-
- Downloads
refactor vault role (#2733)
* Move front-proxy-client certs back to kube mount We want the same CA for all k8s certs * Refactor vault to use a third party module The module adds idempotency and reduces some of the repetitive logic in the vault role Requires ansible-modules-hashivault on ansible node and hvac on the vault hosts themselves Add upgrade test scenario Remove bootstrap-os tags from tasks * fix upgrade issues * improve unseal logic * specify ca and fix etcd check * Fix initialization check bump machine size
Showing
- .gitlab-ci.yml 16 additions, 1 deletion.gitlab-ci.yml
- requirements.txt 4 additions, 2 deletionsrequirements.txt
- roles/bootstrap-os/tasks/bootstrap-ubuntu.yml 1 addition, 0 deletionsroles/bootstrap-os/tasks/bootstrap-ubuntu.yml
- roles/dnsmasq/tasks/main.yml 0 additions, 4 deletionsroles/dnsmasq/tasks/main.yml
- roles/download/defaults/main.yml 1 addition, 1 deletionroles/download/defaults/main.yml
- roles/etcd/defaults/main.yml 1 addition, 1 deletionroles/etcd/defaults/main.yml
- roles/kubernetes/master/defaults/main.yml 3 additions, 0 deletionsroles/kubernetes/master/defaults/main.yml
- roles/kubernetes/master/templates/manifests/kube-apiserver.manifest.j2 6 additions, 1 deletion...tes/master/templates/manifests/kube-apiserver.manifest.j2
- roles/kubernetes/node/defaults/main.yml 10 additions, 10 deletionsroles/kubernetes/node/defaults/main.yml
- roles/kubernetes/preinstall/tasks/set_facts.yml 0 additions, 1 deletionroles/kubernetes/preinstall/tasks/set_facts.yml
- roles/kubernetes/secrets/defaults/main.yml 1 addition, 2 deletionsroles/kubernetes/secrets/defaults/main.yml
- roles/kubernetes/secrets/tasks/gen_certs_script.yml 0 additions, 2 deletionsroles/kubernetes/secrets/tasks/gen_certs_script.yml
- roles/kubernetes/secrets/tasks/gen_certs_vault.yml 1 addition, 1 deletionroles/kubernetes/secrets/tasks/gen_certs_vault.yml
- roles/kubernetes/secrets/tasks/main.yml 0 additions, 2 deletionsroles/kubernetes/secrets/tasks/main.yml
- roles/vault/defaults/main.yml 37 additions, 31 deletionsroles/vault/defaults/main.yml
- roles/vault/handlers/main.yml 50 additions, 0 deletionsroles/vault/handlers/main.yml
- roles/vault/tasks/bootstrap/create_mounts.yml 2 additions, 1 deletionroles/vault/tasks/bootstrap/create_mounts.yml
- roles/vault/tasks/bootstrap/create_roles.yml 1 addition, 1 deletionroles/vault/tasks/bootstrap/create_roles.yml
- roles/vault/tasks/bootstrap/gen_vault_certs.yml 1 addition, 1 deletionroles/vault/tasks/bootstrap/gen_vault_certs.yml
- roles/vault/tasks/bootstrap/main.yml 13 additions, 7 deletionsroles/vault/tasks/bootstrap/main.yml
Loading
Please register or sign in to comment