summaryrefslogtreecommitdiff
path: root/roles/kubernetes/kubeadm/master/tasks/main.yml
diff options
context:
space:
mode:
Diffstat (limited to 'roles/kubernetes/kubeadm/master/tasks/main.yml')
-rw-r--r--roles/kubernetes/kubeadm/master/tasks/main.yml77
1 files changed, 0 insertions, 77 deletions
diff --git a/roles/kubernetes/kubeadm/master/tasks/main.yml b/roles/kubernetes/kubeadm/master/tasks/main.yml
deleted file mode 100644
index 04df760f..00000000
--- a/roles/kubernetes/kubeadm/master/tasks/main.yml
+++ /dev/null
@@ -1,77 +0,0 @@
----
-- name: create direcotry for encryption config
- file:
- name: /etc/kubernetes/encryption
- state: directory
- mode: 0700
-
-- name: install encryption config
- template:
- src: encryption-config.j2
- dest: /etc/kubernetes/encryption/config
- mode: 0600
-
-
-- name: install primary master
- include_tasks: primary-master.yml
- when: "'_kubernetes_primary_master_' in group_names"
-
-- name: install secondary masters
- include_tasks: secondary-masters.yml
- when: "'_kubernetes_primary_master_' not in group_names"
-
-
-- name: check if master is tainted (1/2)
- command: "kubectl --kubeconfig /etc/kubernetes/admin.conf get node {{ inventory_hostname }} -o json"
- check_mode: no
- register: kubectl_get_node
- changed_when: False
-
-- name: check if master is tainted (2/2)
- set_fact:
- kube_node_taints: "{% set node_info = kubectl_get_node.stdout | from_json %}{%if node_info.spec.taints is defined %}{{ node_info.spec.taints | map(attribute='key') | list }}{% endif %}"
-
-- name: remove taint from master/control-plane node
- when: not kubernetes.dedicated_master
- block:
- - name: remove master taint from node
- when: "'node-role.kubernetes.io/master' in kube_node_taints"
- command: "kubectl --kubeconfig /etc/kubernetes/admin.conf taint nodes {{ inventory_hostname }} node-role.kubernetes.io/master-"
-
- - name: remove control-plane taint from node
- when: "'node-role.kubernetes.io/control-plane' in kube_node_taints"
- command: "kubectl --kubeconfig /etc/kubernetes/admin.conf taint nodes {{ inventory_hostname }} node-role.kubernetes.io/control-plane-"
-
-- name: add taint from master/control-plane node
- when: kubernetes.dedicated_master
- block:
- - name: add master taint from node
- when: "'node-role.kubernetes.io/master' not in kube_node_taints"
- command: "kubectl --kubeconfig /etc/kubernetes/admin.conf taint nodes {{ inventory_hostname }} node-role.kubernetes.io/master='':NoSchedule"
-
- ## TODO: enable this once all needed addons and workloads have tolerations set accordingly
- # - name: add control-plane taint from node
- # when: "'node-role.kubernetes.io/control-plane' not in kube_node_taints"
- # command: "kubectl --kubeconfig /etc/kubernetes/admin.conf taint nodes {{ inventory_hostname }} node-role.kubernetes.io/control-plane='':NoSchedule"
-
-- name: prepare kubectl (1/2)
- file:
- name: /root/.kube
- state: directory
-
-- name: prepare kubectl (2/2)
- file:
- dest: /root/.kube/config
- src: /etc/kubernetes/admin.conf
- state: link
-
-- name: add kubectl completion config for shells
- loop:
- - zsh
- - bash
- blockinfile:
- path: "/root/.{{ item }}rc"
- create: yes
- marker: "### {mark} ANSIBLE MANAGED BLOCK for kubectl ###"
- content: |
- source <(kubectl completion {{ item }})
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-08 01:25:56 +0000