rancher/rke
1
0
Fork 0
mirror of https://github.com/rancher/rke.git synced 2025-04-28 03:31:24 +00:00
Code Issues Releases Wiki Activity
1,653 Commits 78 Branches 723 Tags 658 MiB
master
Commit Graph

162 Commits

Author SHA1 Message Date
Darren Shepherd
f8bac2c059 Update to new certs package since latest k8s dropped it 2019-08-19 11:02:43 -07:00
Dan Ramich
4902cf71d9
Merge pull request #1539 from superseb/fixcalicolabels 
Use correct labels to delete calico pods
 2019-08-14 10:15:58 -07:00
moelsayed
a3e7bef8cd Fix ingress deployment issue with PSP enabled 2019-08-09 11:11:58 -07:00
Sebastiaan van Steenis
f1cdff2a3e Use correct labels to delete calico pods 2019-08-08 20:35:26 +02:00
galal-hussein
2bc960a01c Add kubeapi proxy cluster role and role binding 2019-07-25 14:16:26 -07:00
kinarashah
f360207416 move metadata init to InitClusterObject 2019-07-08 15:40:31 -07:00
kinarashah
116b47b025 rancher pass serviceoptions and addon templates to rke 2019-07-03 10:04:27 -07:00
galal-hussein
7744f18d6e Force deploy certificates if kubeapi cert got changed 2019-04-24 16:54:19 -07:00
galal-hussein
6341dadc2f Return empty config if bearer token is present 2019-04-02 12:48:52 -07:00
galal-hussein
d3d107a09a Restart cluster agent pod in rotate certs 2019-03-19 12:49:20 -07:00
galal-hussein
6f6f2c4b90 Restart Kubeapi auth pod 2019-03-13 21:27:40 -07:00
galal-hussein
d9e0a9d749 Revert "Restart Cattle agent pods and kubeapi auth pods" 
This reverts commit 26d10514d8.
 2019-03-13 20:56:34 -07:00
galal-hussein
26d10514d8 Restart Cattle agent pods and kubeapi auth pods 2019-03-13 20:49:27 -07:00
galal-hussein
2696b88dfc Upgrade legacy kubeapi service 2019-03-08 19:42:39 -08:00
galal-hussein
cbb7b65643 Fix restart pods for weave plugin 2019-03-07 10:55:57 -08:00
moelsayed
e3d6fb4db9 Restore backup to a new etcd plane 2019-03-06 09:22:52 -08:00
galal-hussein
9d85116568 Modify kubernetes version check to allow upgrade 2019-03-01 11:11:16 -08:00
galal-hussein
860058e878 Check if etcd is healthy before running kubeapi 2019-01-25 16:00:04 -08:00
Sebastiaan van Steenis
4cbca1e90a Add CoreDNS as addon 2019-01-25 11:12:46 -08:00
Jason Greathouse
a64e8f64fb honor kubernetes_version setting 2019-01-24 11:34:07 -08:00
galal-hussein
9ee750ec01 Adding csr generation and custom certs 2019-01-09 11:47:53 -08:00
Jason Greathouse
7afa6e927e update k8s defaults, CIS recommendations 2019-01-07 12:07:46 -08:00
Guangbo Chen
9cfe5661d8 add etcd s3 uploading and downloading snapshot feature 2019-01-04 13:54:14 -08:00
Erik Wilson
e04b7d4413 Add support for Kubernetes API Authn Webhook 
Allow multiple authn strategies to be defined, including new 'webhook'
strategy. Webhook strategy configuration contains the contents of the
authentication webhook file as well as the cache timeout period.

This change allows a Kubernetes API Auth service to authenticate
user requests without proxying through the Rancher server.
 2019-01-03 17:15:23 -07:00
galal-hussein
696b61679c Final fixes and cleanup for state management 
Fix dind and local and etcd snapshots

add ExternalFlags and dialer options
 2018-11-09 11:16:17 -08:00
moelsayed
6da35256a8 handle upgrade cases 
backup state to kubernetes
 2018-11-09 11:16:17 -08:00
galal-hussein
8b8870311b refactor the build state 
remove extra cert generation for etcd in reconcile

fix reconcile and etcd add and remove cluster state with rke remove

fix add/remove issues

Fix the up command

Fix default paths for kubeconfig and rkestate
 2018-11-09 11:16:17 -08:00
moelsayed
90fd13db65 Update main code path to use new state 2018-11-09 11:16:17 -08:00
galal-hussein
f48da22d8e init commit for refactor state 
add init test

