Wang Zhen
d62836f2ab
Replace seccomp profile docker/default with runtime/default ( #6170 )
...
Signed-off-by: Wang Zhen <lazybetrayer@gmail.com>
2020-05-27 14:02:02 -07:00
Kenichi Omichi
d8a61b94a9
Update MetalLB README ( #6140 )
...
This updates MetalLB README as following
- Remove unnecessary markdown to read it easily on github
- Make words consistency (kubernetes, loadbalancer)
- Add change-required option
2020-05-18 01:17:36 -07:00
Hector S
d3d0360526
Changed state to present instead of installed in glusterfs role for Debian ( #6096 )
2020-05-12 13:50:30 -07:00
Kenichi Omichi
826b0f384d
Add installation of requirements for Azure ( #6076 )
...
Due to lack of requirements installation on Azure README, the error
can happen:
"The ipaddr filter requires python's netaddr be installed on the
ansible controller"
It is nice to add the installation for Azure users.
2020-05-12 13:50:23 -07:00
Kenichi Omichi
d414588a47
Azure: Rename apply-rg_2.sh to apply-rg.sh ( #6049 )
...
apply-rg.sh was for Azure command version 1("azure" command) and the
command is old and version 2("az" command) is officially used today.
apply-rg_2.sh was for the version 2. In addition, the README[1] says
we need to run apply-rg.sh for applying templates.
This renames apply-rg_2.sh to apply-rg.sh for common usages of the
version 2.
[1]: https://github.com/kubernetes-sigs/kubespray/tree/master/contrib/azurerm#generating-and-applying
2020-05-03 12:42:26 -07:00
Kenichi Omichi
0512c22607
Update contrib/azurerm/README.md ( #6057 )
...
The ansible-playbook needs to ssh-login to Azure virtual machines with
ssh keypair, and users need to specify ssh_public_keys for their own
ssh public key. The change of ssh_public_keys is mandatory.
So this updates contrib/azurerm/README.md to explain that.
In addition, the path of all.yml was wrong. That also is updated with
this.
2020-04-30 23:46:12 -07:00
Kenichi Omichi
f0d5a96464
Update deprecated command in azure script ( #6056 )
...
apply-rg_2.sh uses 'az group deployment' command but the command is
deprecated like the following warning message:
"This command is implicitly deprecated because command group
'group deployment' is deprecated and will be removed in a future release.
Use 'deployment group' instead."
This updates these deprecated commands.
FYI: The command has been deprecated since [1] on azure-cli side.
[1]: 991cb7cc7c (diff-2057bbb8441166e4910b34b09d22b58cR222)
2020-04-30 23:46:06 -07:00
Samuel Liu
d8345c5eae
MetalLB IP address range extension ( #6023 )
...
* MetalLB IP address range extension
* MetalLB IP address range extension
2020-04-26 23:55:28 -07:00
Florian Ruynat
ca45d5ffbe
Fix retries keyword missing until instruction ( #5989 )
2020-04-21 07:20:56 -07:00
qvicksilver
065292f8a4
Terraform/OpenStack: Allow free form worker node definition ( #5952 )
...
* Terraform/OpenStack: Allow free form worker node definition
* fixup! Terraform/OpenStack: Allow free form worker node definition
2020-04-16 07:52:45 -07:00
Florian Ruynat
b5125e59ab
update rbac.authorization.k8s.io to non deprecated api-groups ( #5517 )
2020-04-14 13:14:04 -07:00
Pasquale Toscano
7d6ef61491
Fix metallb speaker when podsecuritypolicy_enabled=true ( #5932 ) ( #5933 )
2020-04-10 23:48:03 -07:00
qvicksilver
2e67289473
Terraform/OpenStack: Fix idempotency bug in module.network.openstack_networking_router_interface_v2.k8s[0] ( #5914 )
2020-04-09 02:27:44 -07:00
qvicksilver
0d2990510e
Terraform/OpenStack: Enable usage of an existing router ( #5890 )
2020-04-06 02:41:46 -07:00
Martin Zobel-Helas
b0a5f265e3
Honor bastion host config from inventary ( #5522 )
...
Before this commit, the bastion entry in the inventary was not honored,
so machines behind firewalls or with unrouted addresses were not
reachable for ansible.
