( #9618 )
1 year ago
Aveline
f7d0fb9ab2
rename ansible groups to use _ instead of ( #9569 )
1 year ago
Brian King
44a4f356ba
Terraform Openstack: replace deprecated template provider with supported cloudinit provider ( #9536 )
2 years ago
Fredrik Liv
07ad5ecfce
[upcloud] Fixed issue where DNS would be blocked while using allowlist ( #9510 )
* [upcloud] Fixed issue where DNS would be blocked while using allowlist
* Missed one NTP rule
2 years ago
Ayoub Ed-dafali
4cd949c7e1
Add missing zone input variable - Exoscale ( #9495 )
* Add missing zone input variable
* Fix terraform formatting
2 years ago
Hugo Blom
4189008245
Try fix issue where ports doesn't get an ip assigned ( #9345 )
Co-authored-by: Jonathan Süssemilch Poulain <jonathan@sofiero.net>
2 years ago
Hugo Blom
49196c2ec4
[Openstack] Add bastion_allowed_ports to allow custom security group rules on bastion node ( #9336 )
* make it possible to configure bastion remote ips
* Update README.md
2 years ago
rptaylor
5bce39abf8
add optional parameter extra_groups for k8s_nodes ( #9211 )
2 years ago
Cristian Calin
e6976a54e1
add pre-commit hook to facilitate local testing ( #9158 )
* add pre-commit hook configuration
* add tmp.md to .gitignore
* describe the use of pre-commit hook in CONTRIBUTING.md
* fix docs/integration.md errors identified by markdownlint
* fix docs/<file>.md errors identified by markdownlint
* docs/azure-csi.md
* docs/azure.md
* docs/bootstrap-os.md
* docs/calico.md
* docs/debian.md
* docs/fcos.md
* docs/vagrant.md
* docs/gcp-lb.md
* docs/kubernetes-apps/registry.md
* docs/setting-up-your-first-cluster.md
* docs/vagrant.md
* docs/vars.md
* fix contrib/<file>.md errors identified by markdownlint
2 years ago
Robin Ramquist
f4daf5856e
Subnet setup order fix & Number of master nodes syntax fix ( #9159 )
* Subnet setup order fix & Number of master nodes syntax fix
* Mistake fix!
* Formatting
2 years ago
Ajarmar
0d32c0d92b
[upcloud] Add firewall default deny policy and port allowlisting ( #9058 )
2 years ago
Robin Wallace
bf477c24d3
Chnage from deprecated variable
2 years ago
Kenichi Omichi
0e6b727e53
Update docs for using venv ( #8842 )
Due many patterns of Linux distributions, it is difficult to install
ansible dependencies as system-wide stably.
Apart of Kubespray doc[1] recommends to use venv to avoid such issue,
and this applies venv usage to the other parts of the doc.
[1]: https://github.com/kubernetes-sigs/kubespray/blob/master/docs/setting-up-your-first-cluster.md#set-up-kubespray
2 years ago
Cyclinder
dc8ad78206
fix: incorrect condition type ( #8822 )
Signed-off-by: cyclinder qifeng.guo@daocloud.io
2 years ago
Ajarmar
b9e5b0cb53
UpCloud server plan, firewall, load balancer integration ( #8758 )
* [upcloud] add option to use preconfigured cpu/mem plan
* [upcloud] add option to use firewall rules for API server/SSH access
* [upcloud] add option to use managed load balancer
2 years ago
Robin Wallace
fe66121287
[Openstack] master foreach and fixes ( #8709 )
* [openstack] fix for new network modules
* [openstack] for-each master nodes
2 years ago
Cristian Calin
6cc5b38a2e
[terraform] use modern day equinix metal provider ( #8748 )
* [terraform] use modern day equinix metal provider
* [CI] ensure packet job tests metal
2 years ago
Olle Larsson
a4f26dc8f3
[terraform/openstack] add safespring to provider list ( #8735 )
2 years ago
SOPHAL HONG
3d4baea01c
Add tag to AWS VPC subnets for automatic subnet discovery by load balancers or ingress controllers ( #8705 )
2 years ago
Robin Wallace
d7254eead6
UpCloud integration ( #8653 )
* [upcloud] add upcloud csi-driver
* Option to use ansible_host as api ip for kubueconfig
2 years ago
Anthony Bible
9dced7133c
Fixes for Hetzner terraform and Hetzner Cloud ( #8702 )
* - add ability to specify the network_zone in hetzner terraform
- Export the network id from hetzner terraform the the generated inventory.ini
* - Add with_networks variable to allow different deployments of hcloud controller manager
- Add network id to hcloud controller secret (added via the inventory)
- Don't include extra_args if it's not set
2 years ago
Christian Rohmann
90883e76af
terrform/openstack: Fix templating of ansible_ssh_common_args in no_floating.yml if used as TF module ( #8646 )
* terraform/openstack: Use path.module for ansible_bastion_template.txt
This extends on #7643 by not using path.root, but switching to path.module
to allow use of the terraform code as a module itself. This change then keeps
all calls to the template file stable even for that use-case.
* terraform/openstack: Make sed calls fail on errors
By using a single call with two replacements to use of sed will create proper exit codes
and allowing for errors to be recognized by terraform.
2 years ago
Mathieu Parent
299a9ae7ba
terraform/gcp: Add ingress_whitelist ( #8590 )
Also, do not create unneeded resources (target pools are charged and should
only be created when needed).
2 years ago