2023-03-11 17:18:57 +00:00
|
|
|
---
|
2024-02-14 10:19:18 +00:00
|
|
|
# ---------------------------------------------------------------------
|
|
|
|
# If set to true, the role won't install yq and kubeectl
|
|
|
|
# ---------------------------------------------------------------------
|
|
|
|
use_system_bins: false
|
|
|
|
# ---------------------------------------------------------------------
|
|
|
|
# yq version
|
|
|
|
# ---------------------------------------------------------------------
|
2023-03-11 17:18:57 +00:00
|
|
|
yq:
|
2023-08-11 07:34:21 +00:00
|
|
|
version: v4.35.2
|
2023-03-11 17:18:57 +00:00
|
|
|
binary: yq_linux_amd64
|
2024-02-14 10:19:18 +00:00
|
|
|
# ---------------------------------------------------------------------
|
|
|
|
# kubectl version
|
|
|
|
# ---------------------------------------------------------------------
|
2023-07-16 20:07:38 +00:00
|
|
|
kubectl:
|
|
|
|
version: v1.26.6
|
|
|
|
arch: amd64
|
|
|
|
# --------------------------------------
|
2023-03-11 17:18:57 +00:00
|
|
|
# -- Path to k8s admin config
|
|
|
|
# --------------------------------------
|
|
|
|
k8s_config_path: /etc/kubernetes/admin.conf
|
2024-02-14 10:19:18 +00:00
|
|
|
k8s_cert_path: /etc/kubernetes/pki
|
2023-03-11 17:18:57 +00:00
|
|
|
k8s_cert_crt_file: ca.crt
|
|
|
|
k8s_cert_key_file: ca.key
|
|
|
|
# --------------------------------------
|
|
|
|
# -- K8s username
|
|
|
|
# --------------------------------------
|
|
|
|
username: "admin"
|
|
|
|
# --------------------------------------
|
2024-02-14 10:19:18 +00:00
|
|
|
# -- How many days certificate
|
2023-03-11 17:18:57 +00:00
|
|
|
# -- will be valid
|
|
|
|
# --------------------------------------
|
|
|
|
certificate_expires_in: 500
|
|
|
|
# --------------------------------------
|
|
|
|
# -- K8s cluster name
|
|
|
|
# --------------------------------------
|
|
|
|
cluster: "microk8s-cluster"
|
|
|
|
# --------------------------------------
|
|
|
|
# -- RoleBinding parameters
|
|
|
|
# --------------------------------------
|
2024-02-14 10:19:18 +00:00
|
|
|
# -- Binding type:
|
2023-03-11 17:18:57 +00:00
|
|
|
# ---- ClusterRoleBinding
|
|
|
|
# ---- RoleBinding
|
|
|
|
# --------------------------------------
|
|
|
|
binding_type: ClusterRoleBinding
|
|
|
|
# --------------------------------------
|
|
|
|
# -- Role type
|
|
|
|
# -- ClusterRole
|
|
|
|
# -- Role
|
|
|
|
# --------------------------------------
|
|
|
|
role_type: ClusterRole
|
|
|
|
# --------------------------------------
|
|
|
|
# -- Cluster role name
|
|
|
|
# -- https://kubernetes.io/docs/reference/access-authn-authz/rbac/
|
|
|
|
# --------------------------------------
|
|
|
|
role: cluster-admin
|
2023-07-16 20:07:38 +00:00
|
|
|
# --------------------------------------
|
|
|
|
# users:
|
|
|
|
# - username: "admin"
|
2024-02-14 10:19:18 +00:00
|
|
|
# host_user: "admin"
|
2023-07-16 20:07:38 +00:00
|
|
|
# cluster: "microk8s-cluster"
|
|
|
|
# certificate_expires_in: 500
|
|
|
|
# binding_type: ClusterRoleBinding
|
|
|
|
# role_type: ClusterRole
|
|
|
|
# role: cluster-admin
|
2023-08-11 07:34:21 +00:00
|
|
|
# k8s_config_path: /etc/kubernetes/admin.conf
|
2024-02-14 10:19:18 +00:00
|
|
|
# k8s_cert_path: /etc/kubernetes/pki
|
2023-08-11 07:34:21 +00:00
|
|
|
# k8s_cert_crt_file: ca.crt
|
|
|
|
# k8s_cert_key_file: ca.key
|
2023-07-16 20:07:38 +00:00
|
|
|
# --------------------------------------
|
|
|
|
users: []
|
2023-03-11 17:18:57 +00:00
|
|
|
# --------------------------------------
|
|
|
|
# -- Use with microk8s
|
|
|
|
# --------------------------------------
|
2024-02-14 10:19:18 +00:00
|
|
|
# k8s_config_path: /var/snap/microk8s/current/credentials/client.config
|
2023-03-11 17:18:57 +00:00
|
|
|
# k8s_cert_path: /var/snap/microk8s/current/certs
|
2023-08-11 07:34:21 +00:00
|
|
|
# --------------------------------------
|
|
|
|
# -- Use with k3s
|
|
|
|
# --------------------------------------
|
|
|
|
# k8s_config_path: /etc/rancher/k3s/k3s.yaml
|
|
|
|
# k8s_cert_path: /var/lib/rancher/k3s/server/tls
|
|
|
|
# k8s_cert_crt_file: server-ca.crt
|
|
|
|
# k8s_cert_key_file: server-ca.key
|