73066f308d
Also adds all masters by hostname and localhost/127.0.0.1 to apiserver SSL certificate. Includes documentation update on how localhost loadbalancer works.
53 lines
2.7 KiB
YAML
53 lines
2.7 KiB
YAML
---
|
|
- set_fact: kube_apiserver_count="{{ groups['kube-master'] | length }}"
|
|
- set_fact: kube_apiserver_address="{{ ip | default(ansible_default_ipv4['address']) }}"
|
|
- set_fact: kube_apiserver_access_address="{{ access_ip | default(kube_apiserver_address) }}"
|
|
- set_fact: is_kube_master="{{ inventory_hostname in groups['kube-master'] }}"
|
|
- set_fact: first_kube_master="{{ hostvars[groups['kube-master'][0]]['access_ip'] | default(hostvars[groups['kube-master'][0]]['ip'] | default(hostvars[groups['kube-master'][0]]['ansible_default_ipv4']['address'])) }}"
|
|
- set_fact:
|
|
loadbalancer_apiserver_localhost: false
|
|
when: loadbalancer_apiserver is defined
|
|
- set_fact:
|
|
kube_apiserver_endpoint: |-
|
|
{% if not is_kube_master and loadbalancer_apiserver_localhost -%}
|
|
https://localhost:{{ kube_apiserver_port }}
|
|
{%- elif is_kube_master and loadbalancer_apiserver is not defined -%}
|
|
http://127.0.0.1:{{ kube_apiserver_insecure_port }}
|
|
{%- else -%}
|
|
{%- if loadbalancer_apiserver is defined and loadbalancer_apiserver.port is defined -%}
|
|
https://{{ apiserver_loadbalancer_domain_name|default('lb-apiserver.kubernetes.local') }}:{{ loadbalancer_apiserver.port|default(kube_apiserver_port) }}
|
|
{%- else -%}
|
|
https://{{ first_kube_master }}:{{ kube_apiserver_port }}
|
|
{%- endif -%}
|
|
{%- endif %}
|
|
|
|
- set_fact: etcd_address="{{ ip | default(ansible_default_ipv4['address']) }}"
|
|
- set_fact: etcd_access_address="{{ access_ip | default(etcd_address) }}"
|
|
- set_fact: etcd_peer_url="http://{{ etcd_access_address }}:2380"
|
|
- set_fact: etcd_client_url="http://{{ etcd_access_address }}:2379"
|
|
- set_fact: etcd_authority="127.0.0.1:2379"
|
|
- set_fact: etcd_endpoint="http://{{ etcd_authority }}"
|
|
- set_fact:
|
|
etcd_access_addresses: |-
|
|
{% for item in groups['etcd'] -%}
|
|
http://{{ hostvars[item].etcd_access_address }}:2379{% if not loop.last %},{% endif %}
|
|
{%- endfor %}
|
|
- set_fact: etcd_access_endpoint="{% if etcd_multiaccess %}{{ etcd_access_addresses }}{% else %}{{ etcd_endpoint }}{% endif %}"
|
|
- set_fact:
|
|
etcd_member_name: |-
|
|
{% for host in groups['etcd'] %}
|
|
{% if inventory_hostname == host %}{{"etcd"+loop.index|string }}{% endif %}
|
|
{% endfor %}
|
|
- set_fact:
|
|
etcd_proxy_member_name: |-
|
|
{% for host in groups['k8s-cluster'] %}
|
|
{% if inventory_hostname == host %}{{"etcd-proxy"+loop.index|string }}{% endif %}
|
|
{% endfor %}
|
|
- set_fact:
|
|
is_etcd_proxy: "{{ inventory_hostname in groups['k8s-cluster'] }}"
|
|
- set_fact:
|
|
is_etcd_master: "{{ inventory_hostname in groups['etcd'] }}"
|
|
- set_fact:
|
|
etcd_after_v3: etcd_version | version_compare("v3.0.0", ">=")
|
|
- set_fact:
|
|
etcd_container_bin_dir: "{% if etcd_after_v3 %}/usr/local/bin/{% else %}/{% endif %}"
|