summaryrefslogtreecommitdiffstats
path: root/roles
Commit message (Collapse)AuthorAgeFilesLines
* Merge pull request #6531 from abutcher/bootstrap-slurp-userOpenShift Merge Robot2018-01-161-15/+2
|\ | | | | | | | | Automatic merge from submit-queue. Use master group ansible_ssh_user to pull bootstrap kubeconfig
| * Setup master groups in order to use the master group's ansible_ssh_user to ↵Andrew Butcher2018-01-091-15/+2
| | | | | | | | pull bootstrap kubeconfig.
* | Merge pull request #6739 from vrutkovs/metrics-console-mktempScott Dodson2018-01-161-5/+5
|\ \ | | | | | | Web Console: use a different var for asset config
| * | Web Console: use a different var for asset configVadim Rutkovsky2018-01-161-5/+5
| | | | | | | | | | | | | | | This ensures mktemp from metrics role doesn't get reset when update_asset_config is being included
* | | Merge pull request #6706 from spadgett/console-rbacOpenShift Merge Robot2018-01-162-4/+10
|\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Add console RBAC template Required for https://github.com/openshift/origin-web-console-server/pull/18 Origin changes: https://github.com/openshift/origin/pull/18075 /assign @sdodson /cc @deads2k
| * | | Add console RBAC templateSamuel Padgett2018-01-112-4/+10
| | | |
* | | | Merge pull request #6536 from shawn-hurley/adding-asb-permissionsScott Dodson2018-01-161-0/+9
|\ \ \ \ | | | | | | | | | | Adding ability for ASB to interact with network resources.
| * | | | adding ability to add network policy objects.Shawn Hurley2018-01-051-0/+3
| | | | |
| * | | | adding ability to interact with network resources.Shawn Hurley2017-12-201-0/+6
| | | | |
* | | | | Merge pull request #6741 from sdodson/bz1534905Scott Dodson2018-01-161-1/+0
|\ \ \ \ \ | |_|_|/ / |/| | | | Remove tuned-profiles from list of master packages upgraded
| * | | | Remove tuned-profiles from list of master packages upgradedScott Dodson2018-01-161-1/+0
| | | | |
* | | | | Merge pull request #6610 from mazzystr/update_awsec2_root_volOpenShift Merge Robot2018-01-151-0/+8
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Update to AWS EC2 root vol size so that Health Check tasks pass AWS EC2s under the ASG and LaunchConfig are deployed with the default 10gb root vol size. Heath Checks fail because / filesystem and /var directory is too small. Health Check wants a minimum of 40Gb. 10Gb is just too small for server operations in general. Let's increase to 100Gb. Cost increase for additional EBS storage will be minimal and give plenty of elbow room for normal server operations.
| * | | | | Update to AWS EC2 root vol size so that Health Check tasks passChris Callegari2018-01-081-0/+8
| | | | | |
* | | | | | Merge pull request #6692 from abutcher/cluster-operatorOpenShift Merge Robot2018-01-152-17/+15
|\ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Separate ELB & S3 from master node group provisioning Moved s3 and elb provisioning out of `roles/openshift_aws/tasks/provisioning.yml` and into their own playbooks. These playbooks are now included in the provision playbook and in a WIP infrastructure playbook we intend to run up front in place of prerequisites. @kwoodson what are your thoughts on something like this?
| * | | | | | Move s3 & elb provisioning into their own playbooks s.t. they are applied ↵Andrew Butcher2018-01-102-17/+15
| | | | | | | | | | | | | | | | | | | | | | | | | | | | outside of the openshift_aws master provisioning tasks.
* | | | | | | Merge pull request #6103 from dulek/dulek/cni-daemonOpenShift Merge Robot2018-01-153-23/+355
|\ \ \ \ \ \ \ | |_|_|/ / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Configure Kuryr CNI daemon Kuryr CNI daemon is scalability improvement that moves watching K8s API and VIF plugging into a separate entity called kuryr-daemon. Kuryr-daemon will run in a container and serve requests from kuryr-driver.
| * | | | | | Configure Kuryr CNI daemonMichał Dulko2017-12-223-23/+355
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Kuryr CNI daemon is scalability improvement that moves watching K8s API and VIF plugging into a separate entity called kuryr-daemon. Kuryr-daemon will run in a container and serve requests from kuryr-driver.
