fix(templates): add clause to filter for prime master only

!5
2023-11-02 10:26:45 +09:30
parent 4465bcd2c4
commit 89b6573247
2 changed files with 5 additions and 1 deletions
--- a/defaults/main.yml
+++ b/defaults/main.yml
@ -69,6 +69,7 @@ k3s:
        kind: Policy
        rules:
        - level: Request
+      when: "{{ kubernetes_config.cluster.prime.name == inventory_hostname }}"

    - name: 90-kubelet.conf
      path: /etc/sysctl.d
@ -100,6 +101,7 @@ k3s:
        #       usernames: []
        #       runtimeClasses: []
        #       namespaces: [kube-system]
+      when: "{{ kubernetes_config.cluster.prime.name == inventory_hostname }}"



--- a/tasks/k3s/configure.yaml
+++ b/tasks/k3s/configure.yaml
@ -9,6 +9,7 @@
    owner: root
    group: root
  loop: "{{ k3s.files }}"
+  when: item.when | default(false) | bool


 - name: Copy Templates
@ -20,13 +21,14 @@
    force: true
  notify: "{{ item.notify | default(omit) }}"
  loop: "{{ templates_to_apply }}"
+  when: item.when | default(true) | bool
  vars:
    templates_to_apply:

      - src: kubernetes-manifest-rbac.yaml.j2
        dest: /var/lib/rancher/k3s/server/manifests/rbac-authorization-common.yaml
+        when: "{{ kubernetes_config.cluster.prime.name == inventory_hostname }}"

      - src: iptables-kubernetes.rules.j2
        dest: "/etc/iptables.rules.d/iptables-kubernetes.rules"
        notify: firewall_reloader
-