51 lines
1.5 KiB
Plaintext
51 lines
1.5 KiB
Plaintext
apiVersion: kubeadm.k8s.io/v1beta2
|
|
kind: InitConfiguration
|
|
localAPIEndpoint:
|
|
advertiseAddress: <%= @apiserver_advertise_address %>
|
|
---
|
|
apiVersion: kubeadm.k8s.io/v1beta2
|
|
kind: ClusterConfiguration
|
|
|
|
apiServer:
|
|
certSANs:
|
|
<% @apiserver_certsans.each do |item| -%>
|
|
- <%= item %>
|
|
<% end -%>
|
|
extraArgs:
|
|
default-not-ready-toleration-seconds: "30"
|
|
default-unreachable-toleration-seconds: "30"
|
|
oidc-client-id: <%= @apiserver_oidc_client_id %>
|
|
oidc-issuer-url: <%= @apiserver_oidc_issuer_url %>
|
|
oidc-username-claim: <%= @apiserver_oidc_username_claim %>
|
|
controllerManager:
|
|
extraArgs:
|
|
node-monitor-period: "2s"
|
|
node-monitor-grace-period: "20s"
|
|
pod-eviction-timeout: "30s"
|
|
experimental-cluster-signing-duration: "730h"
|
|
etcd:
|
|
external:
|
|
endpoints:
|
|
- <%= @etcd_endpoint %>
|
|
imageRepository: "<%= @k8s_registry %>"
|
|
kubernetesVersion: v1.15.3
|
|
networking:
|
|
dnsDomain: <%= @service_domain %>
|
|
podSubnet: <%= @pod_network_cidr %>
|
|
serviceSubnet: <%= @service_network_cidr %>
|
|
---
|
|
kind: KubeletConfiguration
|
|
apiVersion: kubelet.config.k8s.io/v1beta1
|
|
nodeStatusUpdateFrequency: "4s"
|
|
failSwapOn: false
|
|
cgroupRoot: "/k8s-infra"
|
|
---
|
|
kind: KubeProxyConfiguration
|
|
apiVersion: kubeproxy.config.k8s.io/v1alpha1
|
|
# Workaround to disable resource-container for kube-proxy issues:
|
|
# https://github.com/kubernetes/kubernetes/issues/66614
|
|
# https://github.com/kubernetes/kubernetes/issues/54967
|
|
# https://github.com/kubernetes/kubernetes/issues/17619
|
|
# https://github.com/kubernetes-sigs/kubespray/issues/3518
|
|
resourceContainer: "/"
|