Skip to content
Normal view Permalink
check-certs.yml 1.07 KiB
Newer Older
Smana's avatar
fix add nodes to the cluster
Smana committed
1 2 3 4 
---
- name: "Check certs | check if the certs have already been generated on first master"
  stat:
    path: "{{ kube_cert_dir }}/ca.pem"
Smana's avatar
use docker repository to install on CentOS  
Smana committed
5 
  delegate_to: "{{groups['kube-master'][0]}}"
Smana's avatar
fix add nodes to the cluster
Smana committed
6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 
  register: kubecert_master
  run_once: true

- name: "Check_certs | Set default value for 'sync_certs' and 'gen_certs' to false"
  set_fact:
    sync_certs: false
    gen_certs: false

- name: "Check_certs | Set 'sync_certs' and 'gen_certs' to true"
  set_fact:
    gen_certs: true
  when: not kubecert_master.stat.exists
  run_once: true

- name: "Check certs | check if a cert already exists"
  stat:
    path: "{{ kube_cert_dir }}/ca.pem"
  register: kubecert 

- name: "Check_certs | Set 'sync_certs' to true"
  set_fact:
    sync_certs: true
  when: >-
      {%- set certs = {'sync': False} -%}
      {%- for server in play_hosts
         if (not hostvars[server].kubecert.stat.exists) or
         (hostvars[server].kubecert.stat.checksum != kubecert_master.stat.checksum|default('')) -%}
         {%- set _ = certs.update({'sync': True}) -%}
      {%- endfor -%}
      {{ certs.sync }}
  run_once: true