Fixed deploy cluster with vault cert manager (#1548)

* Added custom ips to etcd vault distributed certificates * Added custom ips to kube-master vault distributed certificates * Added comment about issue_cert_copy_ca var in vault/issue_cert role file * Generate kube-proxy, controller-manager and scheduler certificates by vault * Revert "Disable vault from CI (#1546)" This reverts commit 781f31d2b8. * Fixed upgrade cluster with vault cert manager * Remove vault dir in reset playbook
2026-02-28 09:39:12 +03:00 · 2017-08-20 13:53:58 +03:00
parent 72ae7638bc
commit 2ba285a544
8 changed files with 81 additions and 35 deletions
--- a/roles/reset/tasks/main.yml
+++ b/roles/reset/tasks/main.yml
@@ -90,6 +90,7 @@
    - /usr/local/share/ca-certificates/etcd-ca.crt
    - /etc/ssl/certs/kube-ca.pem
    - /etc/ssl/certs/etcd-ca.pem
+    - /etc/vault
    - /var/log/pods/
    - "{{ bin_dir }}/kubelet"
    - "{{ bin_dir }}/etcd-scripts"
@@ -102,7 +103,6 @@
    - "{{ bin_dir }}/weave"
  tags: ['files']

-
 - name: reset | remove dns settings from dhclient.conf
  blockinfile:
    dest: "{{ item }}"