C12s/c12s-kubespray

Author	SHA1	Message	Date
Raj Perera	d742a3953c	Make rotate_kubernetes_certs default to false	2017-06-26 16:44:24 +08:00
Raj Perera	a22868e7d1	Extract kubectl commands to resource yaml files and use kube module	2017-06-26 16:44:24 +08:00
Raj Perera	c0db1499fd	Update docs.	2017-06-26 16:44:24 +08:00
Raj Perera	971944ead4	Address PR feedback. * Consolidate variable definitions to `kargo-defaults`. * Set `AlwaysAllow` as the default authorization mode. * Ability to set multiple authorization modes. * Various style fixes and typos	2017-06-26 16:44:24 +08:00
jwfang	5c56085e03	replace insecure port with secure port for apiserver_endpoint on kube-masters	2017-06-26 16:43:27 +08:00
jwfang	525db1f109	patch system:kube-dns clusterrole for get	2017-06-26 16:43:27 +08:00
Raj Perera	442ebce3d8	Use kubectl patch	2017-06-26 16:42:47 +08:00
Raj Perera	5a86194038	Replace static references to system namespace	2017-06-26 16:42:47 +08:00
Raj Perera	c8a2fe321b	Basic RBAC functionality. (Based from work done by @jwfang (#1351 )) * Add a flag "authorization_method", when set to "RBAC" enables role based access control. * Add required cluster roles and bindings for kube-dns * Patch tiller deployment to use a service account with proper credentials. * Add a flag to regenerate kubernetes certs on the nodes.	2017-06-26 16:42:47 +08:00
jwfang	00e5fc8aa4	add label for kube-dns sa	2017-06-26 16:35:24 +08:00
jwfang	8e516e7a6c	run kubedns as system:serviceaccount:kube-system:kube-dns; but dns does NOT work	2017-06-26 16:35:24 +08:00
jwfang	4a1a7bd078	node identified as system:node:<node-name>	2017-06-26 16:35:24 +08:00
jwfang	4fa142be0b	certs for system:kube-controller-manager system:kube-scheduler	2017-06-26 16:35:24 +08:00
jwfang	8ed48f052c	seperate kube-proxy certs for each node	2017-06-26 16:35:24 +08:00
jwfang	27e3998cb6	add kube-node to system:nodes group, add system:kube-proxy cert for kube-proxy	2017-06-26 16:35:24 +08:00
jwfang	a75955d479	fix conflict	2017-06-22 13:36:37 +08:00
Matthew Mosesohn	586d2a41ce	Merge pull request #1357 from seungkyua/fixed_helm_bash_completion Fixed helm bash complete	2017-06-19 09:57:36 +03:00
Seungkyu Ahn	91dff61008	Fixed helm bash complete	2017-06-19 15:33:50 +09:00
Brad Beam	2b9e2d7179	Merge pull request #1335 from bradbeam/imagerepo Set default value for kube_hyperkube_image_repo	2017-06-12 09:46:17 -05:00
Brad Beam	b73786c6d5	Merge pull request #1335 from bradbeam/imagerepo Set default value for kube_hyperkube_image_repo	2017-06-12 09:46:17 -05:00
Brad Beam	cb4f048687	Merge pull request #1240 from bradbeam/vaultfixup Fixing up vault variables	2017-06-08 22:33:03 -05:00
Brad Beam	eacc42fedd	Merge pull request #1240 from bradbeam/vaultfixup Fixing up vault variables	2017-06-08 22:33:03 -05:00
Brad Beam	bccbb172c6	Fixing up vault variables	2017-06-08 16:15:33 -05:00
Brad Beam	db3e8edacd	Fixing up vault variables	2017-06-08 16:15:33 -05:00
Brad Beam	80017dac22	Set default value for kube_hyperkube_image_repo Fixes #1334	2017-06-08 12:22:16 -05:00
