summaryrefslogtreecommitdiffstats
path: root/playbooks/common
Commit message (Collapse)AuthorAgeFilesLines
* Merge pull request #5636 from ↵OpenShift Merge Robot2017-10-041-2/+2
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | mgugino-upstream-stage/limit-openshift-version-hosts Automatic merge from submit-queue. Limit hosts that run openshift_version role Currently, the openshift_version role is run against the oo_all_hosts group. This causes the dependencies, such as openshift_docker and docker, to be run against host groups that were not intended, such as nfs. This commit explicitly limits the openshift_version role to run only against masters, nodes, and etcd host groups. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1497144
| * Limit hosts that run openshift_version roleMichael Gugino2017-10-031-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | Currently, the openshift_version role is run against the oo_all_hosts group. This causes the dependencies, such as openshift_docker and docker, to be run against host groups that were not intended, such as nfs. This commit explicitly limits the openshift_version role to run only against masters, nodes, and etcd host groups. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1497144
* | Merge pull request #5643 from mtnbikenc/refactor-certificatesOpenShift Merge Robot2017-10-047-21/+15
|\ \ | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Refactor certificate playbooks for checkpointing The recent breakout of the certificate playbooks resulted in the certificate portion of the install to be outside of the component checkpoint. This PR moves the certificate playbooks inside their respective config.yml playbook. Removes an unused tasks file from the openshift_named_certificates role.
| * | Move node cert playbook into node config pathRussell Teague2017-10-032-2/+2
| | |
| * | Move master cert playbooks into master config pathRussell Teague2017-10-035-15/+9
| | |
| * | Move etcd cert playbooks into etcd config pathRussell Teague2017-10-032-4/+4
| |/
* | Merge pull request #5632 from ↵OpenShift Merge Robot2017-10-036-1/+9
|\ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | mgugino-upstream-stage/limit-version-upgrade-masters Automatic merge from submit-queue. Limit base-package install during master upgrades Currently, openshift_version installs RPM packages on all nodes and masters to aid in determining and setting the proper version across the cluster. This commit limits the host groups to only masters during upgrade_control_plane plays. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1495107
| * | Limit base-package install during master upgradesMichael Gugino2017-10-026-1/+9
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently, openshift_version installs RPM packages on all nodes and masters to aid in determining and setting the proper version across the cluster. This commit limits the host groups to only masters during upgrade_control_plane plays. Fixes: https://bugzilla.redhat.com/show_bug.cgi?id=1495107
* | | Merge pull request #5621 from abutcher/scaleup-portal-netOpenShift Merge Robot2017-10-031-1/+7
|\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Ensure openshift.common.portal_net updated during scaleup. https://bugzilla.redhat.com/show_bug.cgi?id=1451023 This fact is set in `initialize_facts.yml` at the beginning of scaleup so make sure that we update this fact if we read a different value from the first master's config file.
| * | | Ensure openshift.common.portal_net updated during scaleup.Andrew Butcher2017-10-021-1/+7
| | | |
* | | | Merge pull request #5630 from abutcher/etcd-scaleup-targetOpenShift Merge Robot2017-10-031-1/+1
|\ \ \ \ | |_|_|/ |/| | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Use etcd_ip when communicating with the cluster as a peer in etcd scaleup. We can't communicate with the hostname here since etcd will be [configured to listen to its IP address](https://github.com/openshift/openshift-ansible/blob/ead22bb1c3b6d6366502b14b97b7aae5605f8a58/roles/etcd/defaults/main.yaml#L69). Fixes https://github.com/openshift/openshift-ansible/issues/5620
| * | | Use etcd_ip when communicating with the cluster as a peer in etcd scaleup.Andrew Butcher2017-10-021-1/+1
| |/ /
* | | Merge pull request #5614 from mtnbikenc/fix-prometheusOpenShift Merge Robot2017-10-032-1/+1
|\ \ \ | |_|/ |/| | | | | | | | | | | | | | Automatic merge from submit-queue. Fix Prometheus byo entry point Adds the std_include.yml playbook to the byo entrypoint and moves the conditional install to the openshift_hosted.yml portion of an install.
