diff options
author | Christian Pointner <equinox@spreadspace.org> | 2024-08-24 19:25:40 +0200 |
---|---|---|
committer | Christian Pointner <equinox@spreadspace.org> | 2024-08-24 19:25:40 +0200 |
commit | b17c559251dfd157fe2cf220044887f08208bb3c (patch) | |
tree | f395cb16d81a65955f9a12a88c9eab862848d976 /elevate/k8s-emc.yml | |
parent | allow ssh jump users to also do reverse forwards (diff) |
split environment group dan to skillz and elevate
Diffstat (limited to 'elevate/k8s-emc.yml')
-rw-r--r-- | elevate/k8s-emc.yml | 52 |
1 files changed, 52 insertions, 0 deletions
diff --git a/elevate/k8s-emc.yml b/elevate/k8s-emc.yml new file mode 100644 index 00000000..206c0211 --- /dev/null +++ b/elevate/k8s-emc.yml @@ -0,0 +1,52 @@ +--- +- name: Basic Node Setup + hosts: k8s-emc + roles: + - role: apt-repo/base + - role: core/base + - role: core/sshd/base + - role: core/zsh + - role: core/ntp + - role: apt-repo/spreadspace + - role: nginx/base +# - role: monitoring/prometheus/exporter + +- name: TLS Certificate and storage volumes for Edge Nodes + hosts: elevate-mediachannel-edge + roles: + - role: x509/acmetool/base + - role: x509/acmetool/cert + acmetool_cert_hostnames: + - "{{ host_name }}.{{ host_domain }}" + - role: storage/lvm/base + +- import_playbook: ../common/kubernetes-cluster-layout.yml + vars: + kubernetes_cluster_layout: + nodes_group: k8s-emc + controlplane_nodes: + - ele-emc-ctrl + +### hack hack hack... +- name: cook kubernetes secrets + hosts: _kubernetes_nodes_ + gather_facts: no + tasks: + - set_fact: + kubernetes_secrets: "{{ kubernetes_secrets }}" + - when: external_ip is defined + set_fact: + external_ip: "{{ external_ip }}" + +- import_playbook: ../common/kubernetes-cluster.yml +- import_playbook: ../common/kubernetes-cluster-cleanup.yml + +- name: install addons + hosts: _kubernetes_nodes_ + roles: + - role: kubernetes/addons/metrics-server + #- role: kubernetes/addons/openebs-zfs + - role: kubernetes/addons/cert-manager + - role: kubernetes/addons/ingress-nginx + #- role: kubernetes/addons/node-feature-discovery + #- role: kubernetes/addons/intel-gpu-device-plugin |