Skip to content
GitLab
Explore
Sign in
Primary navigation
Search or go to…
Project
K
Kubespray
Manage
Activity
Members
Code
Repository
Branches
Commits
Tags
Repository graph
Compare revisions
Deploy
Model registry
Help
Help
Support
GitLab documentation
Compare GitLab plans
Community forum
Contribute to GitLab
Provide feedback
Keyboard shortcuts
?
Snippets
Groups
Projects
Show more breadcrumbs
Mirror
Kubespray
Commits
a21eb036
Commit
a21eb036
authored
8 years ago
by
Matthew Mosesohn
Browse files
Options
Downloads
Patches
Plain Diff
Add no_log to cert tar tasks
This works around 4MB limit for gitlab CI runner.
parent
9c1701f2
No related branches found
No related tags found
No related merge requests found
Changes
2
Hide whitespace changes
Inline
Side-by-side
Showing
2 changed files
roles/etcd/tasks/gen_certs_script.yml
+3
-0
3 additions, 0 deletions
roles/etcd/tasks/gen_certs_script.yml
roles/kubernetes/secrets/tasks/gen_certs_script.yml
+4
-0
4 additions, 0 deletions
roles/kubernetes/secrets/tasks/gen_certs_script.yml
with
7 additions
and
0 deletions
roles/etcd/tasks/gen_certs_script.yml
+
3
−
0
View file @
a21eb036
...
@@ -87,6 +87,7 @@
...
@@ -87,6 +87,7 @@
args
:
args
:
executable
:
/bin/bash
executable
:
/bin/bash
register
:
etcd_master_cert_data
register
:
etcd_master_cert_data
no_log
:
true
check_mode
:
no
check_mode
:
no
delegate_to
:
"
{{groups['etcd'][0]}}"
delegate_to
:
"
{{groups['etcd'][0]}}"
when
:
inventory_hostname in groups['etcd'] and sync_certs|default(false) and
when
:
inventory_hostname in groups['etcd'] and sync_certs|default(false) and
...
@@ -98,6 +99,7 @@
...
@@ -98,6 +99,7 @@
args
:
args
:
executable
:
/bin/bash
executable
:
/bin/bash
register
:
etcd_node_cert_data
register
:
etcd_node_cert_data
no_log
:
true
check_mode
:
no
check_mode
:
no
delegate_to
:
"
{{groups['etcd'][0]}}"
delegate_to
:
"
{{groups['etcd'][0]}}"
when
:
(('calico-rr' in groups and inventory_hostname in groups['calico-rr']) or
when
:
(('calico-rr' in groups and inventory_hostname in groups['calico-rr']) or
...
@@ -109,6 +111,7 @@
...
@@ -109,6 +111,7 @@
shell
:
"
base64
-d
<<<
'{{etcd_master_cert_data.stdout|quote}}'
|
tar
xz
-C
{{
etcd_cert_dir
}}"
shell
:
"
base64
-d
<<<
'{{etcd_master_cert_data.stdout|quote}}'
|
tar
xz
-C
{{
etcd_cert_dir
}}"
args
:
args
:
executable
:
/bin/bash
executable
:
/bin/bash
no_log
:
true
changed_when
:
false
changed_when
:
false
when
:
inventory_hostname in groups['etcd'] and sync_certs|default(false) and
when
:
inventory_hostname in groups['etcd'] and sync_certs|default(false) and
inventory_hostname != groups['etcd'][0]
inventory_hostname != groups['etcd'][0]
...
...
This diff is collapsed.
Click to expand it.
roles/kubernetes/secrets/tasks/gen_certs_script.yml
+
4
−
0
View file @
a21eb036
...
@@ -80,6 +80,7 @@
...
@@ -80,6 +80,7 @@
shell
:
"
tar
cfz
-
-C
{{
kube_cert_dir
}}
-T
/dev/stdin
<<<
{{
my_master_certs|join('
')
}}
{{
all_node_certs|join('
')
}}
|
base64
--wrap=0"
shell
:
"
tar
cfz
-
-C
{{
kube_cert_dir
}}
-T
/dev/stdin
<<<
{{
my_master_certs|join('
')
}}
{{
all_node_certs|join('
')
}}
|
base64
--wrap=0"
args
:
args
:
executable
:
/bin/bash
executable
:
/bin/bash
no_log
:
true
register
:
master_cert_data
register
:
master_cert_data
check_mode
:
no
check_mode
:
no
delegate_to
:
"
{{groups['kube-master'][0]}}"
delegate_to
:
"
{{groups['kube-master'][0]}}"
...
@@ -90,6 +91,7 @@
...
@@ -90,6 +91,7 @@
shell
:
"
tar
cfz
-
-C
{{
kube_cert_dir
}}
-T
/dev/stdin
<<<
{{
my_node_certs|join('
')
}}
|
base64
--wrap=0"
shell
:
"
tar
cfz
-
-C
{{
kube_cert_dir
}}
-T
/dev/stdin
<<<
{{
my_node_certs|join('
')
}}
|
base64
--wrap=0"
args
:
args
:
executable
:
/bin/bash
executable
:
/bin/bash
no_log
:
true
register
:
node_cert_data
register
:
node_cert_data
check_mode
:
no
check_mode
:
no
delegate_to
:
"
{{groups['kube-master'][0]}}"
delegate_to
:
"
{{groups['kube-master'][0]}}"
...
@@ -116,6 +118,7 @@
...
@@ -116,6 +118,7 @@
-
name
:
Gen_certs | Unpack certs on masters
-
name
:
Gen_certs | Unpack certs on masters
shell
:
"
base64
-d
<
{{
cert_tempfile.stdout
}}
|
tar
xz
-C
{{
kube_cert_dir
}}"
shell
:
"
base64
-d
<
{{
cert_tempfile.stdout
}}
|
tar
xz
-C
{{
kube_cert_dir
}}"
no_log
:
true
changed_when
:
false
changed_when
:
false
check_mode
:
no
check_mode
:
no
when
:
inventory_hostname in groups['kube-master'] and sync_certs|default(false) and
when
:
inventory_hostname in groups['kube-master'] and sync_certs|default(false) and
...
@@ -133,6 +136,7 @@
...
@@ -133,6 +136,7 @@
shell
:
"
base64
-d
<<<
'{{node_cert_data.stdout|quote}}'
|
tar
xz
-C
{{
kube_cert_dir
}}"
shell
:
"
base64
-d
<<<
'{{node_cert_data.stdout|quote}}'
|
tar
xz
-C
{{
kube_cert_dir
}}"
args
:
args
:
executable
:
/bin/bash
executable
:
/bin/bash
no_log
:
true
changed_when
:
false
changed_when
:
false
check_mode
:
no
check_mode
:
no
when
:
inventory_hostname in groups['kube-node'] and
when
:
inventory_hostname in groups['kube-node'] and
...
...
This diff is collapsed.
Click to expand it.
Preview
0%
Loading
Try again
or
attach a new file
.
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Save comment
Cancel
Please
register
or
sign in
to comment
