summaryrefslogtreecommitdiffstats
path: root/playbooks/common/openshift-cluster
Commit message (Collapse)AuthorAgeFilesLines
* Merge pull request #6064 from mtnbikenc/consolidate-initScott Dodson2017-11-1619-526/+12
|\ | | | | Playbook Consolidation - Initialization
| * Playbook Consolidation - InitializationRussell Teague2017-11-1519-526/+12
| |
* | Merge pull request #5500 from vshn/projtmpl1OpenShift Merge Robot2017-11-161-0/+2
|\ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Add role to configure project request template The OpenShift master role already supports changing the master configuration to refer to a project template, but there's no way to manage that template directly. This role adds the necessary code to generate a default template and to apply customizations using the "yedit" module. We need to configure custom services and endpoints in every project. The project request template enables us to do that automatically in every project and we'd like to manage the template using Ansible.
| * | Add role to configure project request templateMichael Hanselmann2017-10-231-0/+2
| | | | | | | | | | | | | | | | | | | | | | | | The OpenShift master role already supports changing the master configuration to refer to a project template, but there's no way to manage that template directly. This role adds the necessary code to generate a default template and to apply customizations using the "yedit" module.
* | | Merge pull request #6084 from mgugino-upstream-stage/combine-master-upgradeOpenShift Merge Robot2017-11-155-302/+6
|\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Combine master upgrade play with role Currently, there are plays importing tasks directly from openshift_master role. This has caused numerous bugs and code duplicaiton in the past. This commit combines the upgrade into openshift_master role utilizing include_role syntax.
| * | | Combine master upgrade play with roleMichael Gugino2017-11-096-312/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently, there are plays importing tasks directly from openshift_master role. This has caused numerous bugs and code duplicaiton in the past. This commit combines the upgrade into openshift_master role utilizing include_role syntax.
* | | | Merge pull request #5968 from mgugino-upstream-stage/version-scrubScott Dodson2017-11-156-15/+3
|\ \ \ \ | |_|_|/ |/| | | Removed old version code
| * | | Removed old version codeMichael Gugino2017-11-146-15/+3
| | | | | | | | | | | | | | | | | | | | | | | | This commit removes any references to versions < 1.5/3.5 We assume the version is always greater than or equal to 1.5/3.5.
* | | | Merge pull request #6068 from mtnbikenc/remove-old-upgradesOpenShift Merge Robot2017-11-1418-1224/+0
|\ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Remove upgrade playbooks for 3.3 through 3.5 Release branches should be used for older upgrades.
| * | | | Remove upgrade playbooks for 3.3 through 3.5Russell Teague2017-11-0818-1224/+0
| | |/ / | |/| |
* | | | Merge pull request #6115 from sdodson/disable-auth-migrationScott Dodson2017-11-142-20/+24
|\ \ \ \ | |_|/ / |/| | | Allow disabling authorization migration check
| * | | Allow disabling authorization migration checkScott Dodson2017-11-142-20/+24
| | | |
* | | | Merge pull request #5948 from mtnbikenc/checkpoint-timesOpenShift Merge Robot2017-11-146-36/+60
|\ \ \ \ | |/ / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Add execution times to checkpoint status This PR adds execution times to the checkpoint status report at the end of an installer playbook run. - Checkpoint plays now use `all` host group to avoid using an undefined host group during the Initialization phase as well as maintaining the need to collect inventory vars for host group conditionals - `run_once: true` is used to limit the execution to only one host - `installer_phase_*` data is now stored as a dict so multiple data points can be stored for that phase - Documentation updated ``` INSTALLER STATUS *************************************************************** Initialization : Complete (0:02:14) Health Check : Complete (0:01:10) etcd Install : Complete (0:02:01) Master Install : Complete (0:11:43) Master Additional Install : Complete (0:00:54) Node Install : Complete (0:14:11) Hosted Install : Complete (0:03:28) ```
| * | | Add execution times to checkpoint statusRussell Teague2017-10-316-36/+60
| | | |
* | | | First pass at v3.8 supportScott Dodson2017-11-137-0/+430
| |/ / |/| |
* | | Fix preupgrade authorization objects are in sync minor versionsMichael Gugino2017-11-082-1/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently, we check that upgrade target is less than 3.8, but this will break for minor upgrades. This commit set's a fact early in the upgrade process to deterime what the currently installed version on the first master is. This fact is used to determine if our currently installed version is less than 3.7. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1508301
* | | Remove debug code that was mistakenly committedZohar Galor2017-11-081-9/+0
| | | | | | | | | | | | | | | This also causes a failure if nfs block is not defined, because the condition is missing. Anyway this shouldn't have been committed.