use rkeconfig for init

reconcile old state file
 2018-11-09 11:16:17 -08:00
galal-hussein
3551e6e4b6 Add Rotate certificates command to rke 2018-10-31 12:08:31 -07:00
moelsayed
90c426d73e Switch all concurrent tasks to use worker pool 2018-10-18 13:24:59 -07:00
moelsayed
9c85b5b451 Refactor taints and labels sync to improve performance 2018-10-18 09:25:27 -07:00
galal-hussein
ce62c898bb Handle deleting all controlplane nodes when nodes are unreachable 2018-09-26 17:03:53 -07:00
Sebastiaan van Steenis
4f0a191e44 Typo valid 2018-08-14 21:57:31 +03:00
Sebastiaan van Steenis
c4f12c8b0d Better error when ssh_key_path can't be opened 2018-06-29 11:27:56 -07:00
galal-hussein
2142661ea7 Refactor cloud provider support 2018-06-06 10:22:50 -07:00
galal-hussein
4b4ec352ae Change backup to snapshot in etcd 2018-05-18 00:34:12 +02:00
galal-hussein
aff01a9267 Bastion host 2018-05-10 00:16:04 +02:00
moelsayed
9addf796a2 Critical and non-critical addons 
Configurable addon job timeout
 2018-05-09 23:44:19 +02:00
galal-hussein
a3416e6b92 Etcd Backup/restore 2018-05-09 19:39:19 +02:00
galal-hussein
35624c98a1 Fix healthcheck when RBAC is disabled 2018-05-01 02:25:52 +02:00
moelsayed
fb1fd833ce Deploy backup certificates on full plane instead of single node 2018-04-20 15:46:32 -07:00
Darren Shepherd
9ab1035852 Always try to pull 2018-04-17 23:43:06 -07:00
galal-hussein
b3f457426c Fix multiple etcd add at runtime 2018-04-14 22:59:33 -07:00
Darren Shepherd
829afa1084 Fix missing image for etcd only nodes 2018-04-14 10:25:50 -07:00
galal-hussein
825bbbdf71 Add prefix path to services and generate plan 2018-04-12 00:54:47 +02:00
galal-hussein
7c0f3f6e57 Add get node for delete and cordon 2018-04-03 00:34:15 +02:00
galal-hussein
79eaedfa26 Update cluster network and cloud provider options 2018-04-02 23:28:40 +02:00
Darren Shepherd
b841604933 Revert "Make etcd provisioning a public API" 
This reverts commit d2c58fb8e6.
 2018-04-02 04:03:43 -07:00
Darren Shepherd
d2c58fb8e6 Make etcd provisioning a public API 2018-03-31 04:00:50 -07:00
galal-hussein
b431a22a9c Add cloud and network provider types 2018-03-29 22:58:46 +02:00
galal-hussein
5b848a2b45 Set node-ip and addresses annotations 2018-03-27 00:53:28 +02:00
moelsayed
69b629c115 Update only for pre-pull and log cleanup 2018-03-24 01:47:44 +02:00
David Lewis
34c41c1b05 Add ClusterName support for kube config 2018-03-23 11:28:58 -07:00
moelsayed
ef7b997e2a Log RKE components to a specific location 2018-03-21 22:29:09 +02:00
galal-hussein
6e7e18ad1e Update workers only option 
Disable port check
 2018-03-20 15:17:35 +02:00
galal-hussein
fcefbf7016 Secure kubelet port access 2018-03-12 21:04:28 +02:00
Darren Shepherd
c3d3d013dc Add option to use kubectl to deploy 2018-03-01 14:35:58 -07:00
Darren Shepherd
fce6b15f18 Add ability to deploy jobs with kubectl and not job task 
This API is used solely in rancher local clusters.
 2018-02-26 16:31:34 -07:00
galal-hussein
bfa51fd41c extract apply authz resource function 2018-02-26 16:04:19 -07:00
galal-hussein
c02873b8e9 Ignore inactive hosts 2018-02-22 02:16:51 +02:00
moelsayed
03673b8f22 Add support for custom WrapTransport for Kubernetes Client 2018-02-20 20:45:32 +02:00
galal-hussein
b1c2a5d153 Fix etcd issue with reloading cluster 2018-02-16 16:03:00 -08:00
galal-hussein
11d7aa0e16 Start cluster with only etcd nodes 2018-02-16 03:39:13 +02:00
galal-hussein
c2c1804500 External etcd 2018-02-14 22:58:35 +02:00
moelsayed
169ac106a5 Add GenetatePlan() and use it internally 2018-02-13 03:33:29 +02:00
galal-hussein
59182cee62 [RKE Refactor] Generate cluster and node certs 2018-02-08 20:15:36 +02:00
galal-hussein
d99efdc60f rke refactoring - configure cluster method 2018-02-08 05:13:06 +02:00
moelsayed
9320a57949 Pre-pull k8s images 2018-02-02 00:05:15 +02:00
galal-hussein
f8f877ba27 Add nginx ingress controller and labels/taints sync 2018-02-01 23:28:31 +02:00
moelsayed
3f3275da6d Fix panic on empty k8s version 2018-02-01 13:31:33 +02:00
Alena Prokharchyk
cd83583815
Merge pull request #289 from moelsayed/k8s_version 
Use cluster level k8s version
 2018-01-31 11:43:26 -08:00
moelsayed
6c45779abc Use cluster level k8s version 2018-01-31 19:56:33 +02:00
moelsayed
cb290d23e3 Add support for registry authentication 2018-01-31 19:50:44 +02:00
moelsayed
3a1394e739 Add SystemImages type 2018-01-30 18:33:53 +02:00
galal-hussein
0ef0a17010 Add generic generation for pki objects and etcd TLS 2018-01-25 20:38:07 +02:00
galal-hussein
9e29b753cb Add unschedulable kubelet on etcd nodes 2018-01-19 20:18:51 +02:00
moelsayed
c815ef5751 Add open port checks 2018-01-17 23:45:29 +02:00
galal-hussein
447eb6a479 make cluster.yml optional in --local 2018-01-15 06:36:28 +02:00
galal-hussein
8685523038 Add local option to deploy/remove kubernetes on local machine 
Remove insecure port from kube-api

