Commit 820ca7f4 authored by eric pellegrini's avatar eric pellegrini

added playbook and associated roles for seting up helm package manager

parent 917d4eba
- hosts: master
remote_user: kubernetes-admin
environment:
no_proxy: "{{ configured_no_proxy }}"
NO_PROXY: "{{ configured_no_proxy }}"
roles:
- role: roles/install-helm
- role: roles/configure-helm
kubectl patch deployment tiller-deploy --namespace=kube-system --type=json --patch="[{'op': 'add', 'path': '/spec/template/spec/containers/0/command', 'value': ['/tiller', '--listen=localhost:44134']}]"
---
# tasks file for setup-helm-package-manager
# see https://www.digitalocean.com/community/tutorials/how-to-install-software-on-kubernetes-clusters-with-the-helm-package-manager
# see https://medium.com/@lestrrat/configuring-your-cluster-for-helm-9014f445b7ad
# see https://stackoverflow.com/questions/53612553/how-to-uninstall-remove-tiller-from-kubernetes-manually
- name: create a serviceaccount into the kube-system namespace for tiller server
command: kubectl --namespace kube-system create serviceaccount tiller
- name: bind the tiller serviceaccount to the cluster-admin role for full permissions to manage the cluster
command: kubectl create clusterrolebinding tiller --clusterrole cluster-admin --serviceaccount=kube-system:tiller
- name: initialize helm and tiller
command: helm init --service-account tiller --wait --upgrade
- name: copy tiller deploy patch
copy:
src: tiller-deploy-patch.sh
dest: ~/tiller-deploy-patch.sh
mode: u+x
- name: apply patch for ensuring that tiller os secure from access into the cluster
command: sh ~/tiller-deploy-patch.sh
---
# tasks file for setup-helm-package-manager
# see https://www.digitalocean.com/community/tutorials/how-to-install-software-on-kubernetes-clusters-with-the-helm-package-manager
# see https://medium.com/@lestrrat/configuring-your-cluster-for-helm-9014f445b7ad
# see https://stackoverflow.com/questions/53612553/how-to-uninstall-remove-tiller-from-kubernetes-manually
- name: save the nodes list
command: kubectl get nodes -o NAME --no-headers
register: kub_get_nodes_command
- name: wait for all nodes to be ready once joined
command: kubectl wait --for=condition=Ready {{ kub_get_nodes_command.stdout }}
- name: fetch latest helm installer
get_url:
url: https://raw.githubusercontent.com/kubernetes/helm/master/scripts/get
dest: ~/helm_installer.sh
mode: u+x
- name: run helm installer script
command: /bin/bash ~/helm_installer.sh
- name: remove helm installer script
file:
path: ~/helm_installer.sh
state: absent
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment