097806dfe8
Added tag kube-proxy ( #4272 )
Signed-off-by: André R. de Miranda <andre@miranda.work>
5 years ago
7cdf1fd388
quote values for kube_oidc_groups_prefix and kube_oidc_username_prefix values to accept colon, e.g oidc: ( #4305 )
This will fix error: error converting YAML to JSON: yaml: line 36: mapping values are not allowed in this context
Signed-off-by: Abdulaziz AlMalki <almalki.a@gmail.com>
5 years ago
aa162b0d5d
Update kube-router to 0.2.5 ( #4469 )
5 years ago
b15f3e182d
add default routing to canal and disable bird checks ( #4468 )
Co-Author: Paweł Skrzyński
5 years ago
4d39c1856e
Fix jinja filters ( #4470 )
5 years ago
913fed0089
kubeadmn init: add 'until' to make 'retries' effective ( #4464 )
an 'until' clause is required or 'retries' is ignored
(see note @ https://docs.ansible.com/ansible/latest/user_guide/playbooks_loops.html#do-until-loops )
5 years ago
12c6b5c3eb
openSUSE: Use Leap 15.0 instead of 42.3 ( #4442 )
* Vagrantfile: Bump openSUSE to Leap 15.0
* roles: container-engine: Add 'containerd' package for openSUSE
The 'containerd' package contains the docker-containerd and
docker-containerd-shim binaries. We also need to ensure that the latest
version is installed since an older version may already be present (eg GCE
images)
* Remove docker log-opts for opensuse
* roles: bootstrap-os: Use lowercase 'o' for openSUSE
OpenSUSE is not a valid family name. The correct one is openSUSE
* roles: bootstrap-os: Update zypper cache before first installation
The zypper cache may be outdated so ensure that it's fully updated
before we try and install the bootstrap packages.
5 years ago
f52584a715
robust handling of API server SANs ( #4435 )
* robust handling of API server SANs
* use apiserver_loadbalancer_domain_name if it is defined, according to PR 3977
5 years ago
09bbdadcee
remove nodelocaldns iface on reset ( #4460 )
5 years ago
d711a0c83f
[nodelocaldns] expand tolerations on the daemonset ( #4451 )
5 years ago
d18ad63e49
Update nginx to 1.15. Update manifest and performance optimize ( #4458 )
5 years ago
8947614d97
Upgrade to etcd v3.2.26 ( #4444 )
5 years ago
7e4f4a96fc
Replace iteritems() to items() in Jinja2 templates ( #4437 )
The iteritems() dictionary's method has been removed in Python3. Using
this method in Jinja2 templates limits the execution to Python2 which
will be deprecated in 2020[1]. This change replaces that method for
the items() method as it's suggested in the official website[2].
[1] https://pythonclock.org/
[2] https://docs.ansible.com/ansible/latest/user_guide/playbooks_python_version.html#dict-iteritems
5 years ago
301a371efe
Update pypy3 on CoreOS to 7.0.0 ( #4456 )
5 years ago
1a6df84c7a
Upgrade to Helm 2.13.1 ( #4445 )
5 years ago
8ad74404c9
Remove bash-completion ( #4431 )
5 years ago
1ce2f04f47
allow Suse OS family ( #4430 )
5 years ago
20b12751af
add Cinder allowVolumeExpansion option ( #4415 )
5 years ago
adca353fe9
Use docker.io for calico ( #4253 )
5 years ago
7a72e567d5
Update CoreDNS to 1.4.0 ( #4422 )
* Update CoreDNS to 1.4.0
* Update readme to reflect CoreDNS update
5 years ago
3c050be0b0
Update nodelocaldns cache settings ( #4423 )
5 years ago
41e684eb5a
Update DNS Autoscaler to 1.4.0 ( #4425 )
* Update DNS Autoscaler
* Update downloads too
* Fix yamllint
* Fix yamllint
5 years ago
55890e1b82
keep compatibility as it was before ( #4268 )
5 years ago
1e524c68d5
remove our config if docker start failed ( #4260 )
5 years ago
740d8b0a26
enable kubelet client certificate rotation ( #4081 )
* enable kubelet client certificate rotation
* change to variable kubelet_rotate_certificates
5 years ago
a8dd69cf17
Fixed cleanup-docker-orphans.sh to use docker-containerd-shim and containerd-shim ( #4418 )
5 years ago
4fe2aa6bf7
Use install_cni init container for cni copy for calico/canal ( #4416 )
5 years ago
5d5c9cab19
Speed up old docker package removal ( #4408 )
Both the `yum` and `apt` modules support a list as input, this allows us avoid the slower `with_items` approach, which can take a long time with a large count of cluster nodes.
