David
01c86af77f
Make proxy protocol in upcloud LB configurable ( #10971 )
2024-03-22 16:08:59 -07:00
jaszil
e250bb65bb
[Terraform-Openstack] Add optional Octavia loadbalancer for Master Nodes ( #10924 )
...
* terraform-openstack add optional master lb
* remove unnecessary spaces
* remove unnecessary spaces
* fix ci warnings
2024-02-19 17:42:21 -08:00
Max Gautier
667bb2c913
Remove holmsten from approver (contrib/terraform) ( #10936 )
...
As they're no longer in kubernetes-sigs org.
2024-02-19 09:46:29 -08:00
Alin Dragomir
b34b7e0385
Add new OpenStack Cloud for terraform ( #10910 )
2024-02-19 02:52:51 -08:00
raviranjan
200b630319
Adding egress IPv6 for node-local-dns queries
2024-02-05 16:57:13 +01:00
R. P. Taylor
6497ecc767
workaround for terraform bug related to no_floating and extra_groups ( #10764 )
2024-01-22 17:28:28 +01:00
R. P. Taylor
54fb75f0e0
don't overwrite changes to openstack allowed_address_pairs ( #10760 )
2024-01-22 17:28:19 +01:00
ERIK
78eb74c252
Pin equinix provider version ( #10809 )
...
Signed-off-by: bo.jiang <bo.jiang@daocloud.io>
2024-01-19 05:55:41 +01:00
Max Gautier
d583d331b5
Convert exoscale tf provider to new version ( #10646 )
...
This is untested. It passes terraform validate to un-broke the CI.
2023-11-24 17:22:55 +01:00
Arthur Outhenin-Chalandre
7ba85710ad
Update to ansible 2.15 ( #10481 )
...
* ansible: upgrade to version >= 2.15.5
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
* tests: update requirements
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
* contrib/openstack: fix wrong gitignore pattern
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
* tests: add missing tzdata requirement
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
* tests: remove some molecules tests
Those doesn't work in Ansible 2.15. Ansible can't load builtin now
apparently and these tests are not worth it.
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
---------
Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
2023-11-15 09:39:09 +01:00
Mustafa Mertcan Çam
e52d70885e
terraform-aws: variable driven ami selection ( #10520 )
...
* modify variables.tf to accept AMI attributes via variables
* update README to guide users on utilizing variable-driven AMI configuration
* fix markdown lint error
2023-10-19 05:09:22 +02:00
Robin Wallace
5194d8306e
upcloud: update terraform provider strict anti-affinity ( #10474 )
2023-10-07 04:45:41 +02:00
Fredrik Liv
d669b93c4f
terraform-openstack: Added possibility to enable dhcp flag critical on one interface ( #10446 )
...
* terraform-openstack: Updated extra partitions to use empty list by default
* terraform-openstack: Added possibility to enable dhcp flag critical on one interface
2023-09-20 03:22:01 -07:00
Yoshitaka Fujii
89a0f515c7
Added terraform support for NIFCLOUD ( #10227 )
...
* Add NIFCLOUD
* Add tf-validate-nifcloud in gitlab-ci
2023-06-19 02:02:22 -07:00
Vasubabu
feeea7e512
Enabled module_name in provider meta for Equinix ( #10044 )
2023-05-21 17:32:19 -07:00
Qasim Mehmood
ab6d204641
Remove deprecated provider, fix flatcar configs, enable CI tests and refactor hetzner terraform ( #10002 )
...
* Remove deprecated provider and fix flatcar configs
* Refactor for DRYness
* Add missing line endings
* Enable tests for hetzner terraform in CI
* Add missing inventory for CI tests
2023-05-07 17:15:16 -07:00
Maxime Leroy
9a8bf0e38a
fix(contrib/terraform): do not add access_ip when not wanted ( #9869 )
2023-03-21 20:56:36 -07:00
Maxime Leroy
659fa0eddc
feat(contrib/terraform): support custom ssh port ( #9836 )
2023-03-02 18:24:58 -08:00
Maxime Leroy
835811ec84
fix(contrib/terraform): do not set ssh port ( #9828 )
...
