github
/
k3s
mirror of https://github.com/k3s-io/k3s
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
14,173 Commits
32 Branches
881 Tags
633 MiB
Commit Graph

53 Commits (1d6db553b07c52c2536ed21ce64b3b968745ae5a)

Author SHA1 Message Date
Zach Loafman acf6fc6e24 Merge pull request #10627 from eparis/total-ansible 
Ansible: Get DNS working - Add kubectl kubeconfig file
 2015-07-01 16:07:53 -07:00
Eric Paris c66bafaa18 Generate a kubeconfig for kubectl which can be taken off the masterA 
/etc/kubernetes/kuectl.kubeconfig
 2015-07-01 13:19:06 -04:00
Eric Paris 88087decb4 Fix certs in ansible 2015-07-01 13:09:22 -04:00
nikhiljindal 2e9e46dd08 Updating scripts to use v1 instead of v1beta3 2015-07-01 00:23:16 -07:00
Eric Paris ddf52a854e Make sure serviceaccount tokens are created and recognized 2015-06-30 13:05:59 -04:00
Eric Paris 3cacc42985 Hide DNS variables away from the user 
Fewer knobs == more winning. Also rename from kube.local to
cluster.local. Some e2e tests really want that.
 2015-06-30 13:05:59 -04:00
Eric Paris 3a78104267 Add cluster logging with fluentd and elastic search 2015-06-30 13:05:59 -04:00
Eric Paris 7d7d5d4c4e Add influxdb cluster monitoring 2015-06-30 13:05:59 -04:00
Eric Paris a127ce7266 Use slurp to get the ca.crt 2015-06-30 13:05:59 -04:00
Eric Paris 9f4bfd144f Per master tokens for the scheduler and controller-manager 2015-06-30 13:05:58 -04:00
Eric Paris c6f2841839 Place a different token for every node/daemon combination 
We can now revoke one token at a time!
 2015-06-30 13:05:58 -04:00
Eric Paris bb179b6a4c Use a token for the scheduler, controller-manager, proxy and kubelet 
Before we used the kubecfg certificate for everything. Mint one token
for each service and push it around where it belongs.
 2015-06-30 13:05:55 -04:00
Jeff Bean a0c312f224 Changing CentOS install of master and nodes 
The testing repo now had updated packages for kubernetes
Also adding some options to rsync task to work with different users ssh settings
 2015-06-25 18:45:49 -07:00
Eric Paris 52999cd292 Check for rpm directly, don't imply from ansible_pkg_manager 
Atomic host have neither dnf nor yum. So we cannot use that as a
hueristic if they have rpm.
 2015-06-24 17:07:13 -04:00
Eric Paris 97b88fa563 Set SELinux permissive to allow DNS to work 2015-06-24 17:07:12 -04:00
Eric Paris 8cf36d7402 Declare etcd roles in meta rather then top level playbook 2015-06-24 17:07:12 -04:00
Eric Paris 83bd4d0903 Install python-firewall as ansible needs python2 firewalld support 2015-06-24 17:07:12 -04:00
Eric Paris fc5c063a2d Support Fedora Rawhide 
Fedora rawhide has neither yum, nor python2, nor python2 libselinux
bindings. Ansible needs all of these.

This adds a new play which can be used to get machines setup so they can
then be managed with ansible.
 2015-06-24 17:07:12 -04:00
Eric Paris 7996f39413 Vagrant? Did we mean to include this? 2015-06-24 17:07:12 -04:00
Jeff Bean 7b8ed5a12c support dns in particular 2015-06-24 17:07:12 -04:00
Jeff Bean 374658ef01 support the upstream 'addons' nonsense 2015-06-24 17:07:12 -04:00
Eric Paris c2e4df7c87 Create, distribute, and use certificates for TLS and identity 2015-06-24 17:07:11 -04:00
Eric Paris 3d10f00401 Give kube-apiserver CAP_NET_BIND_SERVICE 
It is needed to bind on port 443
 2015-06-24 17:07:08 -04:00
Jeff Bean e08bd6f3c3 Configure docker daemon 2015-06-24 13:45:46 -04:00
Jeff Bean 45bdfeac0c Packge install on CentOS 7 2015-06-24 13:45:46 -04:00
Jeff Bean f259892cc9 Basic Generic File Cleanups 
No major changes, just renaming, whitespace, etc
 2015-06-24 13:45:46 -04:00
Eric Paris 9816488179 Do not restart etcd quickly 
https://github.com/coreos/etcd/pull/2878

