Kenichi Omichi
78251b0304
Fix check external_openstack_tenant_name value ( #6270 )
...
We need to specify either external_openstack_tenant_name or
external_openstack_tenant_id. Those values were checked by seeing they
are defined or they have actual values separately.
However those values are always defined because of the following code
of openstack/defaults/main.yml:
external_openstack_tenant_id: "{{ lookup('env','OS_TENANT_ID')| default(lookup('env','OS_PROJECT_ID'),true) }}"
external_openstack_tenant_name: "{{ lookup('env','OS_TENANT_NAME')| default(lookup('env','OS_PROJECT_NAME'),true) }}"
So even if not specifying both values, those checks could not detect
the misconfiguration. This fixes this to detect the misconfiguration.
2020-06-16 01:02:03 -07:00
Kenichi Omichi
10a17cfe54
Look up OS_PROJECT_NAME for OpenStack project name ( #6262 )
...
On OpenStack history, we used to call "tenant" for separeted namespace.
However we use "project" now instead.
Then we have replaced "tenant" with "project". Then all "TENANT" variables
also are renamed to "PROJECT".
This makes Kubespray search "PROJECT" variable also for newer OpenStack
clouds.
2020-06-12 00:47:56 -07:00
Florian Ruynat
101686c665
Remove outdated CriticalAddonsOnly toleration and critical-pod annotation ( #6202 )
2020-06-09 05:23:30 -07:00
Florian Ruynat
6852f821a5
Update nginx ingress to 0.32.0 ( #6063 )
2020-06-09 02:45:18 -07:00
Hugo Blom
3f443f3878
set allowVolumeExpansion in cinder csi ( #6220 )
2020-06-05 08:27:43 -07:00
Aleksandr Loktionov
85b3526617
Fix vSphere CPI configMap and vSphere CSI secret re-deploy ( #6209 ) ( #6210 )
2020-06-02 05:42:15 -07:00
jeanfabrice
be3283c9ba
Fix conflicting clusterIP fact between coredns and nodelocaldns ( #6195 )
2020-05-29 04:27:15 -07:00
petruha
f959cc296f
Fix metrics-server rules ( #6165 )
2020-05-28 03:18:02 -07:00
Florian Ruynat
6179405e84
Update docker default to 19.03 - cleanup docker docs & refs ( #6153 )
2020-05-28 00:52:02 -07:00
Wang Zhen
d62836f2ab
Replace seccomp profile docker/default with runtime/default ( #6170 )
...
Signed-off-by: Wang Zhen <lazybetrayer@gmail.com>
2020-05-27 14:02:02 -07:00
qvicksilver
437189c213
Fix missing permissions for OpenStack cloud-controller-manager preventing metrics scraping ( #6124 )
2020-05-18 02:35:45 -07:00
Paul Rey
b5aaaf864d
Add additional network configuration options to external Openstack CCM ( #6083 ) ( #6085 )
...
* Add additional network configuration options to external Openstack CCM (#6083 )
* Change the default version of external openstack cloud controller image to v1.18.1 since there was an issue in v1.18.0 where some IPs of the private network were ignored
* Change Network section in external-openstack-cloud-config.j2 to Networking
* Add networking customization information in the openstack documentation
2020-05-18 02:31:36 -07:00
Anton Kulikov
ed12936be2
Add missing RBAC rule #6116 ( #6121 )
2020-05-11 04:25:51 -07:00
Florian Ruynat
7c00ce5f30
Update metrics-server tag and template ( #6090 )
2020-05-11 03:55:50 -07:00
petruha
9ce7fc9b2c
Create namespace when dashboard deployment uses customized namespace. ( #6107 )
...
* Create namespace when dashboard deployment uses customized namespace.
* Fix syntax.
2020-05-10 11:38:02 -07:00
Florian Ruynat
b6243bfc1c
Fix ImagePullPolicy missing variable usage ( #6091 )
2020-05-10 11:37:50 -07:00
Victor Morales
367566adaa
Fix kubernetes-dashboard template identation ( #6066 )
...
The 98e7a07fba
commit udpates the
dashboard version to 2.0.0 but it enable skip login flag wasn't
updated. This change updates its identation to avoid issues when
dashboard_skip_login is enabled.
