acb63a57fa
Only limit etcd memory on small hosts ( #1860 )
Also disable oom killer on etcd
7 years ago
5b08277ce4
Access dict item's value keys using .value ( #1865 )
7 years ago
5dc56df64e
Fix ordering of kube-apiserver admission control plug-ins ( #1841 )
7 years ago
33c4d64b62
Make ClusterRoleBinding to admit all nodes with right cert ( #1861 )
This is to work around #1856 which can occur when kubelet
hostname and resolvable hostname (or cloud instance name)
do not match.
7 years ago
25de6825df
Update Kubernetes to v1.8.1 ( #1858 )
7 years ago
0b60201a1e
fix etcd health check bug ( #1480 )
7 years ago
cfea99c4ee
Fix scale.yml to supoort kubeadm ( #1863 )
Signed-off-by: Haiwei Liu <carllhw@gmail.com>
7 years ago
cea41a544e
Use include instead of import tasks to support v2.3 ( #1855 )
Eventually 2.3 support will be dropped, so this is
a temporary change.
7 years ago
7ed140cea7
Update refs to kubernetes version to v1.8.0 ( #1845 )
7 years ago
cb97c2184e
typo fix for ci job name ( #1847 )
7 years ago
0b4fcc83bd
Fix up warnings and deprecations ( #1848 )
7 years ago
514359e556
Improve etcd scale up ( #1846 )
Now adding unjoined members to existing etcd cluster
occurs one at a time so that the cluster does not
lose quorum.
7 years ago
55b9d02a99
Update README.md ( #1843 )
Changed Ansible 2.3 to 2.4
7 years ago
fc9a65be2b
Refactor downloads to use download role directly ( #1824 )
* Refactor downloads to use download role directly
Also disable fact delegation so download delegate works acros OSes.
* clean up bools and ansible_os_family conditionals
7 years ago
49dff97d9c
Relabel controler-manager to kube-controller-manager ( #1830 )
Fixes #1129
7 years ago
4efb0b78fa
Move CI vars out of gitlab and into var files ( #1808 )
7 years ago
c9fe8fde59
Use fail-swap-on flag only for kube_version >= 1.8 ( #1829 )
7 years ago
74d54946bf
Add note that glusterfs is not automatically deployed ( #1834 )
7 years ago
16462292e1
Properly skip extra SANs when not specified for kubeadm ( #1831 )
7 years ago
7ef1e1ef9d
update terraform, fix deprecated values add default_tags, fix ansible inventory ( #1821 )
7 years ago
20d80311f0
Update main.yml ( #1822 )
* Update main.yml
Needs to set up resolv.conf before updating Yum cache otherwise no name resolution available (resolv.conf empty).
* Update main.yml
Removing trailing spaces
7 years ago
f1a1f53f72
fix slack UR; ( #1832 )
7 years ago
c766bd077b
Use batch mode for graceful docker/rkt upgrade ( #1815 )
7 years ago
54320c5b09
set to 3 digit version number ( #1817 )
7 years ago
291b71ea3b
Changing default value string to boolean. ( #1669 )
When downloading containers or files, use boolean
as a default value.
7 years ago
356515222a
Add possibility to insert more ip adresses in certificates ( #1678 )
* Add possibility to insert more ip adresses in certificates
* Add newline at end of files
* Move supp ip parameters to k8s-cluster group file
* Add supplementary addresses in kubeadm master role
* Improve openssl indexes
7 years ago
688e589e0c
fix #1788 lock dashboard version to 1.6.3 version while 1.7.x is not working ( #1805 )
7 years ago
6c98201aa4
remove kube-dns versions and images in kubernetes-apps/ansible/defaults/main.yaml ( #1807 )
7 years ago
d4b10eb9f5
Fix path for calico get node names ( #1816 )
7 years ago
728d56e74d
Only write bastion ssh config when needed ( #1810 )
This will allow running Kubespray when the user who runs it doesn't
have write permissions to the Kubespray dir, at least when not using
bastion.
7 years ago
a9f4038fcd
Update roadmap ( #1814 )
7 years ago
77f1d4b0f1
Revert "Update roadmap" ( #1809 )
* Revert "Debian jessie docs (#1806 )"
This reverts commit d78577c810#1800 )"
This reverts commit 5fb6b2eaf7#1799 )"
This reverts commit 404caa111a#1780 )"
This reverts commit b838468500#1779 )"
This reverts commit f2235be1d3#1763 )"
This reverts commit 6ec45b10f1#1795 )"
This reverts commit d9879d8026
7 years ago
d78577c810
Debian jessie docs ( #1806 )
* Add Debian Jessie notes
* Add installation notes for Debian Jessie
7 years ago
5fb6b2eaf7
[contrib/network-storage/glusterfs] adds service for glusterfs endpoint ( #1800 )
7 years ago
404caa111a
[contrib/network-storage/glusterfs] bootstrap for glusterfs nodes ( #1799 )
7 years ago
b838468500
Fixed kubelet standard log environment ( #1780 )
Change KUBE_LOGGING to KUBE_LOGTOSTDERR, when installing kubelet
as host type.
7 years ago
f2235be1d3
Add support for fedora atomic host ( #1779 )
* don't try to install this rpm on fedora atomic
* add docker 1.13.1 for fedora
* built-in docker unit file is sufficient, as tested on both fedora and centos atomic
7 years ago
6ec45b10f1
Update network-plugins to use portmap plugin ( #1763 )
Portmap allow to use hostPort with CNI plugins. Should fix #1675
7 years ago
d9879d8026
Update roadmap ( #1795 )
7 years ago
d487b2f927
Security best practice fixes ( #1783 )
* Disable basic and token auth by default
* Add recommended security params
* allow basic auth to fail in tests
* Enable TLS authentication for kubelet
7 years ago
66e5e14bac
Restart kubelet on update in deployment-type host on update ( #1759 )
* Restart kubelet on update in deployment-type host on update
* Update install_host.yml
* Update install_host.yml
* Update install_host.yml
7 years ago
7e4668859b
Change file used to check kubeadm upgrade method ( #1784 )
* Change file used to check kubeadm upgrade method
Test for ca.crt instead of admin.conf because admin.conf
is created during normal deployment.
* more fixes for upgrade
7 years ago
92d038062e
Fix node authorization for cloudprovider installs ( #1794 )
In 1.8, the Node authorization mode should be listed first to
allow kubelet to access secrets. This seems to only impact
environments with cloudprovider enabled.
7 years ago
2972bceb90
Changre raw execution to use yum module ( #1785 )
* Changre raw execution to use yum module
Changed raw exection to use yum module provided by Ansible.
* Replace ansible_ssh_* by ansible_*
Ansible 2.0 has deprecated the “ssh” from ansible_ssh_user, ansible_ssh_host, and ansible_ssh_port to become ansible_user, ansible_host, and ansible_port. If you are using a version of Ansible prior to 2.0, you should continue using the older style variables (ansible_ssh_*). These shorter variables are ignored, without warning, in older versions of Ansible.
I am not sure about the broader impact of this change. But I have seen on the requirements the version required is ansible>=2.4.0.
http://docs.ansible.com/ansible/latest/intro_inventory.html
7 years ago
cb0a60a0fe
calico v2.5.0 should use calico/routereflector:v0.4.0 ( #1792 )
7 years ago
3ee91e15ff
Use commas in no_proxy ( #1782 )
7 years ago
ef47a73382
Add new addon Istio ( #1744 )
* add istio addon
* add addons to a ci job
7 years ago
dc515e5ac5
Remove kernel-upgrade role ( #1798 )
This role only support Red Hat type distros and is not maintained
or used by many users. It should be removed because it creates
feature disparity between supported OSes and is not maintained.
7 years ago
56763d4288
Persist br_netfilter module loading ( #1760 )
7 years ago
ad9fa73301
Remove cert_managment var definition from k8s-cluster group vars ( #1790 )
7 years ago
Matthew Mosesohn
Flavio Percoco Premoli
Chiang Fong Lee
Peter Lee
Haiwei Liu
Peter Slijkhuis
Jan Jungnickel
Hassan Zamani
Simon Li
Aivars Sterns
pmontanari
Tim(Xiaoyu) Zhang
Tennis Smith
Seungkyu Ahn
Rémi de Passmoilesel
刘旭
Jiří Stránský
neith00
Marc Zahn
Pablo Moreno
Jason Brooks
Kevin Lefevre
Julian Poschmann
abelgana
Maxim Krasilnikov