Brad Beam
b81c0d869c
Adding calico/node env vars for prometheus configuration
7 years ago
Matthew Mosesohn
f14f04c5ea
Upgrade to kubernetes v1.8.0 ( #1730 )
* Upgrade to kubernetes v1.8.0
hyperkube no longer contains rsync, so now use cp
* Enable node authorization mode
* change kube-proxy cert group name
7 years ago
Aivars Sterns
9c86da1403
Normalize tags in all places to prepare for tag fixing in future ( #1739 )
7 years ago
Spencer Smith
cb611b5ed0
Merge pull request #1742 from mattymo/facts_as_vars
Move set_facts to kubespray-defaults defaults
7 years ago
Spencer Smith
891269ef39
Merge pull request #1743 from rsmitty/kube-client
Don't delegate cert gathering before creating admin.conf
7 years ago
Spencer Smith
ab171a1d6d
don't delegate cert slurp
7 years ago
Matthew Mosesohn
a56738324a
Move set_facts to kubespray-defaults defaults
These facts can be generated in defaults with a performance
boost.
Also cleaned up duplicate etcd var names.
7 years ago
Maxim Krasilnikov
da61b8e7c9
Added workaround for vagrant 1.9 and centos vm box ( #1738 )
7 years ago
Maxim Krasilnikov
d6d58bc938
Fixed vagrant up with flannel network, removed old config values ( #1737 )
7 years ago
Matthew Mosesohn
e42cb43ca5
add bootstrap for debian ( #1726 )
7 years ago
Brad Beam
ca541c7e4a
Ensuring vault service is stopped in reset tasks ( #1736 )
7 years ago
Brad Beam
96e14424f0
Adding kubedns update for CVE-2017-14491 ( #1735 )
7 years ago
Brad Beam
47830896e8
Merge pull request #1733 from chapsuk/vagrant_mem
Increase vagrant vm's memory size
7 years ago
mkrasilnikov
5fd4b4afae
Increase vagrant vm's memory size
7 years ago
Matthew Mosesohn
dae9f6d3c2
Test if tokens are expired from host instead of inside container ( #1727 )
* Test if tokens are expired from host instead of inside container
* Update main.yml
7 years ago
Julian Poschmann
8e1210f96e
Fix cluster-network w/ prefix > 25 not possible with CNI ( #1713 )
7 years ago
Matthew Mosesohn
56aa683f28
Fix logic in idempotency tests in CI ( #1722 )
7 years ago
Brad Beam
1b9a6d7ad8
Merge pull request #1672 from manics/bastion-proxycommand-newline
Insert a newline in bastion ssh config after ProxyCommand conditional
7 years ago
Brad Beam
f591c4db56
Merge pull request #1720 from shiftky/improve_integration_doc
Improve playbook example of integration document
7 years ago
Peter Slijkhuis
371fa51e82
Make installation of EPEL optional ( #1721 )
7 years ago
shiftky
a927ed2da4
Improve playbook example of integration document
7 years ago
Matthew Mosesohn
a55675acf8
Enable RBAC with kubeadm always ( #1711 )
7 years ago
Matthew Mosesohn
25dd3d476a
Fix error for azure+calico assert ( #1717 )
Fixes #1716
7 years ago
Matthew Mosesohn
3ff5f40bdb
fix graceful upgrade ( #1704 )
Fix system namespace creation
Only rotate tokens when necessary
7 years ago
Matthew Mosesohn
689ded0413
Enable kubeadm upgrades to any version ( #1709 )
7 years ago
Matthew Mosesohn
327ed157ef
Verify valid settings before deploy ( #1705 )
Also fix yaml lint issues
Fixes #1703
7 years ago
Pablo Moreno
c819238da9
Adds support for separate etcd machines on terraform/openstack deployment ( #1674 )
7 years ago
tanshanshan
477afa8711
when and run_once are reduplicative ( #1694 )
7 years ago
Matthew Mosesohn
bd272e0b3c
Upgrade to kubeadm ( #1667 )
* Enable upgrade to kubeadm
* fix kubedns upgrade
* try upgrade route
* use init/upgrade strategy for kubeadm and ignore kubedns svc
* Use bin_dir for kubeadm
* delete more secrets
* fix waiting for terminating pods
* Manually enforce kube-proxy for kubeadm deploy
* remove proxy. update to kubeadm 1.8.0rc1
7 years ago
Maxim Krasilnikov
1067595b5c
Change used chars for kubeadm tokens ( #1701 )
7 years ago
Brad Beam
14c232e3c4
Merge pull request #1663 from foxyriver/fix-shell
use command module instead of shell module
7 years ago
Brad Beam
57f5fb1f4f
Merge pull request #1661 from neith00/master
upgrading from weave version 2.0.1 to 2.0.4
7 years ago
Bogdan Dobrelya
bcddfb786d
Merge pull request #1692 from mattymo/old-etcd-logic
drop unused etcd logic
7 years ago
Martin Uddén
20db1738fa
feature: install project atomic CSS on RedHat family ( #1499 )
* feature: install project atomic CSS on RedHat family
* missing patch for this feature
* sub-role refactor
* Yamllint fix
7 years ago
Hassan Zamani
b23d81f825
Add etcd_blkio_weight var ( #1690 )
7 years ago
Maxim Krasilnikov
bc15ceaba1
Update var doc about users accounts ( #1685 )
7 years ago
Junaid Ali
6f17d0817b
Updating getting-started.md ( #1683 )
Signed-off-by: Junaid Ali <junaidali.yahya@gmail.com>
7 years ago
Matthew Mosesohn
a1cde03b20
Correct master manifest cleanup logic ( #1693 )
Fixes #1666
7 years ago
Bogdan Dobrelya
cfce23950a
Merge pull request #1687 from jistr/cgroup-driver-kubeadm
Set correct kubelet cgroup-driver also for kubeadm deployments
7 years ago
Deni Bertovic
64740249ab
Adds tags for asserts ( #1639 )
7 years ago
Matthew Mosesohn
126f42de06
drop unused etcd logic
Fixes #1660
7 years ago
Matthew Mosesohn
d94e3a81eb
Use api lookup for kubelet hostname when using cloudprovider ( #1686 )
The value cannot be determined properly via local facts, so
checking k8s api is the most reliable way to look up what hostname
is used when using a cloudprovider.
7 years ago
Jiri Stransky
70d0235770
Set correct kubelet cgroup-driver also for kubeadm deployments
This follows pull request #1677 , adding the cgroup-driver
autodetection also for kubeadm way of deploying.
Info about this and the possibility to override is added to the docs.
7 years ago
foxyriver
30b5493fd6
use command module instead of shell module
7 years ago
Bogdan Dobrelya
4f6362515f
Merge pull request #1677 from jistr/cgroup-driver
Allow setting cgroup driver for kubelet
7 years ago
Jiri Stransky
dbbe9419e5
Allow setting cgroup driver for kubelet
Red Hat family platforms run docker daemon with `--exec-opt
native.cgroupdriver=systemd`. When kubespray tried to start kubelet
service, it failed with:
Error: failed to run Kubelet: failed to create kubelet: misconfiguration: kubelet cgroup driver: "cgroupfs" is different from docker cgroup driver: "systemd"
Setting kubelet's cgroup driver to the correct value for the platform
fixes this issue. The code utilizes autodetection of docker's cgroup
driver, as different RPMs for the same distro may vary in that regard.
7 years ago
Matthew Mosesohn
188bae142b
Fix wait for hosts in CI ( #1679 )
Also fix usage of failed_when and handling exit code.
7 years ago
Simon Li
7c2b12ebd7
Insert a newline in bastion after ProxyCommand conditional
7 years ago
Matthew Mosesohn
ef8e35e39b
Create admin credential kubeconfig ( #1647 )
New files: /etc/kubernetes/admin.conf
/root/.kube/config
$GITDIR/artifacts/{kubectl,admin.conf}
Optional method to download kubectl and admin.conf if
kubeconfig_lcoalhost is set to true (default false)
7 years ago
Matthew Mosesohn
975accbe1d
just use public_ip in creating gce temporary waitfor hosts ( #1646 )
* just use public_ip in creating gce temporary waitfor hosts
* Update create-gce.yml
7 years ago