From 20bd6569756ac46d2c010039c14eff0562e404f8 Mon Sep 17 00:00:00 2001 From: rongzhang Date: Tue, 12 Jun 2018 04:50:52 +0000 Subject: [PATCH] Reconfigure kube-proxy to access kube-apiserver via the LB(kubeadm) --- roles/kubernetes/kubeadm/tasks/main.yml | 16 +++++++++++++++- 1 file changed, 15 insertions(+), 1 deletion(-) diff --git a/roles/kubernetes/kubeadm/tasks/main.yml b/roles/kubernetes/kubeadm/tasks/main.yml index 6223beb72..4d16e8b26 100644 --- a/roles/kubernetes/kubeadm/tasks/main.yml +++ b/roles/kubernetes/kubeadm/tasks/main.yml @@ -7,7 +7,6 @@ {%- else -%} {{ kube_apiserver_endpoint }} {%- endif %} - when: not is_kube_master tags: - facts @@ -61,6 +60,21 @@ when: not is_kube_master and kubeadm_discovery_address != kube_apiserver_endpoint notify: restart kubelet +- name: Update server field in kube-proxy kubeconfig + shell: >- + {{ bin_dir }}/kubectl get configmap kube-proxy -n kube-system -o yaml + | sed 's#server:.*#server:\ {{ kube_apiserver_endpoint }}#g' + | kubectl replace -f - + delegate_to: "{{groups['kube-master']|first}}" + run_once: true + when: is_kube_master and kubeadm_discovery_address != kube_apiserver_endpoint + +- name: Restart all kube-proxy pods to ensure that they load the new configmap + shell: "{{ bin_dir }}/kubectl delete pod -n kube-system -l k8s-app=kube-proxy" + delegate_to: "{{groups['kube-master']|first}}" + run_once: true + when: is_kube_master and kubeadm_discovery_address != kube_apiserver_endpoint + # FIXME(mattymo): Reconcile kubelet kubeconfig filename for both deploy modes - name: Symlink kubelet kubeconfig for calico/canal file: