6744726089
* kubeadm support * move k8s master to a subtask * disable k8s secrets when using kubeadm * fix etcd cert serial var * move simple auth users to master role * make a kubeadm-specific env file for kubelet * add non-ha CI job * change ci boolean vars to json format * fixup * Update create-gce.yml * Update create-gce.yml * Update create-gce.yml
35 lines
1,021 B
YAML
35 lines
1,021 B
YAML
---
|
|
- name: install | Set SSL CA directories
|
|
set_fact:
|
|
ssl_ca_dirs: "[
|
|
{% if ansible_os_family in ['CoreOS', 'Container Linux by CoreOS'] -%}
|
|
'/usr/share/ca-certificates',
|
|
{% elif ansible_os_family == 'RedHat' -%}
|
|
'/etc/pki/tls',
|
|
'/etc/pki/ca-trust',
|
|
{% elif ansible_os_family == 'Debian' -%}
|
|
'/usr/share/ca-certificates',
|
|
{% endif -%}
|
|
]"
|
|
tags: facts
|
|
|
|
- name: Set kubelet deployment to host if kubeadm is enabled
|
|
set_fact:
|
|
kubelet_deployment_type: host
|
|
when: kubeadm_enabled
|
|
tags: kubeadm
|
|
|
|
- name: install | Copy binary from download dir
|
|
command: rsync -piu "{{ local_release_dir }}/kubeadm" "{{ bin_dir }}/kubeadm"
|
|
changed_when: false
|
|
when: kubeadm_enabled
|
|
tags: kubeadm
|
|
|
|
- include: "install_{{ kubelet_deployment_type }}.yml"
|
|
|
|
- name: install | Write kubelet systemd init file
|
|
template:
|
|
src: "kubelet.{{ kubelet_deployment_type }}.service.j2"
|
|
dest: "/etc/systemd/system/kubelet.service"
|
|
backup: "yes"
|
|
notify: restart kubelet
|