Inicio Explorar Axuda
Rexistro Iniciar sesión
shixiong
/
okd
1
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: 9fbd9c25e3
Ramas Etiquetas
okd
/
roles
/
openshift_master
/
tasks
/
bootstrap.yml

bootstrap.yml 918 B
Histórico Raw

12345678910111213141516171819202122232425262728 
  1. ---
    2. 

  2. 

  3. - name: ensure the node-bootstrap service account exists
    4. 

  4.   oc_serviceaccount:
    5. 

  5.     name: node-bootstrapper
    6. 

  6.     namespace: openshift-infra
    7. 

  7.     state: present
    8. 

  8.   run_once: true
    9. 

  9. 

  10. - name: grant node-bootstrapper the correct permissions to bootstrap
    11. 

  11.   oc_adm_policy_user:
    12. 

  12.     namespace: openshift-infra
    13. 

  13.     user: system:serviceaccount:openshift-infra:node-bootstrapper
    14. 

  14.     resource_kind: cluster-role
    15. 

  15.     resource_name: system:node-bootstrapper
    16. 

  16.     state: present
    17. 

  17.   run_once: true
    18. 

  18. 

  19. # TODO: create a module for this command.
    20. 

  20. # oc_serviceaccounts_kubeconfig
    21. 

  21. - name: create service account kubeconfig with csr rights
    22. 

  22.   command: "oc serviceaccounts create-kubeconfig node-bootstrapper -n openshift-infra"
    23. 

  23.   register: kubeconfig_out
    24. 

  24. 

  25. - name: put service account kubeconfig into a file on disk for bootstrap
    26. 

  26.   copy:
    27. 

  27.     content: "{{ kubeconfig_out.stdout }}"
    28. 

  28.     dest: "{{ openshift_master_config_dir }}/bootstrap.kubeconfig"
    29.