| * | Fix Prometheus byo entry pointRussell Teague2017-10-022-1/+1
| |/
* / Separate certificate playbooks.Andrew Butcher2017-10-0217-157/+162
|/
* Merge pull request #5449 from abutcher/wildcard-router-cert-redeployOpenShift Merge Robot2017-09-305-118/+68
|\ | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Bug 1490186: Router pod not running after router certificates redeployment This carries https://github.com/openshift/openshift-ansible/pull/5417. More of the router cert redeploy logic could be moved into the `openshift_hosted` role with a flag. I may pull those over. https://bugzilla.redhat.com/show_bug.cgi?id=1490186
| * Include openshift_hosted when redeploying router certificates to handle ↵Andrew Butcher2017-09-291-71/+43
| | | | | | | | auto-generated wildcard certificate or custom openshift_hosted_router_certificate.
| * Check for router service annotations when redeploying router certificates.Andrew Butcher2017-09-291-3/+29
| |
| * Remove oo_option facts.Andrew Butcher2017-09-294-48/+0
| |
* | Merge pull request #5593 from ingvagabund/block-upgrade-if-etcd3-not-setJan Chaloupka2017-09-301-0/+4
|\ \ | | | | | | block 3.6->3.7 upgrade if storage backend is not set to etcd3
| * | block 3.6->3.7 upgrade if storage backend is not set to etcd3Jan Chaloupka2017-09-291-0/+4
| |/
* | Merge pull request #5565 from mgugino-upstream-stage/provisioning-centos-supportOpenShift Merge Robot2017-09-298-95/+152
|\ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Changes necessary to support AMI building Currently, AMI building does not work. These changes implement the necessary steps to build an AMI for usage as a 'golden node image'.
| * | Changes necessary to support AMI buildingMichael Gugino2017-09-288-95/+152
| | | | | | | | | | | | | | | | | | | | | Currently, AMI building does not work. These changes implement the necessary steps to build an AMI for usage as a 'golden node image'.
* | | move health-checks and control-plane-verification before excludersJan Chaloupka2017-09-295-28/+28
| |/ |/|
* | Merge pull request #5559 from mgugino-upstream-stage/readd-ent-registryOpenShift Merge Robot2017-09-281-9/+0
|\ \ | |/ |/| | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Migrate enterprise registry logic to docker role Currently, the enterprise registry to forcefully added in openshift_facts. Recently, the docker role has been modified to consume registry variables directly, bypassing openshift_facts. This commit cleans up unused code in openshift_facts, and migrates enterprise registry logic to the docker role. Fixes: https://github.com/openshift/openshift-ansible/issues/5557
| * Migrate enterprise registry logic to docker roleMichael Gugino2017-09-271-9/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | Currently, the enterprise registry to forcefully added in openshift_facts. Recently, the docker role has been modified to consume registry variables directly, bypassing openshift_facts. This commit cleans up unused code in openshift_facts, and migrates enterprise registry logic to the docker role. Fixes: https://github.com/openshift/openshift-ansible/issues/5557
* | Merge pull request #5508 from sdodson/disable-image-streamsOpenShift Merge Robot2017-09-282-2/+4
|\ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Allow examples management to be disabled By setting openshift_install_examples=false the image stream and quick start templates will not be installed https://trello.com/c/zLaSgxig/436-2-customers-need-a-way-to-opt-out-of-openshift-ansible-template-and-imagestream-mangement Fixes #5061
| * | Allow examples management to be disabledScott Dodson2017-09-222-2/+4
| | |
* | | Merge pull request #5527 from mtnbikenc/installer-checkpointOpenShift Merge Robot2017-09-2815-41/+498
