From 7e2500433fdd9f3ad6b986f81895124160fc428e Mon Sep 17 00:00:00 2001 From: Solomon Laing Date: Wed, 28 Jul 2021 20:35:08 +0930 Subject: [PATCH] removing ansible stuff --- ansible/hosts | 11 - ansible/kube-cluster/1_initial.yml | 16 - ansible/kube-cluster/2_kube_dependencies.yml | 38 -- .../kube-cluster/2_kube_dependencies.yml.bak | 44 -- ansible/kube-cluster/3_master.yml | 42 -- ansible/kube-cluster/4_workers.yml | 21 - ansible/kube-cluster/ansible-playbook | 1 - .../kube-cluster/cluster-update-reboot.yml | 10 - ansible/kube-cluster/kube-flannel.yml | 603 ------------------ ansible/kube-cluster/notes.txt | 7 - ansible/kube-cluster/odroid-hosts | 12 - ansible/kube-cluster/vm-hosts | 8 - 12 files changed, 813 deletions(-) delete mode 100644 ansible/hosts delete mode 100644 ansible/kube-cluster/1_initial.yml delete mode 100644 ansible/kube-cluster/2_kube_dependencies.yml delete mode 100644 ansible/kube-cluster/2_kube_dependencies.yml.bak delete mode 100644 ansible/kube-cluster/3_master.yml delete mode 100644 ansible/kube-cluster/4_workers.yml delete mode 100644 ansible/kube-cluster/ansible-playbook delete mode 100644 ansible/kube-cluster/cluster-update-reboot.yml delete mode 100644 ansible/kube-cluster/kube-flannel.yml delete mode 100644 ansible/kube-cluster/notes.txt delete mode 100644 ansible/kube-cluster/odroid-hosts delete mode 100644 ansible/kube-cluster/vm-hosts diff --git a/ansible/hosts b/ansible/hosts deleted file mode 100644 index e9f7166..0000000 --- a/ansible/hosts +++ /dev/null @@ -1,11 +0,0 @@ -#File name: hosts -#Description: Inventory file for your application. Defines machine type abcnode to deploy specific artifacts -# Defines machine type def node to upload metadata. - -[abc-node] -#server1 ansible_host = ansible_user = ansible_connection = ssh -server1 ansible_host = ansible_user = m ansible_connection = ssh - -[def-node] -#server2 ansible_host = ansible_user = ansible_connection = ssh -server2 ansible_host = ansible_user = ansible_connection = ssh diff --git a/ansible/kube-cluster/1_initial.yml b/ansible/kube-cluster/1_initial.yml deleted file mode 100644 index aafd337..0000000 --- a/ansible/kube-cluster/1_initial.yml +++ /dev/null @@ -1,16 +0,0 @@ -- hosts: all - become : yes - tasks: - - name: create the 'ubuntu' user - user: name=ubuntu append=yes state=present createhome=yes shell=/bin/bash - - - name: allow 'ubuntu' to have passwordless sudo - lineinfile: - dest: /etc/sudoers - line: 'ubuntu ALL=(ALL) NOPASSWD: ALL' - validate: 'visudo -cf %s' - - - name: set up authorised keys for the 'ubuntu' user - authorized_key: user=ubuntu key="{{item}}" - with_file: - - ~/.ssh/id_rsa.pub diff --git a/ansible/kube-cluster/2_kube_dependencies.yml b/ansible/kube-cluster/2_kube_dependencies.yml deleted file mode 100644 index adc1e0f..0000000 --- a/ansible/kube-cluster/2_kube_dependencies.yml +++ /dev/null @@ -1,38 +0,0 @@ -- hosts: all - become: yes - tasks: - - name: install APT Transport HTTPS - apt: - name: apt-transport-https - state: present - - - name: add Kubernetes apt-key - apt_key: - url: https://packages.cloud.google.com/apt/doc/apt-key.gpg - state: present - - - name: add Kubernetes' APT repository - apt_repository: - repo: deb http://apt.kubernetes.io/ kubernetes-xenial main - state: present - filename: 'kubernetes' - - - name: install kubelet - apt: - name: kubelet=1.18.0-00 - state: present - update_cache: true - - - name: install kubeadm - apt: - name: kubeadm=1.18.0-00 - state: present - -- hosts: master - become: yes - tasks: - - name: install kubectl - apt: - name: kubectl=1.18.0-00 - state: present - force: yes diff --git a/ansible/kube-cluster/2_kube_dependencies.yml.bak b/ansible/kube-cluster/2_kube_dependencies.yml.bak deleted file mode 100644 index ba3e428..0000000 --- a/ansible/kube-cluster/2_kube_dependencies.yml.bak +++ /dev/null @@ -1,44 +0,0 @@ -- hosts: all - become: yes - tasks: - - name: install Docker - apt: - name: docker.io - state: present - update_cache: true - - - name: install APT Transport HTTPS - apt: - name: apt-transport-https - state: present - - - name: add Kubernetes apt-key - apt_key: - url: https://packages.cloud.google.com/apt/doc/apt-key.gpg - state: present - - - name: add Kubernetes' APT repository - apt_repository: - repo: deb http://apt.kubernetes.io/ kubernetes-xenial main - state: present - filename: 'kubernetes' - - - name: install kubelet - apt: - name: kubelet=1.18.0-00 - state: present - update_cache: true - - - name: install kubeadm - apt: - name: kubeadm=1.18.0-00 - state: present - -- hosts: master - become: yes - tasks: - - name: install kubectl - apt: - name: kubectl=1.18.0-00 - state: present - force: yes diff --git a/ansible/kube-cluster/3_master.yml b/ansible/kube-cluster/3_master.yml deleted file mode 100644 index 4b5fd44..0000000 --- a/ansible/kube-cluster/3_master.yml +++ /dev/null @@ -1,42 +0,0 @@ -- hosts: master - become: yes - tasks: - - name: initialise the cluster - shell: kubeadm init --pod-network-cidr=10.244.0.0/16 >> cluster_initialized.txt - args: - chdir: $HOME - creates: cluster_initialized.txt - become: yes - become_user: root - - - name: create .kube directory - become: yes - become_user: ubuntu - file: - path: $HOME/.kube - state: directory - mode: 0755 - - - name: copy admin.conf to user's kube config - copy: - src: /etc/kubernetes/admin.conf - dest: /home/ubuntu/.kube/config - remote_src: yes - owner: ubuntu - - - name: copy Pod network config - copy: - src: ./kube-flannel.yml - dest: /home/ubuntu/ - owner: ubuntu - group: ubuntu - mode: '0644' - - - name: install Pod network - become: yes - become_user: ubuntu - shell: kubectl apply -f kube-flannel.yml >> pod_network_setup.txt - args: - chdir: $HOME - creates: pot_network_setup.txt - diff --git a/ansible/kube-cluster/4_workers.yml b/ansible/kube-cluster/4_workers.yml deleted file mode 100644 index f669882..0000000 --- a/ansible/kube-cluster/4_workers.yml +++ /dev/null @@ -1,21 +0,0 @@ -- hosts: master - become: yes - gather_facts: false - tasks: - - name: get join command - shell: kubeadm token create --print-join-command - register: join_command_raw - - - name: set join command - set_fact: - join_command: "{{ join_command_raw.stdout_lines[0] }}" - -- hosts: workers - become: yes - tasks: - - name: join cluster - shell: "{{ hostvars['master'].join_command }} >> node_joined.txt" - args: - chdir: $HOME - creates: node_joined.txt - diff --git a/ansible/kube-cluster/ansible-playbook b/ansible/kube-cluster/ansible-playbook deleted file mode 100644 index f4ed22f..0000000 --- a/ansible/kube-cluster/ansible-playbook +++ /dev/null @@ -1 +0,0 @@ -WirrealpaSSH0429 -i hosts /root/kube-cluster/initial.yml diff --git