Max Gautier
0107dbc29c
[2.23] kubernetes: hashes for 1.27.8, 1.26.11, default to 1.27.8 ( #10706 )
...
* kubernetes: add hashes for 1.27.8, 1.26.11
Make 1.27.8 default.
* Convert exoscale tf provider to new version (#10646 )
This is untested. It passes terraform validate to un-broke the CI.
* Update 0040-verify-settings.yml (#10699 )
remove embedded template
---------
Co-authored-by: piwinkler <9642809+piwinkler@users.noreply.github.com>
2023-12-11 17:26:26 +01:00
Yoshitaka Fujii
89a0f515c7
Added terraform support for NIFCLOUD ( #10227 )
...
* Add NIFCLOUD
* Add tf-validate-nifcloud in gitlab-ci
2023-06-19 02:02:22 -07:00
Vasubabu
feeea7e512
Enabled module_name in provider meta for Equinix ( #10044 )
2023-05-21 17:32:19 -07:00
Qasim Mehmood
ab6d204641
Remove deprecated provider, fix flatcar configs, enable CI tests and refactor hetzner terraform ( #10002 )
...
* Remove deprecated provider and fix flatcar configs
* Refactor for DRYness
* Add missing line endings
* Enable tests for hetzner terraform in CI
* Add missing inventory for CI tests
2023-05-07 17:15:16 -07:00
Maxime Leroy
9a8bf0e38a
fix(contrib/terraform): do not add access_ip when not wanted ( #9869 )
2023-03-21 20:56:36 -07:00
Maxime Leroy
659fa0eddc
feat(contrib/terraform): support custom ssh port ( #9836 )
2023-03-02 18:24:58 -08:00
Maxime Leroy
835811ec84
fix(contrib/terraform): do not set ssh port ( #9828 )
...
Signed-off-by: Maxime Leroy <19607336+maxime1907@users.noreply.github.com>
2023-03-01 18:50:55 -08:00
Robin Wallace
5bb54ef6a2
upcloud: add server groups and target port for lb ( #9831 )
2023-02-27 17:21:15 -08:00
Sean Knight
8a2e1189fb
correct typo hhttps -> https ( #9763 )
2023-02-07 17:55:10 -08:00
Bas
2c93c997cf
pre-commit autocorrected files ( #9750 )
2023-02-06 01:35:16 -08:00
Florian Ruynat
1f36df666d
Update fedora35 vagrant box url ( #9699 )
...
* Update fedora35 vagrant box url
* Update Terraform to 1.3.7
* Update Vagrant to 2.3.4
2023-01-26 21:28:25 -08:00
Cristian Calin
64dbf2e429
update equinox terraform code to fix kubespray CI ( #9702 )
...
* add terraform lock files to ignore list
* move contrib/terraform/metal to contrib/terraform/equinix to reflect upstream change
2023-01-26 21:24:25 -08:00
Mathieu Parent
58fe1a0ed6
Terraform vsphere cleanup ( #9672 )
...
* contrib/terraform/vsphere: mark vsphere_password as sensitive
Signed-off-by: Mathieu Parent <math.parent@gmail.com>
* contrib/terraform/vsphere: remove unused modules
Signed-off-by: Mathieu Parent <math.parent@gmail.com>
2023-01-16 23:50:32 -08:00
Mathieu Parent
c80bb0007a
contrib/terraform/gcp: allow extra ingress firewalls ( #9658 )
...
Signed-off-by: Mathieu Parent <math.parent@gmail.com>
Signed-off-by: Mathieu Parent <math.parent@gmail.com>
2023-01-16 23:46:32 -08:00
Fredrik Liv
ffad2152b3
Added override variable, additional server groups and cloudinit config ( #9452 )
2023-01-05 04:16:00 -08:00
florianow
8267922a16
add flatcar support for Hetzner ( #9618 )
2022-12-27 18:17:28 -08:00
Aveline
f7d0fb9ab2
rename ansible groups to use _ instead of ( #9569 )
2022-12-13 21:19:34 -08:00
Brian King
44a4f356ba
Terraform Openstack: replace deprecated template provider with supported cloudinit provider ( #9536 )
2022-12-06 18:28:38 -08:00
Fredrik Liv
07ad5ecfce
[upcloud] Fixed issue where DNS would be blocked while using allowlist ( #9510 )
...
