fenix-gitea-admin/iac-ansible-public
1
0
Fork 0
mirror of https://gitea.fenix-dev.com/fenix-gitea-admin/iac-ansible-private.git synced 2025-10-27 08:43:05 +00:00
Code Issues Packages Projects Releases Wiki Activity

Compare commits

base: fenix-gitea-admin:75ca33bfa93912284b478f66ac4440bb61e9c62b
Branches Tags
fenix-gitea-admin:main fenix-gitea-admin:kubernetes-vazio
...
compare: fenix-gitea-admin:main
Branches Tags
fenix-gitea-admin:main fenix-gitea-admin:kubernetes-vazio

25 Commits
75ca33bfa9 ... main

Author SHA1 Message Date
tomas.limpinho
5d60378c35 Merge branch 'main' of https://gitea.fenix-dev.com/fenix-gitea-admin/iac-ansible-private 2025-10-25 16:05:15 +01:00
tomas.limpinho
892b80c438 vaultwarden test 2025-10-25 16:04:58 +01:00
fenix-gitea-admin
39dd5e0c72 Update playbook.yml 2025-10-25 14:56:49 +00:00
fenix-gitea-admin
9385da0ed1 Update inventory.ini 2025-10-23 07:52:40 +00:00
fenix-gitea-admin
feefc19d09 Update roles/kube-master/tasks/main.yml 2025-10-21 16:06:18 +00:00
fenix-gitea-admin
3c990702ed Update roles/kube-master/tasks/patch_netconf.py 2025-10-21 15:43:10 +00:00
fenix-gitea-admin
55ac95fc90 Update roles/kube-master/tasks/main.yml 2025-10-21 15:09:51 +00:00
fenix-gitea-admin
880c7b23f1 Update roles/kube-node/tasks/main.yml 2025-10-21 09:12:45 +00:00
fenix-gitea-admin
78e1bb9b48 Update roles/kube-master/tasks/patch_netconf.py 2025-10-21 09:11:30 +00:00
fenix-gitea-admin
2391d89175 Update roles/kube-master/tasks/main.yml 2025-10-21 09:11:06 +00:00
fenix-gitea-admin
47b3cb9bd4 Update roles/kube-node/tasks/main.yml 2025-10-20 20:21:19 +00:00
fenix-gitea-admin
b016fd12ca Update roles/kube-node/tasks/main.yml 2025-10-20 20:14:40 +00:00
fenix-gitea-admin
805b5c0817 Update roles/kube-node/tasks/main.yml 2025-10-20 20:13:46 +00:00
fenix-gitea-admin
def84bb4de Update roles/kube-node/tasks/main.yml 2025-10-20 20:05:16 +00:00
fenix-gitea-admin
8b7a067374 Update roles/kube-node/tasks/main.yml 2025-10-20 19:53:34 +00:00
fenix-gitea-admin
249f9cadf3 Update roles/kube-node/tasks/main.yml 2025-10-20 19:48:09 +00:00
fenix-gitea-admin
ff172ce20d Update roles/kube-node/tasks/main.yml 2025-10-20 19:38:21 +00:00
fenix-gitea-admin
542b70c057 Update roles/kube-node/tasks/main.yml 2025-10-20 19:32:29 +00:00
fenix-gitea-admin
13fc57c614 Update roles/kube-node/tasks/main.yml 2025-10-20 19:26:10 +00:00
fenix-gitea-admin
52ddca4910 Update roles/kube-node/tasks/main.yml 2025-10-20 19:15:51 +00:00
fenix-gitea-admin
05600edcec Update roles/kube-node/tasks/main.yml 2025-10-20 17:22:04 +00:00
fenix-gitea-admin
ac9d93a0fb Update roles/kube-node/tasks/main.yml 2025-10-20 17:10:57 +00:00
fenix-gitea-admin
0324d38eb4 Update roles/kube-master/tasks/main.yml 2025-10-20 16:45:07 +00:00
fenix-gitea-admin
1c5db46acc Update roles/kube-master/tasks/patch_netconf.py 2025-10-20 16:44:35 +00:00
fenix-gitea-admin
fd6cae2c81 Update roles/kubernetes/tasks/main.yml 2025-10-20 14:38:11 +00:00
8 changed files with 42 additions and 13 deletions
Expand all files Collapse all files