2020-05-06 11:17:17 -07:00
qvicksilver
680aa60429
Specify tag for OpenStack Cloud Controller image ( #6048 )
2020-04-30 02:02:17 -07:00
qvicksilver
e41766fd58
Fix broken Octavia integration in OpenStack External Cloud Provider ( #6046 )
2020-04-29 11:30:25 -07:00
Joel Seguillon
db5f83f8c9
update dashboard access doc for 2.0.x ( #6036 )
...
* update dashboard access doc for 2.0.x
* make metrics scrapper system-cluster-critical
2020-04-29 07:20:25 -07:00
Lee Spottiswood
a3d3f27aaa
allow dns autoscaler limits to be specified via variables ( #6020 )
2020-04-28 23:34:25 -07:00
Hugo Blom
724a316204
Cinder-CSI default storageclass and volumeBindingMode ( #6026 )
...
* Set volumeBindingMode in cinder CSI template (#22 )
* make sure true/false is lowercase in cinder-csi storageclass
2020-04-28 00:12:04 -07:00
Joel Seguillon
98e7a07fba
bump to dashboard 2.0.0 with metrics scrapper support ( #5821 )
...
* bump to dashboard 2.0 rc6 with metrics scrapper
* fix missing yaml seperator making Replicaset complaining about missing ServiceAccount
* unwanted legay gross hack forgot to remove before
* no need namespace on CrBinding
* bump to 2.0.0 release
* remove dashboard_metrics_scrapper_enabled
2020-04-25 03:55:28 -07:00
Florian Ruynat
299e35ebe4
Cleanup unused/erroneous variables ( #6003 )
2020-04-24 01:54:07 -07:00
Florian Ruynat
b8cd9403df
Fix nginx template missing latest changes ( #6000 )
2020-04-22 08:41:52 -07:00
Florian Ruynat
1c187e9729
Downgrade coredns to 1.6.5 due to upgrade errors while migrating coredns configmap (Corefile) ( #5960 )
2020-04-22 05:27:52 -07:00
Pierre Lebrun
03c8d0113c
Add vSphere external cloud provider ( #5959 )
2020-04-20 08:47:39 -07:00
Florian Ruynat
32fec3bb74
Update minor version for tools (helm, busybox, registry etc...) ( #5961 )
2020-04-18 07:59:36 -07:00
Florian Ruynat
83fe607f62
Cleanup deprecated labels beta.kubernetes.io/arch and beta.kubernetes.io/os ( #5964 )
2020-04-17 05:51:06 -07:00
Maxime Guyot
0924c2510c
Use role to copy CNI bin ( #5953 )
2020-04-16 10:06:45 -07:00
Pasquale Toscano
00efc63f74
Customize PodSecurityPolicies from inventory ( #5920 )
...
* Customize PodSecurityPolicies from inventory
* Fixed yaml indentation
2020-04-15 03:18:02 -07:00
Florian Ruynat
b5125e59ab
update rbac.authorization.k8s.io to non deprecated api-groups ( #5517 )
2020-04-14 13:14:04 -07:00
MikeG
7910198b93
fix error in templating in local-path-provisioner ( #5950 )
2020-04-14 06:52:12 -07:00
MikeG
45a177e2a0
add local-path-provosioner helper image def ( #5817 )
2020-04-07 23:51:43 -07:00
Florian Ruynat
9b1980cfff
Change docker.io repo to variable and upgrade alb image ( #5898 )
2020-04-07 08:07:42 -07:00
Ali Sanhaji
937adec515
Azure Disk CSI deployment ( #5833 )
...
* Azure Disk CSI deployment
* Mention Azure CSI support
* Fix: remove unnecessary file
* Typo in documentation
* Add newline to end of file
2020-04-01 00:53:27 -07:00
Ali Sanhaji
484df62c5a
GCP Persistent Disk CSI Driver deployment ( #5857 )
...
* GCP Persistent Disk CSI Driver deployment
* Fix MD lint
* Fix Yaml lint
2020-03-31 00:06:40 -07:00
Anshul Sharma
79a6b72a13
Removed deprecated label kubernetes.io/cluster-service ( #5372 )
2020-03-30 01:19:53 -07:00
Mateus Caruccio
8800eb3492
Remove unicode chars from coredns template ( #5848 )
2020-03-27 11:39:54 -07:00
Mateus Caruccio
3237b2702f
Add config coredns_external_zones ( #5280 )
...
Allows to add custom zone resolving servers.
2020-03-26 23:34:23 -07:00
Ali Sanhaji
a8a05a21a4
AWS EBS CSI implementation ( #5549 )
...
