48 lines
1.3 KiB
Django/Jinja
48 lines
1.3 KiB
Django/Jinja
servers:
|
|
hosts:
|
|
{{ ipv4_address }}:
|
|
vars:
|
|
ansible_ssh_private_key_file: /tmp/outputs/ssh_key
|
|
k3s_cluster:
|
|
children:
|
|
server:
|
|
hosts:
|
|
{{ ipv4_address }}:
|
|
vars:
|
|
ansible_port: 22
|
|
k3s_version: v1.26.9+k3s1
|
|
token: "mytoken" # Use ansible vault if you want to keep it secret
|
|
api_endpoint: "{{ ipv4_address }}"
|
|
extra_server_args: |-
|
|
--write-kubeconfig-mode=644 \
|
|
--node-name="k3s-1" \
|
|
--tls-san="{{ ipv4_address }}" \
|
|
--disable-cloud-controller \
|
|
--disable-helm-controller \
|
|
--disable metrics-server \
|
|
--disable local-storage \
|
|
--disable traefik \
|
|
--cluster-cidr="10.244.0.0/16" \
|
|
--flannel-backend none \
|
|
--disable coredns \
|
|
--disable servicelb
|
|
extra_agent_args: ""
|
|
ansible_ssh_private_key_file: /tmp/outputs/ssh_key
|
|
k8s:
|
|
hosts:
|
|
{{ ipv4_address }}:
|
|
name: {{ cluster_name }}
|
|
kubernetes_server: https://{{ ipv4_address }}:6443
|
|
k8s_config_path: /etc/rancher/k3s/k3s.yaml
|
|
k8s_cert_path: /var/lib/rancher/k3s/server/tls
|
|
k8s_cert_crt_file: client-ca.crt
|
|
k8s_cert_key_file: client-ca.key
|
|
users:
|
|
- cluster: default
|
|
host_user: admin
|
|
username: admin
|
|
download_config: true
|
|
vars:
|
|
ansible_ssh_private_key_file: /tmp/outputs/ssh_key
|
|
|