- Apr 24, 2019
-
-
Vincent Gramer authored
add the support of the folling property in azure-credential-check.yml - azure_loadbalancer_sku: Sku of Load Balancer and Public IP. Candidate values are: basic and standard. - azure_exclude_master_from_standard_lb: excludes master nodes from standard load balancer. - azure_disable_outbound_snat: disables the outbound SNAT for public load balancer rules - useInstanceMetadata: Use instance metadata service where possible - azure_primary_availability_set: (Optional) The name of the availability set that should be used as the load balancer backend
-
MarkusTeufelberger authored
-
- Apr 19, 2019
-
-
Matthew Mosesohn authored
* Use K8s 1.14 and add kubeadm experimental control plane mode This reverts commit d39c273d. * Cleanup kubeadm setup run on first master * pin kubeadm_certificate_key in test * Remove kubelet autolabel of kube-node, add symlink for pki dir Change-Id: Id5e74dd667c60675dbfe4193b0bc9fb44380e1ca
-
- Apr 17, 2019
-
-
Maxime Guyot authored
-
Maxime Guyot authored
Revert "Fix for unknown 'kubernetes.io' or 'k8s.io' labels specified with --node-labels (#4320)" (#4553) This reverts commit 586ad89d.
-
- Apr 10, 2019
-
-
Sergey authored
-
Andreas Krüger authored
-
Neven Miculinic authored
* Added generic CNI network plugin * Added CNI network plugin documentation * added necessary fix
-
Robert Neumann authored
* Fix the file path for all.yml and k8s-cluster.yml * Fix --node-labels namespace error "unknown labels specified" * Update templates and configs kubelet node-labels
-
- Apr 09, 2019
-
-
André R. de Miranda authored
Signed-off-by: André R. de Miranda <andre@miranda.work>
-
- Apr 08, 2019
-
-
Andreas Krüger authored
-
- Apr 03, 2019
-
-
Sergey authored
* enable kubelet client certificate rotation * change to variable kubelet_rotate_certificates
-
- Apr 01, 2019
-
-
Matthew Mosesohn authored
Both kubedns and dnsmasq modes are long not maintained. We should run dns_late steps at the end because sshd makes DNS lookups during Ansible run and has 2s timeouts for each failed lookup trying to connect to coredns before it is ready.
-
- Mar 28, 2019
-
-
Dmitry Chepurovskiy authored
* Added configurable local apiserver proxy liveness probe * Enable API LB healthcheck by default * Fix template spacing and moved healthz location to nginx http section * Fix healthcheck listen address to allow kubelet request healthcheck
-
- Mar 05, 2019
-
-
Matthew Mosesohn authored
* Remove hard dependence on facts for all nodes * Update main.yaml * Update main.yaml
-
- Feb 26, 2019
-
-
Ryler Hockenbury authored
-
- Feb 25, 2019
-
-
Matthew Mosesohn authored
-
- Feb 21, 2019
-
-
Frank Ritchie authored
This was already approved in #4106 but there are CI issues with that PR due to references to kubernetes incubator. After upgrading to Kubespray 2.8.1 with Kubeadm enabled Rook Ceph volume provision failed due to the flexvolume plugin dir not being correct. Adding the var fixed the issue
-
- Jan 29, 2019
-
-
Thomas Nys authored
* Set cluster DNS correctly in case of nodelocal dns cache * Pass in cluster_ip based on dns mode * Disable nodelocaldns by default * Fix syntax error * Fix syntax issue * Add nodelocadns ip to vars of node installation * Change location of nodelocaldns_ip * Try to remove newlines from jinja template * Add debug for config file * Move parameter logic outside of template * Adapt templates after feedback * Remove debugging
-
- Jan 28, 2019
-
-
Florent Monbillard authored
Addressing the discussion started in #4064, this PR moves kubeadm and hyperkube binaries to /usr/local/bin before running them on the master nodes. It is to address the case where local_release_dir points to /tmp (kubespray default) and /tmp is mounted with noexec mode, preventing any binaries to be run in that partition. In role "node", we still move kubeadm to bin_dir only on the worker nodes.
