From bdf368d9efc8b96e6a33584a91579c71cb809531 Mon Sep 17 00:00:00 2001 From: staffadmin Date: Tue, 14 May 2024 21:14:14 +0200 Subject: [PATCH] [add kubespray settings] --- group_vars/all.yml | 9 +++++++++ hardening.yml | 5 +++-- kubespray_vars.yml | 9 +++++++++ 3 files changed, 21 insertions(+), 2 deletions(-) create mode 100644 kubespray_vars.yml diff --git a/group_vars/all.yml b/group_vars/all.yml index ed01c77..ab68411 100644 --- a/group_vars/all.yml +++ b/group_vars/all.yml @@ -12,6 +12,15 @@ management_user_list: commands: ALL nopasswd: ALL + +#* PACKAGES + +package_repo: + - python3-pip + #! argocd control plane + - sshpass + + #* FIREWALL firewall_allowed_tcp_ports: diff --git a/hardening.yml b/hardening.yml index fc2b774..a1eab5f 100644 --- a/hardening.yml +++ b/hardening.yml @@ -55,10 +55,11 @@ loop: - /etc/node_exporter - - name: Update repositories and install py3-pip package + - name: Update repositories and install packages needed ansible.builtin.apt: - name: python3-pip + name: item update_cache: true + loop: "{{ package_repo }}" # delegate_to: localhost - name: Install pip package diff --git a/kubespray_vars.yml b/kubespray_vars.yml new file mode 100644 index 0000000..ead66db --- /dev/null +++ b/kubespray_vars.yml @@ -0,0 +1,9 @@ +--- +helm_enabled: true +metrics_server_enabled: true +ingress_nginx_enabled: true +cert_manager_enabled: true +argocd_enabled: true +node_feature_discovery_enabled: true +enable_nodelocaldns: false +enable_nodelocaldns_secondary: false \ No newline at end of file