* [upcloud] Fixed issue where DNS would be blocked while using allowlist
* Missed one NTP rule
2022-11-30 21:36:26 -08:00
Ayoub Ed-dafali
4cd949c7e1
Add missing zone input variable - Exoscale ( #9495 )
...
* Add missing zone input variable
* Fix terraform formatting
2022-11-24 16:30:04 -08:00
Hugo Blom
4189008245
Try fix issue where ports doesn't get an ip assigned ( #9345 )
...
Co-authored-by: Jonathan Süssemilch Poulain <jonathan@sofiero.net>
2022-09-30 00:48:29 -07:00
Hugo Blom
49196c2ec4
[Openstack] Add bastion_allowed_ports to allow custom security group rules on bastion node ( #9336 )
...
* make it possible to configure bastion remote ips
* Update README.md
2022-09-27 22:03:35 -07:00
rptaylor
5bce39abf8
add optional parameter extra_groups for k8s_nodes ( #9211 )
2022-09-13 00:13:08 -07:00
Cristian Calin
e6976a54e1
add pre-commit hook to facilitate local testing ( #9158 )
...
* add pre-commit hook configuration
* add tmp.md to .gitignore
* describe the use of pre-commit hook in CONTRIBUTING.md
* fix docs/integration.md errors identified by markdownlint
* fix docs/<file>.md errors identified by markdownlint
* docs/azure-csi.md
* docs/azure.md
* docs/bootstrap-os.md
* docs/calico.md
* docs/debian.md
* docs/fcos.md
* docs/vagrant.md
* docs/gcp-lb.md
* docs/kubernetes-apps/registry.md
* docs/setting-up-your-first-cluster.md
* docs/vagrant.md
* docs/vars.md
* fix contrib/<file>.md errors identified by markdownlint
2022-08-24 06:54:03 -07:00
Robin Ramquist
f4daf5856e
Subnet setup order fix & Number of master nodes syntax fix ( #9159 )
...
* Subnet setup order fix & Number of master nodes syntax fix
* Mistake fix!
* Formatting
2022-08-18 00:56:43 -07:00
Ajarmar
0d32c0d92b
[upcloud] Add firewall default deny policy and port allowlisting ( #9058 )
2022-07-19 00:18:06 -07:00
Robin Wallace
bf477c24d3
Chnage from deprecated variable
2022-06-22 00:37:44 -07:00
Kenichi Omichi
0e6b727e53
Update docs for using venv ( #8842 )
...
Due many patterns of Linux distributions, it is difficult to install
ansible dependencies as system-wide stably.
Apart of Kubespray doc[1] recommends to use venv to avoid such issue,
and this applies venv usage to the other parts of the doc.
[1]: https://github.com/kubernetes-sigs/kubespray/blob/master/docs/setting-up-your-first-cluster.md#set-up-kubespray
2022-05-19 23:39:12 -07:00
Cyclinder
dc8ad78206
fix: incorrect condition type ( #8822 )
...
Signed-off-by: cyclinder qifeng.guo@daocloud.io
2022-05-13 14:09:56 -07:00
Ajarmar
b9e5b0cb53
UpCloud server plan, firewall, load balancer integration ( #8758 )
...
* [upcloud] add option to use preconfigured cpu/mem plan
* [upcloud] add option to use firewall rules for API server/SSH access
* [upcloud] add option to use managed load balancer
2022-05-11 10:15:03 -07:00
Robin Wallace
fe66121287
[Openstack] master foreach and fixes ( #8709 )
...
* [openstack] fix for new network modules
* [openstack] for-each master nodes
2022-05-03 08:51:56 -07:00
Cristian Calin
6cc5b38a2e
[terraform] use modern day equinix metal provider ( #8748 )
...
* [terraform] use modern day equinix metal provider
* [CI] ensure packet job tests metal
2022-04-27 10:34:13 -07:00
Olle Larsson
a4f26dc8f3
[terraform/openstack] add safespring to provider list ( #8735 )
2022-04-25 04:43:39 -07:00
SOPHAL HONG
3d4baea01c
Add tag to AWS VPC subnets for automatic subnet discovery by load balancers or ingress controllers ( #8705 )
2022-04-12 10:05:23 -07:00
Robin Wallace
d7254eead6
UpCloud integration ( #8653 )
...
* [upcloud] add upcloud csi-driver
* Option to use ansible_host as api ip for kubueconfig
2022-04-11 15:13:23 -07:00
Anthony Bible
9dced7133c
Fixes for Hetzner terraform and Hetzner Cloud ( #8702 )
...
