New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Ansible provisionning #217
Merged
Merged
Changes from all commits
Commits
Show all changes
8 commits
Select commit
Hold shift + click to select a range
f331335
Ansible provisionning for Debian
itwars 9fecfb2
arm64 and amrhf provisionning added
itwars 86e0a5a
Update with Alpine Linux setup
itwars 72fff76
Update with Alpine Linux setup + typo
itwars b97dc6b
typo in Readme
itwars 9f35048
use a variable for k3s version
itwars 407116d
update to v0.3.0
itwars 49b8693
fixe arm's
itwars File filter
Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,43 @@ | ||
# Build a Kubernetes cluster using k3s via Ansible. | ||
|
||
## K3s Ansible Playbook | ||
|
||
Build a Kubernetes cluster using Ansible with k3s. The goal is easily install a Kubernetes cluster on machines running: | ||
|
||
- [X] Debian | ||
- [ ] Ubuntu | ||
- [ ] CentOS | ||
|
||
on processor architecture: | ||
|
||
- [X] x64 | ||
- [X] arm64 | ||
- [X] armhf | ||
|
||
## System requirements: | ||
|
||
Deployment environment must have Ansible 2.4.0+ | ||
Master and nodes must have passwordless SSH access | ||
|
||
## Usage | ||
|
||
Add the system information gathered above into a file called hosts.ini. For example: | ||
|
||
``` | ||
[master] | ||
192.16.35.12 | ||
|
||
[node] | ||
192.16.35.[10:11] | ||
|
||
[kube-cluster:children] | ||
master | ||
node | ||
``` | ||
|
||
Start provisioning of the cluster using the following command: | ||
|
||
``` | ||
ansible-playbook site.yaml | ||
``` | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,11 @@ | ||
[defaults] | ||
roles_path = ./roles | ||
inventory = ./hosts.ini | ||
|
||
remote_tmp = $HOME/.ansible/tmp | ||
local_tmp = $HOME/.ansible/tmp | ||
pipelining = True | ||
become = True | ||
host_key_checking = False | ||
deprecation_warnings = False | ||
callback_whitelist = profile_tasks |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,4 @@ | ||
k3s_version: v0.3.0 | ||
ansible_user: debian | ||
systemd_dir: /etc/systemd/system | ||
master_ip: "{{ hostvars[groups['master'][0]]['ansible_host'] | default(groups['master'][0]) }}" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,12 @@ | ||
[master] | ||
192.168.1.26 | ||
|
||
[node] | ||
192.168.1.34 | ||
192.168.1.39 | ||
192.168.1.16 | ||
192.168.1.32 | ||
|
||
[k3s-cluster:children] | ||
master | ||
node |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,36 @@ | ||
--- | ||
|
||
- name: Delete k3s if already present | ||
file: | ||
path: /usr/local/bin/k3s | ||
state: absent | ||
|
||
- name: Download k3s binary x64 | ||
get_url: | ||
url: https://github.com/rancher/k3s/releases/download/{{ k3s_version }}/k3s | ||
dest: /usr/local/bin/k3s | ||
owner: root | ||
group: root | ||
mode: 755 | ||
# when: ( ansible_facts.userspace_architecture == "x86_64" ) | ||
when: ( ansible_facts.architecture == "x86_64" ) | ||
|
||
- name: Download k3s binary arm64 | ||
get_url: | ||
url: https://github.com/rancher/k3s/releases/download/{{ k3s_version }}/k3s-arm64 | ||
dest: /usr/local/bin/k3s | ||
owner: root | ||
group: root | ||
mode: 755 | ||
when: ( ansible_facts.architecture is search "arm" and | ||
ansible_facts.userspace_bits == "64" ) | ||
|
||
- name: Download k3s binary armhf | ||
get_url: | ||
url: https://github.com/rancher/k3s/releases/download/{{ k3s_version }}/k3s-armhf | ||
dest: /usr/local/bin/k3s | ||
owner: root | ||
group: root | ||
mode: 755 | ||
when: ( ansible_facts.architecture is search "arm" and | ||
ansible_facts.userspace_bits == "32" ) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,43 @@ | ||
--- | ||
|
||
- name: Copy K3s service file | ||
register: k3s_service | ||
template: | ||
src: "k3s.service.j2" | ||
dest: "{{ systemd_dir }}/k3s.service" | ||
owner: root | ||
group: root | ||
mode: 0755 | ||
|
||
- name: Enable and check K3s service | ||
systemd: | ||
name: k3s | ||
daemon_reload: yes | ||
state: restarted | ||
enabled: yes | ||
|
||
- name: Register file access mode | ||
stat: | ||
path: /var/lib/rancher/k3s/server | ||
register: p | ||
|
||
- name: Change file access node-token | ||
file: | ||
path: /var/lib/rancher/k3s/server | ||
mode: "g+rx,o+rx" | ||
|
||
- name: Read Node Token from Master | ||
slurp: | ||
src: /var/lib/rancher/k3s/server/node-token | ||
register: node_token | ||
|
||
- name: Store Master Token | ||
set_fact: | ||
token: "{{ node_token.content | b64decode | regex_replace('\n', '') }}" | ||
|
||
- name: Restore file access | ||
file: | ||
path: /var/lib/rancher/k3s/server | ||
mode: "{{ p.stat.mode }}" | ||
|
||
#- debug: msg="Node TOKEN {{ token }}" | ||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,16 @@ | ||
[Unit] | ||
Description=Lightweight Kubernetes | ||
Documentation=https://k3s.io | ||
After=network.target | ||
[Service] | ||
ExecStartPre=-/sbin/modprobe br_netfilter | ||
ExecStartPre=-/sbin/modprobe overlay | ||
ExecStart=/usr/local/bin/k3s server | ||
KillMode=process | ||
Delegate=yes | ||
LimitNOFILE=infinity | ||
LimitNPROC=infinity | ||
LimitCORE=infinity | ||
TasksMax=infinity | ||
[Install] | ||
WantedBy=multi-user.target |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,16 @@ | ||
--- | ||
|
||
- name: Copy K3s service file | ||
template: | ||
src: "k3s.service.j2" | ||
dest: "{{ systemd_dir }}/k3s.service" | ||
owner: root | ||
group: root | ||
mode: 0755 | ||
|
||
- name: Enable and check K3s service | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. can we use handler here instead of restarting every time |
||
systemd: | ||
name: k3s | ||
daemon_reload: yes | ||
state: restarted | ||
enabled: yes |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,14 @@ | ||
[Unit] | ||
Description=Lightweight Kubernetes | ||
Documentation=https://k3s.io | ||
After=network.target | ||
[Service] | ||
ExecStart=/usr/local/bin/k3s agent --server https://{{ master_ip }}:6443 --token {{ hostvars[groups['master'][0]]['token'] }} | ||
KillMode=process | ||
Delegate=yes | ||
LimitNOFILE=infinity | ||
LimitNPROC=infinity | ||
LimitCORE=infinity | ||
TasksMax=infinity | ||
[Install] | ||
WantedBy=multi-user.target |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,14 @@ | ||
--- | ||
|
||
- name: Activating cgroup on Raspbian | ||
lineinfile: | ||
path: /boot/cmdline.txt | ||
regexp: '^(.*rootwait)$' | ||
line: '\1 cgroup_enable=cpuset cgroup_memory=1 cgroup_enable=memory' | ||
backrefs: true | ||
when: ( ansible_facts.architecture is search "arm" ) | ||
|
||
- name: Rebooting on Raspbian | ||
shell: reboot now | ||
ignore_errors: true | ||
when: ( ansible_facts.architecture is search "arm" ) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,21 @@ | ||
--- | ||
|
||
- hosts: k3s-cluster | ||
gather_facts: yes | ||
become: yes | ||
roles: | ||
- { role: download } | ||
- { role: raspbian } | ||
|
||
|
||
- hosts: master | ||
# gather_facts: yes | ||
become: yes | ||
roles: | ||
- { role: k3s/master } | ||
|
||
- hosts: node | ||
# gather_facts: yes | ||
become: yes | ||
roles: | ||
- { role: k3s/node } |
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
How about using ansible
tags
here with['never', 'k3s-debug-logs']
this will make sure the task is only executed once you ran the playbook with-e k3s-debug-logs=true
.