--- - name: Trust kubelet container command: >- /usr/bin/rkt trust --skip-fingerprint-review --root {{ item }} register: kubelet_rkt_trust_result until: kubelet_rkt_trust_result.rc == 0 with_items: - "https://quay.io/aci-signing-key" - "https://coreos.com/dist/pubkeys/aci-pubkeys.gpg" retries: 4 delay: "{{ retry_stagger | random + 3 }}" changed_when: false when: kubelet_deployment_type == "rkt" - name: create kubelet working directory file: state: directory path: /var/lib/kubelet when: kubelet_deployment_type == "rkt" - name: install | Write kubelet systemd init file template: "src=kubelet.{{ kubelet_deployment_type }}.service.j2 dest=/etc/systemd/system/kubelet.service backup=yes" notify: restart kubelet - name: install | Install kubelet launch script template: src=kubelet-container.j2 dest="{{ bin_dir }}/kubelet" owner={{ kubelet_user }} mode=0755 backup=yes notify: restart kubelet when: kubelet_deployment_type == "docker"