5 years ago
5f12b7aedf
Remove kubedns and dnsmasq. Move dns_late phase after apps ( #4406 )
Both kubedns and dnsmasq modes are long not maintained.
We should run dns_late steps at the end because sshd
makes DNS lookups during Ansible run and has 2s timeouts
for each failed lookup trying to connect to coredns before
it is ready.
5 years ago
d71590bbd0
add 1.14.0 checksum, remove 1.11.* checksums ( #4401 )
5 years ago
483f1d2ca0
Calico felix - Fix jinja2 boolean condition ( #4348 )
* Fix jinja2 boolean condition
* Convert all felix variable to booleans instead.
5 years ago
0440e45d65
Fix supplementary_addresses rendering error ( #4403 )
5 years ago
2fb27c8521
Use static files in KubeDNS templating task ( #4379 )
This commit adapts the "Lay Down KubeDNS Template" task to use the static
files moved by pull request [1]
[1] https://github.com/kubernetes-sigs/kubespray/pull/4341
5 years ago
f17f4ff963
Fix bootsrap-os role, failing to create remote_tmp ( #4384 )
* Fix bootsrap-os role, failing to create remote_tmp
* use ansible_remote_tmp hostvar
5 years ago
e9c34fe038
Default values for variable dns_servers and dns_domain are set in two files: ( #3999 )
values from inventory in roles/kubespray-defaults/defaults/main.yml
hardcoded values in roles/container-engine/defaults/main.yml
dns_servers set empty in roles/container-engine/defaults/main.yml and skydns_server not set in docker_dns_servers variables
also set default value for manual_dns_serve
another variables in roles/container-engine/defaults not need to set
5 years ago
669ab10c17
Added livenessProbe for local nginx apiserver proxy liveness probe ( #4222 )
* Added configurable local apiserver proxy liveness probe
* Enable API LB healthcheck by default
* Fix template spacing and moved healthz location to nginx http section
* Fix healthcheck listen address to allow kubelet request healthcheck
5 years ago
0a3cf1a087
Fix CA cert environment variable for ectd v3 ( #4381 )
5 years ago
0efa3e6392
Upgrade to k8s 1.13.5
5 years ago
6d7f3c4405
Reduce jinja2 filters in coredns templates ( #4390 )
6 years ago
d0ae316934
Use proxy_env with kubeadm phase commands ( #4325 )
6 years ago
b7fd462944
Fix support for ansible 2.7.9 ( #4375 )
6 years ago
ec08303f82
Revert "Fix #4237 : update kube cert path ( #4354 )" ( #4369 )
This reverts commit ea7a6f1cf1
6 years ago
ea7a6f1cf1
Fix #4237 : update kube cert path ( #4354 )
6 years ago
150a969cf4
Forcefully delete pods when necessary ( #4328 )
Pods on down/unresponsive nodes can't be deleted without
--force --grace-period=0.
Fixes #4314
6 years ago
3c4cbf133e
Adding ability to override dashboard replica count ( #4344 )
6 years ago
fd2c47b56a
Move most coredns templates to static files ( #4341 )
* Move most coredns templates to static files
This should speed up the task slightly
* yaml lint fixes
6 years ago
33024731e4
Upgrade to k8s 1.13.4 ( #4319 )
6 years ago
d469282f1c
add blockSize to IPPool spec for Calico >= v3.3.0 ( #4224 )
* add blockSize to IPPool spec for Calico >= v3.3.0
* fix "cidr" spec in Calico IPPool resource for my PR
6 years ago
acbf3db233
Remove hard dependence on facts for all nodes ( #4304 )
* Remove hard dependence on facts for all nodes
* Update main.yaml
* Update main.yaml
6 years ago
adf6a7121f
Reenable set_facts task for dns_late ( #4312 )
6 years ago
André R. de Miranda
Abdulaziz AlMalki
Andreas Krüger
Maxime Guyot
Markos Chandras
rptaylor
Erwan Miran
Xinghong Fang
Victor Morales
MarkusTeufelberger
Xavi
Sergey
Gautam Divgi
Matthew Mosesohn
Chad Swenson
Bort Verwilst
ml
Dmitry Chepurovskiy
Stefan Prietl
Qasim Sarfraz
Bart Verwilst
Etienne
Manuel Cintron
chadswilson