Skip to content
Normal view Permalink
main.yml 2.34 KiB
Newer Older
Smaine Kahlouch's avatar
Initial commit
Smaine Kahlouch committed
1 
---
Smaine Kahlouch's avatar
Review role order, use master ip even when fqdn are used in the inventory  
Smaine Kahlouch committed
2 3 4 5 6 
- name: Copy kubectl bash completion
  copy:
    src: kubectl_bash_completion.sh
    dest: /etc/bash_completion.d/kubectl.sh
Smaine Kahlouch's avatar
running kubernetes master processes as pods  
Smaine Kahlouch committed
7 
- name: Install kubectl binary
ant31's avatar
Remove local dep. downloader  
ant31 committed
8 9 10 11 12 13 14 15 16 17 
  synchronize:
     src: "{{ local_release_dir }}/kubernetes/bin/kubectl"
     dest: "{{ bin_dir }}/kubectl"
     archive: no
     checksum: yes
     times: yes
  delegate_to: "{{ groups['downloader'][0] }}"

- name: Perms kubectl binary
  file: path={{ bin_dir }}/kubelet owner=kube mode=0755 state=file
Smaine Kahlouch's avatar
running kubernetes master processes as pods  
Smaine Kahlouch committed
18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 

- name: populate users for basic auth in API
  lineinfile:
    dest: "{{ kube_users_dir }}/known_users.csv"
    create: yes
    line: '{{ item.value.pass }},{{ item.key }},{{ item.value.role }}'
    backup: yes
  with_dict: "{{ kube_users }}"

# Sync masters
- name: synchronize auth directories for masters
  synchronize:
    src: "{{ item }}"
    dest: "{{ kube_config_dir }}"
    recursive: yes
    delete: yes
    rsync_opts: [ '--one-file-system']
Smaine Kahlouch's avatar
enforce user root when sudo is used  
Smaine Kahlouch committed
35 
    set_remote_user: false
Smaine Kahlouch's avatar
running kubernetes master processes as pods  
Smaine Kahlouch committed
36 37 38 39 40 
  with_items:
    - "{{ kube_token_dir }}"
    - "{{ kube_cert_dir }}"
    - "{{ kube_users_dir }}"
  delegate_to: "{{ groups['kube-master'][0] }}"
Smaine Kahlouch's avatar
Install python-httplib2 required packaged  
Smaine Kahlouch committed
41 
  when: inventory_hostname != "{{ groups['kube-master'][0] }}"
Smaine Kahlouch's avatar
running kubernetes master processes as pods  
Smaine Kahlouch committed
42 43 44 45 46 47 48 49 50 51 52 53 54 

# Write manifests
- name: Write kube-apiserver manifest
  template:
    src: manifests/kube-apiserver.manifest.j2
    dest: "{{ kube_manifest_dir }}/kube-apisever.manifest"
  notify:
    - restart kubelet

- meta: flush_handlers

- name: wait for the apiserver to be running (pulling image and running container)
  wait_for:
ant31's avatar
Use kube_apiserver_port  
ant31 committed
55 
    port: "{{kube_apiserver_insecure_port}}"
Smaine Kahlouch's avatar
Upgrade kubernetes to v1.1.3  
Smaine Kahlouch committed
56 
    delay: 10
Antoine Legrand's avatar
Run etcd as pod  
Antoine Legrand committed
57 
    timeout: 60
Smaine Kahlouch's avatar
running kubernetes master processes as pods  
Smaine Kahlouch committed
58 59 60 

- name: Create 'kube-system' namespace
  uri:
Smaine Kahlouch's avatar
Review role order, use master ip even when fqdn are used in the inventory  
Smaine Kahlouch committed
61 
    url: http://127.0.0.1:{{ kube_apiserver_insecure_port }}/api/v1/namespaces
Smaine Kahlouch's avatar
running kubernetes master processes as pods  
Smaine Kahlouch committed
62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 
    method: POST
    body: '{"apiVersion":"v1","kind":"Namespace","metadata":{"name":"kube-system"}}'
    status_code: 201,409
    body_format: json
  run_once: yes
  when: inventory_hostname == groups['kube-master'][0]

- name: Write kube-controller-manager manifest
  template:
    src: manifests/kube-controller-manager.manifest.j2
    dest: "{{ kube_config_dir }}/kube-controller-manager.manifest"

- name: Write kube-scheduler manifest
  template:
    src: manifests/kube-scheduler.manifest.j2
    dest: "{{ kube_config_dir }}/kube-scheduler.manifest"

- name: Write podmaster manifest
  template:
    src: manifests/kube-podmaster.manifest.j2
    dest: "{{ kube_manifest_dir }}/kube-podmaster.manifest"