2020-03-30 01:11:53 -07:00
Pierre Gaxatte
a8822e24b0
Fix terraform formatting ( #5823 )
2020-03-27 05:46:24 -07:00
keyboardfann
64190dfc73
Fix deploy heketi show selector missing error. ( #5738 )
2020-03-16 03:32:36 -07:00
Hugo Blom
a901b1f0d7
convert volumes to dynamic blocks, openstack ( #5673 )
2020-02-24 01:20:49 -08:00
rptaylor
277b347604
add az_list_node variable to specify different AZs for kubelets ( #5413 )
...
* rebase and add az_list_node variable to specify different AZs for kubelets
* fix missing variable name change
2020-02-18 04:29:27 -08:00
Sylvain Chateau
0ca7aa126b
added "Flatcar", "Flatcar Container Linux by Kinvolk" for all coreOS role ( #5607 )
2020-02-18 00:15:29 -08:00
Quan Hoang
f6b66839bd
Use 'private_dns' as hostname in inventory file ( #5463 )
2020-02-17 00:59:28 -08:00
gatolynx
5323e232b2
recreate in another branch due to rebase problem ( #5557 )
2020-01-18 02:23:35 -08:00
Kessler
3c3ebc05cc
Fix invalid count index ( #5469 )
2020-01-02 01:57:39 -08:00
Kessler
94956ebde9
Fix invalid variable in host inventory script ( #5481 )
2019-12-20 05:01:33 -08:00
bfraz
f0f8379e1b
Update aws tf ( #5435 )
...
* update aws tf to function as expected
* update tf version
* update syntax for tf v0.12
* update tf version in readme
* update per tf for v0.12
2019-12-12 03:42:33 -08:00
Maxime Guyot
eda1dcb7f6
Fix TF inventory script ( #5424 )
2019-12-10 03:41:29 -08:00
Hugo Blom
40e35b3fa6
Support Openstack servergroups ( #5412 )
...
* add support for nova servergroups
* Add documentation for openstack nova servergroups
* uppdate to TF 0.12.12 format and fix etcd
* revert for_each change
* fix variables and formatting in main.tf
* try to avoid errors
* update variable
* Update main.tf
* Update main.tf
* update all other instance resources
2019-12-09 01:15:10 -08:00
Maxime Guyot
b15d41a96a
Add support to Ansible 2.9 ( #5361 )
2019-12-05 07:24:32 -08:00
Maxime Guyot
401d441c10
Fix Python code style for inventory_builder ( #5362 )
2019-12-05 01:48:32 -08:00
Maxime Guyot
b1fbead531
Update to TF v0.12.12 ( #5267 )
2019-12-04 07:20:58 -08:00
Matthew Mosesohn
e44b0727d5
Allow inventory_builder to add nodes with hostname ( #5398 )
...
Change-Id: Ifd7dd7ce8778f4f1be2016cae8d74452173b5312
2019-12-02 08:13:04 -08:00
zhanwang
f779cb93d6
update URL for Gluster Getting Started Guide ( #5390 )
...
update URL for Gluster Getting Started Guide
2019-11-28 00:45:03 -08:00
holmesb
bc3a8a0039
Fixes issue #5299 ( #5300 )
2019-11-11 03:13:41 -08:00
Eric Lake
108a6297e9
Terraform dynamic inventory 0.12.12 ( #5298 )
...
* Update parsing of terraform state file for 0.12.12
* Resource does not seem to have a module element but instead has
provider
* Return the boolean right way if it is already a bool since a bool does
not have an lower method
* Remove the setting of ansible_ssh_user to root for all Packet
Not all servers in packet are accessed as root by default. CoreOS
systems use the `core` user. Removing this allows the user to specify
the remote user with an extra_var or in an ansible.cfg file.
* Default to root user for packet devices except on CoreOS
* Update TF_VERSION for packet in tf-validate-packet
Update TV_VERSION to 0.12.12 for gitlab-ci tf-validate-packet tests
* convert packet terraform files to TV_VERSION 4
* initalize terraform before copying the variable file to the top level dir
2019-10-29 00:02:42 -07:00
Julien Pervillé
d1b1add176
contrib/heketi: use inventory node ip in topology instead of guessing it ( #5233 )
2019-10-16 04:25:42 -07:00
Hugo Blom
a8c5a0afdc
Make it possible to disable access_ip (openstack provider) ( #5239 )
...