10
inventory.ini
View File

@ -1,9 +1,9 @@
[kube-master]
master1 ansible_host=192.168.1.10 ansible_user=ubuntu
master1 ansible_host=192.168.1.10 ansible_user=ubuntu ansible_ssh_common_args='-o StrictHostKeyChecking=no'
[kube-node]
node1 ansible_host=192.168.1.11 ansible_user=ubuntu
node2 ansible_host=192.168.1.12 ansible_user=ubuntu
node1 ansible_host=192.168.1.11 ansible_user=ubuntu ansible_ssh_common_args='-o StrictHostKeyChecking=no'
node2 ansible_host=192.168.1.12 ansible_user=ubuntu ansible_ssh_common_args='-o StrictHostKeyChecking=no'
[all:vars]
ansible_python_interpreter=/usr/bin/python3
#[all:vars]
#ansible_python_interpreter=/usr/bin/python3

1
playbook.yml
View File

@ -3,6 +3,7 @@
become: yes
roles:
- common
- vaultwarden
- kubernetes
- kube-master

8
roles/kube-master/tasks/main.yml
View File

@ -22,7 +22,7 @@
replace:
path: /tmp/kube-flannel.yml
regexp: '10\.244\.0\.0/16'
replace: '192.168.2.0/16' # .3.
replace: '10.244.0.0/16' # .3.
- name: Corrigir net-conf.json no manifest do Flannel
become: true
@ -40,12 +40,12 @@
debug:
var: flannel_manifest.stdout
- name: Adicionar --iface=eth1 ao flanneld
- name: Adicionar --iface=eth0 ao flanneld
become: true
ansible.builtin.lineinfile:
path: /tmp/kube-flannel.yml
insertafter: ' - --kube-subnet-mgr'
line: ' - --iface=eth1'
line: ' - --iface=eth0'
@ -55,7 +55,7 @@
argv:
- kubeadm
- init
- --pod-network-cidr=192.168.2.0/16 # .3.
- --pod-network-cidr=10.244.0.0/16 # .3.
- --apiserver-advertise-address=192.168.1.150
creates: /etc/kubernetes/admin.conf

4
roles/kube-master/tasks/patch_netconf.py
View File

@ -10,11 +10,11 @@ with open("/tmp/kube-flannel.yml", "r") as f:
for doc in docs:
if doc.get("kind") == "ConfigMap" and doc.get("metadata", {}).get("name") == "kube-flannel-cfg":
doc["data"]["net-conf.json"] = '''{
"Network": "192.168.2.0/16",
"Network": "10.244.0.0/16",
"Backend": {
"Type": "vxlan"
},
"Interface": "eth1"
"Interface": "eth0"
}'''
with open("/tmp/kube-flannel.yml", "w") as f:

26
roles/kube-node/tasks/main.yml
View File

@ -2,6 +2,30 @@
hostname:
name: "ubuntu-{{ ansible_play_hosts.index(inventory_hostname) }}"
- name: Obter hostname real do nó
become: true
command: hostname
register: node_hostname
- name: Verificar se o nó já está no cluster
shell: |
kubectl get nodes --no-headers | grep -w {{ node_hostname.stdout }} || echo "NOT_IN_CLUSTER"
register: node_status
environment:
KUBECONFIG: /etc/kubernetes/kubelet.conf
- name: Join Kubernetes cluster
shell: "{{ hostvars['master1']['kubeadm_join_command'] }}"
when: hostvars['master1']['kubeadm_join_command'] is defined
when:
- hostvars['master1']['kubeadm_join_command'] is defined
- node_status.stdout | trim == "NOT_IN_CLUSTER"
#- name: Atribuir podCIDR ao nó via hostname real
# shell: |
# kubectl patch node {{ node_hostname.stdout }} -p '{"spec":{"podCIDR":"192.168.2.0/24"}}'
# when:
# - hostvars['master1']['kubeadm_join_command'] is defined
# - node_status.stdout | trim == "NOT_IN_CLUSTER"

2
roles/kubernetes/tasks/main.yml
View File

@ -40,7 +40,7 @@
- name: Gerar config.toml padrão do containerd
become: true
command: containerd config default > /etc/containerd/config.toml
shell: containerd config default > /etc/containerd/config.toml
args:
creates: /etc/containerd/config.toml

0
roles/stolon/tasks/main.yml Normal file
View File

4
roles/vaultwarden/tasks/main.yml Normal file
View File

@ -0,0 +1,4 @@
- name: Buscar secret do Vaultwarden
command: "bw get item 'nome-do-secret'"
register: secret_raw
#no_log: true