* | | | | | | Merge pull request #6426 from danwinship/cleanup-ipamScott Dodson2018-01-131-0/+6
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | Clean up host-local IPAM data while nodes are drained
| * | | | | | | Clean up host-local IPAM data while nodes are drainedDan Winship2017-12-141-0/+6
| | | | | | | |
* | | | | | | | Merge pull request #6705 from jpeeler/add-async-bindings-varScott Dodson2018-01-132-1/+6
|\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | Add var for catalog controller to enable async bindings
| * | | | | | | | Add var for controller to enable async bindingsJeff Peeler2018-01-112-1/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | New variable is called 'openshift_service_catalog_async_bindings_enabled' and is set to false by default. Also, fixed a typo in the controller template for the DaemonSet update strategy, which caused the strategy to be set to OnDelete rather than the intended RollingUpdate.
* | | | | | | | | Merge pull request #6702 from sdodson/image-stream-syncScott Dodson2018-01-1121-45/+87
|\ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | Update latest image streams and templates
| * | | | | | | | | Update latest image streams and templatesScott Dodson2018-01-1121-45/+87
| | | | | | | | | |
* | | | | | | | | | Merge pull request #6614 from mgugino-upstream-stage/plugins-to-lib-utilsScott Dodson2018-01-1140-66/+349
|\ \ \ \ \ \ \ \ \ \ | |_|_|_|_|_|_|_|/ / |/| | | | | | | | | Move more plugins to lib_utils
| * | | | | | | | | Move more plugins to lib_utilsMichael Gugino2018-01-1040-66/+349
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This commit continues moving plugins into lib_utils. This commit does not move any plugins for add-on roles such as logging and metrics.
* | | | | | | | | | Merge pull request #6607 from tomassedovic/fix-cinder-pvOpenShift Merge Robot2018-01-112-0/+7
|\ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Fix Cinder Persistent Volume support This documents how to use Cinder-backed persistent volumes with OpenStack. It needed a change to the dynamic inventory because the "openstack" cloudprovider plugin does actually require internal name resolution -- and the `openshift_hostname` value must match the name of the Nova server. In addition, we need to be able to specify the V2 of the Cinder API for now as described in: https://github.com/openshift/openshift-docs/issues/5730
| * | | | | | | | | | Allow using server names in openstack dynamic invTomas Sedovic2018-01-101-0/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When deploying on OpenStack with internal DNS configured, this will set `openshift_hostname` to the Nova server name instead of its IP address. Without those two matching, the OpenStack cloud provider configuration will fail and the OpenShift nodes will not start.
| * | | | | | | | | | Add blockstorage version for openstackJoel Pearson2018-01-101-0/+4
| | | | | | | | | | |
* | | | | | | | | | | Merge pull request #6687 from jpeeler/sc-cert-fixOpenShift Merge Robot2018-01-113-6/+4
|\ \ \ \ \ \ \ \ \ \ \ | |_|_|_|/ / / / / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Update deployment and apiserver with new certs Since new certificates are generated for every run, the apiservice caBundle needs updating in order to have the on disk CA match what is in Kubernetes. Because the secrets are updated, the daemonset needs to do a rolling update for the apiserver to pick up the new certs. Implemented here is an added annotation to the api server such that the update occurs automatically when the CA is changed. --- There may be a better way to make the rolling update occur without adding an annotation, such as within ansible itself (I just didn't know how to do that). Also, I think that probably the controller needs to be updated too in order to ensure staying in sync with the api server. Edit: I did not think that doing "oc apply" would cause the daemonset to pick up a change since the yaml may be exactly the same, but if it does then the annotation part can definitely be changed.
| * | | | | | | | | | Update deployment and apiserver with new certsJeff Peeler2018-01-103-6/+4
| | |/ / / / / / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Since new certificates are generated for every run, the apiservice caBundle needs updating in order to have the on disk CA match what is in Kubernetes. Because the secrets are updated, the daemonset needs to do a rolling update for the api server to pick up the new certs. Implemented here is an added annotation to the api server such that the update occurs automatically when the CA is changed.
