service-provider-template/README.md

69 lines
1.1 KiB
Markdown
Raw Permalink Normal View History

# Ansible Playbook to setup a simple k8s cluster
Checkout repo and switch to the directorty `~/lx-cad-deploy`
Install ansible via virtual env
```
sudo apt install python3-pip python3.10-venv
python3.10 -m venv ~/.local/venv/ansible
source ~/.local/venv/ansible/bin/activate
pip install ansible
ansible --version
```
Install required roles:
```
ansible-galaxy install -f -p roles -r roles/requirements.yml
```
Generate token for the cluster, this assumes ansible vault has been setup
```
./roles/k8s/files/token-vault.sh ./group_vars/lx_cad/k8s-vault.yml
```
Configure firewalld and nginx for hosts
```
ansible-playbook -i hosts site.yml --tags=firewalld,nginx
```
Install Stack Orchestrator for control hosts
```
ansible-playbook -i hosts site.yml --tags=so --limit=so
```
Deploy k8s
```
ansible-playbook -i hosts site.yml --tags=k8s --limit=lx_cad
```
Install k8s helper tools
```
sudo ~/lx-cad-deploy/roles/k8s/files/get-kube-tools.sh
```
Verify cluster creation
```
kubie ctx lx-cad
kubectl get nodes -o wide
```
DNS Secret example
```
apiVersion: v1
data:
access-token: XXX
kind: Secret
metadata:
name: someprovider-dns
namespace: cert-manager
```