-
- Jan 03, 2019
-
-
Chad Swenson authored
- Creates and defaults an ansible variable for every configuration option in the `kubeproxy.config.k8s.io/v1alpha1` type spec - Fixes vars that were orphaned by removing non-kubeadm - Fixes previously harcoded kubeadm values - Introduces a `main` directory for role default files per component (requires ansible 2.6.0+) - Split out just `kube-proxy.yml` in this first effort - Removes the kube-proxy server field patch task We should continue to pull out other components from `main.yml` into their own defaults files as I did here for `defaults/main/kube-proxy.yml`. I hope for and will need others to join me in this refactoring across the project until each component config template has a matching role defaults file, with shared defaults in `kubespray-defaults` or `downloads`
-
- Dec 25, 2018
-
-
rongzhang authored
-
- Dec 18, 2018
-
-
Ganesh Maharaj Mahalingam authored
Signed-off-by: Ganesh Maharaj Mahalingam <ganesh.mahalingam@intel.com>
-
ihard authored
* add vars for cilium init container * make yamllint happy * add var cilium_init in downloads
-
- Dec 12, 2018
-
-
Egor authored
-
- Dec 07, 2018
-
-
Andreas Krüger authored
* Streamline path to certs dir * More fixes * Set path to etcd certs in kubernetes defaults instead
-
- Dec 06, 2018
-
-
Andreas Krüger authored
* Remove non-kubeadm deployment * More cleanup * More cleanup * More cleanup * More cleanup * Fix gitlab * Try stop gce first before absent to make the delete process work * More cleanup * Fix bug with checking if kubeadm has already run * Fix bug with checking if kubeadm has already run * More fixes * Fix test * fix * Fix gitlab checkout untill kubespray 2.8 is on quay * Fixed * Add upgrade path from non-kubeadm to kubeadm. Revert ssl path * Readd secret checking * Do gitlab checks from v2.7.0 test upgrade path to 2.8.0 * fix typo * Fix CI jobs to kubeadm again. Fix broken hyperkube path * Fix gitlab * Fix rotate tokens * More fixes * More fixes * Fix tokens
-
- Nov 28, 2018
-
-
Michal Belica authored
Introduced variable node_taints which can be set in inventory for specific hosts or in group_vars, which generates --register-with-taints command line argument for kubelet.
-
- Nov 27, 2018
-
-
Rong Zhang authored
-
Andreas Krüger authored
* Update defaults to match k8s 1.12 suggestions * Test if Netchecker works with node ip instead of localhost * Update defaults to ipvs and coredns * Update defaults for kube_apiserver_insecure_port * Update main.yaml
-
- Nov 23, 2018
-
-
Miao Zhou authored
Now the `kubespray-aws-inventory.py` script always set a node_labels key to ansible_host. When AWS instance did not set property labels, it would be an empty string. The TASK `Write kubelet config file (kubeadm or non-kubeadm)` will failed with a msg: `AnsibleUndefinedVariable: 'unicode object' has no attribute 'items'`.
-
- Nov 19, 2018
-
-
Danny Kulchinsky authored
* Add resource-container flag to kube-proxy manifest * add resourceContainer: "" to kubeadm kube-proxy configs
-
- Nov 15, 2018
-
-
Arslanbekov Denis authored
-
- Nov 13, 2018
-
-
Ryler Hockenbury authored
* Apply linux node selector to coreDNS deployment * Remove comment before linux node selector on manifests * mend
-
- Nov 10, 2018
-
-
Bily Zhang authored
Signed-off-by: mooncake <xcoder@tenxcloud.com>
-
- Oct 20, 2018
-
-
Maxim Makarov authored
-
Matthew Mosesohn authored
kubeadm sets node label node-role.kubernetes.io/master='' and this is not configurable. We should use it everywhere.
-
- Oct 17, 2018
-
-
Erwan Miran authored
* failed * version_compare * succeeded * skipped * success * version_compare becomes version since ansible 2.5 * ansible minimal version updated in doc and spec * last version_compare
-
- Oct 16, 2018
-
-
JuanJo Ciarlante authored
* [jjo] add kube-router support Fixes cloudnativelabs/kube-router#147. * add kube-router as another network_plugin choice * support most used kube-router flags via `kube_router_foo` vars as other plugins * implement replacing kube-proxy (--run-service-proxy=true) via `kube_proxy_mode: none`, verified in a _non kubeadm_enabled_ install, should also work for recent kubeadm releases via `skipKubeProxyInstall: true` config * [jjo] address PR#3339 review from @woopstar * add busybox image used by kube-router to downloads * fix busybox download groups key * rework kubeadm_enabled + kube_router_run_service_proxy - verify it working ok w/the kubeadm_enabled and kube_router_run_service_proxy true or false - introduce `kube_proxy_remove` fact, to decouple logic from kube_proxy_mode (which affects kubeadm configmap settings, thus no-good to ab-use it to 'none') * improve kube-router.md re: kubeadm_enabled and kube_router_run_service_proxy * address @woopstar latest review * add inventory/sample/group_vars/k8s-cluster/k8s-net-kube-router.yml * fix kube_router_run_service_proxy conditional for kube-proxy removal * fix kube_proxy_remove fact (w/ |bool), add some needed kube-proxy tags on my and existing changes * update kube-router tolerations for 1.12 compatibility * add PriorityClass to kube-router DaemonSet
-
- Oct 12, 2018
-
-
Loic Gouarin authored
-