etcd destroys itself if you start and then restart etcd very rapidly.
So don't do that any more.
 2015-06-24 13:45:46 -04:00
Eric Paris 70b7358d00 If multiple etcd servers defined, point at all of them 
(we still can only set up a single server though)
 2015-06-24 13:45:46 -04:00
Eric Paris a95243450e Set up flannel in your cluster! 2015-06-24 13:45:42 -04:00
Eric Paris bc6c425ab4 Use 'command' not 'shell' even thought it doesn't matter 2015-06-24 13:45:42 -04:00
Eric Paris fec5e789fd Shorthand to run the ansible setup command 2015-06-24 13:45:42 -04:00
Eric Paris f66395283e Rename minion->node 2015-06-24 13:45:42 -04:00
Eric Paris c4ba90337c Only install kube-master on the master and node on the nodes 2015-06-24 13:45:42 -04:00
Eric Paris f274881b94 do not register nodes to apiserver 
They now register themselves
 2015-06-24 13:45:42 -04:00
Eric Paris 8bb7e14a44 Rework cluster.yml and use tags, not files 2015-06-24 13:45:41 -04:00
Eric Paris b0b3b03045 Use {{ ansible_pkg_mgr }} instead of yum 
This should make things work on systems with dnf and even on systems
which use apt!
 2015-06-24 13:45:41 -04:00
Eric Paris 3af9346596 etcd requires advertise-client-urls with listen-client-urls 
otherwise it won't start
 2015-06-24 13:45:41 -04:00
Eric Paris 8830e7b84e Follow upstream default admission controllers 2015-06-24 13:45:41 -04:00
Tim Hockin 3005471100 Add new apiserver flags for clusterIP (nee portal) 
Leave old flags but marked as deprecated
 2015-05-28 16:10:44 -07:00
Jeff Lowdermilk 553f9f822b Add ga-beacon analytics to gendocs scripts 
hack/run-gendocs.sh puts ga-beacon analytics link into all md files,
hack/verify-gendocs.sh verifies presence of link.
 2015-05-15 18:56:38 -07:00
Jordan Liggitt 7e14a80f63 ServiceAccount admission plugin 2015-05-11 17:18:06 -04:00
Victor Marmol 92bd8577e0 Merge pull request #7931 from pmorie/typo 
Fix typos in different config comments
 2015-05-08 08:05:51 -07:00
Paul Morie b5dd5be123 Fix typos in different config comments 2015-05-07 18:44:24 -04:00
Paul Weil 5acdf5e70b remove trailing comma. Add sc admission controller to ansible and systemd 2015-05-05 16:34:38 -04:00
Brendan Burns 19e4e16ec2 Fix typo. 2015-04-07 11:56:48 -07:00
Eric Paris 051ab346bd Use IANA ports for etcd 
http://www.iana.org/assignments/service-names-port-numbers/service-names-port-numbers.xhtml?search=etcd

Use 2379 and 2380, not 4001 and 7001
 2015-04-03 13:02:56 -04:00
Eric Paris a94d8e361e Only run node creation on the first master 
True, we can only have one master today, but this gets us ready for when
it comes later
 2015-04-03 13:01:14 -04:00
Eric Paris 4e8a29c2ca Add a README file 2015-04-03 13:01:13 -04:00
Eric Paris d3862b5ea2 Just put all vars in all.yml 
The distinction between all/etcd/masters wouldn't make sense for a
non-developer
 2015-04-03 13:01:13 -04:00
Eric Paris b25996dbcd Add comments to configuration variables 2015-04-03 13:01:12 -04:00