* Add a variable do disable access_ip
* Document the use of use_access_ip
2019-10-07 04:09:09 -07:00
陈谭军
8bc0710073
clean up document ( #5214 )
2019-10-02 04:41:07 -07:00
Maxime Guyot
8712bddcbe
Add docs for TF vars introduced PR 4239 ( #5201 )
2019-09-26 04:31:07 -07:00
陈谭军
99dbc6d780
clean-up doc,spelling mistakes ( #5206 )
2019-09-26 04:25:08 -07:00
Etienne Champetier
81cb302399
MetalLB: fail if kube_proxy_strict_arp is false ( #5180 )
...
When using IPVS, kube_proxy_strict_arp = true is required
https://github.com/danderson/metallb/issues/153#issuecomment-518651132
Add kube_proxy_strict_arp to inventory/sample
2019-09-26 04:21:06 -07:00
Robert Neumann
a5d165dc85
Customize host root volume size by Terrafrom provisioning ( #4239 )
...
* print hostnames (#5110 )
Terrafrom - customize hosts root volume size
disable block_device by default value
Terraform formatting fix
Fixed typos
* fix resources after rebase
* Fix glusterfs image issue
2019-09-25 05:17:59 -07:00
陈谭军
2fc02ed456
fix-typo ( #5199 )
2019-09-25 04:04:00 -07:00
Matthew Mosesohn
27ec548b88
Add support for k8s v1.16.0-beta.2 ( #5148 )
...
Cleaned up deprecated APIs:
apps/v1beta1
apps/v1beta2
extensions/v1beta1 for ds,deploy,rs
Add workaround for deploying helm using incompatible
deployment manifest.
Change-Id: I78b36741348f47a999df3841ee63cf4e6f377830
2019-09-10 12:06:54 -07:00
leonmbecker
5f02068f90
Documenting Terraform variable az_list
explicitly ( #5132 )
...
* added az_list to README section
* added az_list to cluster.tfvars
2019-09-09 07:41:19 -07:00
Csergő Bálint
56523812d3
print hostnames ( #5110 )
2019-08-29 05:07:57 -07:00
mcayland
3732c3a9b1
terraform/openstack: add network_dns_domain variable ( #5093 )
...
This allows the user to optionally specify the dns_domain attribute on the
generated internal kubernetes network.
2019-08-21 05:09:15 -07:00
Hugo Blom
4dba34bd02
add cinder max attached volumes ( #5089 )
2019-08-19 23:45:32 -07:00
Hugo Blom
da015e0249
Updated Openstack to terraform 0.12 ( #5062 )
...
* update openstack to terraform 0.12(.5)
* replace cluter.tf with cluster.tfvars
* update README.md to terraform 0.12
* update Openstack CI tests to use terraform 0.12
* specify terraform version in openstack README
* gitlab CI to copy cluster.tfvars in case of openstack provider
* The terraform/openstack dynamic inventory can read
tfstate v4 (generated by terraform 0.12) and convert them internally
ro v3 (as generated by terraform 0.11.x).
Additionally the script has been updated to Python 3.
2019-08-18 01:30:05 -07:00
shlo
554857da97
add cluster name into filer if specifed in environment variable ( #5085 )
2019-08-16 19:28:08 -07:00
Matthew Mosesohn
5707f79b33
Allow to configure number of kube-masters ( #5073 )
...
Change-Id: Ia3f30a1216b3ea063cd72c839ef6dff753cf10c6
2019-08-13 18:52:24 -07:00
Mario
973afef96e
Fix variable for rbd_provisioner_user_secret ( #5042 )
...
* Update main.yml
* fix dead link 404
2019-08-08 20:03:25 -07:00
Vitaliy Dmitriev
dc6ad64ec7
[contrib/heketi]: tear down additions and fixes. Heketi updated to version 9 ( #5027 )
...
* lvm packages removal during tear down skipped by default
* lvm utils execution PATH fixed for CentOS/RH
* Heketi updated to the latest version 9
Signed-off-by: Vitaliy Dmitriev <vi7alya@gmail.com>
2019-08-01 04:00:16 -07:00
Gustavo Muniz do Carmo
e0410661fa
azure loadbalancer vars generation ( #4892 )
2019-07-15 01:27:06 -07:00
Scott Charron
e6fb686156
added the ability to define and deploy multiple address pools to metallb ( #4757 )
2019-06-11 00:20:21 -07:00
Johnny Halfmoon
5e80603bbb
updated vagrant doc ( #3719 )
2019-06-10 23:58:14 -07:00
Trond Hasle Amundsen
56ae3bfec2
Add support for IPv6 for Openstack in terraform.py via metadata ( #4716 )
...
