- Jun 28, 2019
-
-
Erwan Miran authored
-
- Jun 24, 2019
-
-
andreyshestakov authored
-
- Jun 20, 2019
-
-
Matthew Mosesohn authored
* Enable kubeadm etcd mode Uses cert commands from kubeadm experimental control plane to enable non-master nodes to obtain etcd certs. Related story: PROD-29434 Change-Id: Idafa1d223e5c6ceadf819b6f9c06adf4c4f74178 * Add validation checks and exclude calico kdd mode Change-Id: Ic234f5e71261d33191376e70d438f9f6d35f358c * Move etcd mode test to ubuntu flannel HA job Change-Id: I9af6fd80a1bbb1692ab10d6da095eb368f6bc732 * rename etcd_mode to etcd_kubeadm_enabled Change-Id: Ib196d6c8a52f48cae370b026f7687ff9ca69c172
-
- May 28, 2019
-
-
Andreas Krüger authored
-
- May 07, 2019
-
-
Andreas Krüger authored
* Disable kube_api_anonymous_auth by default to secure the setup * Disable metrics-server in addons. Health endpoint is slow and unstable * Fix anonymous-auth missing in configuration * Cleanup a bit * Fix kube anon auth
-
- Apr 29, 2019
-
-
Andreas Krüger authored
-
Dmitry authored
* kube-apiserver will fail if used comma as separator
-
- Apr 24, 2019
-
-
Matthew Mosesohn authored
-
- Apr 19, 2019
-
-
Matthew Mosesohn authored
* Use K8s 1.14 and add kubeadm experimental control plane mode This reverts commit d39c273d. * Cleanup kubeadm setup run on first master * pin kubeadm_certificate_key in test * Remove kubelet autolabel of kube-node, add symlink for pki dir Change-Id: Id5e74dd667c60675dbfe4193b0bc9fb44380e1ca
-
- Apr 17, 2019
-
-
Maxime Guyot authored
Revert "Fix for unknown 'kubernetes.io' or 'k8s.io' labels specified with --node-labels (#4320)" (#4553) This reverts commit 586ad89d.
-
- Apr 11, 2019
-
-
Matthew Mosesohn authored
This reverts commit 31650862.
-
Matthew Mosesohn authored
* Use Kubernetes 1.14 and experimental control plane support * bump to v1.14.0
-
Qasim Sarfraz authored
-
- Apr 10, 2019
-
-
Robert Neumann authored
* Fix the file path for all.yml and k8s-cluster.yml * Fix --node-labels namespace error "unknown labels specified" * Update templates and configs kubelet node-labels
-
- Apr 09, 2019
-
-
Abdulaziz AlMalki authored
quote values for kube_oidc_groups_prefix and kube_oidc_username_prefix values to accept colon, e.g oidc: (#4305) This will fix error: error converting YAML to JSON: yaml: line 36: mapping values are not allowed in this context Signed-off-by: Abdulaziz AlMalki <almalki.a@gmail.com>
-
- Apr 08, 2019
-
-
rptaylor authored
* robust handling of API server SANs * use apiserver_loadbalancer_domain_name if it is defined, according to PR 3977
-
- Mar 05, 2019
-
-
Matthew Mosesohn authored
* Remove hard dependence on facts for all nodes * Update main.yaml * Update main.yaml
-
- Feb 20, 2019
-
-
Abdulaziz AlMalki authored
-
- Feb 07, 2019
-
-
Chad Swenson authored
-
- Feb 01, 2019
-
-
Vasilis Remmas authored
-
- Jan 28, 2019
-
-
Danny Kulchinsky authored
-
- Jan 16, 2019
-
-
Thomas Rogeat authored
-
- Jan 15, 2019
-
-
Chad Swenson authored
I found a potential use case where `writable` could be null and therfore not treated like a boolean, so this adds an extra default statement to avoid negating a non-boolean as boolean which would lead to undefined. refs #4020
-
- Jan 11, 2019
-
-
rongzhang authored
--address deprecated
-
- Jan 10, 2019
-
-
Chad Swenson authored
In v1beta1 of `ClusterConfiguration` the extraVolumes `writable` field was changed to `readOnly` and its boolean value must be negated. Also, the json field for `useHyperKubeImage` was incorrectly capitalized.
