k3s/cluster/rackspace/cloud-config/master-cloud-config.yaml

#cloud-config

write_files:
  - path: /etc/cloud.conf
    permissions: 0600
    content: |
      [Global]
      auth-url = OS_AUTH_URL
      username = OS_USERNAME
      api-key = OS_PASSWORD
      tenant-id = OS_TENANT_NAME
      region = OS_REGION_NAME
      [LoadBalancer]
      subnet-id = 11111111-1111-1111-1111-111111111111
  - path: /opt/bin/git-kubernetes-nginx.sh
    permissions: 0755
    content: |
      #!/bin/bash
      git clone https://github.com/thommay/kubernetes_nginx /opt/kubernetes_nginx
      /usr/bin/cp /opt/.kubernetes_auth /opt/kubernetes_nginx/.kubernetes_auth
      /opt/kubernetes_nginx/git-kubernetes-nginx.sh
  - path: /opt/bin/download-release.sh
    permissions: 0755
    content: |
      #!/bin/bash
      OBJECT_URL="CLOUD_FILES_URL"
      echo "Downloading release ($OBJECT_URL)"
      wget "${OBJECT_URL}" -O /opt/kubernetes.tar.gz
      echo "Unpacking release"
      rm -rf /opt/kubernetes || false
      tar xzf /opt/kubernetes.tar.gz -C /opt/
  - path: /opt/.kubernetes_auth
    permissions: 0600
    content: |
      KUBE_USER:KUBE_PASSWORD

coreos:
  etcd:
    name: kubernetes-master
    discovery: https://discovery.etcd.io/DISCOVERY_ID
    addr: $private_ipv4:4001
    peer-addr: $private_ipv4:7001
    peer-bind-addr: $private_ipv4:7001

  fleet:
    public-ip: $private_ipv4
    metadata: kubernetes_role=master

  update:
    reboot-strategy: etcd-lock

  units:
    - name: etcd.service
      command: start
    - name: fleet.service
      command: start
    - name: download-release.service
      command: start
      content: |
        [Unit]
        Description=Downloads Kubernetes Release
        After=network-online.target
        Requires=network-online.target
        [Service]
        Type=oneshot
        RemainAfterExit=yes
        ExecStart=/usr/bin/bash /opt/bin/download-release.sh
    - name: master-apiserver.service
      command: start
      content: |
        [Unit]
        Description=Kubernetes API Server
        Documentation=https://github.com/GoogleCloudPlatform/kubernetes
        After=network-online.target
        Requires=network-online.target
        After=download-release.service
        Requires=download-release.service
        [Service]
        ExecStartPre=/usr/bin/ln -sf /opt/kubernetes/server/bin/kube-apiserver /opt/bin/kube-apiserver
        ExecStart=/opt/bin/kube-apiserver --address=127.0.0.1 --port=8080 --etcd_servers=http://127.0.0.1:4001 --portal_net=PORTAL_NET --logtostderr=true --cloud_provider=rackspace --cloud_config=/etc/cloud.conf --v=2
        Restart=always
        RestartSec=2
    - name: apiserver-advertiser.service
      command: start
      content: |
        [Unit]
        Description=Kubernetes Apiserver Advertiser
        After=etcd.service
        Requires=etcd.service
        After=master-apiserver.service
        [Service]
        ExecStart=/bin/sh -c 'etcdctl set /corekube/apiservers/$private_ipv4 $private_ipv4'
        Restart=always
        RestartSec=120
    - name: master-controller-manager.service
      command: start
      content: |
        [Unit]
        Description=Kubernetes Controller Manager
        Documentation=https://github.com/GoogleCloudPlatform/kubernetes
        After=network-online.target
        Requires=network-online.target
        After=master-apiserver.service
        Requires=master-apiserver.service
        [Service]
        ExecStartPre=/usr/bin/ln -sf /opt/kubernetes/server/bin/kube-controller-manager /opt/bin/kube-controller-manager
        ExecStart=/opt/bin/kube-controller-manager --master=127.0.0.1:8080 --logtostderr=true --cloud_provider=rackspace --cloud_config=/etc/cloud.conf --v=2
        Restart=always
        RestartSec=2
    - name: master-scheduler.service
      command: start
      content: |
        [Unit]
        Description=Kubernetes Scheduler
        Documentation=https://github.com/GoogleCloudPlatform/kubernetes
        After=network-online.target
        Requires=network-online.target
        After=master-apiserver.service
        Requires=master-apiserver.service
        [Service]
        ExecStartPre=/usr/bin/ln -sf /opt/kubernetes/server/bin/kube-scheduler /opt/bin/kube-scheduler
        ExecStart=/opt/bin/kube-scheduler --master=127.0.0.1:8080 --logtostderr=true
        Restart=always
        RestartSec=10
    - name: master-register.service
      command: start
      content: |
        [Unit]
        Description=Kubernetes Registration Service
        Documentation=https://github.com/kelseyhightower/kube-register

