Skip to content
  1. Oct 16, 2018
    • JuanJo Ciarlante's avatar
      [jjo] add kube-router support (#3339) · a5edd0d7
      JuanJo Ciarlante authored
      * [jjo] add kube-router support
      
      Fixes cloudnativelabs/kube-router#147.
      
      * add kube-router as another network_plugin choice
      * support most used kube-router flags via
        `kube_router_foo` vars as other plugins
      * implement replacing kube-proxy (--run-service-proxy=true) via
        `kube_proxy_mode: none`, verified in a _non kubeadm_enabled_
        install, should also work for recent kubeadm releases via
        `skipKubeProxyInstall: true` config
      
      * [jjo] address PR#3339 review from @woopstar
      
      * add busybox image used by kube-router to downloads
      
      * fix busybox download groups key
      
      * rework kubeadm_enabled + kube_router_run_service_proxy
      
      - verify it working ok w/the kubeadm_enabled and
        kube_router_run_service_proxy true or false
      
      - introduce `kube_proxy_remove` fact, to decouple logic
        from kube_proxy_mode (which affects kubeadm configmap
        settings, thus no-good to ab-use it to 'none')
      
      * improve kube-router.md re: kubeadm_enabled and kube_router_run_service_proxy
      
      * address @woopstar latest review
      
      * add inventory/sample/group_vars/k8s-cluster/k8s-net-kube-router.yml
      
      * fix kube_router_run_service_proxy conditional for kube-proxy removal
      
      * fix kube_proxy_remove fact (w/ |bool), add some needed kube-proxy tags on my and existing changes
      
      * update kube-router tolerations for 1.12 compatibility
      
      * add PriorityClass to kube-router DaemonSet
      a5edd0d7
    • Erwan Miran's avatar
      Fix ansible syntax to avoid ansible warnings (again) (#3509) · fcd8d850
      Erwan Miran authored
      * Fix ansible syntax to avoid ansible warnings (again)
      
      * warn: false on tar -cfz
      
      * wrong placement of warn:false
      fcd8d850
  2. Oct 11, 2018
  3. Oct 02, 2018
  4. Sep 20, 2018
  5. Sep 17, 2018
  6. Aug 28, 2018
  7. Aug 23, 2018
    • Aivars Sterns's avatar
      calico upgrade to v3 (#3086) · 23fd3461
      Aivars Sterns authored
      * calico upgrade to v3
      
      * update calico_rr version
      
      * add missing file
      
      * change contents of main.yml as it was left old version
      
      * enable network policy by default
      
      * remove unneeded task
      
      * Fix kubelet calico settings
      
      * fix when statement
      
      * switch back to node-kubeconfig.yaml
      23fd3461
  8. Aug 17, 2018
  9. Aug 16, 2018
  10. Jun 21, 2018
  11. Mar 08, 2018
  12. Mar 01, 2018
  13. Feb 21, 2018
  14. Feb 06, 2018
    • Ryan Zenker's avatar
      baremetal tweaks · ad9049a4
      Ryan Zenker authored
      * allow installs to not have hostname overriden with fqdn from inventory
      * calico-config no longer requires local as and will default to global
      * when cloudprovider is not defined, use the inventory_hostname for cni-calico
      * allow reset to not restart network (buggy nodes die with this cmd)
      * default kube_override_hostname to inventory_hostname instead of ansible_hostname
      ad9049a4
  15. Jan 25, 2018
  16. Dec 11, 2017
    • Brad Beam's avatar
      Fixes to reset (#2046) · 9643c2c1
      Brad Beam authored
      - adding additional directories to cleanup (rkt/vault)
      - targeting kubespray ansible groups instead of all
      9643c2c1
  17. Dec 06, 2017
  18. Nov 29, 2017
  19. Oct 05, 2017
  20. Oct 03, 2017
  21. Sep 26, 2017
    • Matthew Mosesohn's avatar
      Upgrade to kubeadm (#1667) · bd272e0b
      Matthew Mosesohn authored
      * Enable upgrade to kubeadm
      
      * fix kubedns upgrade
      
      * try upgrade route
      
      * use init/upgrade strategy for kubeadm and ignore kubedns svc
      
      * Use bin_dir for kubeadm
      
      * delete more secrets
      
      * fix waiting for terminating pods
      
      * Manually enforce kube-proxy for kubeadm deploy
      
      * remove proxy. update to kubeadm 1.8.0rc1
      bd272e0b
  22. Sep 16, 2017
  23. Sep 06, 2017
  24. Aug 31, 2017
  25. Aug 30, 2017
    • Maxim Krasilnikov's avatar
      Change single Vault pki mount to multi pki mounts paths for etcd and kube CA`s (#1552) · 6eb22c5d
      Maxim Krasilnikov authored
      * Added update CA trust step for etcd and kube/secrets roles
      
      * Added load_balancer_domain_name to certificate alt names if defined. Reset CA's in RedHat os.
      
      * Rename kube-cluster-ca.crt to vault-ca.crt, we need separated CA`s for vault, etcd and kube.
      
      * Vault role refactoring, remove optional cert vault auth because not not used and worked. Create separate CA`s fro vault and etcd.
      
      * Fixed different certificates set for vault cert_managment
      
      * Update doc/vault.md
      
      * Fixed condition create vault CA, wrong group
      
      * Fixed missing etcd_cert_path mount for rkt deployment type. Distribute vault roles for all vault hosts
      
      * Removed wrong when condition in create etcd role vault tasks.
      6eb22c5d
  26. Aug 20, 2017
    • Maxim Krasilnikov's avatar
      Fixed deploy cluster with vault cert manager (#1548) · 2ba285a5
      Maxim Krasilnikov authored
      * Added custom ips to etcd vault distributed certificates
      
      * Added custom ips to kube-master vault distributed certificates
      
      * Added comment about issue_cert_copy_ca var in vault/issue_cert role file
      
      * Generate kube-proxy, controller-manager and scheduler certificates by vault
      
      * Revert "Disable vault from CI (#1546)"
      
      This reverts commit 781f31d2.
      
      * Fixed upgrade cluster with vault cert manager
      
      * Remove vault dir in reset playbook
      2ba285a5
  27. Jul 17, 2017
  28. Jun 29, 2017
  29. Apr 19, 2017
  30. Mar 22, 2017
  31. Feb 27, 2017
  32. Feb 18, 2017
  33. Feb 16, 2017
  34. Feb 13, 2017
    • Vladimir Rutsky's avatar
      set "check_mode: no" for read-only "shell" steps that registers result · 09847567
      Vladimir Rutsky authored
      "shell" step doesn't support check mode, which currently leads to failures,
      when Ansible is being run in check mode (because Ansible doesn't run command,
      assuming that command might have effect, and no "rc" or "output" is registered).
      
      Setting "check_mode: no" allows to run those "shell" commands in check mode
      (which is safe, because those shell commands doesn't have side effects).
      09847567
  35. Jan 06, 2017
  36. Jan 02, 2017
Loading