* | | Merge pull request #6031 from abutcher/temporary-servinginfo-clientcaOpenShift Merge Robot2017-11-061-5/+9
|\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Temporarily set master servingInfo.clientCA as client-ca-bundle.crt during rolling CA redeployment. This PR temporarily configures master `servingInfo.clientCA` as `client-ca-bundle.crt` during CA redeploy so that clients referencing the old OpenShift CA can continue to function until all cluster certificates have been replaced and `servingInfo.clientCA` is reset to `ca.crt`. `client-ca-bundle.crt` is a new bundle created by the `openshift_ca` role which contains old and new OpenShift CA certificates. https://bugzilla.redhat.com/show_bug.cgi?id=1509124 Ref: https://bugzilla.redhat.com/show_bug.cgi?id=1493276
| * | | Temporarily set master servingInfo.clientCA as client-ca-bundle.crt during ↵Andrew Butcher2017-11-061-5/+9
| | | | | | | | | | | | | | | | rolling CA redeployment.
* | | | Fix preupgrade authorization objects are in syncMichael Gugino2017-11-061-1/+1
|/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently, this task is executed based on openshift_version. openshift_version is based on the upgrade target, thus not the currently install versions. This commit ensures that the task executes as intended. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1508301
* | | Merge pull request #5959 from sdodson/sc-asb-tsb-on-by-defaultOpenShift Merge Robot2017-11-031-1/+1
|\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Enable SC, ASB, TSB by default It was decided that SC, ASB, and TSB should be installed by default. This will not install the components on an upgrade from 3.6 to 3.7, that will require that you run the sc playbook on your own. Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1508085
| * | | Enable SC, ASB, TSB by defaultScott Dodson2017-11-021-1/+1
| | | | | | | | | | | | | | | | This will not install the components on an upgrade.
* | | | Merge pull request #5995 from ashcrow/docker-gc-daemonsetOpenShift Merge Robot2017-11-032-0/+12
|\ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. openshift_hosted: Add docker-gc Two new inventory variables have been created: - ``openshift_crio_enable_docker_gc``: Enable docker_gc daemon set - ``openshift_crio_docker_gc_node_selector``: Optional dictionary to use node selector When ``openshift_crio_enable_docker_gc`` and ``openshift_use_crio`` are both true then ``docker_gc`` daemonset will be created along with adding a ``docker-gc`` sa.
| * | | | openshift_hosted: Add docker-gcSteve Milner2017-11-022-0/+12
| |/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Two new inventory variables have been created: - openshift_crio_enable_docker_gc: Enable docker_gc daemon set - openshift_crio_docker_gc_node_selector: Optional dictionary to use node selector When openshift_crio_enable_docker_gc and openshift_use_crio are both true then dockergc daemonset will be created along with adding a dockergc sa. Signed-off-by: Steve Milner <smilner@redhat.com>
* / / / Correct groupname during upgrade_control_plane playMichael Gugino2017-11-031-1/+1
|/ / / | | | | | | | | | | | | | | | | | | | | | | | | Currently, upgrade_control_plane calls tasks meant for master on etcd group. This commit corrects the groupname. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1508734
* | | Merge pull request #5722 from qinpingli/sc_openstackOpenShift Merge Robot2017-10-311-1/+1
|\ \ \ | |/ / |/| | | | | | | | | | | | | | Automatic merge from submit-queue. Create default storageclass for cloudprovider openstack With this patch, a default storageclass will be created on openstack cloudprovider after installation.
| * | Create default storageclass for cloudprovider openstackPing Qin2017-10-271-1/+1
| | |
* | | Merge pull request #5823 from mtnbikenc/fix-initialize_factsScott Dodson2017-10-271-0/+1
|\ \ \ | | | | | | | | Force include_role to static for loading openshift_facts module
| * | | Force include_role to static for loading openshift_facts moduleRussell Teague2017-10-191-0/+1
| | | |
* | | | Merge pull request #5742 from mtnbikenc/refactor-checksScott Dodson2017-10-271-27/+1
|\ \ \ \ | | | | | | | | | | 1504593 Refactor health check playbooks
| * | | | Refactor health check playbooksRussell Teague2017-10-121-27/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Standardize play/tasks naming - Move install checks to separate playbook with checkpointing - Correct 'docker_storage' tags
* | | | | Merge pull request #5875 from mgugino-upstream-stage/fix-upgrade-config-hookMichael Gugino2017-10-273-2/+6
|\ \ \ \ \ | |_|_|/ / |/| | | | | | | | | | | | | | This previously passed all CI tests, merge queue broke last night. Merging, this is a blocker bug.