        [Service]
        ExecStartPre=/usr/bin/wget -N -P /opt/bin https://storage.googleapis.com/kubernetes/kube-register
        ExecStartPre=/usr/bin/chmod +x /opt/bin/kube-register
        ExecStart=/opt/bin/kube-register \
        --metadata=kubernetes_role=minion \
        --fleet-endpoint=unix:///var/run/fleet.sock \
        --api-endpoint=http://127.0.0.1:8080
        Restart=always
        RestartSec=10
    #Running nginx service with --net="host" is a necessary evil until running all k8s services in docker.
    - name: kubernetes-nginx.service
      command: start
      content: |
        [Unit]
        Description=Kubernetes Nginx Service
        After=network-online.target
        Requires=network-online.target
        After=docker.service
        Requires=docker.service
        [Service]
        ExecStartPre=/opt/bin/git-kubernetes-nginx.sh
        ExecStartPre=-/usr/bin/docker rm kubernetes_nginx
        ExecStart=/usr/bin/docker run --rm --net="host" -p "443:443" -t --name "kubernetes_nginx" kubernetes_nginx
        ExecStop=/usr/bin/docker stop kubernetes_nginx
        Restart=always
        RestartSec=15
Rackspace - Switch to CoreOS for standard cluster The Rackspace setup for Kubernetes now leverages CoreOS instead of Ubuntu. We've dropped Salt completely for our cluster. 2014-10-12 00:32:53 +00:00			`#cloud-config`

