Matthew Mosesohn
66c67dbe73
Add optional helm deployment mode for host ( #1920 )
7 years ago
Chad Swenson
16ae2c1809
Flannel RBAC Fix
Fixes a bug that can occur if `cni-flannel-rbac.yml` was written but the playbook failed before it was applied. Uses the same approach as calico.
7 years ago
Matthew Mosesohn
520103df78
Change namespace for provisioner account
7 years ago
Matthew Mosesohn
3e3787de15
Fix local volume provisioner mount point for rkt
7 years ago
Chad Swenson
0c824d5ef1
Fix kubelet container with alternate Docker data paths
Some time ago I think the hardcoded `/var/lib/docker` was required, but kubelet running in a container has been aware of the Docker path since at least as far back as k8s 1.6.
Without this change, you see a large number of errors in the kubelet logs if you installed with a non-default `docker_daemon_graph`
7 years ago
Matthew Mosesohn
c0e989b17c
New addon: local_volume_provisioner ( #1909 )
7 years ago
Vicenç Juan Tomàs Montserrat
5218b3af82
Fix bad handler directory name in kubeadm role
7 years ago
Spencer Smith
19962f6b6a
fix indentation for master template ( #1906 )
7 years ago
Matthew Mosesohn
f7703dbca3
Block anonymous auth requests to kubelet
7 years ago
Spencer Smith
74a9eedb93
helm template check for http/https_proxy
7 years ago
Spencer Smith
6df104b275
don't check for no_proxy, only http/https_proxy. fix linting issues.
7 years ago
Spencer Smith
b27453d8d8
improved proxy support
7 years ago
Andrew Greenwood
8a86acf75d
Update kubespray-defaults kubernetes to v1.8.2
7 years ago
abelgana
d738acf638
Update kubelet.kubeadm.env.j2 ( #1901 )
7 years ago
tanshanshan
84d92aa3c7
fix-bug ( #1900 )
7 years ago
Andrew Greenwood
dd01cabcdc
Update to kubernetes 1.8.2
7 years ago
Andrew Greenwood
c383c7e2c1
Update kubedns image to latest
7 years ago
Andrew Greenwood
958bb5285d
Update kubedns image to latest
7 years ago
Chad Swenson
256bbb1a8a
Parameterize apt repo endpoints
This allows overriding of apt repo endpoints when internet sources are not accessible. Additionally, switch to using the dockerproject.org gpg key url for apt instead of keyservers.net
7 years ago
mkrasilnikov
2c7c956be9
Disable swap in vagrant vms
7 years ago
Matthew Mosesohn
fe81bba08d
Force kubelet certificates to be generated as lowercase ( #1886 )
All nodes get converted to lowercase, so certs should set
CN with lowercase as well.
7 years ago
Matthew Mosesohn
564de07963
fix indentation for network policy option
7 years ago
Aivars Sterns
84cf6fbe83
change ssh_args/bastion configuration ( #1883 )
7 years ago
abelgana
d9160f19c0
Sysctl reload if needed after IP forward enabling
Add reload yes to reload sysctl if the value of net.ipv4.ip_forward changes.
- name: Enable ip forwarding
sysctl:
sysctl_file: "{{sysctl_file_path}}"
name: net.ipv4.ip_forward
value: 1
state: present
reload: yes
tags:
- bootstrap-os
7 years ago
Matthew Mosesohn
b0f04d925a
Update network policy setting for Kubernetes 1.8 ( #1879 )
It is now enabled by default in 1.8 with the api changed
to networking.k8s.io/v1 instead of extensions/v1beta1.
7 years ago
Matthew Mosesohn
ec53b8b66a
Move cluster roles and system namespace to new role
This should be done after kubeconfig is set for admin and
before network plugins are up.
7 years ago
ArchiFleKs
6e949bf951
update flannel
7 years ago
Matthew Mosesohn
86fb669fd3
Idempotency fixes ( #1838 )
7 years ago
Matthew Mosesohn
7123956ecd
update checksum for kubeadm ( #1869 )
7 years ago
Matthew Mosesohn
a52bc44f5a
Fix broken CI jobs ( #1854 )
* Fix broken CI jobs
Adjust image and image_family scenarios for debian.
Checkout CI file for upgrades
* add debugging to file download
* Fix download for alternate playbooks
* Update ansible ssh args to force ssh user
* Update sync_container.yml
7 years ago
Matthew Mosesohn
acb63a57fa
Only limit etcd memory on small hosts ( #1860 )
Also disable oom killer on etcd
7 years ago
Flavio Percoco Premoli
5b08277ce4
Access dict item's value keys using .value ( #1865 )
7 years ago
Chiang Fong Lee
5dc56df64e
Fix ordering of kube-apiserver admission control plug-ins ( #1841 )
7 years ago
Matthew Mosesohn
33c4d64b62
Make ClusterRoleBinding to admit all nodes with right cert ( #1861 )
This is to work around #1856 which can occur when kubelet
hostname and resolvable hostname (or cloud instance name)
do not match.
7 years ago
Matthew Mosesohn
25de6825df
Update Kubernetes to v1.8.1 ( #1858 )
7 years ago
Peter Lee
0b60201a1e
fix etcd health check bug ( #1480 )
7 years ago
Haiwei Liu
cfea99c4ee
Fix scale.yml to supoort kubeadm ( #1863 )
Signed-off-by: Haiwei Liu <carllhw@gmail.com>
7 years ago
Matthew Mosesohn
cea41a544e
Use include instead of import tasks to support v2.3 ( #1855 )
Eventually 2.3 support will be dropped, so this is
a temporary change.
7 years ago
pmontanari
8371a060a0
Update main.yml
Match kubedns_version with roles/download/defaults/main.yml:kubedns_version: 1.14.5
7 years ago
Matthew Mosesohn
7ed140cea7
Update refs to kubernetes version to v1.8.0 ( #1845 )
7 years ago
Matthew Mosesohn
0b4fcc83bd
Fix up warnings and deprecations ( #1848 )
7 years ago
Matthew Mosesohn
514359e556
Improve etcd scale up ( #1846 )
Now adding unjoined members to existing etcd cluster
occurs one at a time so that the cluster does not
lose quorum.
7 years ago
Matthew Mosesohn
fc9a65be2b
Refactor downloads to use download role directly ( #1824 )
* Refactor downloads to use download role directly
Also disable fact delegation so download delegate works acros OSes.
* clean up bools and ansible_os_family conditionals
7 years ago
Jan Jungnickel
49dff97d9c
Relabel controler-manager to kube-controller-manager ( #1830 )
Fixes #1129
7 years ago
Matthew Mosesohn
4efb0b78fa
Move CI vars out of gitlab and into var files ( #1808 )
7 years ago
Hassan Zamani
c9fe8fde59
Use fail-swap-on flag only for kube_version >= 1.8 ( #1829 )
7 years ago
Matthew Mosesohn
16462292e1
Properly skip extra SANs when not specified for kubeadm ( #1831 )
7 years ago
pmontanari
20d80311f0
Update main.yml ( #1822 )
* Update main.yml
Needs to set up resolv.conf before updating Yum cache otherwise no name resolution available (resolv.conf empty).
* Update main.yml
Removing trailing spaces
7 years ago
Hassan Zamani
3acc42c5b3
Use etcd_access_addresses for vault_etcd_url
7 years ago
Tennis Smith
54320c5b09
set to 3 digit version number ( #1817 )
7 years ago