summaryrefslogtreecommitdiffstats
path: root/roles/openshift_master/templates
Commit message (Collapse)AuthorAgeFilesLines
* Remove remaining references to openshift-master.serviceClayton Coleman2017-08-081-18/+0
| | | | Prevents playbooks from accidentally restarting the master service.
* Use the new election mode (client based) instead of direct etcd accessClayton Coleman2017-08-081-3/+2
|
* Merge pull request #4949 from carlpett/patch-1OpenShift Bot2017-08-011-1/+1
|\ | | | | Merged by openshift-bot
| * Fix aws_secret_key checkCalle Pettersson2017-07-311-1/+1
| |
* | Merge pull request #4894 from tbielawa/reg-dns-scaleup-bz1469336OpenShift Bot2017-08-013-3/+12
|\ \ | | | | | | Merged by openshift-bot
| * | Use existing OPENSHIFT_DEFAULT_REGISTRY setting during masters scaleupTim Bielawa2017-07-283-3/+12
| |/ | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes a bug which reported that AFTER a cluster upgrade from OCP 3.5 to 3.6, any masters which are later added via the scaleup playbooks are setting a value for OPENSHIFT_DEFAULT_REGISTRY which is inconsistent with the already configured masters. * OPENSHIFT_DEFAULT_REGISTRY value is saved from oo_first_master * The new scaleup master has a fact set noting it is a scaleup host * The saved OPENSHIFT_DEFAULT_REGISTRY value is used instead of the default for 3.6, which is to use a hard-coded registry value of 'docker-registry.default.svc:5000' Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1469336
* | Add rate limit configurabilityScott Dodson2017-07-061-4/+4
|/
* Merge pull request #4414 from sdodson/bz1460626Scott Dodson2017-06-263-3/+3
|\ | | | | Ensure that host pki tree is mounted in containerized components
| * Ensure that host pki tree is mounted in containerized componentsScott Dodson2017-06-123-3/+3
| |
* | Also configure default registry on HA mastersScott Dodson2017-06-232-0/+6
| | | | | | | | Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1463498
* | Adding option for serviceAccountConfig.limitSecretReferencesKenny Woodson2017-06-201-1/+1
| |
* | Merge pull request #4292 from sdodson/push-via-dnsOpenShift Bot2017-06-201-0/+3
|\ \ | | | | | | Merged by openshift-bot
| * | Update atomic-openshift-master.j2Scott Dodson2017-06-191-1/+1
| | |
| * | Enable push to registry via dns only on clean 3.6 installsScott Dodson2017-06-181-1/+1
| | | | | | | | | | | | | | | We cannot assume that 3.5 to 3.6 upgrades were signed with the correct certs
| * | Disable actually pushing to the registry via dns for nowScott Dodson2017-06-181-1/+1
| | | | | | | | | | | | | | | | | | | | | We need to sort out how to know that the registry certificate has the proper hostnames attached to it. It will for 3.6 clean installs but not for 3.5 to 3.6 upgrades. For now make it opt in and come back to this.
| * | Push to the registry via dnsScott Dodson2017-06-181-0/+3
| |/ | | | | | | | | | | Configures OPENSHIFT_DEFAULT_REGISTRY=docker-registry.default.svc Adds 'cluster.local' to dns search on nodes via dispatcher script Adds '.svc' to NO_PROXY defaults
* | Preserve etcd3 storage if it's already in useScott Dodson2017-06-181-0/+6
|/ | | | | This would be the case if for instance they'd upgraded and then migrated.
* Merge pull request #3982 from jim-minter/trello131-broker-configurationOpenShift Bot2017-05-221-0/+7
|\ | | | | Merged by openshift-bot
| * add template service broker configurableJim Minter2017-04-241-0/+7
| |
* | Fix auditConfig for non-HA environmentsRussell Teague2017-05-181-1/+1
| | | | | | | | Bug 1447019
* | Fix templating of static service filesRussell Teague2017-05-122-46/+0
| |
* | Add service file templates for master and nodeSteve Milner2017-05-092-0/+46
| | | | | | | | | | | | | | Adds service file templates for both maste and node. These will lay down in /etc/system/systemd to override what may already be present from a package. These instances take into account the name of the container daemon (docker or container-engine).
* | Update systemd units to use proper container service nameSteve Milner2017-05-093-12/+12
|/ | | | | | | - If using a system container: container-engine - If using a package install: docker Ref: https://bugzilla.redhat.com/show_bug.cgi?id=1448800
* master-api: add mount for /var/logGiuseppe Scrivano2017-04-061-1/+1
| | | | Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* master: add mount for /var/logGiuseppe Scrivano2017-04-061-1/+1
| | | | Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* Allow overriding minTLSVersion and cipherSuitesMartin Eggen2017-03-091-0/+18
| | | | | Add parameters to allow overriding minTLSVersion and cipherSuites in master and node servingInfo config stanzas.
* Combined (squashed) commit for all changes related to adding Contiv support ↵Sanjeev Rampal2017-02-271-1/+1
| | | | into Openshift Ansible. This is the first (beta) release of Contiv with Openshift and is only supported for Openshift Origin + Bare metal deployments at the time of this commit. Please refer to the Openshift and Contiv official documentation for details of the level of support for different features and modes of operation.
