* Implement kubeadm init,join for Debian OS family (PoC) with
the external etcd option set.
* Make certs/tokens management optional and depending on
the use_kubeadm var
* Do not delegate static pods and config management to kubeadm
and remove produced artifacts to be regenerated by ansible.
* Add new set of system pods manifests templates based on that kubeadm
produces by default and parametrize it by ansible vars
* Fix apiserver container logging to follow 12-factor apps
and scheduler/controller-manager logging setup
Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
Also adds all masters by hostname and localhost/127.0.0.1 to
apiserver SSL certificate.
Includes documentation update on how localhost loadbalancer works.
Shorten deployment time with:
- Remove redundand roles if duplicated by a dependency and vice versa
- When a member of k8s-cluster, always install docker as a dependency
of the etcd role and drop the docker role from cluster.yaml.
- Drop etcd and node role dependencies from master role as they are
covered by the node role in k8s-cluster group as well. Copy defaults
for master from node role.
- Decouple master, node, secrets roles handlers and vars to be used w/o
cross references.
Signed-off-by: Bogdan Dobrelya <bdobrelia@mirantis.com>
check_certs task "Check_certs | Set 'sync_certs' to true" was failing
due to the dict not existing, this sets defaults that allows the
correct behavior of the conditionals.
