summaryrefslogtreecommitdiffstats
path: root/roles
Commit message (Collapse)AuthorAgeFilesLines
* Merge pull request #6687 from jpeeler/sc-cert-fixOpenShift Merge Robot2018-01-113-6/+4
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Update deployment and apiserver with new certs Since new certificates are generated for every run, the apiservice caBundle needs updating in order to have the on disk CA match what is in Kubernetes. Because the secrets are updated, the daemonset needs to do a rolling update for the apiserver to pick up the new certs. Implemented here is an added annotation to the api server such that the update occurs automatically when the CA is changed. --- There may be a better way to make the rolling update occur without adding an annotation, such as within ansible itself (I just didn't know how to do that). Also, I think that probably the controller needs to be updated too in order to ensure staying in sync with the api server. Edit: I did not think that doing "oc apply" would cause the daemonset to pick up a change since the yaml may be exactly the same, but if it does then the annotation part can definitely be changed.
| * Update deployment and apiserver with new certsJeff Peeler2018-01-103-6/+4
| | | | | | | | | | | | | | | | | | | | | | Since new certificates are generated for every run, the apiservice caBundle needs updating in order to have the on disk CA match what is in Kubernetes. Because the secrets are updated, the daemonset needs to do a rolling update for the api server to pick up the new certs. Implemented here is an added annotation to the api server such that the update occurs automatically when the CA is changed.
* | Merge pull request #6623 from vrutkovs/avoid-repoquery-on-containerizedOpenShift Merge Robot2018-01-111-9/+16
|\ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. docker_upgrade_check: skip repoquery calls on containerized setups Fedora/CentOS Atomic hosts don't have repoquery installed - also there is no need to check available Docker rpms in the repos for Atomic Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1527256 Note, that this solution is pretty naive - a better idea would be splitting the playbooks for rpm and containerized installs for clarity
| * | docker_upgrade_check: skip repoquery calls on containerized setupsVadim Rutkovsky2018-01-051-9/+16
| | | | | | | | | | | | | | | Fedora/CentOS Atomic hosts don't have repoquery installed - also there is no need to check available Docker rpms in the repos for Atomic
* | | Merge pull request #6697 from sdodson/bz1532961Scott Dodson2018-01-116-0/+734
|\ \ \ | | | | | | | | Add missing v3.9 gluster templates
| * | | Add missing v3.9 gluster templatesScott Dodson2018-01-106-0/+734
| | | | | | | | | | | | | | | | Fixes Bug 1532961
* | | | Merge pull request #6670 from nhosoi/allowed_versions2Scott Dodson2018-01-115-10/+10
|\ \ \ \ | | | | | | | | | | Bug 1527178 - installation of logging stack failed: Invalid version s…
| * | | | Bug 1527178 - installation of logging stack failed: Invalid version ↵Noriko Hosoi2018-01-095-10/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | specified for Elasticsearch openshift_logging_{curator,elasicsearch,fluentd,kibana,mux}/vars/main.yml: - adding "3_9" to __allowed_.*_versions - bumping __latest_.*_version to "3_9"
* | | | | Merge pull request #6675 from spadgett/default-node-selectorScott Dodson2018-01-111-0/+2
|\ \ \ \ \ | | | | | | | | | | | | Bug 1532787 - Add empty node selector to openshift-web-console namespace
| * | | | | Bug 1532787 - Add empty node selector to openshift-web-console namespaceSamuel Padgett2018-01-091-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1532787
* | | | | | Merge pull request #6679 from vrutkovs/logging-py3-dictsOpenShift Merge Robot2018-01-112-4/+4
|\ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. logging: fix jinja filters to support py3
| * | | | | | logging: fix jinja filters to support py3Vadim Rutkovsky2018-01-102-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Since py3 returns `dict_items` for dict.keys() call instead of a list, it should be converted into a list for compatibility Signed-off-by: Vadim Rutkovsky <vrutkovs@redhat.com>
* | | | | | | Merge pull request #6579 from ↵OpenShift Merge Robot2018-01-101-0/+1
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | coreydaley/trello_1435_default_tolerations_via_buildconfig_defaulter Automatic merge from submit-queue. Ability to specify default tolerations via the buildconfig defaulter Trello: https://trello.com/c/LNxlMjjU/1435-5-ability-to-specify-default-tolerations-via-the-buildconfig-defaulter-builds Dependent on: https://github.com/openshift/origin/pull/17955
| * | | | | | | Ability to specify override tolerations via the buildconfig overriderCorey Daley2018-01-091-0/+1
| | |/ / / / / | |/| | | | | | | | | | | | | | | | | | | Trello: https://trello.com/c/LNxlMjjU/1435-5-ability-to-specify-default-tolerations-via-the-buildconfig-defaulter-builds
* | | | | | | Merge pull request #5726 from ewolinetz/update_tsb_imageScott Dodson2018-01-102-2/+2
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | Updating tsb image names
| * | | | | | | Updating tsb image names and templateEric Wolinetz2018-01-092-2/+2
| | | | | | | |
* | | | | | | | Merge pull request #6605 from vrutkovs/failure_summary_convert_msg_to_stringScott Dodson2018-01-101-0/+2
|\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | failure_summary: make sure msg is always a string
| * | | | | | | | failure_summary: make sure msg is always a stringVadim Rutkovsky2018-01-041-0/+2
| | |_|_|_|_|/ / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Some tasks may return a dict in the msg. In that case `stringc` will fail to colorize it (with "AttributeError: <msg type> object has no attribute 'split'" error.
* | | | | | | | Merge pull request #6683 from mgugino-upstream-stage/fix-pkg_versionScott Dodson2018-01-103-8/+8
|\ \ \ \ \ \ \ \ | |_|_|_|_|_|/ / |/| | | | | | | Add defaults for openshift_pkg_version
| * | | | | | | Add defaults for openshift_pkg_versionMichael Gugino2018-01-103-8/+8
| | |_|_|_|_|/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This variable may or may not be defined by the users. During deployments, it will be set to '-{{ openshift_version }}' if undefined. During upgrades, it will remain undefined. This commit ensures that if the variable is undefined, empty strings '' are set.
* | | | | | | Merge pull request #6693 from kwoodson/hosted_var_fixScott Dodson2018-01-101-1/+1
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | Fixing openshift_hosted variable.
| * | | | | | | Fixing openshift_hosted variable.Kenny Woodson2018-01-101-1/+1
| | | | | | | |
* | | | | | | | Merge pull request #6423 from dav1x/add-vsphere-providerScott Dodson2018-01-104-0/+25
|\ \ \ \ \ \ \ \ | |/ / / / / / / |/| | | | | | | Add vsphere provider
| * | | | | | | lint issuesDavis Phillips2017-12-111-1/+1
| | | | | | | |
| * | | | | | | add template and vsphere.confDavis Phillips2017-12-112-0/+21
| | | | | | | |
| * | | | | | | add vsphere cloud providersDavis Phillips2017-12-112-0/+4
| | | | | | | |
* | | | | | | | Merge pull request #6638 from nak3/add-keycheck-logging-factsLuke Meyer2018-01-101-2/+2
|\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | Add key existing check to collect facts for rolebidings
| * | | | | | | | Add key check for facts_for_clusterrolebindingsKenjiro Nakayama2018-01-091-1/+1
| | | | | | | | |
| * | | | | | | | Add key existing check to collect facts for rolebidingsKenjiro Nakayama2018-01-091-1/+1
| | | | | | | | |
* | | | | | | | | Merge pull request #6609 from nkinder/openshift_logging_mux-interfaceOpenShift Merge Robot2018-01-103-1/+5
|\ \ \ \ \ \ \ \ \ | |_|_|/ / / / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Don't hardcode the network interface in the openshift_logging_mux role The openshift_logging_mux role hardcodes the 'eth0' interface alias for determining the IP address to use for incoming external client connections. This will cause the playbook to fail with an undefined variable error on systems where an 'eth0' interface does not exist. This patch changes the default IP address for external connections to use the 'ansible_default_ipv4' fact. It also allows this to be overridden by a new 'openshift_logging_mux_external_address' variable.
| * | | | | | | | Don't hardcode the network interface in the openshift_logging_mux roleNathan Kinder2018-01-043-1/+5
| | |_|/ / / / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The openshift_logging_mux role hardcodes the 'eth0' interface alias for determining the IP address to use for incoming external client connections. This will cause the playbook to fail with an undefined variable error on systems where an 'eth0' interface does not exist. This patch changes the default IP address for external connections to use the 'ansible_default_ipv4' fact. It also allows this to be overridden by a new 'openshift_logging_mux_external_address' variable.
* | | | | | | | Merge pull request #6553 from ↵Michael Gugino2018-01-101-24/+14
|\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | mgugino-upstream-stage/node-reduce-package-commands Install node packages in one task instead of 3
| * | | | | | | | Install node packages in one task instead of 3Michael Gugino2018-01-041-24/+14
| |/ / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This commit reduces the number of package tasks from 3 to 1.
* | | | | | | | Merge pull request #6674 from mgugino-upstream-stage/remove-becomes2Scott Dodson2018-01-1015-36/+19
|\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | Remove become statements
| * | | | | | | | Chmod temp dirs created on localhostMichael Gugino2018-01-094-6/+16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | After remove become:no statements on local_action tasks, we need to ensure that the proper file permssions are applied to local temp directories. This reason for this is that the 'fetch' module does not use 'become' for the localhost, just the remote host. Additionally, users may not wish for the localhost to become during a fetch. local_action will execute with whatever permissions are specified in inventory or via cli.
| * | | | | | | | Remove become statementsMichael Gugino2018-01-0913-30/+3
| | |_|_|_|_|_|/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This commit removes become:no statements that break the installer in various ways.
* | | | | | | | Merge pull request #6671 from mgugino-upstream-stage/upgrade-cp-scopeOpenShift Merge Robot2018-01-109-234/+158
|\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Limit host group scope on control-plane upgrades This commit limits common init code to exclude oo_nodes_to_config during upgrade_control_plane runs.
| * | | | | | | | Refactor version and move some checks into sanity_checks.pyMichael Gugino2018-01-099-234/+158
| |/ / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This commit changes how we handle openshift_version role. Most of the version initialization code is only run on the first master now. All other hosts have values set from the master. Aftwards, we run some basic RPM queries to ensure that the correct version is available on the other nodes. Containerized needs to do their own image checks elsewhere.
* | | | | | | | Merge pull request #6602 from ewolinetz/es_full_cluster_restartOpenShift Merge Robot2018-01-106-1/+117
|\ \ \ \ \ \ \ \ | |_|_|_|_|_|_|/ |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Adding logic to do a full cluster restart if we are incrementing our … …major versions of ES This will help with the upgrade from 2.x to 5.x for ES, it also fixes something I came across with the handler on 3.7 where it checks the prior deployed version of the ES pod rather than the new one.
| * | | | | | | Adding logic to disable and reenable external communication to ES during ↵Eric Wolinetz2018-01-052-2/+35
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | full restart
| * | | | | | | Adding logic to do a full cluster restart if we are incrementing our major ↵Eric Wolinetz2018-01-036-1/+84
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | versions of ES
* | | | | | | | Merge pull request #5853 from imcsk8/flannel-iptablesOpenShift Merge Robot2018-01-092-0/+14
|\ \ \ \ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Add iptables rules for flannel [WIP] When using flannel there are iptables rules that need to be added as stated here: https://access.redhat.com/documentation/en-us/reference_architectures/2017/html-single/deploying_red_hat_openshift_container_platform_3.4_on_red_hat_openstack_platform_10/#run_ansible_installer Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1493955
| * | | | | | | | Add iptables save handlerIvan Chavero2018-01-081-0/+4
| | | | | | | | |
| * | | | | | | | Fix wrong indentationIvan Chavero2017-10-271-2/+2
| | | | | | | | |
| * | | | | | | | Fix yaml indentationIvan Chavero2017-10-271-2/+2
| | | | | | | | |
| * | | | | | | | Add iptables rules for flannelIvan Chavero2017-10-231-0/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | [WIP] When using flannel there are iptables rules that need to be added as stated here: https://access.redhat.com/documentation/en-us/reference_architectures/2017/html-single/deploying_red_hat_openshift_container_platform_3.4_on_red_hat_openstack_platform_10/#run_ansible_installer Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1493955
* | | | | | | | | Merge pull request #6658 from mgugino-upstream-stage/containerized_boolsOpenShift Merge Robot2018-01-094-4/+4
|\ \ \ \ \ \ \ \ \ | |_|_|_|_|_|_|_|/ |/| | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. ensure containerized bools are cast
| * | | | | | | | ensure containerized bools are castMichael Gugino2018-01-084-4/+4
| | |_|_|_|_|_|/ | |/| | | | | |
* | | | | | | | Merge pull request #6646 from giuseppe/fix-container-engine-authOpenShift Merge Robot2018-01-091-0/+6
|\ \ \ \ \ \ \ \ | |_|_|_|/ / / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. container-engine: move registry_auth.yml before pull so that the atomic pull takes into account the credentials if required. Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
| * | | | | | | container-engine: move registry_auth.yml before pullGiuseppe Scrivano2018-01-081-0/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | so that the atomic pull takes into account the credentials if required. Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-01 13:31:00 +0000