Signed-off-by: Maxime Leroy <19607336+maxime1907@users.noreply.github.com>
2023-03-01 18:50:55 -08:00
Robin Wallace
5bb54ef6a2
upcloud: add server groups and target port for lb ( #9831 )
2023-02-27 17:21:15 -08:00
Sean Knight
8a2e1189fb
correct typo hhttps -> https ( #9763 )
2023-02-07 17:55:10 -08:00
Bas
2c93c997cf
pre-commit autocorrected files ( #9750 )
2023-02-06 01:35:16 -08:00
Florian Ruynat
1f36df666d
Update fedora35 vagrant box url ( #9699 )
...
* Update fedora35 vagrant box url
* Update Terraform to 1.3.7
* Update Vagrant to 2.3.4
2023-01-26 21:28:25 -08:00
Cristian Calin
64dbf2e429
update equinox terraform code to fix kubespray CI ( #9702 )
...
* add terraform lock files to ignore list
* move contrib/terraform/metal to contrib/terraform/equinix to reflect upstream change
2023-01-26 21:24:25 -08:00
Mathieu Parent
58fe1a0ed6
Terraform vsphere cleanup ( #9672 )
...
* contrib/terraform/vsphere: mark vsphere_password as sensitive
Signed-off-by: Mathieu Parent <math.parent@gmail.com>
* contrib/terraform/vsphere: remove unused modules
Signed-off-by: Mathieu Parent <math.parent@gmail.com>
2023-01-16 23:50:32 -08:00
Mathieu Parent
c80bb0007a
contrib/terraform/gcp: allow extra ingress firewalls ( #9658 )
...
Signed-off-by: Mathieu Parent <math.parent@gmail.com>
Signed-off-by: Mathieu Parent <math.parent@gmail.com>
2023-01-16 23:46:32 -08:00
Fredrik Liv
ffad2152b3
Added override variable, additional server groups and cloudinit config ( #9452 )
2023-01-05 04:16:00 -08:00
florianow
8267922a16
add flatcar support for Hetzner ( #9618 )
2022-12-27 18:17:28 -08:00
Aveline
f7d0fb9ab2
rename ansible groups to use _ instead of ( #9569 )
2022-12-13 21:19:34 -08:00
Brian King
44a4f356ba
Terraform Openstack: replace deprecated template provider with supported cloudinit provider ( #9536 )
2022-12-06 18:28:38 -08:00
Fredrik Liv
07ad5ecfce
[upcloud] Fixed issue where DNS would be blocked while using allowlist ( #9510 )
...
* [upcloud] Fixed issue where DNS would be blocked while using allowlist
* Missed one NTP rule
2022-11-30 21:36:26 -08:00
Ayoub Ed-dafali
4cd949c7e1
Add missing zone input variable - Exoscale ( #9495 )
...
* Add missing zone input variable
* Fix terraform formatting
2022-11-24 16:30:04 -08:00
Hugo Blom
4189008245
Try fix issue where ports doesn't get an ip assigned ( #9345 )
...
Co-authored-by: Jonathan Süssemilch Poulain <jonathan@sofiero.net>
2022-09-30 00:48:29 -07:00
Hugo Blom
49196c2ec4
[Openstack] Add bastion_allowed_ports to allow custom security group rules on bastion node ( #9336 )
...
* make it possible to configure bastion remote ips
* Update README.md
2022-09-27 22:03:35 -07:00
rptaylor
5bce39abf8
add optional parameter extra_groups for k8s_nodes ( #9211 )
2022-09-13 00:13:08 -07:00
Cristian Calin
e6976a54e1
add pre-commit hook to facilitate local testing ( #9158 )
...
* add pre-commit hook configuration
* add tmp.md to .gitignore
* describe the use of pre-commit hook in CONTRIBUTING.md
* fix docs/integration.md errors identified by markdownlint
* fix docs/<file>.md errors identified by markdownlint
* docs/azure-csi.md
* docs/azure.md
* docs/bootstrap-os.md
* docs/calico.md
* docs/debian.md
* docs/fcos.md
* docs/vagrant.md
* docs/gcp-lb.md
* docs/kubernetes-apps/registry.md
* docs/setting-up-your-first-cluster.md
* docs/vagrant.md
* docs/vars.md
* fix contrib/<file>.md errors identified by markdownlint
2022-08-24 06:54:03 -07:00
Robin Ramquist
f4daf5856e
Subnet setup order fix & Number of master nodes syntax fix ( #9159 )
...
