Home Explore Help
Register Sign In
shixiong
/
okd
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: ddf1aa2f1a
Branches Tags
okd
/
roles
/
openshift_hosted
/
defaults
/
main.yml

main.yml 4.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118 
  1. ---
    2. 

  2. ##########
    3. 

  3. # Common #
    4. 

  4. ##########
    5. 

  5. openshift_hosted_infra_selector: "node-role.kubernetes.io/infra=true"
    6. 

  6. r_openshift_hosted_use_calico_default: "{{ openshift_use_calico | default(False) }}"
    7. 

  7. r_openshift_hosted_use_calico: "{{ r_openshift_hosted_use_calico_default }}"
    8. 

  8. 

  9. openshift_default_projects:
    10. 

  10.   default:
    11. 

  11.     default_node_selector: ''
    12. 

  12.   logging:
    13. 

  13.     default_node_selector: ''
    14. 

  14.   openshift-infra:
    15. 

  15.     default_node_selector: ''
    16. 

  16. 

  17. # openshift_additional_projects shares the same format as openshift_default_projects
    18. 

  18. openshift_additional_projects: {}
    19. 

  19. 

  20. openshift_config_base: "/etc/origin"
    21. 

  21. openshift_master_config_dir: "{{ openshift.common.config_base | default(openshift_config_base) }}/master"
    22. 

  22. openshift_cluster_domain: 'cluster.local'
    23. 

  23. 

  24. openshift_hosted_images_dict:
    25. 

  25.   origin: 'docker.io/openshift/origin-${component}:${version}'
    26. 

  26.   openshift-enterprise: 'registry.access.redhat.com/openshift3/ose-${component}:${version}'
    27. 

  27. 

  28. ##########
    29. 

  29. # Router #
    30. 

  30. ##########
    31. 

  31. r_openshift_hosted_router_firewall_enabled: "{{ os_firewall_enabled | default(True) }}"
    32. 

  32. r_openshift_hosted_router_use_firewalld: "{{ os_firewall_use_firewalld | default(False) }}"
    33. 

  33. 

  34. openshift_hosted_router_selector: "{{ openshift_router_selector | default(openshift_hosted_infra_selector) }}"
    35. 

  35. openshift_hosted_router_namespace: 'default'
    36. 

  36. 

  37. openshift_hosted_router_wait: False
    38. 

  38. 

  39. openshift_hosted_router_edits:
    40. 

  40. - key: spec.strategy.rollingParams.intervalSeconds
    41. 

  41.   value: 1
    42. 

  42.   action: put
    43. 

  43. - key: spec.strategy.rollingParams.updatePeriodSeconds
    44. 

  44.   value: 1
    45. 

  45.   action: put
    46. 

  46. - key: spec.strategy.activeDeadlineSeconds
    47. 

  47.   value: 21600
    48. 

  48.   action: put
    49. 

  49. 

  50. openshift_hosted_router_registryurl: "{{ oreg_url_master | default(oreg_url) | default(openshift_hosted_images_dict[openshift_deployment_type]) | regex_replace('${version}' | regex_escape, openshift_image_tag | default('${version}')) }}"
    51. 

  51. openshift_hosted_routers:
    52. 

  52. - name: router
    53. 

  53.   replicas: "{{ replicas | default(1) }}"
    54. 

  54.   namespace: default
    55. 

  55.   serviceaccount: router
    56. 

  56.   selector: "{{ openshift_hosted_router_selector | default(None) }}"
    57. 

  57.   images: "{{ openshift_hosted_router_registryurl }}"
    58. 

  58.   edits: "{{ openshift_hosted_router_edits }}"
    59. 

  59.   stats_port: 1936
    60. 

  60.   ports:
    61. 

  61.   - 80:80
    62. 

  62.   - 443:443
    63. 

  63.   certificate: "{{ openshift_hosted_router_certificate | default({}) }}"
    64. 

  64. 

  65. openshift_hosted_router_certificate: {}
    66. 

  66. openshift_hosted_router_create_certificate: True
    67. 

  67. 

  68. r_openshift_hosted_router_os_firewall_deny: []
    69. 

  69. r_openshift_hosted_router_os_firewall_allow: []
    70. 

  70. 

  71. ############
    72. 

  72. # Registry #
    73. 

  73. ############
    74. 

  74. 

  75. openshift_hosted_registry_selector: "{{ openshift_registry_selector | default(openshift_hosted_infra_selector) }}"
    76. 

  76. openshift_hosted_registry_registryurl: "{{ oreg_url_master | default(oreg_url) | default(openshift_hosted_images_dict[openshift_deployment_type]) | regex_replace('${version}' | regex_escape, openshift_image_tag | default('${version}')) }}"
    77. 

  77. openshift_hosted_registry_routecertificates: {}
    78. 

  78. openshift_hosted_registry_routetermination: "passthrough"
    79. 

  79. 

  80. r_openshift_hosted_registry_firewall_enabled: "{{ os_firewall_enabled | default(True) }}"
    81. 

  81. r_openshift_hosted_registry_use_firewalld: "{{ os_firewall_use_firewalld | default(False) }}"
    82. 

  82. 

  83. openshift_hosted_registry_name: docker-registry
    84. 

  84. openshift_hosted_registry_wait: False
    85. 

  85. openshift_hosted_registry_cert_expire_days: 730
    86. 

  86. r_openshift_hosted_registry_os_firewall_deny: []
    87. 

  87. r_openshift_hosted_registry_os_firewall_allow:
    88. 

  88. - service: Docker Registry Port
    89. 

  89.   port: 5000/tcp
    90. 

  90.   cond: "{{ r_openshift_hosted_use_calico }}"
    91. 

  91. 

  92. openshift_hosted_registry_serviceaccount: registry
    93. 

  93. openshift_hosted_registry_volumes: []
    94. 

  94. openshift_hosted_registry_env_vars: {}
    95. 

  95. openshift_hosted_registry_clusterip: null
    96. 

  96. 

  97. # These edits are being specified only to prevent 'changed' on rerun
    98. 

  98. openshift_hosted_registry_edits:
    99. 

  99. - key: spec.strategy.rollingParams
    100. 

  100.   value:
    101. 

  101.     intervalSeconds: 1
    102. 

  102.     maxSurge: "25%"
    103. 

  103.     maxUnavailable: "25%"
    104. 

  104.     timeoutSeconds: 600
    105. 

  105.     updatePeriodSeconds: 1
    106. 

  106.   action: put
    107. 

  107. 

  108. openshift_hosted_registry_force:
    109. 

  109. - False
    110. 

  110. 

  111. # TODO: this flag should be removed when master bootstrapping is enforced
    112. 

  112. openshift_push_via_dns: True
    113. 

  113. 

  114. # NOTE: settting openshift_docker_hosted_registry_insecure may affect other roles
    115. 

  115. openshift_hosted_docker_registry_insecure_default: "{{ openshift_docker_hosted_registry_insecure | default(False) }}"
    116. 

  116. openshift_hosted_docker_registry_insecure: "{{ openshift_hosted_docker_registry_insecure_default }}"
    117. 

  117. 

  118. openshift_hosted_registry_storage_azure_blob_realm: core.windows.net
    119.