			`write_files:`
Basic Rackspace cloud support This enables all but Load Balancer support for the Rackspace public cloud platform. 2015-02-17 10:48:48 +00:00			`- path: /etc/cloud.conf`
			`permissions: 0600`
Rackspace - Switch to CoreOS for standard cluster The Rackspace setup for Kubernetes now leverages CoreOS instead of Ubuntu. We've dropped Salt completely for our cluster. 2014-10-12 00:32:53 +00:00			`content: \|`
Basic Rackspace cloud support This enables all but Load Balancer support for the Rackspace public cloud platform. 2015-02-17 10:48:48 +00:00			`[Global]`
			`auth-url = OS_AUTH_URL`
			`username = OS_USERNAME`
			`api-key = OS_PASSWORD`
			`tenant-id = OS_TENANT_NAME`
			`region = OS_REGION_NAME`
			`[LoadBalancer]`
			`subnet-id = 11111111-1111-1111-1111-111111111111`
Rackspace - Switch to CoreOS for standard cluster The Rackspace setup for Kubernetes now leverages CoreOS instead of Ubuntu. We've dropped Salt completely for our cluster. 2014-10-12 00:32:53 +00:00			`- path: /opt/bin/git-kubernetes-nginx.sh`
			`permissions: 0755`
			`content: \|`
			`#!/bin/bash`
Basic Rackspace cloud support This enables all but Load Balancer support for the Rackspace public cloud platform. 2015-02-17 10:48:48 +00:00			`git clone https://github.com/thommay/kubernetes_nginx /opt/kubernetes_nginx`
Rackspace - Switch to CoreOS for standard cluster The Rackspace setup for Kubernetes now leverages CoreOS instead of Ubuntu. We've dropped Salt completely for our cluster. 2014-10-12 00:32:53 +00:00			`/usr/bin/cp /opt/.kubernetes_auth /opt/kubernetes_nginx/.kubernetes_auth`
Basic Rackspace cloud support This enables all but Load Balancer support for the Rackspace public cloud platform. 2015-02-17 10:48:48 +00:00			`/opt/kubernetes_nginx/git-kubernetes-nginx.sh`
Rackspace - Switch to CoreOS for standard cluster The Rackspace setup for Kubernetes now leverages CoreOS instead of Ubuntu. We've dropped Salt completely for our cluster. 2014-10-12 00:32:53 +00:00			`- path: /opt/bin/download-release.sh`
			`permissions: 0755`
			`content: \|`
			`#!/bin/bash`
			`OBJECT_URL="CLOUD_FILES_URL"`
			`echo "Downloading release ($OBJECT_URL)"`
Add Rackspace to build/release.sh Updates to the build/release.sh scripts to upload build binaries to Cloud Files. 2014-10-17 20:10:08 +00:00			`wget "${OBJECT_URL}" -O /opt/kubernetes.tar.gz`
Rackspace - Switch to CoreOS for standard cluster The Rackspace setup for Kubernetes now leverages CoreOS instead of Ubuntu. We've dropped Salt completely for our cluster. 2014-10-12 00:32:53 +00:00			`echo "Unpacking release"`
			`rm -rf /opt/kubernetes \|\| false`
			`tar xzf /opt/kubernetes.tar.gz -C /opt/`
			`- path: /opt/.kubernetes_auth`
			`permissions: 0600`
			`content: \|`
			`KUBE_USER:KUBE_PASSWORD`

			`coreos:`
			`etcd:`
			`name: kubernetes-master`
			`discovery: https://discovery.etcd.io/DISCOVERY_ID`
			`addr: $private_ipv4:4001`
			`peer-addr: $private_ipv4:7001`
			`peer-bind-addr: $private_ipv4:7001`