* Add support for IPv6 for Openstack in terraform.py via metadata
* document terraform.py metadata variables for openstack
2019-06-09 23:01:05 -07:00
Vladimir Kiselev
045acc724b
fix relative paths for bastion host template ( #4126 )
...
This is a fix for #4124
2019-06-05 01:51:55 -07:00
MarkusTeufelberger
73c2ff17dd
Fix Ansible-lint error [E502] ( #4743 )
2019-05-16 00:27:43 -07:00
Robert Neumann
787a9c74fa
Terraform wait for floating IP instance has been associated ( #4321 )
...
* Add wait for floating ip associate with instance
* Terraform formatting fix
* Sort Open Telekom Cloud in compatible list
2019-05-09 02:16:50 -07:00
MarkusTeufelberger
f3fbf995ca
Update default CentOS version on Azure
2019-05-07 13:37:42 +02:00
MarkusTeufelberger
e67f848abc
ansible-lint: add spaces around variables [E206] ( #4699 )
2019-05-02 14:24:21 -07:00
MarkusTeufelberger
9335cdcebc
ansible-lint: Add exception for invocation of "rm" ( #4609 )
2019-04-29 01:34:20 -07:00
Andreas Krüger
38af93b60c
Remove rkt support ( #4671 )
2019-04-29 01:14:20 -07:00
MarkusTeufelberger
88d919337e
ansible-lint: don't compare to empty string [E602] ( #4665 )
2019-04-28 23:00:20 -07:00
Jiang Yi Tao
f518b90c6b
associate fips for masters with no etcd ( #4657 )
2019-04-28 22:58:20 -07:00
Maxime Guyot
696d481e3b
Fix dynamic inventory parsing in contrib/tf/packet ( #4645 )
2019-04-25 00:40:46 -07:00
Maxime Guyot
6af1f65d3c
Fix python syntax in Terraform dynamic inventory ( #4643 )
2019-04-24 10:34:04 -07:00
Maxime Guyot
37d98e79ec
Pin Terraform provider versions ( #4620 )
2019-04-23 22:22:01 -07:00
Andreas Krüger
d588532c9b
Update probe timeouts, delays etc. ( #4612 )
...
* Fix merge conflict
* Add check delay
* Add more liveness and readiness options to metrics-server
2019-04-23 14:46:02 -07:00
Matthew Mosesohn
d89ecb8308
disable metrics server and fix terraform ( #4617 )
...
* disable metrics server in centos7-flannel-addons job
Change-Id: I1d87923547584896f64dda9ea8feb5581ad48cbe
* Fix tf facility->facilities syntax
Change-Id: I434bfe53f47e8e4a546890e0b62d24bde6e6d6a7
* Update Terraform CI for facilities
* Fix undefined variable error
2019-04-23 12:06:03 -07:00
Maxime Guyot
50751bb610
Revert "Optimize kube resources creation ( #4572 )" ( #4621 )
...
This reverts commit f8fdc0cd93
.
2019-04-23 20:37:23 +03:00
andreyshestakov
f8fdc0cd93
Optimize kube resources creation ( #4572 )
2019-04-22 23:34:10 -07:00
Maxime Guyot
04f2682ac6
Drop unused dynamic inventory functions ( #4138 )
2019-04-21 01:59:45 -07:00
rptaylor
873b5608cf
add master_allowed_remote_ips (with terraform fmt) ( #4022 )
2019-04-21 01:57:44 -07:00
Maxime Guyot
b218e17f44
ansible-lint: E403 Package installs should not use latest ( #4500 )
2019-04-18 01:34:08 -07:00
Maxime Guyot
1cf76a10db
Disable usage of default security group ( #4533 )
2019-04-17 02:10:03 -07:00
Andreas Holmsten
7f1d9ff543
[contrib/terraform/openstack] Add k8s_allowed_remote_ips variable ( #4506 )
...
* Add k8s_allowed_remote_ips variable
Useful for defining CIDRs allowed to initiate a SSH connection when
you don't want to use a bastion.
