f2f1e7f9d1
parametrized iptables options for docker daemon
7 years ago
291dd1aca8
Fixup #2545 , cephfs-provisioner: Individual Namespace for Add-on
7 years ago
38da0adead
cert-manager: Upgrade to v0.3.0
7 years ago
20bd656975
Reconfigure kube-proxy to access kube-apiserver via the LB(kubeadm)
7 years ago
9f245dd9b2
ingress-nginx: Upgrade to 0.15.0
7 years ago
f9ccb93825
Fix nginx-proxy HA when kubeadm enable
7 years ago
0ad0202e8f
Upgrade Kubernetes to 10.0.4 and etcd to 3.2.18
7 years ago
63a458063b
Adding missing rkt template for etcd-events
7 years ago
a8715f9f0f
Adding wait for vault up handler in service restart
7 years ago
59be578842
Revert "wip pr for improved cert sync" ( #2849 )
7 years ago
2f5a9e180c
kubernetes/client: kubeconfig template should use the access_ip for the chosen master node
7 years ago
f912a4ece5
Fix compare AnsibleUnsafeText with int ( #2828 )
7 years ago
d1e66f9cc8
Add label to kubelet env for kubeadm deploy cluster ( #2841 )
7 years ago
11d87ecc37
removed surnumerary definition of contiv_etcd_init_image_* (already in download role)
7 years ago
7433348aae
wip pr for improved cert sync
7 years ago
3673ed6262
include contiv_etcd_init_image to downloads role
7 years ago
16f860bbc2
Update docker-options.conf.j2
Changed /etc/systemd/system/docker.service.d/docker-options.conf file for successful parsing mount aguments
try fix ci error previous commit
7 years ago
d973ecf5cc
fix error message: '[/etc/systemd/system/docker.service.d/docker-options.conf:3] Failed to parse mount flag , ignoring.'
7 years ago
f88cd27686
Add dashboard url as part of `kubectl cluster-info` output
7 years ago
2a4fc70e1c
contiv-etcd-init image as default instead hardcoded
7 years ago
38f7ba2584
Fix enough network address space assert
7 years ago
095d33bc51
Remove KPM support
7 years ago
821966b319
Update Helm version to 2.9.1
7 years ago
c1bc4615fe
assert that number of pods on node does not exceed CIDR address range
The number of pods on a given node is determined by the --max-pods=k
directive. When the address space is exhausted, no more pods can be
scheduled even if from the --max-pods-perspective, the node still has
capacity.
The special case that a pod is scheduled and uses the node IP in the
host network namespace is too "soft" to derive a guarantee.
Comparing kubelet_max_pods with kube_network_node_prefix when given
allows to assert that pod limits match the CIDR address space.
7 years ago
eba486f229
add posibility to provide different yum repository directory ( #2787 )
7 years ago
7c93e71801
Upgrade k8s to 1.10.2 ( #2748 )
* Upgrade k8s to 1.10.2
Bumped etcd version to 3.2.16 as recommended
* Add ipvs fix for v1.10
* change flannel addons test to ha
7 years ago
eae4fa040a
Added docker_mount_flags option ( fixes #2624 )
7 years ago
73800ef111
make certificates non-executable
7 years ago
742a8782dd
Bump kube-dns to 1.14.10
Upgrade kube-dns to 1.14.10
https://github.com/kubernetes/kubernetes/tree/master/cluster/addons/dns
7 years ago
49d106f615
make admin.conf -> .kube/config non-executable
Almost certainly, the .kube/config file (YAML) should not be executable.
7 years ago
ad48606e4e
Restart scheduler when policy changes
7 years ago
07cc981971
refactor vault role ( #2733 )
* Move front-proxy-client certs back to kube mount
We want the same CA for all k8s certs
* Refactor vault to use a third party module
The module adds idempotency and reduces some of the repetitive
logic in the vault role
Requires ansible-modules-hashivault on ansible node and hvac
on the vault hosts themselves
Add upgrade test scenario
Remove bootstrap-os tags from tasks
* fix upgrade issues
* improve unseal logic
* specify ca and fix etcd check
* Fix initialization check
bump machine size
7 years ago
7df5edef52
Fix path for pip and python
7 years ago
7507031cb1
CoreOS bootstrap: set bin_dir and PATH for pip.
7 years ago
51a9379d3c
Add vm_name option to vsphere cloud provider config
7 years ago
066016cd3e
opensuse: Fix OpenSSL package name
OpenSSL 1.1 package in openSUSE Tumbleweed is named openssl-1_1,
not openssl-1_1_0.
7 years ago
1a47a9b850
Update CoreDNS to version 1.1.2
7 years ago
32a8ea8094
Fix wrong var used
7 years ago
fb465f8b4b
Use 'items()' for python compatibility
7 years ago
3501eb6916
ingress-nginx: Upgrade to 0.14.0
7 years ago
00db751646
Add Openstack tenant name
7 years ago
59789ae02a
ISSUE-2706: Provide consistent usage of supplementary_addresses_in_ssl_keys across vault and script mode ( #2707 )
7 years ago
06cdb260f6
labelvalue must be formatted to handle non string values ( #2722 )
7 years ago
c3c5817af6
sysctl file should be in defaults so that it can be overriden ( #2475 )
* sysctl file should be in defaults so that it can be overriden
* Change sysctl_file_path to be consistent with roles/kubernetes/preinstall/defaults/main.yml
7 years ago
9168c71359
Revert "Revert "Add openSUSE support" ( #2697 )" ( #2699 )
This reverts commit 51f4e6585a
7 years ago
1a14f1ecc1
Fix vol format for local volume provisioner in rkt ( #2698 )
7 years ago
44cb126e7d
Update netchecker to v1.2.2.
Using official image from mirantis at dockerhub.
7 years ago
51f4e6585a
Revert "Add openSUSE support" ( #2697 )
7 years ago
f81e6d2ccf
Add oidc-user-prefix and oidc-group-prefix args
7 years ago
80dd230a65
sync certs tasks ( fix #2596 #2667 )
7 years ago
neith00
Wong Hoi Sing Edison
rongzhang
Brad Beam
Matthew Mosesohn
Ben Meier
Dmitry
Erwan Miran
Matthew Mosesohn
Dmitrii Shuvar
dshuvar
Julien Girardin
Oleg Ozimok
Miouge1
Mikhail Vasilenko
Christopher J. Ruwe
Aivars Sterns
Anatoly Rugalev
woopstar
Cédric de Saint Martin
Ryo Nishikawa
Michal Rostecki
ashon
Maxime Gaillard
Tomasz Majchrowski
mirwan
Markos Chandras
Cédric de Saint Martin
Suzuka Asagiri
Romain DEQUIDT