42 lines
2.0 KiB
YAML
42 lines
2.0 KiB
YAML
---
|
|
- name: Helm | Make sure HELM_HOME directory exists
|
|
file: path={{ helm_home_dir }} state=directory
|
|
|
|
- name: Helm | Set up helm launcher
|
|
include_tasks: "install_{{ helm_deployment_type }}.yml"
|
|
|
|
- name: Helm | Lay Down Helm Manifests (RBAC)
|
|
template:
|
|
src: "{{item.file}}"
|
|
dest: "{{kube_config_dir}}/{{item.file}}"
|
|
with_items:
|
|
- {name: tiller, file: tiller-sa.yml, type: sa}
|
|
- {name: tiller, file: tiller-clusterrolebinding.yml, type: clusterrolebinding}
|
|
register: manifests
|
|
when: dns_mode != 'none' and inventory_hostname == groups['kube-master'][0] and rbac_enabled
|
|
|
|
- name: Helm | Apply Helm Manifests (RBAC)
|
|
kube:
|
|
name: "{{item.item.name}}"
|
|
namespace: "kube-system"
|
|
kubectl: "{{bin_dir}}/kubectl"
|
|
resource: "{{item.item.type}}"
|
|
filename: "{{kube_config_dir}}/{{item.item.file}}"
|
|
state: "latest"
|
|
with_items: "{{ manifests.results }}"
|
|
when: dns_mode != 'none' and inventory_hostname == groups['kube-master'][0] and rbac_enabled
|
|
|
|
- name: Helm | Install/upgrade helm
|
|
command: >
|
|
{{ bin_dir }}/helm init --upgrade --tiller-image={{ tiller_image_repo }}:{{ tiller_image_tag }} --tiller-namespace=kube-system
|
|
{% if helm_skip_refresh %} --skip-refresh{% endif %}
|
|
{% if helm_stable_repo_url is defined %} --stable-repo-url {{ helm_stable_repo_url }}{% endif %}
|
|
{% if rbac_enabled %} --service-account=tiller{% endif %}
|
|
{% if tiller_node_selectors is defined %} --node-selectors {{ tiller_node_selectors }}{% endif %}
|
|
{% if tiller_override is defined %} --override {{ tiller_override }}{% endif %}
|
|
when: (helm_container is defined and helm_container.changed) or (helm_task_result is defined and helm_task_result.changed)
|
|
|
|
- name: Helm | Set up bash completion
|
|
shell: "umask 022 && {{ bin_dir }}/helm completion bash >/etc/bash_completion.d/helm.sh"
|
|
when: ((helm_container is defined and helm_container.changed) or (helm_task_result is defined and helm_task_result.changed)) and not ansible_os_family in ["CoreOS", "Container Linux by CoreOS"]
|