* Ensure embedded etcd config uses CA bundle.Andrew Butcher2017-02-091-0/+12
|
* Restructure certificate redeploy playbooksAndrew Butcher2017-02-021-0/+8
|
* Merge pull request #2973 from AlbertoPeon/metrics_urlScott Dodson2017-01-261-2/+2
|\ | | | | Set metrics url even if metrics_deploy is false
| * Set metrics url even if metrics_deploy is falseAlberto Peon2017-01-201-2/+2
| |
* | Comma separate no_proxy host list in openshift_facts so that it appears as a ↵Andrew Butcher2017-01-253-3/+3
|/ | | | string everywhere it is used.
* Support openshift_node_port_range for configuring service NodePortsClayton Coleman2017-01-101-1/+1
| | | | | | | | | Sets the appropriate config field if openshift_node_port_range is set and also configures filewalls on each node. firewalld already supports port ranges like "30000-32000", while iptables needs that value converted to the correct "30000:32000" form for use with `--dport`. If not set, no node ports are opened.
* Fix metricsPublicURL only being set correctly on first master.Devan Goodwin2016-12-011-3/+3
| | | | | | | | | | | | | Problem was caused by facts not being set for that master. To fix this patch cleans up the calculation of metricsPublicURL in general. Because this value is used in openshift_master to template into the master config file, we now define these facts more clearly in openshift_master_facts, and add a dependency on this to openshift_metrics. The calculation of default sub-domain is also changed to remove it from system facts (as neither of these are facts about the system) and instead use plain variables.
* Merge kube_admission_plugin_config with admission_plugin_configSamuel Munilla2016-11-221-10/+0
| | | | | | | | Move the values in kube_admission_plugin_config up one level per the new format from 1.3: "The kubernetesMasterConfig.admissionConfig.pluginConfig should be moved and merged into admissionConfig.pluginConfig."
* Merge pull request #2702 from jkhelil/fix_master_config_templateAndrew Butcher2016-11-161-0/+10
|\ | | | | Prevent useless master restart by reworking template for master service enf file
| * Prevent useless master by reworking template for master service enf fileJawed khelil2016-11-021-0/+10
| |
* | Merge pull request #2636 from enlinxu/masterAndrew Butcher2016-11-161-0/+1
|\ \ | | | | | | Support 3rd party scheduler
| * | support 3rd party schedulerenlinxu2016-10-201-0/+1
| | |
* | | Change to allow cni deployments without openshift SDNyfauser2016-11-081-1/+1
| | | | | | | | | | | | | | | | | | | | | The roles/openshift_facts main task did not pass the cni plugin variable to the later role playbooks. The master.yaml and node.yaml templates did not allow for a cni configuration without either installing openshift sdn or nuage. This change will allow to use os_sdn_network_plugin_name=cni and set openshift_use_openshift_sdn=false for deployments that use a cni plugin that doesn't need and want openshift sdn to be installed
* | | Restart API service always as well.Devan Goodwin2016-11-041-0/+1
| |/ |/| | | | | | | | | | | Recently applied this fix for controllers due to the systemd-journald restart issue, it sounds as is this one is also sometimes affected. Containerized already uses this, so we will apply the same restart strategy here.
* | Change HA master controller service to restart always.Devan Goodwin2016-10-272-2/+2
|/ | | | | | | | | | Restarts of systemd-journald can cause the master controllers service to die in HA environments, due to a SIGPIPE and how it's handled. (seemingly by default in golang) on-failure does not trigger in this situation, instead we set to Restart=always in the systemd unit, which matches the non-HA service definitions as well.
* set defaults for debug_level in template and taskJustin Cook2016-10-111-1/+1
|
* Check if openshift_master_ingress_ip_network_cidr is definedMathias Merscher2016-10-041-1/+1
| | | | Signed-off-by: Mathias Merscher <Mathias.Merscher@dg-i.net>
* allow networkConfig.ingressIPNetworkCIDRs to be configuredMathias Merscher2016-10-041-0/+3
| | | | Signed-off-by: Mathias Merscher <Mathias.Merscher@dg-i.net>
* Don't use openshift_env for cloud provider facts.Andrew Butcher2016-08-256-12/+12
|
* Merge pull request #2358 from abutcher/service-serving-certsAndrew Butcher2016-08-251-0/+7
|\ | | | | enable service-serving-cert-signer by default
| * enable service-serving-cert-signer by defaultAndrew Butcher2016-08-241-0/+7
| |
* | Merge pull request #2100 from smunilla/BZ1337553Scott Dodson2016-08-241-0/+1
|\ \ | |/ |/| Add externalIPNetworkCIDRs to config
| * Add externalIPNetworkCIDRs to configSamuel Munilla2016-08-231-0/+1
| | | | | | | | | | Allow networkConfig.externalIPNetworkCIDRs to be set along with a default to emulate the old 3.1 behavior.
generated by cgit v1.2.1 (git 2.18.0) at 2024-05-13 18:35:49 +0000