* Add TF_VAR_k8s_allowed_remote_ips variable to tf-apply-ovh
2019-04-15 07:22:08 -07:00
Remous-Aris Koutsiamanis
27958e4247
Fix "Prevent inventory.py from configuring an even number of nodes in etcd" #4399 ( #4465 )
...
by making clusters with fewer than 3 nodes have only 1 etcd node
2019-04-10 05:52:14 -07:00
Maxime Guyot
e865c50574
Fix terraform fmt on contrib/terraform/aws ( #4484 )
2019-04-10 04:32:14 -07:00
Maxime Guyot
80f31818df
Add terraform validate for contrib/terraform/aws ( #4438 )
2019-04-10 02:14:14 -07:00
Karen Almog
20ebb49568
Don't create security groups for a bastion host on openstack, if doesn't exist ( #4291 )
2019-04-09 04:01:09 -07:00
Andreas Holmsten
01cf11b961
Run terraform fmt and add step to CI ( #4405 )
...
* Run terraform fmt
* Add terraform fmt to .terraform-validate CI step
* Add tf-validate-aws CI step
* Revert "Add tf-validate-aws CI step"
This reverts commit e007225fac
.
2019-04-08 02:22:24 -07:00
Andreas Holmsten
3da392d1cf
Add OWNERS to contrib/terraform ( #4441 )
2019-04-08 00:36:24 -07:00
Maxime Guyot
9155339cf0
Fix pep8 warnings ( #4368 )
2019-04-05 12:51:22 -07:00
Maxime Guyot
e485fab7eb
Add CI for contrib/terraform/ ( #4133 )
2019-04-04 01:42:52 -07:00
MarkusTeufelberger
9ffc65f8f3
Yamllint fixes ( #4410 )
...
* Lint everything in the repository with yamllint
* yamllint fixes: syntax fixes only
* yamllint fixes: move comments to play names
* yamllint fixes: indent comments in .gitlab-ci.yml file
2019-04-01 02:38:33 -07:00
tikitavi
1babba753d
adapt inventory script to python 2.7 version ( #4407 )
2019-03-29 06:08:13 -07:00
Matthew Mosesohn
ec08303f82
Revert "Fix #4237 : update kube cert path ( #4354 )" ( #4369 )
...
This reverts commit ea7a6f1cf1
.
This change modified the certs dir for Kubernetes, but did not move the directories for existing clusters.
2019-03-20 05:56:57 -07:00
Maxime Guyot
e640233947
Use sample inventory file in doc ( #4052 )
2019-03-18 01:43:15 -07:00
Dmitry Chepurovskiy
ea7a6f1cf1
Fix #4237 : update kube cert path ( #4354 )
2019-03-17 23:55:11 -07:00
Peter Metz
38009a215a
fix(contrib/metallb): adds missing become: true in role ( #4356 )
...
On CoreOS, without this, it fails to kubectl apply MetalLB due to lack of privileges.
2019-03-17 18:15:09 -07:00
tikitavi
2560c4dda3
fixing dump of ordered dictionaries in inventory script ( #4343 )
2019-03-13 02:57:34 +03:00
tikitavi
254a0ab69d
fix inventory script ( #4342 )
...
hosts are ordered dictionary
remove ansible_user from inventory file
2019-03-13 01:46:46 +03:00
tikitavi
7b3e59ed0a
fix inventory script ( #4339 )
...
- fix order of entries when the new yaml file is created
- fix group in case there are no hosts in it
2019-03-12 11:02:44 -07:00
tikitavi
44de04be89
update inventory builder for public and private IP per node ( #4323 )
2019-03-07 18:30:12 +03:00
tikitavi
b73f009c07
rewrite inventory script to create inventory file in YAML format ( #4303 )
...
* rewrite inventory script to create inventory file in YAML format
* minor fixes to inventory script
* change requirments for the inventory script
2019-02-28 17:28:27 +03:00
Christian Berendt
44ee4b507c
terraform: use openstackclient instead of novaclient ( #4280 )
...
The openstackclient is the preferred CLI for OpenStack
environments and should be used instead of novaclient.
2019-02-25 20:13:16 -08:00
Maxime Guyot
bb495006c8
Update MetalLB to v0.7.3 ( #4194 )
2019-02-25 20:05:45 -08:00
Christian Berendt
c386172be7
terraform: correct the spelling of Betacloud ( #4282 )
2019-02-25 19:38:32 -08:00
Ted Wexler
b5a895d1ec
Run 'terraform fmt' in contrib/terraform/openstack ( #4242 )
2019-02-17 21:04:41 -08:00