summaryrefslogtreecommitdiffstats
path: root/roles/openshift_master
Commit message (Collapse)AuthorAgeFilesLines
* Merge pull request #3393 from srampal/contivScott Dodson2017-03-012-1/+4
|\ | | | | Pull request for Contiv Ansible code integration into Openshift Ansible
| * Combined (squashed) commit for all changes related to adding Contiv support ↵Sanjeev Rampal2017-02-272-1/+4
| | | | | | | | into Openshift Ansible. This is the first (beta) release of Contiv with Openshift and is only supported for Openshift Origin + Bare metal deployments at the time of this commit. Please refer to the Openshift and Contiv official documentation for details of the level of support for different features and modes of operation.
* | master: use the new oc_atomic_container moduleGiuseppe Scrivano2017-02-282-57/+23
|/ | | | Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* master, vars/main.yml: define l_is_ha and l_is_same_versionGiuseppe Scrivano2017-02-142-12/+15
| | | | Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* master: support HA deployments with system containersGiuseppe Scrivano2017-02-102-2/+47
| | | | Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* Merge pull request #3109 from giuseppe/system-containersGiuseppe Scrivano2017-02-103-3/+43
|\ | | | | System containers
| * system-containers: implement idempotent updateGiuseppe Scrivano2017-02-101-2/+21
| | | | | | | | | | | | | | | | Upstream version has "atomic containers update ..." but the RHEL version is still using "atomic update --container" so stick with this for now. Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
| * atomic-openshift: install as a system containerGiuseppe Scrivano2017-02-103-3/+24
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Use use_system_containers=true in the inventory file alternatively you can select each component as: use_openvswitch_system_container=true use_node_system_container=true use_master_system_container=true system_images_registry holds the registry from where to fetch system containers. Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
* | Ensure embedded etcd config uses CA bundle.Andrew Butcher2017-02-091-0/+12
|/
* Restructure certificate redeploy playbooksAndrew Butcher2017-02-021-0/+8
|
* Merge pull request #2973 from AlbertoPeon/metrics_urlScott Dodson2017-01-261-2/+2
|\ | | | | Set metrics url even if metrics_deploy is false
| * Set metrics url even if metrics_deploy is falseAlberto Peon2017-01-201-2/+2
| |
* | Comma separate no_proxy host list in openshift_facts so that it appears as a ↵Andrew Butcher2017-01-253-3/+3
|/ | | | string everywhere it is used.
* Merge pull request #3086 from bparees/build_nodesScott Dodson2017-01-171-0/+1
|\ | | | | add configuration for build default+overrides settings
| * add configuration for build default+overrides settingsBen Parees2017-01-161-0/+1
| |
* | Support openshift_node_port_range for configuring service NodePortsClayton Coleman2017-01-101-1/+1
|/ | | | | | | | | Sets the appropriate config field if openshift_node_port_range is set and also configures filewalls on each node. firewalld already supports port ranges like "30000-32000", while iptables needs that value converted to the correct "30000:32000" form for use with `--dport`. If not set, no node ports are opened.
* Move role dependencies out of playbooks for openshift_master, openshift_node ↵Andrew Butcher2017-01-091-1/+30
| | | | and openshift_hosted.
* YAML LintingRussell Teague2016-12-121-0/+1
| | | | | * Added checks to make ci for yaml linting * Modified y(a)ml files to pass lint checks
* Merge pull request #2902 from dgoodwin/fix-metrics-urlScott Dodson2016-12-081-3/+3
|\ | | | | Fix metricsPublicURL only being set correctly on first master.
| * Fix metricsPublicURL only being set correctly on first master.Devan Goodwin2016-12-011-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | Problem was caused by facts not being set for that master. To fix this patch cleans up the calculation of metricsPublicURL in general. Because this value is used in openshift_master to template into the master config file, we now define these facts more clearly in openshift_master_facts, and add a dependency on this to openshift_metrics. The calculation of default sub-domain is also changed to remove it from system facts (as neither of these are facts about the system) and instead use plain variables.
* | Pre-pull master/node/ovs images during upgrade.Devan Goodwin2016-12-072-7/+8
| | | | | | | | | | | | | | | | We did this for install but not upgrade, leading to situations where the service restarts after upgrade could take much longer than expected as docker pulls down the new image. Now the images are present when we restart services and should allow them to come back online much more quickly, equivalent to rpm service restarts.
* | Update scheduler predicate/priorities varsJason DeTiberus2016-12-011-2/+6
|/ | | | | | - Introduce additional variables for current scheduler config and default values to better determine if the values we are getting are user-defined, coming from config or are the default values.
* refactor handling of scheduler defaultsJason DeTiberus2016-11-291-5/+2
|
* Refactored to use Ansible systemd moduleRussell Teague2016-11-284-33/+42
| | | | | | * Ansible systemd module used in place of service module * Refactored command tasks which are no longer necessary * Applying rules from openshift-ansible Best Practices Guide
* Merge pull request #2836 from abutcher/BZ1393645Scott Dodson2016-11-281-10/+0
|\ | | | | Merge admission plugin configs
| * Merge kube_admission_plugin_config with admission_plugin_configSamuel Munilla2016-11-221-10/+0
| | | | | | | | | | | | | | | | Move the values in kube_admission_plugin_config up one level per the new format from 1.3: "The kubernetesMasterConfig.admissionConfig.pluginConfig should be moved and merged into admissionConfig.pluginConfig."
* | Refactor to use Ansible package moduleRussell Teague2016-11-171-3/+5
|/ | | | | The Ansible package module will call the correct package manager for the underlying OS.
* Merge pull request #2702 from jkhelil/fix_master_config_templateAndrew Butcher2016-11-162-16/+18
|\ | | | | Prevent useless master restart by reworking template for master service enf file
| * Prevent useless master by reworking template for master service enf fileJawed khelil2016-11-022-16/+18
| |
* | Merge pull request #2636 from enlinxu/masterAndrew Butcher2016-11-161-0/+1
|\ \ | | | | | | Support 3rd party scheduler
| * | support 3rd party schedulerenlinxu2016-10-201-0/+1
| | |
* | | Change to allow cni deployments without openshift SDNyfauser2016-11-081-1/+1
| | | | | | | | | | | | | | | | | | | | | The roles/openshift_facts main task did not pass the cni plugin variable to the later role playbooks. The master.yaml and node.yaml templates did not allow for a cni configuration without either installing openshift sdn or nuage. This change will allow to use os_sdn_network_plugin_name=cni and set openshift_use_openshift_sdn=false for deployments that use a cni plugin that doesn't need and want openshift sdn to be installed
* | | Merge pull request #2718 from dgoodwin/restart-api-alwaysScott Dodson2016-11-041-0/+1
|\ \ \ | | | | | | | | Restart API service always as well.
| * | | Restart API service always as well.Devan Goodwin2016-11-041-0/+1
| | |/ | |/| | | | | | | | | | | | | | | | Recently applied this fix for controllers due to the systemd-journald restart issue, it sounds as is this one is also sometimes affected. Containerized already uses this, so we will apply the same restart strategy here.
* | | Where we use curl force it to use tlsv1.2Scott Dodson2016-11-021-1/+1
|/ / | | | | | | | | | | | | curl, prior to RHEL 7.2, did not properly negotiate up the TLS protocol, so force it to use tlsv1.2 Fixes bug 1390869
* | Change HA master controller service to restart always.Devan Goodwin2016-10-272-2/+2
|/ | | | | | | | | | Restarts of systemd-journald can cause the master controllers service to die in HA environments, due to a SIGPIPE and how it's handled. (seemingly by default in golang) on-failure does not trigger in this situation, instead we set to Restart=always in the systemd unit, which matches the non-HA service definitions as well.
* Switch from "oadm" to "oc adm" and fix bug in binary sync.Devan Goodwin2016-10-191-1/+1
| | | | | | | | Found bug syncing binaries to containerized hosts where if a symlink was pre-existing, but pointing to the wrong destination, it would not be corrected. Switched to using oc adm instead of oadm.
* Merge branch 'master' of github.com:openshift/openshift-ansible into ↵Justin Cook2016-10-111-0/+23
|\ | | | | | | variable_with_no_default_2576
| * Apply same pattern to HA master servicesScott Dodson2016-10-101-0/+12
| |
| * Retry failed master startup onceDan Mace2016-10-071-0/+11
| | | | | | | | | | | | | | | | | | | | | | | | | | Master startup can fail when ec2 transparently reallocates the block storage, causing etcd writes to temporarily fail. Retry failures blindly just once to allow time for this transient condition to to resolve and for systemd to restart the master (which will eventually succeed). https://github.com/coreos/etcd/issues/3864 https://github.com/openshift/origin/issues/6065 https://github.com/openshift/origin/issues/6447
* | set defaults for debug_level in template and taskJustin Cook2016-10-111-1/+1
|/
* Check if openshift_master_ingress_ip_network_cidr is definedMathias Merscher2016-10-041-1/+1
| | | | Signed-off-by: Mathias Merscher <Mathias.Merscher@dg-i.net>
* allow networkConfig.ingressIPNetworkCIDRs to be configuredMathias Merscher2016-10-041-0/+3
| | | | Signed-off-by: Mathias Merscher <Mathias.Merscher@dg-i.net>
* Suppress more warnings.Andrew Butcher2016-09-281-0/+4
|
* tweak logicJason DeTiberus2016-09-261-1/+1
|
* test fix for systemd changesScott Dodson2016-09-261-1/+2
|
* Fix master service status changed fact.Andrew Butcher2016-09-211-1/+5
|
* Preserve AWS options in sysconfig files.Devan Goodwin2016-08-261-1/+46
| | | | | | | | | | These could exist from 3.1 releases or manual edits, and were getting wiped out in all variants of the master sysconfig files as we template these. This change uses the established pattern of grepping them out if they're there, then reapplying them if the user has not configured the cloudprovider framework already.
* Don't use openshift_env for cloud provider facts.Andrew Butcher2016-08-256-12/+12
|
* Merge pull request #2358 from abutcher/service-serving-certsAndrew Butcher2016-08-251-0/+7
|\ | | | | enable service-serving-cert-signer by default
generated by cgit v1.2.1 (git 2.18.0) at 2024-05-16 11:33:43 +0000