- name: Install containerd
  apt:
    name: containerd
    state: present
    update_cache: no
  become: true

- name: Hold Kubernetes packages
  become: true
  ansible.builtin.shell: |
    apt-mark hold containerd

- name: Criar ou sobrescrever /run/flannel/subnet.env
  become: true
  copy:
    dest: /run/flannel/subnet.env
    content: |
      FLANNEL_NETWORK=192.168.2.0/16
      FLANNEL_SUBNET=192.168.2.1/24
      FLANNEL_MTU=1450
      FLANNEL_IPMASQ=true
    owner: root
    group: root
    mode: '0644'
#- name: Add Kubernetes APT key
#  apt_key:
#    url: https://packages.cloud.google.com/apt/doc/apt-key.gpg
#    state: present

#- name: Add Kubernetes repo
#  apt_repository:
#    repo: deb http://apt.kubernetes.io/ kubernetes-jammy main
#    state: present
    
- name: Adicionar chave GPG do Kubernetes
  become: true
  ansible.builtin.shell: |
    mkdir -p /etc/apt/keyrings
    curl -fsSL https://pkgs.k8s.io/core:/stable:/v1.29/deb/Release.key | gpg --dearmor -o /etc/apt/keyrings/kubernetes-apt-keyring.gpg
  args:
    creates: /etc/apt/keyrings/kubernetes-apt-keyring.gpg

- name: Adicionar repositório oficial do Kubernetes
  become: true
  ansible.builtin.copy:
    dest: /etc/apt/sources.list.d/kubernetes.list
    content: |
      deb [signed-by=/etc/apt/keyrings/kubernetes-apt-keyring.gpg] https://pkgs.k8s.io/core:/stable:/v1.29/deb/ /


- name: Install Kubernetes components
  become: true
  apt:
    name:
      - kubelet
      - kubeadm
      - kubectl
    state: present
    update_cache: yes

- name: Hold Kubernetes packages
  become: true
  ansible.builtin.shell: |
    apt-mark hold kubelet kubeadm kubectl


- name: Desativar swap
  become: true
  ansible.builtin.command: swapoff -a

- name: Garantir que swap está desativado no fstab
  become: true
  ansible.builtin.lineinfile:
    path: /etc/fstab
    regexp: '.*swap.*'
    state: absent


- name: Ativar ip_forward de forma idempotente
  become: true
  ansible.builtin.sysctl:
    name: net.ipv4.ip_forward
    value: '1'
    state: present
    reload: yes

- name: Configurar sysctl para Kubernetes
  become: true
  ansible.builtin.copy:
    dest: /etc/sysctl.d/k8s.conf
    content: |
      net.bridge.bridge-nf-call-iptables = 1
      net.bridge.bridge-nf-call-ip6tables = 1
      net.ipv4.ip_forward = 1
      
- name: Reload sysctl
  ansible.builtin.command: sysctl --system
  when: ansible_facts['os_family'] == 'Debian'
  changed_when: false
  become: true


  
- name: Criar arquivo de configuração sysctl para Kubernetes
  become: true
  ansible.builtin.copy:
    dest: /etc/sysctl.d/k8s.conf
    content: |
      net.bridge.bridge-nf-call-iptables = 1
      net.bridge.bridge-nf-call-ip6tables = 1
    owner: root
    group: root
    mode: '0644'
  notify: Reload sysctl

- name: Carregar módulo br_netfilter se necessário
  become: true
  ansible.builtin.modprobe:
    name: br_netfilter
    state: present

- name: Garantir que o módulo br_netfilter seja carregado na inicialização
  become: true
  ansible.builtin.copy:
    dest: /etc/modules-load.d/k8s.conf
    content: |
      br_netfilter
    owner: root
    group: root
    mode: '0644'