a/ansible/kube-cluster/cluster-update-reboot.yml b/ansible/kube-cluster/cluster-update-reboot.yml deleted file mode 100644 index 952088e..0000000 --- a/ansible/kube-cluster/cluster-update-reboot.yml +++ /dev/null @@ -1,10 +0,0 @@ -- hosts: all - become: yes - tasks: - - - name: Update and upgrade apt package - become: true - apt: - upgrade: yes - update_cache: yes - cache_valid_time: 86400 #One day diff --git a/ansible/kube-cluster/kube-flannel.yml b/ansible/kube-cluster/kube-flannel.yml deleted file mode 100644 index d1dbda8..0000000 --- a/ansible/kube-cluster/kube-flannel.yml +++ /dev/null @@ -1,603 +0,0 @@ ---- -apiVersion: policy/v1beta1 -kind: PodSecurityPolicy -metadata: - name: psp.flannel.unprivileged - annotations: - seccomp.security.alpha.kubernetes.io/allowedProfileNames: docker/default - seccomp.security.alpha.kubernetes.io/defaultProfileName: docker/default - apparmor.security.beta.kubernetes.io/allowedProfileNames: runtime/default - apparmor.security.beta.kubernetes.io/defaultProfileName: runtime/default -spec: - privileged: false - volumes: - - configMap - - secret - - emptyDir - - hostPath - allowedHostPaths: - - pathPrefix: "/etc/cni/net.d" - - pathPrefix: "/etc/kube-flannel" - - pathPrefix: "/run/flannel" - readOnlyRootFilesystem: false - # Users and groups - runAsUser: - rule: RunAsAny - supplementalGroups: - rule: RunAsAny - fsGroup: - rule: RunAsAny - # Privilege Escalation - allowPrivilegeEscalation: false - defaultAllowPrivilegeEscalation: false - # Capabilities - allowedCapabilities: ['NET_ADMIN'] - defaultAddCapabilities: [] - requiredDropCapabilities: [] - # Host namespaces - hostPID: false - hostIPC: false - hostNetwork: true - hostPorts: - - min: 0 - max: 65535 - # SELinux - seLinux: - # SELinux is unused in CaaSP - rule: 'RunAsAny' ---- -kind: ClusterRole -apiVersion: rbac.authorization.k8s.io/v1beta1 -metadata: - name: flannel -rules: - - apiGroups: ['extensions'] - resources: ['podsecuritypolicies'] - verbs: ['use'] - resourceNames: ['psp.flannel.unprivileged'] - - apiGroups: - - "" - resources: - - pods - verbs: - - get - - apiGroups: - - "" - resources: - - nodes - verbs: - - list - - watch - - apiGroups: - - "" - resources: - - nodes/status - verbs: - - patch ---- -kind: ClusterRoleBinding -apiVersion: rbac.authorization.k8s.io/v1beta1 -metadata: - name: flannel -roleRef: - apiGroup: rbac.authorization.k8s.io - kind: ClusterRole - name: flannel -subjects: -- kind: ServiceAccount - name: flannel - namespace: kube-system ---- -apiVersion: v1 -kind: ServiceAccount -metadata: - name: flannel - namespace: kube-system ---- -kind: ConfigMap -apiVersion: v1 -metadata: - name: kube-flannel-cfg - namespace: kube-system - labels: - tier: node - app: flannel -data: - cni-conf.json: | - { - "name": "cbr0", - "cniVersion": "0.3.1", - "plugins": [ - { - "type": "flannel", - "delegate": { - "hairpinMode": true, - "isDefaultGateway": true - } - }, - { - "type": "portmap", - "capabilities": { - "portMappings": true - } - } - ] - } - net-conf.json: | - { - "Network": "10.244.0.0/16", - "Backend": { - "Type": "vxlan" - } - } ---- -apiVersion: apps/v1 -kind: DaemonSet -metadata: - name: kube-flannel-ds-amd64 - namespace: kube-system - labels: - tier: node - app: flannel -spec: - selector: - matchLabels: - app: flannel - template: - metadata: - labels: - tier: node - app: flannel - spec: - affinity: - nodeAffinity: - requiredDuringSchedulingIgnoredDuringExecution: - nodeSelectorTerms: - - matchExpressions: - - key: kubernetes.io/os - operator: In - values: - - linux - - key: kubernetes.io/arch - operator: In - values: - - amd64 - hostNetwork: true - tolerations: - - operator: Exists - effect: NoSchedule - serviceAccountName: flannel - initContainers: - - name: install-cni - image: quay.io/coreos/flannel:v0.12.0-amd64 - command: - - cp - args: - - -f - - /etc/kube-flannel/cni-conf.json - - /etc/cni/net.d/10-flannel.conflist - volumeMounts: - - name: cni - mountPath: /etc/cni/net.d - - name: flannel-cfg - mountPath: /etc/kube-flannel/ - containers: - - name: kube-flannel - image: quay.io/coreos/flannel:v0.12.0-amd64 - command: - - /opt/bin/flanneld - args: - - --ip-masq - - --kube-subnet-mgr - resources: - requests: - cpu: "100m" - memory: "50Mi" - limits: - cpu: "100m" - memory: "50Mi" - securityContext: - privileged: false - capabilities: - add: ["NET_ADMIN"] - env: - - name: POD_NAME - valueFrom: - fieldRef: - fieldPath: metadata.name - - name: POD_NAMESPACE - valueFrom: - fieldRef: - fieldPath: metadata.namespace - volumeMounts: - - name: run - mountPath: /run/flannel - - name: flannel-cfg - mountPath: /etc/kube-flannel/ - volumes: - - name: run - hostPath: - path: /run/flannel - - name: cni - hostPath: - path: /etc/cni/net.d - - name: flannel-cfg - configMap: - name: kube-flannel-cfg ---- -apiVersion: apps/v1 -kind: DaemonSet -metadata: - name: kube-flannel-ds-arm64 - namespace: kube-system - labels: - tier: node - app: flannel -spec: - selector: - matchLabels: - app: flannel - template: - metadata: - labels: - tier: node - app: flannel - spec: - affinity: - nodeAffinity: - requiredDuringSchedulingIgnoredDuringExecution: - nodeSelectorTerms: - - matchExpressions: - - key: kubernetes.io/os - operator: In - values: - - linux - - key: kubernetes.io/arch - operator: In - values: - - arm64 - hostNetwork: true - tolerations: - - operator: Exists - effect: NoSchedule - serviceAccountName: flannel - initContainers: - - name: install-cni - image: quay.io/coreos/flannel:v0.12.0-arm64 - command: - - cp - args: - - -f - - /etc/kube-flannel/cni-conf.json - - /etc/cni/net.d/10-flannel.conflist - volumeMounts: - - name: cni - mountPath: /etc/cni/net.d - - name: flannel-cfg - mountPath: /etc/kube-flannel/ - containers: - - name: kube-flannel - image: quay.io/coreos/flannel:v0.12.0-arm64 - command: - - /opt/bin/flanneld - args: - - --ip-masq - - --kube-subnet-mgr - resources: - requests: - cpu: "100m" - memory: "50Mi" - limits: - cpu: "100m" - memory: "50Mi" - securityContext: - privileged: false - capabilities: - add: ["NET_ADMIN"] - env: - - name: POD_NAME - valueFrom: - fieldRef: - fieldPath: metadata.name - - name: POD_NAMESPACE - valueFrom: - fieldRef: - fieldPath: metadata.namespace - volumeMounts: - - name: run - mountPath: /run/flannel - - name: flannel-cfg - mountPath: /etc/kube-flannel/ - volumes: - - name: run - hostPath: - path: /run/flannel - - name: cni - hostPath: - path: /etc/cni/net.d - - name: flannel-cfg - configMap: - name: kube-flannel-cfg ---- -apiVersion: apps/v1 -kind: DaemonSet -metadata: - name: kube-flannel-ds-arm - namespace: kube-system - labels: - tier: node - app: flannel -spec: - selector: - matchLabels: - app: flannel - template: - metadata: - labels: - tier: node - app: flannel - spec: - affinity: - nodeAffinity: - requiredDuringSchedulingIgnoredDuringExecution: - nodeSelectorTerms: - - matchExpressions: - - key: kubernetes.io/os - operator: In - values: - - linux - - key: kubernetes.io/arch - operator: In - values: - - arm - hostNetwork: true - tolerations: - - operator: Exists - effect: NoSchedule - serviceAccountName: flannel - initContainers: - - name: install-cni - image: quay.io/coreos/flannel:v0.12.0-arm - command: - - cp - args: - - -f - - /etc/kube-flannel/cni-conf.json - - /etc/cni/net.d/10-flannel.conflist - volumeMounts: - - name: cni - mountPath: /etc/cni/net.d - - name: flannel-cfg - mountPath: /etc/kube-flannel/ - containers: - - name: kube-flannel - image: quay.io/coreos/flannel:v0.12.0-arm - command: - - /opt/bin/flanneld - args: - - --ip-masq - - --kube-subnet-mgr - resources: - requests: - cpu: "100m" - memory: "50Mi" - limits: - cpu: "100m" - memory: "50Mi" - securityContext: - privileged: false - capabilities: - add: ["NET_ADMIN"] - env: - - name: POD_NAME - valueFrom: - fieldRef: - fieldPath: metadata.name - - name: POD_NAMESPACE - valueFrom: - fieldRef: - fieldPath: metadata.namespace - volumeMounts: - - name: run - mountPath: /run/flannel - - name: flannel-cfg - mountPath: /etc/kube-flannel/ - volumes: - - name: run - hostPath: - path: /run/flannel - - name: cni - hostPath: - path: /etc/cni/net.d - - name: flannel-cfg - configMap: - name: kube-flannel-cfg ---- -apiVersion: apps/v1 -kind: DaemonSet -metadata: - name: kube-flannel-ds-ppc64le - namespace: kube-system - labels: - tier: node - app: flannel -spec: - selector: - matchLabels: - app: flannel - template: - metadata: - labels: - tier: node - app: flannel - spec: - affinity: - nodeAffinity: - requiredDuringSchedulingIgnoredDuringExecution: - nodeSelectorTerms: - - matchExpressions: - - key: kubernetes.io/os - operator: In - values: - - linux - - key: kubernetes.io/arch - operator: In - values: - - ppc64le - hostNetwork: true - tolerations: - - operator: Exists - effect: NoSchedule - serviceAccountName: flannel - initContainers: - - name: install-cni - image: quay.io/coreos/flannel:v0.12.0-ppc64le - command: - - cp - args: - - -f - - /etc/kube-flannel/cni-conf.json - - /etc/cni/net.d/10-flannel.conflist - volumeMounts: - - name: cni - mountPath: /etc/cni/net.d - - name: flannel-cfg - mountPath: /etc/kube-flannel/ - containers: - - name: kube-flannel - image: quay.io/coreos/flannel:v0.12.0-ppc64le - command: - - /opt/bin/flanneld - args: - - --ip-masq - - --kube-subnet-mgr - resources: - requests: - cpu: "100m" - memory: "50Mi" - limits: - cpu: "100m" - memory: "50Mi" - securityContext: - privileged: false - capabilities: - add: ["NET_ADMIN"] - env: - - name: POD_NAME - valueFrom: - fieldRef: - fieldPath: metadata.name - - name: POD_NAMESPACE - valueFrom: - fieldRef: - fieldPath: metadata.namespace - volumeMounts: - - name: run - mountPath: /run/flannel - - name: flannel-cfg - mountPath: /etc/kube-flannel/ - volumes: - - name: run - hostPath: - path: /run/flannel - - name: cni - hostPath: - path: /etc/cni/net.d - - name: flannel-cfg - configMap: - name: kube-flannel-cfg ---- -apiVersion: apps/v1 -kind: DaemonSet -metadata: - name: kube-flannel-ds-s390x - namespace: kube-system - labels: - tier: node - app: flannel -spec: - selector: - matchLabels: - app: flannel - template: - metadata: - labels: - tier: node - app: flannel - spec: - affinity: - nodeAffinity: - requiredDuringSchedulingIgnoredDuringExecution: - nodeSelectorTerms: - - matchExpressions: - - key: kubernetes.io/os - operator: In - values: - - linux - - key: kubernetes.io/arch - operator: In - values: - - s390x - hostNetwork: true - tolerations: - - operator: Exists - effect: NoSchedule - serviceAccountName: flannel - initContainers: - - name: install-cni - image: quay.io/coreos/flannel:v0.12.0-s390x - command: - - cp - args: - - -f - - /etc/kube-flannel/cni-conf.json - - /etc/cni/net.d/10-flannel.conflist - volumeMounts: - - name: cni - mountPath: /etc/cni/net.d - - name: flannel-cfg - mountPath: /etc/kube-flannel/ - containers: - - name: kube-flannel - image: quay.io/coreos/flannel:v0.12.0-s390x - command: - - /opt/bin/flanneld - args: - - --ip-masq - - --kube-subnet-mgr - resources: - requests: - cpu: "100m" - memory: "50Mi" - limits: - cpu: "100m" - memory: "50Mi" - securityContext: - privileged: false - capabilities: - add: ["NET_ADMIN"] - env: - - name: POD_NAME - valueFrom: - fieldRef: - fieldPath: metadata.name - - name: POD_NAMESPACE - valueFrom: - fieldRef: - fieldPath: metadata.namespace - volumeMounts: - - name: run - mountPath: /run/flannel - - name: flannel-cfg - mountPath: /etc/kube-flannel/ - volumes: - - name: run - hostPath: - path: /run/flannel - - name: cni - hostPath: - path: /etc/cni/net.d - - name: flannel-cfg - configMap: - name: kube-flannel-cfg - diff --git a/ansible/kube-cluster/notes.txt b/ansible/kube-cluster/notes.txt deleted file mode 100644 index b41a111..0000000 --- a/ansible/kube-cluster/notes.txt +++ /dev/null @@ -1,7 +0,0 @@ -got up to workers -seems that docker is not starting and the worker nodes cannot join the cluster because they have no properly functioning container runtime -can't see any other problems. - - -following this : https://www.digitalocean.com/community/tutorials/how-to-create-a-kubernetes-cluster-using-kubeadm-on-ubuntu-18-04 -interesting notes : https://elatov.github.io/2020/04/adding-a-node-to-a-kubernetes-cluster-with-kubeadm/ diff --git a/ansible/kube-cluster/odroid-hosts b/ansible/kube-cluster/odroid-hosts deleted file mode 100644 index d0fb549..0000000 --- a/ansible/kube-cluster/odroid-hosts +++ /dev/null @@ -1,12 +0,0 @@ -[masters] -master ansible_host=192.168.2.180 ansible_user=root ansible_ssh_pass=odroid - -[workers] -worker1 ansible_host=192.168.2.181 ansible_user=root ansible_ssh_pass=odroid -worker2 ansible_host=192.168.2.182 ansible_user=root ansible_ssh_pass=odroid -worker3 ansible_host=192.168.2.183 ansible_user=root ansible_ssh_pass=odroid -worker4 ansible_host=192.168.2.184 ansible_user=root ansible_ssh_pass=odroid -worker5 ansible_host=192.168.2.185 ansible_user=root ansible_ssh_pass=odroid - -[all:vars] -ansible_python_interpreter=/usr/bin/python3 diff --git a/ansible/kube-cluster/vm-hosts b/ansible/kube-cluster/vm-hosts deleted file mode 100644 index bfd0a00..0000000 --- a/ansible/kube-cluster/vm-hosts +++ /dev/null @@ -1,8 +0,0 @@ -[masters] -master ansible_host=192.168.2.180 ansible_user=root ansible_ssh_pass=odroid - -[workers] -worker6 ansible_host=192.168.2.186 ansible_user=solomon ansible_ssh_pass=Solomon123 ansible_sudo_pass=Solomon123 - -[all:vars] -ansible_python_interpreter=/usr/bin/python3