epostnikof/kubespray
1
0
Fork 0
mirror of https://github.com/kubernetes-sigs/kubespray.git synced 2026-03-08 02:58:29 +03:00
Code Issues Packages Projects Releases Wiki Activity

Add identity_allocation_mode support for Cilium (#8430)

Browse Source 
Co-authored-by: Emin Aktaş <eminaktas34@gmail.com>
Co-authored-by: Yasin Taha Erol <yasintahaerol@gmail.com>
Signed-off-by: necatican <necaticanyildirim@gmail.com>

Co-authored-by: Emin Aktaş <eminaktas34@gmail.com>
Co-authored-by: Yasin Taha Erol <yasintahaerol@gmail.com>
This commit is contained in:
Necatican Yıldırım
2022-01-16 20:29:28 +03:00
committed by GitHub
parent c0d1bb1a5c
commit caff539ccd
8 changed files with 42 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
roles/network_plugin/cilium/templates/cilium-ds.yml.j2
View File

@@ -146,12 +146,14 @@ spec:
mountPath: {{ cri_socket }}
readOnly: true
{% endif %}
{% if identity_allocation_mode == "kvstore" %}
- mountPath: /var/lib/etcd-config
name: etcd-config-path
readOnly: true
- mountPath: "{{cilium_cert_dir}}"
name: etcd-secrets
readOnly: true
{% endif %}
- mountPath: /var/lib/cilium/clustermesh
name: clustermesh-secrets
readOnly: true
@@ -270,6 +272,7 @@ spec:
path: /run/xtables.lock
type: FileOrCreate
name: xtables-lock
{% if identity_allocation_mode == "kvstore" %}
# To read the etcd config stored in config maps
- configMap:
defaultMode: 420
@@ -282,6 +285,7 @@ spec:
- name: etcd-secrets
hostPath:
path: "{{cilium_cert_dir}}"
{% endif %}
# To read the clustermesh configuration
- name: clustermesh-secrets
secret: