46ba6a4154
ansible-lint: when lines should not include Jinja2 variables ( #4496 )
5 years ago
4ff851b302
Enable nodelocaldns by default ( #4461 )
* Enable nodelocaldns by default
* Enable nodelocaldns by default
* nodelocaldns is now default
* Disable enable_nodelocaldns for the addons CI jobs
Disable enable_nodelocaldns for the addons CI jobs to make sure things still work without nodelocaldns
5 years ago
3af90f8772
disable cloud-routes for non-cloud plugin ( #4443 )
5 years ago
9032e271f1
Upgrade CoreDNS to 1.5.0 ( #4494 )
5 years ago
15597aa493
Do not force TCP connections to upstreams. ( #4492 )
5 years ago
3b9d13fda9
Return back bind API server node loadbalancer to 127.0.0.1 for security purposes. ( #4489 )
5 years ago
5e0249ae7c
Add HAProxy as internal loadbalancer ( #4480 )
5 years ago
353afa7cb0
Fix ipip: false in calico v3 ( #4473 )
5 years ago
a30ad1e5a5
Added generic CNI network plugin ( #4322 )
* Added generic CNI network plugin
* Added CNI network plugin documentation
* added necessary fix
5 years ago
586ad89d50
Fix for unknown 'kubernetes.io' or 'k8s.io' labels specified with --node-labels ( #4320 )
* Fix the file path for all.yml and k8s-cluster.yml
* Fix --node-labels namespace error "unknown labels specified"
* Update templates and configs kubelet node-labels
5 years ago
6caa639243
Update CoreDNS label as specified in the kubernetes coredns repository ( #3920 )
5 years ago
d2a1ac3b0c
Add Ansible-lint CI step ( #4411 )
* Add ansible-lint as gitlab-ci step
* Fix jinja2 syntax in include_tasks that breaks ansible-lint
* Use a block scalar to get around gitlab quoting/escaping rules
* Run ansible-lint in verbose mode in CI
5 years ago
097806dfe8
Added tag kube-proxy ( #4272 )
Signed-off-by: André R. de Miranda <andre@miranda.work>
5 years ago
7cdf1fd388
quote values for kube_oidc_groups_prefix and kube_oidc_username_prefix values to accept colon, e.g oidc: ( #4305 )
This will fix error: error converting YAML to JSON: yaml: line 36: mapping values are not allowed in this context
Signed-off-by: Abdulaziz AlMalki <almalki.a@gmail.com>
5 years ago
aa162b0d5d
Update kube-router to 0.2.5 ( #4469 )
5 years ago
b15f3e182d
add default routing to canal and disable bird checks ( #4468 )
Co-Author: Paweł Skrzyński
5 years ago
4d39c1856e
Fix jinja filters ( #4470 )
5 years ago
913fed0089
kubeadmn init: add 'until' to make 'retries' effective ( #4464 )
an 'until' clause is required or 'retries' is ignored
(see note @ https://docs.ansible.com/ansible/latest/user_guide/playbooks_loops.html#do-until-loops )
5 years ago
12c6b5c3eb
openSUSE: Use Leap 15.0 instead of 42.3 ( #4442 )
* Vagrantfile: Bump openSUSE to Leap 15.0
* roles: container-engine: Add 'containerd' package for openSUSE
The 'containerd' package contains the docker-containerd and
docker-containerd-shim binaries. We also need to ensure that the latest
version is installed since an older version may already be present (eg GCE
images)
* Remove docker log-opts for opensuse
* roles: bootstrap-os: Use lowercase 'o' for openSUSE
OpenSUSE is not a valid family name. The correct one is openSUSE
* roles: bootstrap-os: Update zypper cache before first installation
The zypper cache may be outdated so ensure that it's fully updated
before we try and install the bootstrap packages.
5 years ago
f52584a715
robust handling of API server SANs ( #4435 )
* robust handling of API server SANs
* use apiserver_loadbalancer_domain_name if it is defined, according to PR 3977
5 years ago
09bbdadcee
remove nodelocaldns iface on reset ( #4460 )
5 years ago
d711a0c83f
[nodelocaldns] expand tolerations on the daemonset ( #4451 )
5 years ago
d18ad63e49
Update nginx to 1.15. Update manifest and performance optimize ( #4458 )
5 years ago
8947614d97
Upgrade to etcd v3.2.26 ( #4444 )
5 years ago
7e4f4a96fc
Replace iteritems() to items() in Jinja2 templates ( #4437 )
The iteritems() dictionary's method has been removed in Python3. Using
this method in Jinja2 templates limits the execution to Python2 which
will be deprecated in 2020[1]. This change replaces that method for
the items() method as it's suggested in the official website[2].
[1] https://pythonclock.org/
[2] https://docs.ansible.com/ansible/latest/user_guide/playbooks_python_version.html#dict-iteritems
5 years ago
301a371efe
Update pypy3 on CoreOS to 7.0.0 ( #4456 )
5 years ago
1a6df84c7a
Upgrade to Helm 2.13.1 ( #4445 )
5 years ago
8ad74404c9
Remove bash-completion ( #4431 )
5 years ago
1ce2f04f47
allow Suse OS family ( #4430 )
5 years ago
20b12751af
add Cinder allowVolumeExpansion option ( #4415 )
5 years ago
adca353fe9
Use docker.io for calico ( #4253 )
5 years ago
7a72e567d5
Update CoreDNS to 1.4.0 ( #4422 )
* Update CoreDNS to 1.4.0
* Update readme to reflect CoreDNS update
5 years ago
3c050be0b0
Update nodelocaldns cache settings ( #4423 )
5 years ago
41e684eb5a
Update DNS Autoscaler to 1.4.0 ( #4425 )
* Update DNS Autoscaler
* Update downloads too
* Fix yamllint
* Fix yamllint
5 years ago
55890e1b82
keep compatibility as it was before ( #4268 )
5 years ago
1e524c68d5
remove our config if docker start failed ( #4260 )
5 years ago
740d8b0a26
enable kubelet client certificate rotation ( #4081 )
* enable kubelet client certificate rotation
* change to variable kubelet_rotate_certificates
5 years ago
a8dd69cf17
Fixed cleanup-docker-orphans.sh to use docker-containerd-shim and containerd-shim ( #4418 )
5 years ago
4fe2aa6bf7
Use install_cni init container for cni copy for calico/canal ( #4416 )
5 years ago
5d5c9cab19
Speed up old docker package removal ( #4408 )
Both the `yum` and `apt` modules support a list as input, this allows us avoid the slower `with_items` approach, which can take a long time with a large count of cluster nodes.
5 years ago
5f12b7aedf
Remove kubedns and dnsmasq. Move dns_late phase after apps ( #4406 )
Both kubedns and dnsmasq modes are long not maintained.
We should run dns_late steps at the end because sshd
makes DNS lookups during Ansible run and has 2s timeouts
for each failed lookup trying to connect to coredns before
it is ready.
5 years ago
d71590bbd0
add 1.14.0 checksum, remove 1.11.* checksums ( #4401 )
5 years ago
483f1d2ca0
Calico felix - Fix jinja2 boolean condition ( #4348 )
* Fix jinja2 boolean condition
* Convert all felix variable to booleans instead.
5 years ago
0440e45d65
Fix supplementary_addresses rendering error ( #4403 )
5 years ago
2fb27c8521
Use static files in KubeDNS templating task ( #4379 )
This commit adapts the "Lay Down KubeDNS Template" task to use the static
files moved by pull request [1]
[1] https://github.com/kubernetes-sigs/kubespray/pull/4341
5 years ago
f17f4ff963
Fix bootsrap-os role, failing to create remote_tmp ( #4384 )
* Fix bootsrap-os role, failing to create remote_tmp
* use ansible_remote_tmp hostvar
5 years ago
e9c34fe038
Default values for variable dns_servers and dns_domain are set in two files: ( #3999 )
values from inventory in roles/kubespray-defaults/defaults/main.yml
hardcoded values in roles/container-engine/defaults/main.yml
dns_servers set empty in roles/container-engine/defaults/main.yml and skydns_server not set in docker_dns_servers variables
also set default value for manual_dns_serve
another variables in roles/container-engine/defaults not need to set
5 years ago
669ab10c17
Added livenessProbe for local nginx apiserver proxy liveness probe ( #4222 )
* Added configurable local apiserver proxy liveness probe
* Enable API LB healthcheck by default
* Fix template spacing and moved healthz location to nginx http section
* Fix healthcheck listen address to allow kubelet request healthcheck
5 years ago
0a3cf1a087
Fix CA cert environment variable for ectd v3 ( #4381 )
5 years ago
0efa3e6392
Upgrade to k8s 1.13.5
5 years ago
Maxime Guyot
Andreas Krüger
Qasim Sarfraz
Sergey
Neven Miculinic
Robert Neumann
Sidharth Anupkrishnan
MarkusTeufelberger
André R. de Miranda
Abdulaziz AlMalki
Markos Chandras
rptaylor
Erwan Miran
Xinghong Fang
Victor Morales
Xavi
Gautam Divgi
Matthew Mosesohn
Chad Swenson
Bort Verwilst
ml
Dmitry Chepurovskiy
Stefan Prietl
Bart Verwilst