Change gitea config;Remove image compression logic;Switch to template;Reenable/Move workaround
All checks were successful
continuous-integration/drone/push Build is passing
All checks were successful
continuous-integration/drone/push Build is passing
This commit is contained in:
@ -1,12 +1,5 @@
|
||||
- name: Extract container images
|
||||
ansible.builtin.unarchive:
|
||||
src: /opt/metacluster/container-images/image-tarballs.tgz
|
||||
dest: /opt/metacluster/container-images
|
||||
list_files: yes
|
||||
register: imagetarballs
|
||||
|
||||
- name: Import container images
|
||||
ansible.builtin.command:
|
||||
cmd: k3s ctr image import {{ item }}
|
||||
chdir: /opt/metacluster/container-images
|
||||
loop: "{{ imagetarballs.files }}"
|
||||
with_fileglob: /opt/metacluster/container-images/*.tar
|
||||
|
||||
@ -29,20 +29,19 @@
|
||||
- name: Store root certificate in namespaced secrets
|
||||
kubernetes.core.k8s:
|
||||
state: present
|
||||
definition:
|
||||
apiVersion: v1
|
||||
kind: Secret
|
||||
metadata:
|
||||
name: step-certificates-certs
|
||||
namespace: "{{ item.namespace }}"
|
||||
data:
|
||||
"{{ item.key }}": "{{ stepca_cm_certs.resources[0].data['root_ca.crt'] | b64encode }}"
|
||||
template: secret.j2
|
||||
vars:
|
||||
_template:
|
||||
name: step-certificates-certs
|
||||
namespace: "{{ item.namespace }}"
|
||||
key: "{{ item.filename }}"
|
||||
value: "{{ stepca_cm_certs.resources[0].data['root_ca.crt'] | b64encode }}"
|
||||
kubeconfig: "{{ kubeconfig.path }}"
|
||||
loop:
|
||||
- namespace: argo-cd
|
||||
key: custom-ca-certificates.crt
|
||||
filename: custom-ca-certificates.crt
|
||||
- namespace: kube-system
|
||||
key: root_ca.crt
|
||||
filename: root_ca.crt
|
||||
|
||||
- name: Configure step-ca passthrough ingress
|
||||
ansible.builtin.template:
|
||||
|
||||
@ -1,21 +1,9 @@
|
||||
# - name: Create component entries in /etc/hosts
|
||||
# ansible.builtin.lineinfile:
|
||||
# path: /etc/hosts
|
||||
# line: "{{ vapp['guestinfo.ipaddress'] }} {{ item + '.' + vapp['metacluster.fqdn'] }}"
|
||||
# state: present
|
||||
# loop:
|
||||
# # TODO: Make this list dynamic
|
||||
# - git
|
||||
# - gitops
|
||||
# - ingress
|
||||
# - registry
|
||||
# - storage
|
||||
|
||||
- name: Delete container image tarballs/archives
|
||||
ansible.builtin.file:
|
||||
path: "{{ item }}"
|
||||
state: absent
|
||||
with_fileglob: /opt/metacluster/container-images/*.tar
|
||||
- name: Compress tarballs
|
||||
community.general.archive:
|
||||
dest: /opt/metacluster/container-images/image-tarballs.tgz
|
||||
path: /opt/metacluster/container-images/*
|
||||
format: gz
|
||||
remove: yes
|
||||
|
||||
- name: Cleanup tempfile
|
||||
ansible.builtin.file:
|
||||
|
||||
@ -0,0 +1,12 @@
|
||||
- name: Create component entries in /etc/hosts
|
||||
ansible.builtin.lineinfile:
|
||||
path: /etc/hosts
|
||||
line: "{{ vapp['guestinfo.ipaddress'] }} {{ item + '.' + vapp['metacluster.fqdn'] }}"
|
||||
state: present
|
||||
loop:
|
||||
# TODO: Make this list dynamic
|
||||
- git
|
||||
- gitops
|
||||
- ingress
|
||||
- registry
|
||||
- storage
|
||||
@ -7,6 +7,4 @@
|
||||
- import_tasks: git.yml
|
||||
- import_tasks: gitops.yml
|
||||
|
||||
# - include_tasks: certauthority.yml
|
||||
# tags: final
|
||||
- import_tasks: cleanup.yml
|
||||
|
||||
@ -0,0 +1,7 @@
|
||||
apiVersion: v1
|
||||
kind: Secret
|
||||
metadata:
|
||||
name: {{ _template.name }}
|
||||
namespace: {{ _template.namespace }}
|
||||
data:
|
||||
"{{ _template.key }}": {{ _template.value }}
|
||||
Reference in New Issue
Block a user