f2f1e7f9d1
parametrized iptables options for docker daemon
6 years ago
1e98e8444e
Using dns domain instead of cluster name for coredns, incase they differ
6 years ago
291dd1aca8
Fixup #2545 , cephfs-provisioner: Individual Namespace for Add-on
6 years ago
38da0adead
cert-manager: Upgrade to v0.3.0
6 years ago
20bd656975
Reconfigure kube-proxy to access kube-apiserver via the LB(kubeadm)
6 years ago
9f245dd9b2
ingress-nginx: Upgrade to 0.15.0
6 years ago
f9ccb93825
Fix nginx-proxy HA when kubeadm enable
6 years ago
0ad0202e8f
Upgrade Kubernetes to 10.0.4 and etcd to 3.2.18
6 years ago
63a458063b
Adding missing rkt template for etcd-events
6 years ago
a8715f9f0f
Adding wait for vault up handler in service restart
6 years ago
59be578842
Revert "wip pr for improved cert sync" ( #2849 )
6 years ago
e1cfe83825
Fix inconsistent variables in task name and task message
6 years ago
2f5a9e180c
kubernetes/client: kubeconfig template should use the access_ip for the chosen master node
6 years ago
f912a4ece5
Fix compare AnsibleUnsafeText with int ( #2828 )
6 years ago
d1e66f9cc8
Add label to kubelet env for kubeadm deploy cluster ( #2841 )
6 years ago
11d87ecc37
removed surnumerary definition of contiv_etcd_init_image_* (already in download role)
6 years ago
7433348aae
wip pr for improved cert sync
6 years ago
3673ed6262
include contiv_etcd_init_image to downloads role
6 years ago
16f860bbc2
Update docker-options.conf.j2
Changed /etc/systemd/system/docker.service.d/docker-options.conf file for successful parsing mount aguments
try fix ci error previous commit
6 years ago
d973ecf5cc
fix error message: '[/etc/systemd/system/docker.service.d/docker-options.conf:3] Failed to parse mount flag , ignoring.'
6 years ago
f88cd27686
Add dashboard url as part of `kubectl cluster-info` output
6 years ago
2a4fc70e1c
contiv-etcd-init image as default instead hardcoded
6 years ago
38f7ba2584
Fix enough network address space assert
6 years ago
b3f9cae820
fixed a check unknown networks (cilium & contiv)
6 years ago
095d33bc51
Remove KPM support
6 years ago
821966b319
Update Helm version to 2.9.1
6 years ago
4b8daa22f6
Fixes #2800
6 years ago
c1bc4615fe
assert that number of pods on node does not exceed CIDR address range
The number of pods on a given node is determined by the --max-pods=k
directive. When the address space is exhausted, no more pods can be
scheduled even if from the --max-pods-perspective, the node still has
capacity.
The special case that a pod is scheduled and uses the node IP in the
host network namespace is too "soft" to derive a guarantee.
Comparing kubelet_max_pods with kube_network_node_prefix when given
allows to assert that pod limits match the CIDR address space.
6 years ago
eba486f229
add posibility to provide different yum repository directory ( #2787 )
6 years ago
7c93e71801
Upgrade k8s to 1.10.2 ( #2748 )
* Upgrade k8s to 1.10.2
Bumped etcd version to 3.2.16 as recommended
* Add ipvs fix for v1.10
* change flannel addons test to ha
6 years ago
eae4fa040a
Added docker_mount_flags option ( fixes #2624 )
6 years ago
73800ef111
make certificates non-executable
6 years ago
742a8782dd
Bump kube-dns to 1.14.10
Upgrade kube-dns to 1.14.10
https://github.com/kubernetes/kubernetes/tree/master/cluster/addons/dns
6 years ago
cd7c58e8d3
correct some indentation issues in the fluentd daemonset.
6 years ago
476b14b06e
Make Calico nodename overridable on bare metal
Signed-off-by: Daniel Mohr <daniel.mohr@supercrunch.io>
6 years ago
49d106f615
make admin.conf -> .kube/config non-executable
Almost certainly, the .kube/config file (YAML) should not be executable.
6 years ago
ad48606e4e
Restart scheduler when policy changes
6 years ago
c75da43f22
add missing field in fluentd
6 years ago
65f14f636d
remove support of other CRI runtimes than Docker in the efk stack
6 years ago
363627d9f8
serviceName added in elasticsearch. Required when a Statefulset is used
6 years ago
7950a49e28
update fluentd deployment and configmap
6 years ago
698da78768
update kibana docker image
6 years ago
ba320e918d
update elasticsearch image
6 years ago
07cc981971
refactor vault role ( #2733 )
* Move front-proxy-client certs back to kube mount
We want the same CA for all k8s certs
* Refactor vault to use a third party module
The module adds idempotency and reduces some of the repetitive
logic in the vault role
Requires ansible-modules-hashivault on ansible node and hvac
on the vault hosts themselves
Add upgrade test scenario
Remove bootstrap-os tags from tasks
* fix upgrade issues
* improve unseal logic
* specify ca and fix etcd check
* Fix initialization check
bump machine size
6 years ago
7df5edef52
Fix path for pip and python
6 years ago
7507031cb1
CoreOS bootstrap: set bin_dir and PATH for pip.
6 years ago
51a9379d3c
Add vm_name option to vsphere cloud provider config
6 years ago
066016cd3e
opensuse: Fix OpenSSL package name
OpenSSL 1.1 package in openSUSE Tumbleweed is named openssl-1_1,
not openssl-1_1_0.
6 years ago
1a47a9b850
Update CoreDNS to version 1.1.2
6 years ago
70e0998a70
Update kube-scheduler policy
6 years ago
neith00
Derek Lemon
Wong Hoi Sing Edison
rongzhang
Brad Beam
Matthew Mosesohn
David Chang
Ben Meier
Dmitry
Erwan Miran
Matthew Mosesohn
Dmitrii Shuvar
dshuvar
Julien Girardin
Oleg Ozimok
dvazar
Miouge1
Mikhail Vasilenko
Christopher J. Ruwe
Aivars Sterns
Anatoly Rugalev
Arnaud Meukam
Daniel Mohr
woopstar
Cédric de Saint Martin
Ryo Nishikawa
Michal Rostecki