feat: k3s role

2024-02-04 14:48:13 +00:00 · 2024-02-04 14:48:13 +00:00 · 83c6ce3513
commit 83c6ce3513
parent b7a09296bc
16 changed files with 285 additions and 0 deletions
--- a/inventory/group_vars/all/vars.yml
+++ b/inventory/group_vars/all/vars.yml
@ -6,6 +6,7 @@ custom_github_token: "{{ vault_custom_github_token | default('') }}"
 # global (hosts' system parameters)
 ## TODO: move to a CMDB
 global_dns_type: "dot"
+global_dns_domainname: "{{ vault_global_dns_domainname }}"
 # empty values for dns{4,6} servers mean that servers will be retrieved dynamically from /etc/resolv.conf
 global_dns_udp_dns4: "{{ vault_global_dns_udp_dns4 }}"
 global_dns_udp_dns6: "{{ vault_global_dns_udp_dns6 }}"
--- a/inventory/group_vars/internal/vars.yml
+++ b/inventory/group_vars/internal/vars.yml
@ -6,3 +6,7 @@ global_ip_dualstack: false

 # security role
 security_firewall_mangle_drop_privatenets: false
+global_dns_domainname: "{{ vault_global_dns_domainname }}"
+k3s_operator_ssh_key_path: "{{ vault_k3s_operator_ssh_key_path }}"
+k3s_operator_ips: "{{ vault_k3s_operator_ips }}"
+k3s_operator_username: "{{ vault_k3s_operator_username }}"
--- a/inventory/host_vars/actinium/vars.yml
+++ b/inventory/host_vars/actinium/vars.yml
@ -4,3 +4,7 @@ ansible_user: "{{ vault_ssh_user }}"

 security_firewall_mangle_drop_privatenets: false
 security_firewall_mangle_policy_forward: accept
+
+k3s_cluster_name: internal
+k3s_cluster_role: server
+k3s_cluster_ip: "{{ vault_cluster_ip }}"
--- a/inventory/host_vars/lithium/vars.yml
+++ b/inventory/host_vars/lithium/vars.yml
@ -1,3 +1,6 @@
 ansible_become_password: "{{ vault_root_pass }}"
 ansible_host: "{{ vault_ansible_host }}"
 ansible_user: "{{ vault_ssh_user }}"
+
+k3s_cluster_name: pounce
+k3s_cluster_role: server