Use cluster.yml config

Pass config dir to cluster up/remove
 2018-01-12 20:46:09 +02:00
galal-hussein
67774f7e30 Handle add/remove for etcd nodes 
Handle adding more than one etcd at once
 2018-01-12 03:57:37 +02:00
Darren Shepherd
d8dd29765f Add context.Context to everything and also make logging pluggable 2018-01-09 15:18:01 -07:00
galal-hussein
4f0f52b15e Default services images 2018-01-06 02:14:30 +02:00
galal-hussein
bb008ba58a Save certificate after deploying control plane 2018-01-02 23:27:13 +02:00
Alena Prokharchyk
e6c3f50a4d
Merge pull request #170 from galal-hussein/healthcheck_validation 
Add healthcheck for services components
 2017-12-20 13:32:00 -08:00
galal-hussein
ed7ca110b0 Add healtcheck for services components 
Integrate healthcheck with each service
 2017-12-20 23:24:28 +02:00
moelsayed
2011a2cf01 Enable PodSecurityPolicy support 2017-12-20 23:15:21 +02:00
Alena Prokharchyk
68a3ef2a43
Merge pull request #154 from galal-hussein/dialer_factory 
Add Dialer Factory and receive rkeConfig instead of cluster yaml
 2017-12-15 21:28:52 -08:00
galal-hussein
fd47cdc80d Add Dialer Factory 2017-12-16 07:23:58 +02:00
moelsayed
69ccba0c1a Make RBAC default authz mode 2017-12-16 07:04:16 +02:00
moelsayed
8ea65915d3 Enable RBAC and needed addons/network plugin configuration 2017-12-16 05:41:18 +02:00
galal-hussein
67c4214906 Using a custom dialer for cluster hosts 2017-12-12 01:50:10 +02:00
galal-hussein
ebba017126 Add services sidekick container 2017-12-09 01:25:22 +02:00
galal-hussein
42e13abb92 Rebuild local admin if the current cp host is down 2017-12-06 04:23:02 +02:00
moelsayed
5bcf0845c7 Fix bug in setting service defaults 2017-12-05 21:44:17 +02:00
moelsayed
0ee002b2cf Add user-configurable images 
Refactor configuration defaults
 Add comments to config
 Add configurable utility images
 Add configurable network plugin images
 Add configurable kubedns images
 2017-12-05 20:34:54 +02:00
Darren Shepherd
df7e40188e Refactor types 2017-12-05 10:29:50 -07:00
galal-hussein
f7905e2dfd Add ssh key and path per host 2017-12-04 22:09:57 +02:00
galal-hussein
d1f78f0b40 Refactor reconcilation 
Add role based add/delete for services

Use pointers for hosts

Consistent log format
 2017-12-02 20:37:04 +02:00
galal-hussein
41c48877ba Structure and config changes 2017-11-28 23:55:43 +02:00