* Subnet setup order fix & Number of master nodes syntax fix
* Mistake fix!
* Formatting
2022-08-18 00:56:43 -07:00
Ajarmar
0d32c0d92b
[upcloud] Add firewall default deny policy and port allowlisting ( #9058 )
2022-07-19 00:18:06 -07:00
Robin Wallace
bf477c24d3
Chnage from deprecated variable
2022-06-22 00:37:44 -07:00
Kenichi Omichi
0e6b727e53
Update docs for using venv ( #8842 )
...
Due many patterns of Linux distributions, it is difficult to install
ansible dependencies as system-wide stably.
Apart of Kubespray doc[1] recommends to use venv to avoid such issue,
and this applies venv usage to the other parts of the doc.
[1]: https://github.com/kubernetes-sigs/kubespray/blob/master/docs/setting-up-your-first-cluster.md#set-up-kubespray
2022-05-19 23:39:12 -07:00
Cyclinder
dc8ad78206
fix: incorrect condition type ( #8822 )
...
Signed-off-by: cyclinder qifeng.guo@daocloud.io
2022-05-13 14:09:56 -07:00
Ajarmar
b9e5b0cb53
UpCloud server plan, firewall, load balancer integration ( #8758 )
...
* [upcloud] add option to use preconfigured cpu/mem plan
* [upcloud] add option to use firewall rules for API server/SSH access
* [upcloud] add option to use managed load balancer
2022-05-11 10:15:03 -07:00
Robin Wallace
fe66121287
[Openstack] master foreach and fixes ( #8709 )
...
* [openstack] fix for new network modules
* [openstack] for-each master nodes
2022-05-03 08:51:56 -07:00
Cristian Calin
6cc5b38a2e
[terraform] use modern day equinix metal provider ( #8748 )
...
* [terraform] use modern day equinix metal provider
* [CI] ensure packet job tests metal
2022-04-27 10:34:13 -07:00
Olle Larsson
a4f26dc8f3
[terraform/openstack] add safespring to provider list ( #8735 )
2022-04-25 04:43:39 -07:00
SOPHAL HONG
3d4baea01c
Add tag to AWS VPC subnets for automatic subnet discovery by load balancers or ingress controllers ( #8705 )
2022-04-12 10:05:23 -07:00
Robin Wallace
d7254eead6
UpCloud integration ( #8653 )
...
* [upcloud] add upcloud csi-driver
* Option to use ansible_host as api ip for kubueconfig
2022-04-11 15:13:23 -07:00
Anthony Bible
9dced7133c
Fixes for Hetzner terraform and Hetzner Cloud ( #8702 )
...
* - add ability to specify the network_zone in hetzner terraform
- Export the network id from hetzner terraform the the generated inventory.ini
* - Add with_networks variable to allow different deployments of hcloud controller manager
- Add network id to hcloud controller secret (added via the inventory)
- Don't include extra_args if it's not set
2022-04-11 10:26:06 -07:00
Christian Rohmann
90883e76af
terrform/openstack: Fix templating of ansible_ssh_common_args in no_floating.yml if used as TF module ( #8646 )
...
* terraform/openstack: Use path.module for ansible_bastion_template.txt
This extends on #7643 by not using path.root, but switching to path.module
to allow use of the terraform code as a module itself. This change then keeps
all calls to the template file stable even for that use-case.
* terraform/openstack: Make sed calls fail on errors
By using a single call with two replacements to use of sed will create proper exit codes
and allowing for errors to be recognized by terraform.
2022-03-29 00:07:11 -07:00
Mathieu Parent
299a9ae7ba
terraform/gcp: Add ingress_whitelist ( #8590 )
...
Also, do not create unneeded resources (target pools are charged and should
only be created when needed).
2022-03-02 16:52:46 -08:00