* AWS EBS CSI implementation
* Fixing image repos
* Add OWNERS file
* Fix expressions
* Add csi-driver tag
* Add AWS EBS prefix to variables
* Add AWS EBS CSI Driver documentation
2020-03-25 13:10:25 -07:00
Bjoern Teipel
820d8e6ce6
Adding new registry_port option ( #5779 )
...
New override are added to allow installation of the registry
on different ports than ``5000``. The default port is unchanged
from previous versions
2020-03-17 05:52:22 -07:00
bozzo
3cefd60c37
Add OWNERS file for kube-router ( #5782 )
...
I propose also my help as a reviewer
2020-03-17 04:14:22 -07:00
Michael Shnit
29128eb316
Add AWS ALB Ingress Controller ( #5489 )
...
* Add AWS ALB Ingress Controller Ansible role
* remove trailing spaces
* update owners
* ALB ingress: update rbac clusterrole and remove role
* Move alb-ingress role to roles/kubernetes-apps/ingress_controller folder
2020-03-16 02:58:35 -07:00
bozzo
d69db3469e
Add external zones in nodelocaldns configuration ( #5591 )
...
Allows to configure additionnal zone for domains not resolved by `upstream_dns_servers`.
2020-03-14 06:26:34 -07:00
Joel Seguillon
f53ac2a5a0
Update metrics addon for 1.16 ( #5706 )
...
* upgrade metrics server and resizer images version
* scope "apps" api group for addon resizer
2020-03-13 06:46:40 -07:00
Hugo Blom
d0af5979c8
install csi-driver not just cinder ( #5766 )
2020-03-13 05:34:39 -07:00
Maxime Guyot
19865e81db
Add OWNERS file for OpenStack CSI driver and cloud controller ( #5753 )
2020-03-13 02:52:39 -07:00
Kubernetes Prow Robot
62b418cd16
Use 'k8s.gcr.io' instead of 'gcr.io/google-containers' ( #5709 )
...
Ref: kubernetes/kubeadm/issues/2051
See: https://groups.google.com/forum/?utm_medium=email&utm_source=footer#!msg/kubernetes-sig-release/ew-k9PEBckQ/T7dFepHdCAAJ
Signed-off-by: Nguyen Hai Truong <truongnh@vn.fujitsu.com>
2020-03-05 05:44:37 -08:00
Arthur Outhenin-Chalandre
588896712e
Fix kube-router config generation ( #5531 )
...
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
2020-03-04 02:11:47 -08:00
Steven Reitsma
6221b94fdf
Fix variable naming bug in OpenStack CCM ( #5702 )
2020-03-03 06:45:38 -08:00
Steven Reitsma
efef80f67b
Add support for HA deployment of OpenStack Cinder CSI plugin ( #5691 )
2020-03-03 06:33:38 -08:00
Hugo Blom
0c1a0ab966
implement max-volumes for cinder csi ( #5666 )
2020-03-02 03:30:43 -08:00
Steven Reitsma
d1acf7f192
Add additional configuration options to external Openstack CCM ( #5661 )
...
- Add support for manage-security-groups flag
- Add support for internal-lb flag
2020-02-26 13:03:19 -08:00
Hugo Blom
171d2ce59c
Implement topology support for Cinder CSI ( #5667 )
...
* make cinder csi topology aware
* change feature description do better reflect whats being done
* remove sameas true since it isn't required
2020-02-26 05:12:25 -08:00
Hoat Le
4c803d579b
@ #5008 | Local path provisioner boolean annotation is rendered incorrectly and not applied ( #5669 )
2020-02-22 07:08:47 -08:00
Erwan Miran
a5445d9c5c
Add stable repo on all masters with helm 3.x.x ( #5659 )
2020-02-19 14:05:46 -08:00
Ali Sanhaji
646fd5f47b
External OpenStack Cloud Controller Manager implementation ( #5491 )
...
* External OpenStack Cloud Controller Manager implementation
* Adding controller image tag
* Minor fixes
* Restructuring the external cloud controller to work with KubeADM
2020-02-18 04:47:28 -08:00
Sylvain Chateau
0ca7aa126b
added "Flatcar", "Flatcar Container Linux by Kinvolk" for all coreOS role ( #5607 )
2020-02-18 00:15:29 -08:00
Steven Reitsma
fa245ffdd5
Fix some minor issues with the Cinder CSI plugin ( #5561 )
...
Add Cinder images to download role
2020-02-17 03:47:28 -08:00
lcooper40
579976260f
Added in code to allow control over pull policy for local path provis… ( #5334 )
...
* Added in code to allow control over pull policy for local path provisioner
* change to imagePullPolicy to use globally used variable k8s_image_pull_policy
* removed unusued variable from defaults
* updated contiv-etcd and cinder-csi-controllerplugin to use k8s_image_pull_policy variable
2020-02-17 02:13:30 -08:00
Ali Sanhaji
d56e9f6b80
Fix Cinder CSI bugs ( #5492 )
2020-02-17 01:49:28 -08:00
Erwan Miran
339e36fbe6
Files to archive can be passed directly ( #5571 )
2020-02-12 07:50:51 -08:00
Florian Ruynat
099341582a
Update nginx image to latest ( #5590 )
2020-02-07 02:07:44 -08:00
andreyshestakov
2ab5cc73cd
Fix typo in Multus plugin. ( #5568 )
2020-01-29 01:28:13 -08:00
Florian Ruynat
d640a57f9b
update api-version for PriorityClass following removal in 1.17 ( #5450 )
2020-01-16 01:52:22 -08:00
zhanwang
beb47e1c63
update ingress_nginx install guide ( #5502 )
2020-01-06 02:27:35 -08:00
Andreas Krüger
370a0635fa
Bump nodelocaldns version to 1.15.8 ( #5447 )
...
* Bump nodelocaldns version
* Add missing upstreamsvc
2019-12-13 02:22:55 -08:00
Bort Verwilst
db2ca014cb
Add Helm 3.x support ( #5441 )
...
* Add Helm 3.x support
* tiller enabled when helm < 3.0.0
2019-12-12 09:24:32 -08:00
Maxime Guyot
b15d41a96a
Add support to Ansible 2.9 ( #5361 )
2019-12-05 07:24:32 -08:00
Matthew Mosesohn
18cee65c4b
Add support for k8s v1.17.0-rc.1, remove hyperkube ( #5378 )
...
Change-Id: I3fff04f0211cd9c2e8235acaf51c3aa98abc8bb7
2019-11-28 05:41:03 -08:00
Anton Fayzrahmanov
80418a44d5
CoreDNS deployment extra tolerations ( #5364 )
...
* Add extra tolerations for coredns
* dns_extra_tolerations option
* dns_extra_tolerations
* missing starting space in comment
2019-11-27 05:49:21 -08:00
Jacopo Secchiero
97764921ed
Fix calico name resolution ( #5291 )
2019-11-11 04:01:41 -08:00
Julien Pervillé
0200138a5d
Pass ingress_nginx_extra_args
when deploying the nginx-ingress addon ( #5321 )
2019-11-11 03:51:40 -08:00
Ali Sanhaji
b0ee1f6cc6
Deploy Cinder CSI driver to provision volumes over OpenStack ( #5184 )
...
* Deploy Cinder CSI driver to provision volumes over OpenStack
* Deploy Cinder CSI StorageClass
* Cinder CSI doc
2019-11-01 00:59:24 -07:00
Matthew Mosesohn
2c4e6b65d7
Raise delay and retry for rotate tokens ( #5304 )
...
Change-Id: I87844b43b9a18064e7a99567ce57c1ca1ffcc4a8
2019-10-30 01:56:52 -07:00
Sergey
81d57fe658
set calico_datastore default value in role kubespray-default ( #5259 )
2019-10-17 05:58:38 -07:00
andreyshestakov
8031c6c1e7
Update template for dashboard to support v2.x ( #5187 )
...
Secrets and ConfigMap should be created before dashboard pod run.
2019-10-16 04:29:41 -07:00
Erwan Miran
0ba336b04e
install helm client separately ( #5212 )
2019-10-04 05:14:02 -07:00
Matthew Mosesohn
89f1223f64
Fix selector workaround for helm install ( #5237 )
...
Change-Id: I826337b59814674c3feb4cd6a4904d9d53e01652
2019-10-03 23:41:56 -07:00
陈谭军
8bc0710073
clean up document ( #5214 )
2019-10-02 04:41:07 -07:00
陈谭军
99dbc6d780
clean-up doc,spelling mistakes ( #5206 )
2019-09-26 04:25:08 -07:00
陈谭军
2fc02ed456
fix-typo ( #5199 )
2019-09-25 04:04:00 -07:00
Mario
1ce7831f6d
Update main.yml ( #5166 )
2019-09-17 05:36:24 -07:00
andreyshestakov
cb4f797d32
Fix macro on local_volume_provisioner ( #5168 )
...
mydict.keys() should be converted to list,
otherwise it causes errors in loop iteration.
