---
- hosts: all
become: true
gather_facts: true
tasks:
- name: Install prerequisites
include_role:
name: deploy-env
tasks_from: prerequisites
- name: Create loopback devices
include_role:
name: deploy-env
tasks_from: loopback_devices
when:
- loopback_setup
- inventory_hostname in (groups['k8s_cluster'] | default([]))
- hosts: primary
become: false
gather_facts: true
vars:
home_dir: /home/zuul
ansible_user: zuul
tasks:
- name: Clone Kubespray repo
shell: |
set -x
git clone https://github.com/kubernetes-sigs/kubespray.git
cd kubespray
git checkout -b release-2.25
git reset --hard v2.25.0
args:
chdir: "{{ home_dir }}"
- name: Install Kubespray Python dependencies
become: true
pip:
chdir: "{{ home_dir }}/kubespray"
requirements: requirements.txt
- name: Prepare Kubespray inventory (not Zuul job inventory)
shell: |
#!/bin/bash
set -x
python3 contrib/inventory_builder/inventory.py {{ groups['k8s_cluster'] | map('extract', hostvars, ['ansible_default_ipv4', 'address']) | join(' ') }}
args:
chdir: "{{ home_dir }}/kubespray"
environment:
KUBE_MASTERS: "1"
- name: Prepare Kubespray variables
shell: |
#!/bin/bash
set -x
tee inventory/sample/group_vars/all/xxx.yaml <<EOF
ansible_user: {{ ansible_user }}
ansible_ssh_private_key_file: {{ home_dir }}/.ssh/id_rsa
ansible_ssh_extra_args: -o StrictHostKeyChecking=no
upstream_dns_servers:
- 8.8.8.8
override_system_hostname: false
EOF
tee inventory/sample/group_vars/k8s_cluster/xxx.yaml << EOF
kube_version: "{{ kube_version_kubespray }}"
kube_network_plugin: flannel
kube_service_addresses: "{{ kubeadm.service_cidr }}"
kube_pods_subnet: "{{ kubeadm.pod_network_cidr }}"
kubeconfig_localhost: true
kubeconfig_localhost_ansible_host: true
enable_nodelocaldns: false
resolvconf_mode: none
kube_override_hostname: >-
{% raw %}{{ ansible_hostname }}{% endraw %}
EOF
args:
chdir: "{{ home_dir }}/kubespray"
- name: Deploy Kubernetes
shell: |
#!/bin/bash
set -x
ansible-playbook -i inventory/sample/hosts.yaml --become --become-user=root cluster.yml
args:
chdir: /home/zuul/kubespray
- name: Copy kubectl config to localhost (will be used in the following tasks)
synchronize:
mode: pull
src: /home/zuul/kubespray/inventory/sample/artifacts/admin.conf
dest: /tmp/kube_config
- hosts: primary
become: true
gather_facts: true
tasks:
- name: Install Docker
include_role:
name: deploy-env
tasks_from: containerd
- name: Install and configure Kubectl and Helm
include_role:
name: deploy-env
tasks_from: k8s_client
- name: Deploy Metallb on K8s
include_role:
name: deploy-env
tasks_from: metallb
- name: Create Openstack Metallb endpoint
include_role:
name: deploy-env
tasks_from: openstack_metallb_endpoint
- hosts: all
become: true
gather_facts: true
tasks:
- name: Create client-to-cluster wireguard tunnel
include_role:
name: deploy-env
tasks_from: client_cluster_tunnel
- name: Install Docker
include_role:
name: deploy-env
tasks_from: containerd
when:
- openstack_provider_gateway_setup
- inventory_hostname in (groups['k8s_control_plane'] | default([]))
- name: Deploy Openstack provider gateway
include_role:
name: deploy-env
tasks_from: openstack_provider_gateway
when:
- openstack_provider_gateway_setup
- inventory_hostname in (groups['k8s_control_plane'] | default([]))
...