Merge branch 'feat-project-4' into 'development'

feat: feature gate added to prevent restart of kubernetes service See merge request nofusscomputing/projects/ansible/kubernetes!14
2023-12-06 14:01:55 +00:00
parent 440d25295d 0bdd5c66c2
commit f2c833893f
4 changed files with 42 additions and 0 deletions
--- a/defaults/main.yml
+++ b/defaults/main.yml
@ -33,6 +33,11 @@ kubelet_arg_system_reserved_storage: 8Gi
 nfc_kubernetes:
  enable_firewall: true             # Optional, bool enable firewall rules from role 'nfc_firewall'

+nfc_kubernetes_no_restart: false         # Set to true to prevent role from restarting kubernetes on the host(s)
+nfc_kubernetes_no_restart_master: false  # Set to true to prevent role from restarting kubernetes on master host(s)
+nfc_kubernetes_no_restart_prime: false   # Set to true to prevent role from restarting kubernetes on prime host
+nfc_kubernetes_no_restart_slave: false   # Set to true to prevent role from restarting kubernetes on slave host(s)
+

 k3s:
  files:
--- a/docs/projects/ansible/roles/kubernetes/index.md
+++ b/docs/projects/ansible/roles/kubernetes/index.md
@ -68,6 +68,15 @@ For a more probable than not success this role first installs/configures prime m

 If the playbook is setup as per [our recommendation](ansible.md) step 2 onwards is first done on master nodes then worker nodes.

+!!! tip
+    If you prefer to manually restart the kubernetes service the following variables can be set to prevent a restart of the kubernetes service
+    ``` yaml
+    nfc_kubernetes_no_restart: false
+    nfc_kubernetes_no_restart_master: false
+    nfc_kubernetes_no_restart_prime: false
+    nfc_kubernetes_no_restart_slave: false
+    ```
+    _See default variables below for explanation of each variable if it's not evident enough._

 ## Default Variables

--- a/handlers/main.yml
+++ b/handlers/main.yml
@ -28,3 +28,29 @@
      {%- endif %}
    state: restarted
  listen: kubernetes_restart
+  when: |-
+    {%- if
+      nfc_kubernetes_no_restart
+        or
+      (
+        inventory_hostname in kubernetes_master
+          and
+        nfc_kubernetes_no_restart_master
+      )
+        or
+      (
+        inventory_hostname == kubernetes_config.config.prime.name
+          and
+        nfc_kubernetes_no_restart_prime
+      )
+        or
+      (
+        inventory_hostname in kubernetes_worker
+          and
+        nfc_kubernetes_no_restart_slave
+      )
+    -%}
+      false
+    {%- else -%}
+      true
+    {%- endif %}
--- a/templates/calico.yaml.j2
+++ b/templates/calico.yaml.j2
@ -4815,6 +4815,8 @@ spec:
              value: "false"
            - name: FELIX_HEALTHENABLED
              value: "true"
+            - name: IP_AUTODETECTION_METHOD
+              value: kubernetes-internal-ip
          securityContext:
            privileged: true
          resources: