cd7c58e8d3
correct some indentation issues in the fluentd daemonset.
6 years ago
476b14b06e
Make Calico nodename overridable on bare metal
Signed-off-by: Daniel Mohr <daniel.mohr@supercrunch.io>
6 years ago
49d106f615
make admin.conf -> .kube/config non-executable
Almost certainly, the .kube/config file (YAML) should not be executable.
6 years ago
ad48606e4e
Restart scheduler when policy changes
6 years ago
c75da43f22
add missing field in fluentd
6 years ago
65f14f636d
remove support of other CRI runtimes than Docker in the efk stack
6 years ago
363627d9f8
serviceName added in elasticsearch. Required when a Statefulset is used
6 years ago
7950a49e28
update fluentd deployment and configmap
6 years ago
698da78768
update kibana docker image
6 years ago
ba320e918d
update elasticsearch image
6 years ago
07cc981971
refactor vault role ( #2733 )
* Move front-proxy-client certs back to kube mount
We want the same CA for all k8s certs
* Refactor vault to use a third party module
The module adds idempotency and reduces some of the repetitive
logic in the vault role
Requires ansible-modules-hashivault on ansible node and hvac
on the vault hosts themselves
Add upgrade test scenario
Remove bootstrap-os tags from tasks
* fix upgrade issues
* improve unseal logic
* specify ca and fix etcd check
* Fix initialization check
bump machine size
6 years ago
7df5edef52
Fix path for pip and python
6 years ago
7507031cb1
CoreOS bootstrap: set bin_dir and PATH for pip.
6 years ago
51a9379d3c
Add vm_name option to vsphere cloud provider config
6 years ago
066016cd3e
opensuse: Fix OpenSSL package name
OpenSSL 1.1 package in openSUSE Tumbleweed is named openssl-1_1,
not openssl-1_1_0.
6 years ago
1a47a9b850
Update CoreDNS to version 1.1.2
6 years ago
70e0998a70
Update kube-scheduler policy
6 years ago
32a8ea8094
Fix wrong var used
6 years ago
fb465f8b4b
Use 'items()' for python compatibility
6 years ago
3501eb6916
ingress-nginx: Upgrade to 0.14.0
6 years ago
00db751646
Add Openstack tenant name
6 years ago
59789ae02a
ISSUE-2706: Provide consistent usage of supplementary_addresses_in_ssl_keys across vault and script mode ( #2707 )
6 years ago
06cdb260f6
labelvalue must be formatted to handle non string values ( #2722 )
6 years ago
c3c5817af6
sysctl file should be in defaults so that it can be overriden ( #2475 )
* sysctl file should be in defaults so that it can be overriden
* Change sysctl_file_path to be consistent with roles/kubernetes/preinstall/defaults/main.yml
6 years ago
9168c71359
Revert "Revert "Add openSUSE support" ( #2697 )" ( #2699 )
This reverts commit 51f4e6585a
6 years ago
1a14f1ecc1
Fix vol format for local volume provisioner in rkt ( #2698 )
6 years ago
44cb126e7d
Update netchecker to v1.2.2.
Using official image from mirantis at dockerhub.
6 years ago
51f4e6585a
Revert "Add openSUSE support" ( #2697 )
6 years ago
f81e6d2ccf
Add oidc-user-prefix and oidc-group-prefix args
6 years ago
80dd230a65
sync certs tasks ( fix #2596 #2667 )
6 years ago
75950344fb
run_once pre_upgrade tasks which are executing in localhost
6 years ago
0945eb990a
Make it possible to skip docker role as a var ( #2686 )
6 years ago
49c6bf8fa6
support custom env vars for etcd
6 years ago
296b92dbd4
Replaced 'mem' with 'memory/ in elasticsearch and kibana deployment
6 years ago
756af57787
Properly check need_pip, always run pip to check if needed
pip was always being downloaded on subsequent runs, This PR always runs the pip command, and checks the rc of it before downloading pip
Fix in favor of #2582
6 years ago
d435e17681
cephfs-provisioner: Upgrade to a71a49d4
6 years ago
23e9737b85
ingress-nginx: Upgrade to 0.13.0
6 years ago
54beb27eaa
cert-manager: Upgrade to v0.2.4
6 years ago
7968437a65
Weave: Upgrade to 2.3.0
6 years ago
02cd5418c2
Weave limits ( #2660 )
* Raise limits for weave
* Adjust weave limits
6 years ago
49e3665d96
Remove prometheus operator from Kubespray ( #2658 )
Kubespray should not install any helm charts. This is a task
that a user should do on his/her own through ansible or another
tool. It opens the door to wrapping installation of any helm
chart.
6 years ago
e95ba800ea
Define local volume provisioner dirs in defaults ( #2656 )
6 years ago
f73717ea35
Mount local volume provisioner dirs for containerized kubelet ( #2648 )
6 years ago
d87b6fd9f3
Use dedicated front-proxy-ca for front-proxy-client
6 years ago
61791bbb3d
Remove condition for docker pull when using download delegate
6 years ago
3fa7468d54
Copy ca-key.pem to etcd and kube-masters accordingly
6 years ago
02bf742e15
roles: rkt: Add support for SUSE distributions
The RPM file that's provided by upstream can be used for SUSE
distributions as well. Moreover we simplify the playbook to use
the 'package' module to install packages across different distros.
Link: https://github.com/rkt/rkt/pull/3904
6 years ago
d07f75b389
roles: kubernetes: secrets: Add SUSE support
Add path for certificate location for SUSE distributions. Also make sure
the 'update-ca-certificates' command is executed on SUSE hosts as well.
6 years ago
2d34781259
roles: etcd: Add support for SUSE distributions
Add path for certificate location for SUSE distributions. Also make sure
the 'update-ca-certificates' command is executed on SUSE hosts as well.
6 years ago
cdb63a8c49
roles: docker: Ensure service is started if docker is already installed
If the 'docker' package is already installed, then the handlers will not
run and the service will not be (re-)started. As such, lets make sure
that the service is started even if the packages are already installed.
6 years ago
Arnaud Meukam
Daniel Mohr
Christopher J. Ruwe
Miouge1
Matthew Mosesohn
woopstar
Cédric de Saint Martin
Ryo Nishikawa
Michal Rostecki
ashon
Wong Hoi Sing Edison
Maxime Gaillard
Tomasz Majchrowski
mirwan
Markos Chandras
Cédric de Saint Martin
Suzuka Asagiri
Romain DEQUIDT
Paul Montero
Spencer Smith
Samuel Vandamme
Chad Swenson
Matthew Mosesohn
Markos Chandras