Brad Beam	6e41634295	Set default value for kube_hyperkube_image_repo Fixes #1334	2017-06-08 12:22:16 -05:00
Spencer Smith	c859e5d49d	Merge pull request #1327 from rsmitty/coreos-testing-update use latest coreos-stable for testing to avoid upgrades during deployment	2017-06-07 16:31:23 -07:00
Spencer Smith	ef3c2d86d3	Merge pull request #1327 from rsmitty/coreos-testing-update use latest coreos-stable for testing to avoid upgrades during deployment	2017-06-07 16:31:23 -07:00
Brad Beam	238a268f29	Merge pull request #1174 from jlothian/atomic-docker-restart Fix docker restart in atomic	2017-06-07 12:05:32 -05:00
Brad Beam	780308c194	Merge pull request #1174 from jlothian/atomic-docker-restart Fix docker restart in atomic	2017-06-07 12:05:32 -05:00
Brad Beam	4d9ee730ac	Merge pull request #1092 from bradbeam/rkt_docker Adding flag for docker container in kubelet w/ rkt	2017-06-06 12:58:40 -05:00
Brad Beam	696fd690ae	Merge pull request #1092 from bradbeam/rkt_docker Adding flag for docker container in kubelet w/ rkt	2017-06-06 12:58:40 -05:00
Spencer Smith	9b76384cd8	Merge pull request #1328 from kevinjqiu/coreos-vagrant Support provisioning vagrant k8s clusters with coreos	2017-06-05 14:30:49 -07:00
Spencer Smith	d323501c7f	Merge pull request #1328 from kevinjqiu/coreos-vagrant Support provisioning vagrant k8s clusters with coreos	2017-06-05 14:30:49 -07:00
Kevin Jing Qiu	07d4bc8937	Specify coreos vagrant box url	2017-06-04 11:31:39 -04:00
Kevin Jing Qiu	66d8b2c18a	Specify coreos vagrant box url	2017-06-04 11:31:39 -04:00
Kevin Jing Qiu	12e9d1e341	Update doc on Vagrant local override file	2017-06-02 20:09:37 -04:00
Kevin Jing Qiu	6d8a415b4d	Update doc on Vagrant local override file	2017-06-02 20:09:37 -04:00
Kevin Jing Qiu	d1c28b57a7	Add default ssh user for different OSes	2017-06-02 19:51:09 -04:00
Kevin Jing Qiu	dad268a686	Add default ssh user for different OSes	2017-06-02 19:51:09 -04:00
Kevin Jing Qiu	5a83108684	Update doc for Vagrant install	2017-06-02 19:03:43 -04:00
Kevin Jing Qiu	e7acc2fddf	Update doc for Vagrant install	2017-06-02 19:03:43 -04:00
Kevin Jing Qiu	8848200861	Support provisioning vagrant k8s clusters with coreos	2017-06-02 18:53:47 -04:00
Kevin Jing Qiu	6fb17a813c	Support provisioning vagrant k8s clusters with coreos	2017-06-02 18:53:47 -04:00
Spencer Smith	8fd331619b	use latest coreos-stable for testing to avoid upgrades during deployment	2017-06-02 12:24:54 -04:00
Spencer Smith	11ede9f872	use latest coreos-stable for testing to avoid upgrades during deployment	2017-06-02 12:24:54 -04:00
Spencer Smith	f4b677eb52	Merge pull request #1320 from rsmitty/centos-cert-fix check if cloud_provider is defined	2017-05-31 11:54:15 -04:00
Spencer Smith	6ac1c1c886	Merge pull request #1320 from rsmitty/centos-cert-fix check if cloud_provider is defined	2017-05-31 11:54:15 -04:00
Spencer Smith	4b955f8e9a	check if cloud_provider is defined	2017-05-31 08:24:24 -04:00
Spencer Smith	01c0ab4f06	check if cloud_provider is defined	2017-05-31 08:24:24 -04:00

1 2 3 4 5 ...

3110 commits