|\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue. Installer checkpointing This pull request adds an Ansible callback plugin to allow for 'checkpointing' the status of the OpenShift-Ansible installer. The installer is divided up into phases and each phase will start with a status of 'Not Started'. As the phase is performed the status will be updated to 'In Progress' and finally 'Complete'. Should the install fail or complete successfully, the callback plugin will report the status of all phases after the PLAY RECAP. The INSTALLER STATUS is also written to the Ansible log file. https://trello.com/c/VNEvT2Fo Changes: - Added installer_checkpoint role and callback plugin - Added checkpoint 'Start' and 'End' plays to each installation phase Additional items related to enabling proper checkpointing: - Removed openshift_set_hostname and related task (related to 3.0) - Added openshift-hosted entry point playbook - Moved openshift metrics and logging out of openshift_hosted playbook - Moved API Aggregation play to master install Example playbook output: ``` <- snip -> PLAY RECAP *********************************************************************************************************************************** ec2-34-207-180-218.compute-1.amazonaws.com : ok=158 changed=16 unreachable=0 failed=0 ec2-52-87-169-12.compute-1.amazonaws.com : ok=469 changed=74 unreachable=0 failed=0 ec2-52-90-209-20.compute-1.amazonaws.com : ok=157 changed=17 unreachable=0 failed=0 localhost : ok=24 changed=0 unreachable=0 failed=0 INSTALLER STATUS ***************************************************************************************************************************** Initialization : Complete etcd Install : Complete NFS Install : Not Started Load balancer Install : Not Started Master Install : Complete Master Additional Install : Complete Node Install : Complete GlusterFS Install : Not Started Hosted Install : Complete Metrics Install : Not Started Logging Install : Not Started Service Catalog Install : Not Started ```
| * | | OpenShift-Ansible Installer CheckpointingRussell Teague2017-09-2715-41/+498
| | |/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | - Added installer_checkpoint role and callback plugin - Added checkpoint 'Start' and 'End' plays to each installation phase Additional items related to enabling proper checkpointing: - Removed openshift_set_hostname and related task (related to 3.0) - Added openshift-hosted entry point playbook - Moved openshift metrics and logging out of openshift_hosted playbook - Moved API Aggregation play to master install
* | | Merge pull request #5549 from ingvagabund/fix-etcd-backup-tagOpenShift Merge Robot2017-09-271-1/+1
|\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue evaluate etcd_backup_tag variable Bug: 1495545
| * | | evaluate etcd_backup_tag variableJan Chaloupka2017-09-271-1/+1
| |/ /
* | | Merge pull request #5518 from ingvagabund/set-quota-backend-bytes-explicitlyOpenShift Merge Robot2017-09-272-6/+6
|\ \ \ | |/ / |/| | | | | | | | | | | | | | Automatic merge from submit-queue set the etcd backend quota to 4GB by default Bug: 1492891
| * | Set the etcd backend quota to 4GB by defaultJan Chaloupka2017-09-262-6/+6
| | |
* | | Merge pull request #5470 from ingvagabund/consolidate-etcd-common-roleOpenShift Merge Robot2017-09-265-144/+74
|\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue Consolidate etcd common role The last PR toward a single etcd role
| * | | consolidate etcd_common roleJan Chaloupka2017-09-255-144/+74
| | | |
* | | | Merge pull request #5536 from ingvagabund/make-difference-output-list-3.7OpenShift Merge Robot2017-09-263-5/+5
|\ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue make difference filter output a list for Python3 Fixes: #3934
| * | | | make difference filter output a list for Python3Jan Chaloupka2017-09-263-5/+5
| | |/ / | |/| |
* | | | Merge pull request #5472 from mgugino-upstream-stage/split-hosted-v2OpenShift Merge Robot2017-09-269-63/+78
|\ \ \ \ | |/ / / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue Refactor openshift_hosted plays and role (version 2) Currently, openshift_hosted role duplicates some logic across separate task chains. This commit cleans up the openshift_hosted role and converts it to be primarily used with include_role to give better logic to the playbooks that utilize this role. This commit also refactors the playbook that calls various openshift_hosted roles into individual playbooks. This allows more granularity for advanced users. ----- This version of the patch set rolls back some of the refactoring (removal of running fact roles as a dependency) and focuses on just realigning the roles and plays. Original PR: https://github.com/openshift/openshift-ansible/pull/5284 Once this merges, I will close the old PR. Leaving it open for now for reference.
