Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Fix additional master cert & client config creation. | Andrew Butcher | 2017-05-08 | 1 | -2/+2 |
| | |||||
* | Remove set operations from openshift_master_certificates iteration. | Andrew Butcher | 2017-05-02 | 1 | -4/+4 |
| | |||||
* | openshift_master_certificates: add openshift_master_cert_expire_days parameter. | Slava Semushin | 2017-03-29 | 3 | -0/+9 |
| | |||||
* | BZ1414276 - Quote ansible_ssh_user when determining group id | Scott Dodson | 2017-02-22 | 1 | -1/+1 |
| | | | | | So that domain users of the format 'dom\user' may be used for ansible_ssh_user | ||||
* | Restructure certificate redeploy playbooks | Andrew Butcher | 2017-02-02 | 1 | -0/+10 |
| | |||||
* | g_master_mktemp in openshift-master conflicts with openshift_master_certificates | Rich Megginson | 2017-01-19 | 1 | -4/+4 |
| | |||||
* | Ensure serial certificate generation for node and master certificates. | Andrew Butcher | 2017-01-17 | 1 | -10/+17 |
| | |||||
* | Create individual serving cert and loopback kubeconfig for additional masters. | Andrew Butcher | 2017-01-16 | 1 | -16/+28 |
| | | | | | | Deprecates use of 'create-master-certs' for generating master serving certificate and loopback kubeconfig in order to reference the first master's CA serial file. | ||||
* | Switch from "oadm" to "oc adm" and fix bug in binary sync. | Devan Goodwin | 2016-10-19 | 1 | -1/+1 |
| | | | | | | | | Found bug syncing binaries to containerized hosts where if a symlink was pre-existing, but pointing to the wrong destination, it would not be corrected. Switched to using oc adm instead of oadm. | ||||
* | Link ca to ca-bundle when ca-bundle does not exist. | Andrew Butcher | 2016-08-23 | 1 | -0/+26 |
| | |||||
* | Support for redeploying certificates. | Andrew Butcher | 2016-08-11 | 1 | -7/+47 |
| | |||||
* | Add options for specifying named ca certificates to be added to the ↵ | Andrew Butcher | 2016-08-01 | 2 | -5/+9 |
| | | | | openshift ca bundle. | ||||
* | Refactor openshift certificates roles. | Andrew Butcher | 2016-07-20 | 4 | -29/+133 |
| | |||||
* | Revert openshift-certificates changes. | Andrew Butcher | 2016-05-30 | 4 | -131/+29 |
| | |||||
* | Consolidate ca/master/node certificates roles into openshift_certificates. | Andrew Butcher | 2016-05-19 | 4 | -29/+131 |
| | |||||
* | Cleanup various deprecation warnings. | Andrew Butcher | 2016-04-29 | 1 | -4/+4 |
| | |||||
* | Use inventory_hostname for openshift master certs to sync. | Andrew Butcher | 2016-02-29 | 1 | -1/+1 |
| | |||||
* | Synchronize master kube configs | Andrew Butcher | 2016-02-26 | 1 | -0/+9 |
| | |||||
* | Generate each master's certificates separately. | Andrew Butcher | 2016-02-16 | 1 | -29/+5 |
| | |||||
* | Add gte check for 3.2, update version checks to gte | Jason DeTiberus | 2016-02-09 | 1 | -1/+1 |
| | |||||
* | Containerization work by @sdodson | Scott Dodson | 2015-12-15 | 1 | -0/+2 |
| | |||||
* | Merge pull request #796 from abutcher/master-proxy-certs | Brenton Leanhardt | 2015-11-06 | 1 | -9/+14 |
|\ | | | | | Fix issue with master.proxy-client.{crt,key} and omit. | ||||
| * | Fix issue with master.proxy-client.{crt,key} and omit. | Andrew Butcher | 2015-11-02 | 1 | -9/+14 |
| | | |||||
* | | remove debug line | talset | 2015-11-04 | 1 | -3/+0 |
| | | |||||
* | | [roles/openshift_master_certificates/tasks/main.yml] Fix variable ↵ | talset | 2015-11-04 | 1 | -1/+1 |
| | | | | | | | | openshift.master.all_hostnames to openshift.common.all_hostnames | ||||
* | | Add all the possible servicenames to openshift_all_hostnames for masters | Scott Dodson | 2015-11-03 | 1 | -0/+2 |
|/ | |||||
* | Move version greater_than_fact into openshift_facts | Andrew Butcher | 2015-10-22 | 1 | -2/+2 |
| | |||||
* | Don't include proxy client cert when <3.1 or <1.1 | Andrew Butcher | 2015-10-22 | 1 | -2/+3 |
| | |||||
* | Add openshift_version to set RPM versions | Scott Dodson | 2015-09-03 | 1 | -2/+0 |
| | | | | Mostly necessary for debugging / testing upgrade paths | ||||
* | Atomic Enterprise related changes. | Avesh Agarwal | 2015-08-26 | 1 | -2/+2 |
| | |||||
* | Copy more master certs for HA master | Jason DeTiberus | 2015-07-23 | 1 | -0/+16 |
| | |||||
* | Initial HA master | Jason DeTiberus | 2015-07-17 | 2 | -7/+12 |
| | | | | | | | | | | | | | | | | | | | | | | - Ability to specify multiple masters - configures the CA only a single time on the first master - creates and distributes additional certs for additional master hosts - Depending on the status of openshift_master_cluster_defer_ha (defaults to False) one of two actions are taken when multiple masters are defined 1. If openshift_master_cluster_defer_ha is true a. Certs/configs for all masters are deployed b. openshift-master service is only started and enabled on the master c. HA configuration is expected to be handled by the user manually after the completion of the playbook run. 2. If oepnshift_master_cluster_defer_ha is false or undefined a. Certs/configs for all masters are deployed b. a Pacemaker/RHEL HA cluster is configured i. VIPs are configured based on the values of openshift_master_cluster_vip and openshift_master_cluster_plublic_vip ii. The openshift-master service is configured as an active/passive cluster service | ||||
* | Playbook updates for clustered etcd | Jason DeTiberus | 2015-07-10 | 4 | -0/+80 |
- Add support to bin/cluster for specifying etcd hosts - defaults to 0, if no etcd hosts are selected, then configures embedded etcd - Updates for the byo inventory file for etcd and master as node by default - Consolidation of cluster logic more centrally into common playbook - Added etcd config support to playbooks - Restructured byo playbooks to leverage the common openshift-cluster playbook - Added support to common master playbook to generate and apply external etcd client certs from the etcd ca - start of refactor for better handling of master certs in a multi-master environment. - added the openshift_master_ca and openshift_master_certificates roles to manage master certs instead of generating them in the openshift_master role - added etcd host groups to the cluster update playbooks - aded better handling of host groups when they are either not present or are empty. - Update AWS readme |