---
kubernetes_version: 1.16.4
kubernetes_container_runtime: containerd
kubernetes_network_plugin: kubeguard

kubernetes_masters:
  - s2-k8s-test0

kubernetes:
  cluster_name: k8s-test

  dedicated_master: False
  api_extra_sans:
  - k8s-test.spreadspace.org

  pod_ip_range: 172.18.0.0/16
  pod_ip_range_size: 24
  service_ip_range: 172.18.192.0/18


# kubernetes_secrets:
#   encryption_config_keys: "{{ vault_kubernetes_encryption_config_keys }}"


kubeguard:
  kube_router_version: 0.4.0-rc1

  ## node_index must be in the range between 1 and 190 -> 189 hosts possible
  ##
  ## hardcoded hostnames are not nice but if we do this via host_vars
  ## the info is spread over multiple files and this makes it more diffcult
  ## to find mistakes, so it is nicer to keep it in one place...
  node_index:
    s2-k8s-test0: 1
    s2-k8s-test1: 2
    s2-k8s-test2: 3
    s2-k8s-test3: 4
    s2-k8s-test4: 5

  direct_net_zones:
    atlas:
      transfer_net: 172.18.191.0/24
      node_interface:
        s2-k8s-test0: direct0
        s2-k8s-test1: direct0


kubernetes_kubelet_node_ip: "{{ kubernetes.pod_ip_range | ipsubnet(kubernetes.pod_ip_range_size, kubeguard.node_index[inventory_hostname]) | ipaddr(1) | ipaddr('address') }}"
kubernetes_cri_socket: "unix:///run/containerd/containerd.sock"