| * | | Refactor openshift_hosted plays and roleMichael Gugino2017-09-259-63/+78
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Currently, openshift_hosted role duplicates some logic across separate task chains. This commit cleans up the openshift_hosted role and converts it to be primarily used with include_role to give better logic to the playbooks that utilize this role. This commit also refactors the playbook that calls various openshift_hosted roles into individual playbooks. This allows more granularity for advanced users.
* | | | Merge pull request #5520 from ingvagabund/check-etcd-storage-backendOpenShift Merge Robot2017-09-252-0/+26
|\ \ \ \ | |_|/ / |/| | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue check if the storage backend is set to etcd3 before upgrading to 3.7 SSIA
| * | | check if the storage backend is set to etcd3 before upgrading to 3.7Jan Chaloupka2017-09-252-0/+26
| | | |
* | | | Merge pull request #5451 from ingvagabund/consolidate-etcd-upgradeOpenShift Merge Robot2017-09-253-15/+21
|\ \ \ \ | |_|/ / |/| | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue Consolidate etcd upgrade Consolidates `etcd_upgrade` into the `etcd` role.
| * | | consolidate etcd_upgrade roleJan Chaloupka2017-09-213-15/+21
| | | |
* | | | Merge pull request #5513 from lucastheisen/masterOpenShift Merge Robot2017-09-251-1/+1
|\ \ \ \ | |_|/ / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue resolve #5428: python-dbus not found `python-dbus` is not available in centos standard repos, but: > It appears python-dbus is just a reference to dbus-python and `dbus-python` is.
| * | | resolve #5428: python-dbus not foundLucas Theisen2017-09-231-1/+1
| | | |
* | | | Merge pull request #5495 from abutcher/ca-redeploy-expired-etcdOpenShift Merge Robot2017-09-244-31/+88
|\ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue Improve CA redeploy restart logic Expired etcd certificates require special casing around restarts in the certificate redeploy playbooks. When etcd certificates are expired we can't restart masters or nodes. We also can't simply restart etcd because peers also had expired certificates so we must start/stop etcd when we detect expired etcd certificates. `openshift-ca.yml`: * No longer restart master services when etcd certificates were previously expired. * No longer restart node services when master or etcd certificates were previously expired. `etcd-ca.yml`: * No longer restart master services when etcd certificates were previously expired. Tested using [gen_expired_tls.sh](https://gist.github.com/abutcher/bdd20b9d582675d89fb22658689c49e4) on one of my master/etcd hosts to ensure that restart logic changes caused us to skip the right restarts and do a full start/stop of etcd in the `redeploy-certificates.yml` and `redeploy-etcd-certificates.yml` playbooks. Note: When this happens with a cluster and you want to replace all certificates, you can run: `redeploy-etcd-ca.yml`, `redeploy-openshift-ca.yml` (which will both skip restarts) and then run `redeploy-certificates.yml` which will now be able to full/stop start etcd.
| * | | | Do a full stop/start when etcd certificates had expired.Andrew Butcher2017-09-212-0/+30
| | | | |
| * | | | Improve CA playbook restart logic and skip restarts when related services ↵Andrew Butcher2017-09-212-31/+58
| | | | | | | | | | | | | | | | | | | | had previously expired certificates.
* | | | | Merge pull request #5507 from abutcher/etcd-scaleup-urlsOpenShift Merge Robot2017-09-231-9/+11
|\ \ \ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Automatic merge from submit-queue Set master facts prior to adding new etcd client urls to master config. `openshift_master` role dependencies were moved out of the role in https://github.com/openshift/openshift-ansible/pull/5392 so we need to call `openshift_master_facts` prior to patching the master config in etcd scaleup. https://bugzilla.redhat.com/show_bug.cgi?id=1490304
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-02 19:11:19 +0000