* - add ability to specify the network_zone in hetzner terraform
- Export the network id from hetzner terraform the the generated inventory.ini
* - Add with_networks variable to allow different deployments of hcloud controller manager
- Add network id to hcloud controller secret (added via the inventory)
- Don't include extra_args if it's not set
2022-04-11 10:26:06 -07:00
Christian Rohmann
90883e76af
terrform/openstack: Fix templating of ansible_ssh_common_args in no_floating.yml if used as TF module ( #8646 )
...
* terraform/openstack: Use path.module for ansible_bastion_template.txt
This extends on #7643 by not using path.root, but switching to path.module
to allow use of the terraform code as a module itself. This change then keeps
all calls to the template file stable even for that use-case.
* terraform/openstack: Make sed calls fail on errors
By using a single call with two replacements to use of sed will create proper exit codes
and allowing for errors to be recognized by terraform.
2022-03-29 00:07:11 -07:00
Mathieu Parent
299a9ae7ba
terraform/gcp: Add ingress_whitelist ( #8590 )
...
Also, do not create unneeded resources (target pools are charged and should
only be created when needed).
2022-03-02 16:52:46 -08:00
SOPHAL HONG
6d683c98a3
[Terraform-AWS] Replace CLB with NLB ( #8578 )
2022-02-24 23:53:54 -08:00
Mathieu Parent
31d4a38f09
terraform/gcp: Allow to change extra disk types ( #8524 )
2022-02-15 00:22:02 -08:00
SOPHAL HONG
a6a79883b7
Fix: Error when creating subnets more than AZ ( #8516 )
2022-02-14 13:12:30 -08:00
Cristian Calin
7759494c85
[terraform][openstack] allow disabling port_security at port level ( #8455 )
...
Use openstack_networking_port_v2 and openstack_networking_floatingip_associate_v2
to attach floating ips. This gives us more flexibility on disabling port security
when binding instances directly on provider networks in private cloud scenario.
2022-02-02 08:50:22 -08:00
Mathieu Parent
958bca8800
terraform/gcp: Do not create unused subnetworks and Upgrade to latest google provider ( #8497 )
...
* terraform/gcp: Do not create unused subnetworks
By default terraform creates a subnetwork in each 39 regions
* terraform/gcp: Upgrade to latest google provider
... where "one of source_tags, source_ranges, or source_service_accounts must be defined"
2022-02-01 09:14:11 -08:00
Mathieu Parent
3562d3378b
terraform/gcp: Allow to use preemptible VM instances ( #8480 )
2022-01-31 00:30:24 -08:00
ceesios
d86a3b962c
Proposing fixes for contrib/terraform/vsphere/ #8436 ( #8441 )
...
* fixes issues in vSphere Terraform contrib. #8436
* fix formatting
* add variables to the main module and document changes
* add missing newline
2022-01-25 05:24:30 -08:00
Mathieu Parent
d64b341b38
Update terraform GCP to Ubuntu 20.04 (latest LTS) ( #8463 )
...
* Fix terraform Warning
Version constraints inside provider configuration blocks are deprecated
Terraform 0.13 and earlier allowed provider version constraints inside the
provider configuration block, but that is now deprecated and will be removed
in a future version of Terraform. To silence this warning, move the provider
version constraint into the required_providers block.
* Fix terraform Warning: Quoted references are deprecated
* terraform: Update GCP Ubuntu to latest LTS
2022-01-25 01:22:30 -08:00
Cristian Calin
ea44d64511
[contrib] terraform openstack: allow disabling port security ( #8410 )
2022-01-14 12:58:32 -08:00
moss2k13
135c9b29a7
contrib: add cloud-init support for terraform vms ( #8394 )
...
* contrib: add cloud-init support for terraform vms
This change enables instance customization via cloud-init,
for example: additional CA certs, custom SSH access etc.
* contrib: update docs for terraform cloud-init
* contrib: disable yamllint in cloud-init
require-starting-space rule breaks cloud-init header
* contrib: documenation formatting
* yamllint: disable comments related checks
* docs: markdown formatting
2022-01-11 05:23:16 -08:00
Robin Wallace
38c12288f1
Add option for boot volume type for k8s node ( #8256 )
2021-11-30 12:59:01 -08:00
Olle Larsson
fe0810aff9
Add option to set different server group policy for etcd, node, and master server ( #8046 )
2021-11-22 02:53:09 -08:00