| * | | | Add master config upgrade hook to upgrade-all playsMichael Gugino2017-10-253-2/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently, in 1.5, 3.6, 1.7 upgrade-all plays, control plane upgrades are not called correctly. This commit ensures the master config hook is appropriately applied during these upgrades to match the steps in control plane only upgrades. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1486054
* | | | | Merge pull request #5850 from mgugino-upstream-stage/remove-base-packageScott Dodson2017-10-256-16/+0
|\ \ \ \ \ | | | | | | | | | | | | Remove base package install
| * | | | | Remove base package installMichael Gugino2017-10-236-16/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently, base atomic-openshift package is installed for versioning. This doesn't appear to be necessary. This commit removes this step. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1504196
* | | | | | Merge pull request #5810 from zgalor/refactor-prom-entryOpenShift Merge Robot2017-10-251-0/+20
|\ \ \ \ \ \ | |_|/ / / / |/| | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Add installer checkpoint for prometheus
| * | | | | Add installer checkpoint for prometheusZohar Galor2017-10-191-0/+20
| | |_|/ / | |/| | | | | | | | | | | | | Add checkpoint steps for full cluster install and individual entry point playbook.
* | | | | Merge pull request #5814 from mgugino-upstream-stage/docker-auth-upgradesOpenShift Merge Robot2017-10-241-0/+6
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Enable oreg_auth credential replace during upgrades Currently, upgrades run a docker image pull prior to upgrading masters and nodes for containerized installs. If using a secure registry, and a user wishes to upgrade their credentials due to expiry, the image pull will fail. This commit ensures docker login credentials are updated during upgrades, if necessary. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1503995
| * | | | | Enable oreg_auth credential replace during upgradesMichael Gugino2017-10-191-0/+6
| |/ / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently, upgrades run a docker image pull prior to upgrading masters and nodes for containerized installs. If using a secure registry, and a user wishes to upgrade their credentials due to expiry, the image pull will fail. This commit ensures docker login credentials are updated during upgrades, if necessary. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1503995
* | | | | Merge pull request #5838 from ↵Jan Chaloupka2017-10-241-1/+1
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | ingvagabund/strip-dash-when-comparing-versions-python3 strip dash when comparing version with Python3
| * | | | | strip dash when comparing version with Python3Jan Chaloupka2017-10-231-1/+1
| | |_|_|/ | |/| | |
* | | | | Merge pull request #5796 from mgugino-upstream-stage/journald-masters-upgradesOpenShift Merge Robot2017-10-241-0/+3
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Ensure upgrades apply latest journald settings Currently, existing clusters might not have journald configurations applied. This may result in a rate- limiting of important log messages on openshift-masters. This commit ensures that journald settings are applied during the upgrade process openshif-masters. Fixes: https://github.com/openshift/openshift-ansible/issues/5642
| * | | | | Ensure upgrades apply latest journald settingsMichael Gugino2017-10-181-0/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently, existing clusters might not have journald configurations applied. This may result in a rate- limiting of important log messages on openshift-masters. This commit ensures that journald settings are applied during the upgrade process openshif-masters. Fixes: https://github.com/openshift/openshift-ansible/issues/5642
* | | | | | Merge pull request #5569 from ganhuang/all-hosts-no-proxyScott Dodson2017-10-231-1/+13
|\ \ \ \ \ \ | | | | | | | | | | | | | | Generate internal hostnames of no_proxy
| * | | | | | Generate all internal hostnames of no_proxyGan Huang2017-10-191-1/+13
| | |_|/ / / | |/| | | |
* | | | | | Merge pull request #5832 from sdodson/bz1504525Scott Dodson2017-10-232-6/+13
|\ \ \ \ \ \ | | | | | | | | | | | | | | Correct version gates on policy reconciliation and add retries
| * | | | | | verstion_gte seems unreliable on containerized installsScott Dodson2017-10-202-6/+7
| | | | | | |
| * | | | | | Retry reconcile in case of error and give up eventuallySimo Sorce2017-10-201-0/+6
| |/ / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Handles spurious failures and does not get mad if it just cannot do it. Signed-off-by: Simo Sorce <simo@redhat.com>
* | | | | | Merge pull request #5845 from ingvagabund/check-correct-master-servicesScott Dodson2017-10-231-12/+25
|\ \ \ \ \ \ | |_|_|_|/ / |/| | | | | Check if the master service is non-ha or not
| * | | | | Check if the master service is non-ha or notJan Chaloupka2017-10-231-12/+25
| | |_|/ / | |/| | |
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-05 07:45:36 +0000