Add OAM IP records to API server certSANs
Add the OAM IP records to the apiserver_cert_sans. This will allow for remote access to the kubernetes API server. Change-Id: I344f59fa0b5a24633f1341e2c2fd54748d88c0af Closes-Bug: 1863798 Signed-off-by: David Sullivan <david.sullivan@windriver.com>
This commit is contained in:
parent
44e1df23ba
commit
208df05af5
|
@ -106,7 +106,7 @@
|
|||
|
||||
- name: Set apiserver SAN list
|
||||
set_fact:
|
||||
apiserver_cert_list: "{{ [ cluster_floating_address, loopback_ip ] + apiserver_cert_sans }}"
|
||||
apiserver_cert_list: "{{ [ cluster_floating_address, loopback_ip ] + apiserver_cert_sans + OAM_addresses}}"
|
||||
|
||||
- name: Update Kube admin yaml with network info
|
||||
command: "{{ item }}"
|
||||
|
|
|
@ -331,6 +331,15 @@
|
|||
- include: validate_address_range.yml
|
||||
with_dict: "{{ address_pairs }}"
|
||||
|
||||
- name: Set OAM address list
|
||||
set_fact:
|
||||
OAM_addresses: "{{ [external_oam_floating_address] }}"
|
||||
|
||||
- name: Update OAM address list for duplex
|
||||
set_fact:
|
||||
OAM_addresses: "{{ OAM_addresses + [ address_pairs['oam_node']['start'], address_pairs['oam_node']['end'] ] }}"
|
||||
when: system_mode != 'simplex'
|
||||
|
||||
- name: Set floating addresses based on subnets or start addresses
|
||||
set_fact:
|
||||
# Not sure why ipaddr('address') and ipsubnet filter did not extract
|
||||
|
|
Loading…
Reference in New Issue