			`fleet:`
			`public-ip: $private_ipv4`
			`metadata: kubernetes_role=master`

			`update:`
			`reboot-strategy: etcd-lock`

			`units:`
			`- name: etcd.service`
			`command: start`
			`- name: fleet.service`
			`command: start`
			`- name: download-release.service`
			`command: start`
			`content: \|`
			`[Unit]`
			`Description=Downloads Kubernetes Release`
			`After=network-online.target`
			`Requires=network-online.target`
			`[Service]`
			`Type=oneshot`
			`RemainAfterExit=yes`
			`ExecStart=/usr/bin/bash /opt/bin/download-release.sh`
			`- name: master-apiserver.service`
			`command: start`
			`content: \|`
			`[Unit]`
			`Description=Kubernetes API Server`
			`Documentation=https://github.com/GoogleCloudPlatform/kubernetes`
			`After=network-online.target`
			`Requires=network-online.target`
			`After=download-release.service`
			`Requires=download-release.service`
			`[Service]`
rename kube server binaries to kube- apiserver becomes kube-apiserver controller-manager -> kube-controller-manager scheduler and proxy similarly. Only thing I promise is that right now hack/build-go.sh and build/release.sh exit with 0. That's it. Who knows if any of this actually works.... 2014-11-11 00:34:21 +00:00			`ExecStartPre=/usr/bin/ln -sf /opt/kubernetes/server/bin/kube-apiserver /opt/bin/kube-apiserver`
Basic Rackspace cloud support This enables all but Load Balancer support for the Rackspace public cloud platform. 2015-02-17 10:48:48 +00:00			`ExecStart=/opt/bin/kube-apiserver --address=127.0.0.1 --port=8080 --etcd_servers=http://127.0.0.1:4001 --portal_net=PORTAL_NET --logtostderr=true --cloud_provider=rackspace --cloud_config=/etc/cloud.conf --v=2`
Rackspace - Switch to CoreOS for standard cluster The Rackspace setup for Kubernetes now leverages CoreOS instead of Ubuntu. We've dropped Salt completely for our cluster. 2014-10-12 00:32:53 +00:00			`Restart=always`
			`RestartSec=2`
WIP: Update Rackspace so node talks to apiserver Kubernetes project has decided that it is better if kubelet and kube-proxy use the apiserver REST interface to get and set resources instead of accessing resource keys in etcd directly. This is necessary to support kubelet reporting of events, and also encapsulates the apiserver store details. This means that the kubelet and kube-proxy need to know the apiserver host(s) via a flag. Since the Rackspace config already used etcd to advertise the minions to the controller-manager, I used the same pattern to advertise the apiserver(s) to the minions. Setting --public_address_override=$private_ipv4 is intended to ensure that the master serves its http interface on the right ethernet device, since I think there are two on a droplet. The new apiserver-advertiser.service puts the IPs of any apiservers in etcd. The kubelet and kube-proxy now take an environment file which contains the list of apiserver IPs, and that env var goes into a flag. The etcd_servers argument is removed -- the point is for these binaries to not access etcd. The new apiserver-finder.service watches for changes in etcd and restarts kubelet and kube proxy when there are new apiservers. 2015-01-14 17:17:57 +00:00			`- name: apiserver-advertiser.service`
			`command: start`
			`content: \|`
			`[Unit]`
			`Description=Kubernetes Apiserver Advertiser`
			`After=etcd.service`
			`Requires=etcd.service`
			`After=master-apiserver.service`
			`[Service]`
			`ExecStart=/bin/sh -c 'etcdctl set /corekube/apiservers/$private_ipv4 $private_ipv4'`
			`Restart=always`
			`RestartSec=120`
Rackspace - Switch to CoreOS for standard cluster The Rackspace setup for Kubernetes now leverages CoreOS instead of Ubuntu. We've dropped Salt completely for our cluster. 2014-10-12 00:32:53 +00:00			`- name: master-controller-manager.service`
			`command: start`
			`content: \|`
			`[Unit]`
			`Description=Kubernetes Controller Manager`
			`Documentation=https://github.com/GoogleCloudPlatform/kubernetes`
			`After=network-online.target`
			`Requires=network-online.target`
			`After=master-apiserver.service`
			`Requires=master-apiserver.service`
			`[Service]`
rename kube server binaries to kube- apiserver becomes kube-apiserver controller-manager -> kube-controller-manager scheduler and proxy similarly. Only thing I promise is that right now hack/build-go.sh and build/release.sh exit with 0. That's it. Who knows if any of this actually works.... 2014-11-11 00:34:21 +00:00			`ExecStartPre=/usr/bin/ln -sf /opt/kubernetes/server/bin/kube-controller-manager /opt/bin/kube-controller-manager`
Basic Rackspace cloud support This enables all but Load Balancer support for the Rackspace public cloud platform. 2015-02-17 10:48:48 +00:00			`ExecStart=/opt/bin/kube-controller-manager --master=127.0.0.1:8080 --logtostderr=true --cloud_provider=rackspace --cloud_config=/etc/cloud.conf --v=2`
Rackspace - Switch to CoreOS for standard cluster The Rackspace setup for Kubernetes now leverages CoreOS instead of Ubuntu. We've dropped Salt completely for our cluster. 2014-10-12 00:32:53 +00:00			`Restart=always`
			`RestartSec=2`
			`- name: master-scheduler.service`
			`command: start`
			`content: \|`
			`[Unit]`
			`Description=Kubernetes Scheduler`
			`Documentation=https://github.com/GoogleCloudPlatform/kubernetes`
			`After=network-online.target`
			`Requires=network-online.target`
			`After=master-apiserver.service`
			`Requires=master-apiserver.service`
			`[Service]`
rename kube server binaries to kube- apiserver becomes kube-apiserver controller-manager -> kube-controller-manager scheduler and proxy similarly. Only thing I promise is that right now hack/build-go.sh and build/release.sh exit with 0. That's it. Who knows if any of this actually works.... 2014-11-11 00:34:21 +00:00			`ExecStartPre=/usr/bin/ln -sf /opt/kubernetes/server/bin/kube-scheduler /opt/bin/kube-scheduler`
			`ExecStart=/opt/bin/kube-scheduler --master=127.0.0.1:8080 --logtostderr=true`
Rackspace - Switch to CoreOS for standard cluster The Rackspace setup for Kubernetes now leverages CoreOS instead of Ubuntu. We've dropped Salt completely for our cluster. 2014-10-12 00:32:53 +00:00			`Restart=always`
			`RestartSec=10`
Basic Rackspace cloud support This enables all but Load Balancer support for the Rackspace public cloud platform. 2015-02-17 10:48:48 +00:00			`- name: master-register.service`
			`command: start`
			`content: \|`
			`[Unit]`
			`Description=Kubernetes Registration Service`
			`Documentation=https://github.com/kelseyhightower/kube-register`

			`[Service]`
Fetch resources from storage.googleapis.com over SSL. 2015-04-27 04:51:37 +00:00			`ExecStartPre=/usr/bin/wget -N -P /opt/bin https://storage.googleapis.com/kubernetes/kube-register`
Basic Rackspace cloud support This enables all but Load Balancer support for the Rackspace public cloud platform. 2015-02-17 10:48:48 +00:00			`ExecStartPre=/usr/bin/chmod +x /opt/bin/kube-register`
			`ExecStart=/opt/bin/kube-register \`
			`--metadata=kubernetes_role=minion \`
			`--fleet-endpoint=unix:///var/run/fleet.sock \`
			`--api-endpoint=http://127.0.0.1:8080`
			`Restart=always`
			`RestartSec=10`
Add Rackspace to build/release.sh Updates to the build/release.sh scripts to upload build binaries to Cloud Files. 2014-10-17 20:10:08 +00:00			`#Running nginx service with --net="host" is a necessary evil until running all k8s services in docker.`
Rackspace - Switch to CoreOS for standard cluster The Rackspace setup for Kubernetes now leverages CoreOS instead of Ubuntu. We've dropped Salt completely for our cluster. 2014-10-12 00:32:53 +00:00			`- name: kubernetes-nginx.service`
			`command: start`
			`content: \|`
			`[Unit]`
			`Description=Kubernetes Nginx Service`
			`After=network-online.target`
			`Requires=network-online.target`
			`After=docker.service`
			`Requires=docker.service`
			`[Service]`
			`ExecStartPre=/opt/bin/git-kubernetes-nginx.sh`
Basic Rackspace cloud support This enables all but Load Balancer support for the Rackspace public cloud platform. 2015-02-17 10:48:48 +00:00			`ExecStartPre=-/usr/bin/docker rm kubernetes_nginx`
Rackspace - Switch to CoreOS for standard cluster The Rackspace setup for Kubernetes now leverages CoreOS instead of Ubuntu. We've dropped Salt completely for our cluster. 2014-10-12 00:32:53 +00:00			`ExecStart=/usr/bin/docker run --rm --net="host" -p "443:443" -t --name "kubernetes_nginx" kubernetes_nginx`
			`ExecStop=/usr/bin/docker stop kubernetes_nginx`
			`Restart=always`
			`RestartSec=15`