-
- Jan 08, 2019
-
-
Andreas Holmsten authored
* allows to override the bind addresses for controller-manager and scheduler Useful for Prometheus metrics monitoring * Add bind addr override support in kubeadm/v1beta1 Adds support for override of bind addresses for controller-manager and scheduler in kubeadm/v1beta1 * Move location of bind address vars * Remove double declaration of schedulerExtraArgs
-
- Jan 03, 2019
-
-
okamototk authored
* Use master node taint same as kubeadm configuration v1alpha3 or before.
-
Chad Swenson authored
- Creates and defaults an ansible variable for every configuration option in the `kubeproxy.config.k8s.io/v1alpha1` type spec - Fixes vars that were orphaned by removing non-kubeadm - Fixes previously harcoded kubeadm values - Introduces a `main` directory for role default files per component (requires ansible 2.6.0+) - Split out just `kube-proxy.yml` in this first effort - Removes the kube-proxy server field patch task We should continue to pull out other components from `main.yml` into their own defaults files as I did here for `defaults/main/kube-proxy.yml`. I hope for and will need others to join me in this refactoring across the project until each component config template has a matching role defaults file, with shared defaults in `kubespray-defaults` or `downloads`
-
- Dec 26, 2018
-
-
Seongjin Cho authored
Webhook token auth: https://kubernetes.io/docs/reference/access-authn-authz/authentication/#webhook-token-authentication Fixes #3063.
-
- Dec 25, 2018
-
-
Zefool authored
* controlPlaneEndpoint set up through load balancer should be possible even in single master setups Enable load balancer for single-master setups Fixes an issue where single-master setups are not reachable using the usual admin.conf from outside the cluster. controlPlaneEndpoint set up through load balancer should be possible even in single master setups * add fix to other api versions * remove obsolete check completely * remove check, pass 2 * removes checks in client configuration * delete 'and'
-
- Dec 20, 2018
-
-
Seongjin Cho authored
-
- Dec 19, 2018
-
-
Matthew Mosesohn authored
-
- Dec 07, 2018
-
-
Egor authored
-
Andreas Krüger authored
* Streamline path to certs dir * More fixes * Set path to etcd certs in kubernetes defaults instead
-
- Dec 06, 2018
-
-
Rong Zhang authored
* Upgrade kubernetes to v1.13.0 * Remove all precense of scheduler.alpha.kubernetes.io/critical-pod in templates * Fix cert dir * Use kubespray v2.8 as baseline for gitlab
-
Andreas Krüger authored
* Remove non-kubeadm deployment * More cleanup * More cleanup * More cleanup * More cleanup * Fix gitlab * Try stop gce first before absent to make the delete process work * More cleanup * Fix bug with checking if kubeadm has already run * Fix bug with checking if kubeadm has already run * More fixes * Fix test * fix * Fix gitlab checkout untill kubespray 2.8 is on quay * Fixed * Add upgrade path from non-kubeadm to kubeadm. Revert ssl path * Readd secret checking * Do gitlab checks from v2.7.0 test upgrade path to 2.8.0 * fix typo * Fix CI jobs to kubeadm again. Fix broken hyperkube path * Fix gitlab * Fix rotate tokens * More fixes * More fixes * Fix tokens
-
- Dec 03, 2018
-
-
karbyshevds authored
* Set configure-cloud-routes=false as default if no network plugin is used As configure-cloud-routes default value is `true`, so it need to be set to `false` when not required to avoid error messages like: "Couldn't reconcile node routes: error listing routes: unable to find route table for AWS cluster" on, for example, AWS installations that don't use cloud native routing. * Update kube-controller-manager.manifest.j2 remove extra spaces
-
- Nov 29, 2018
-
-
Chad Swenson authored
This takes care of a few arbitrary use cases that may require custom mounts inside of apiserver, controller manager, or scheduler.
-
- Nov 28, 2018
-
-
Chad Swenson authored
-
- Nov 27, 2018
-
-
Rong Zhang authored
-