* | | | | | | | | | Merge pull request #6623 from vrutkovs/avoid-repoquery-on-containerizedOpenShift Merge Robot2018-01-111-9/+16
|\ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. docker_upgrade_check: skip repoquery calls on containerized setups Fedora/CentOS Atomic hosts don't have repoquery installed - also there is no need to check available Docker rpms in the repos for Atomic Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1527256 Note, that this solution is pretty naive - a better idea would be splitting the playbooks for rpm and containerized installs for clarity
| * | | | | | | | | | docker_upgrade_check: skip repoquery calls on containerized setupsVadim Rutkovsky2018-01-051-9/+16
| | |_|_|_|_|_|/ / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fedora/CentOS Atomic hosts don't have repoquery installed - also there is no need to check available Docker rpms in the repos for Atomic
* | | | | | | | | | Merge pull request #6697 from sdodson/bz1532961Scott Dodson2018-01-116-0/+734
|\ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | Add missing v3.9 gluster templates
| * | | | | | | | | | Add missing v3.9 gluster templatesScott Dodson2018-01-106-0/+734
| | |_|_|/ / / / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes Bug 1532961
* | | | | | | | | | Merge pull request #6670 from nhosoi/allowed_versions2Scott Dodson2018-01-115-10/+10
|\ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | Bug 1527178 - installation of logging stack failed: Invalid version s…
| * | | | | | | | | | Bug 1527178 - installation of logging stack failed: Invalid version ↵Noriko Hosoi2018-01-095-10/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | specified for Elasticsearch openshift_logging_{curator,elasicsearch,fluentd,kibana,mux}/vars/main.yml: - adding "3_9" to __allowed_.*_versions - bumping __latest_.*_version to "3_9"
* | | | | | | | | | | Merge pull request #6675 from spadgett/default-node-selectorScott Dodson2018-01-111-0/+2
|\ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | Bug 1532787 - Add empty node selector to openshift-web-console namespace
| * | | | | | | | | | | Bug 1532787 - Add empty node selector to openshift-web-console namespaceSamuel Padgett2018-01-091-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1532787
* | | | | | | | | | | | Merge pull request #6679 from vrutkovs/logging-py3-dictsOpenShift Merge Robot2018-01-112-4/+4
|\ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. logging: fix jinja filters to support py3
| * | | | | | | | | | | | logging: fix jinja filters to support py3Vadim Rutkovsky2018-01-102-4/+4
| | |_|_|_|_|/ / / / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Since py3 returns `dict_items` for dict.keys() call instead of a list, it should be converted into a list for compatibility Signed-off-by: Vadim Rutkovsky <vrutkovs@redhat.com>
* | | | | | | | | | | | Merge pull request #6579 from ↵OpenShift Merge Robot2018-01-101-0/+1
|\ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | coreydaley/trello_1435_default_tolerations_via_buildconfig_defaulter Automatic merge from submit-queue. Ability to specify default tolerations via the buildconfig defaulter Trello: https://trello.com/c/LNxlMjjU/1435-5-ability-to-specify-default-tolerations-via-the-buildconfig-defaulter-builds Dependent on: https://github.com/openshift/origin/pull/17955
| * | | | | | | | | | | | Ability to specify override tolerations via the buildconfig overriderCorey Daley2018-01-091-0/+1
| | |/ / / / / / / / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Trello: https://trello.com/c/LNxlMjjU/1435-5-ability-to-specify-default-tolerations-via-the-buildconfig-defaulter-builds
* | | | | | | | | | | | Merge pull request #5726 from ewolinetz/update_tsb_imageScott Dodson2018-01-102-2/+2
|\ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | Updating tsb image names
| * | | | | | | | | | | | Updating tsb image names and templateEric Wolinetz2018-01-092-2/+2
| | | | | | | | | | | | |
* | | | | | | | | | | | | Merge pull request #6605 from vrutkovs/failure_summary_convert_msg_to_stringScott Dodson2018-01-101-0/+2
|\ \ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | failure_summary: make sure msg is always a string
| * | | | | | | | | | | | | failure_summary: make sure msg is always a stringVadim Rutkovsky2018-01-041-0/+2
| | |_|_|_|_|/ / / / / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Some tasks may return a dict in the msg. In that case `stringc` will fail to colorize it (with "AttributeError: <msg type> object has no attribute 'split'" error.
* | | | | | | | | | | | | Merge pull request #6683 from mgugino-upstream-stage/fix-pkg_versionScott Dodson2018-01-103-8/+8
|\ \ \ \ \ \ \ \ \ \ \ \ \ | |_|_|_|_|_|/ / / / / / / |/| | | | | | | | | | | | Add defaults for openshift_pkg_version
| * | | | | | | | | | | | Add defaults for openshift_pkg_versionMichael Gugino2018-01-103-8/+8
| | |_|_|_|_|/ / / / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This variable may or may not be defined by the users. During deployments, it will be set to '-{{ openshift_version }}' if undefined. During upgrades, it will remain undefined. This commit ensures that if the variable is undefined, empty strings '' are set.
* | | | | | | | | | | | Merge pull request #6693 from kwoodson/hosted_var_fixScott Dodson2018-01-101-1/+1
|\ \ \ \ \ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | Fixing openshift_hosted variable.
| * | | | | | | | | | | | Fixing openshift_hosted variable.Kenny Woodson2018-01-101-1/+1
| | | | | | | | | | | | |