Remove extra space after class name, which broke configmap.
Also allow set reclaimPolicy property.
2019-09-13 00:50:33 -07:00
Matthew Mosesohn
27ec548b88
Add support for k8s v1.16.0-beta.2 ( #5148 )
...
Cleaned up deprecated APIs:
apps/v1beta1
apps/v1beta2
extensions/v1beta1 for ds,deploy,rs
Add workaround for deploying helm using incompatible
deployment manifest.
Change-Id: I78b36741348f47a999df3841ee63cf4e6f377830
2019-09-10 12:06:54 -07:00
刘旭
53bc80bb59
Ingress nginx ( #5066 )
...
* remove svc-default-backend
* update ingress-nginx clusterrole
2019-08-15 02:34:33 -07:00
Danilo Riecken P. de Morais
56fa46716e
Add missing coredns tag. ( #5054 )
2019-08-09 02:29:27 -07:00
Mario
973afef96e
Fix variable for rbd_provisioner_user_secret ( #5042 )
...
* Update main.yml
* fix dead link 404
2019-08-08 20:03:25 -07:00
Maxim Snezhkov
b710c72f04
Add ability to setup virtual ip for ingress-controller ( #5044 )
2019-08-06 19:24:50 -07:00
w33dw0r7d
92bfcf0467
Add CoreDNS endpoint_pod_names option ( #5012 )
2019-07-31 11:26:15 -07:00
Oilbeater
1be788f785
add Kube-OVN cni to kubespray ( #5020 )
2019-07-30 20:10:20 -07:00
rptaylor
8afbf339f7
fix broken link ( #5023 )
2019-07-30 19:18:22 -07:00
Matthew Mosesohn
70dc222719
Upgrade local volume provisioner to v2.3.2 ( #4983 )
2019-07-16 05:27:26 -07:00
刘旭
de9443a694
remove unused code ( #4981 )
2019-07-16 01:39:24 -07:00
Alex Barcelo
99c5f7e013
add k8s_external plugin to CoreDNS configuration ( #4704 )
2019-07-16 00:53:23 -07:00
Matthew Mosesohn
fd9bbcb157
Enable nodes to run calicoctl for calico kdd mode ( #4956 )
...
* Enable nodes to run calicoctl
per-node tasks require waiting for calico-node to be applied
Change-Id: Ibe1076b7334a2da0332f2dd766fde0c3f172d1f2
* cleanup tasks that should run on master
Change-Id: I43a837879ef41596f14657ecd7f813899b6865ae
* Switch run_once calico logic to just run on first master
Change-Id: I6893711e354f63c5e1eaf6ac2e23d9a6347a555d
2019-07-15 01:59:06 -07:00
Matthew Mosesohn
29307740dd
Enable containerd to deploy vanilla containerd package ( #4951 )
...
* Enable containerd to deploy vanilla containerd package
Fixes kubeadm references to CRI socket for containerd
Fixes download role cache feature to work with containerd
Change-Id: I2ab8f0031107e2f0d1a85c39b4beb66f08509a01
* use containerd for flannel-addons job
Change-Id: Ied375c7d65e64a625ffbd995ff16f2374067dee6
* add containerd vars
Change-Id: Ib9a8a04e501c481a86235413cbec63f3672baf91
* fixup vars
Change-Id: Ibea64e4b18405a578b52a13da100384582aa24c2
* more fixes
* fix rh repo
Change-Id: I00575a77cfb7b81d6095db5d918a52023c8f13ba
* Adjust helm host install for containerd
2019-07-10 23:46:54 -07:00
jlacoline
20c7e31ea3
Add calico 3.7.3 support ( #4953 )
...
* Add calico 3.7.3 support
* add calico_datastore variable to policy controller role
* add missing clusterrole rules for calico policy controller
* disable calico kube controller when kdd mode is used for versions < 3.6
2019-07-09 12:42:28 -07:00
champtar
a67a50f9c0
nodelocaldns: allow to set health port, switch to 9254 by default ( #4902 )
...
8080 is a pretty common port, using nodelocaldns_ip:8080 still
prevents node processes or hostNetwork=true processes to bind to *:8080
so switch to 9254 by default (prometheus port is 9253)
Signed-off-by: Etienne Champetier <champetier.etienne@gmail.com>
2019-07-09 00:52:01 -07:00