Add join for remaining control planes

Closes #9
edwardtheharris · Jul 24, 2024 · 51976e6 · 51976e6
1 parent 5c0f9c0
commit 51976e6
Show file tree

Hide file tree

Showing 7 changed files with 57 additions and 20 deletions.
diff --git a/.gitignore b/.gitignore
@@ -11,3 +11,5 @@ package.json
 roles/reset/files/*.reset.md
 roles/join/files/join.md
 roles/init/files/admin.conf
+roles/join/files/kcp02*
+roles/join/files/kcp03*
diff --git a/index.md b/index.md
@@ -1,11 +1,12 @@
 ---
-abstract: This is a collection of Ansible playbooks that will create a CA usable
-   for Kubernetes and etcd clusters.
+abstract: >-
+   This is a set of roles that will initialize a primary control plane,
+   then join secondary and tertiary control planes to a HA k8s cluster.
 authors:
    - name: Xander Harris
      email: [email protected]
 date: 2024-03-08
-title: Ansible Bare Metal K8S
+title: Ansible Bare Metal HA K8S
 ---
 
 ![GitHub Actions Workflow Status](https://img.shields.io/github/actions/workflow/status/edwardtheharris/ansible-kcp/ansible.yml?branch=main&style=flat-square&logo=ansible&label=Ansible%20Lint)
@@ -24,7 +25,7 @@ title: Ansible Bare Metal K8S
 ### Roles
 
 ```{toctree}
-:maxdepth: 1
+:maxdepth: 3
 :caption: roles
 
 roles/index
@@ -52,8 +53,17 @@ security
 - [community.crypto.x509_certificate](https://docs.ansible.com/ansible/latest/collections/community/crypto/x509_certificate_module.html)
 - [How to create a small CA](https://docs.ansible.com/ansible/latest/collections/community/crypto/docsite/guide_ownca.html)
 
-## Indices and tables
+### Indices and tables
 
 - {ref}`genindex`
 - {ref}`modindex`
 - {ref}`search`
+
+### Glossary
+
+```{glossary}
+HA
+   High Availability; in this context we mean specifically HA k8s clusters
+   as described
+   [here](https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/high-availability/).
+```
diff --git a/roles/index.md b/roles/index.md
@@ -6,7 +6,7 @@ authors:
    - name: Xander Harris
      email: [email protected]
 date: 2024-07-23
-title: Bare Metal k8s roles
+title: Bare Metal HA k8s roles
 ---
 
 ## Roles
@@ -20,5 +20,11 @@ join/index
 reset/index
 ```
 
+```{index} roles init
+```
+
+```{index} roles; join
+```
+
 ```{index} roles; reset
 ```
diff --git a/roles/init/index.md b/roles/init/index.md
@@ -1,6 +1,6 @@
 ---
 abstract: >-
-    This This role initializes a K8s Control Plane suitable for a high
+    This role initializes a k8s Control Plane suitable for a high
     availability cluster.
 authors:
     - name: Xander Harris
@@ -9,11 +9,7 @@ date: 2024-07-24
 title: K8S HA Control Plane Init
 ---
 
-Presently only a single Control Plane cluster is supported, but support for
-high availability clusters will hopefully be available soon.
-
-[HA Clusters with Kubeadm](https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/high-availability/)
-is helped with use of the tool
+{term}`HA` Clusters with Kubeadm is helped with use of the tool
 [kube-vip](https://kube-vip.io/docs/installation/static/).
 
 More information about the process for HA setup is available
@@ -24,6 +20,9 @@ A handy tool for switching k8s contexts is called
 
 ## Tasks
 
+The role uses {term}`kubeadm` to handle the initialization of the primary
+control plane.
+
 ```{literalinclude} /roles/init/tasks/main.yml
 :language: yaml
 ```

diff --git a/roles/join/index.md b/roles/join/index.md
@@ -1,13 +1,14 @@
 ---
-abstract: This is
-authors: Xander Harris
-date: 2024-03-01
-title: Kubernetes Control Plane
+abstract: >-
+    This role joins additional control planes to a high availability k8s
+    cluster.
+authors:
+    - name: Xander Harris
+      email: [email protected]
+date: 2024-07-24
+title: HA K8S Join Control Planes
 ---
 
-Presently only a single Control Plane cluster is supported, but support for
-high availability clusters will hopefully be available soon.
-
 [HA Clusters with Kubeadm](https://kubernetes.io/docs/setup/production-environment/tools/kubeadm/high-availability/)
 is helped with use of the tool
 [kube-vip](https://kube-vip.io/docs/installation/static/).
@@ -20,7 +21,7 @@ A handy tool for switching k8s contexts is called
 
 ## Tasks
 
-```{literalinclude} /roles/init/tasks/main.yml
+```{literalinclude} /roles/join/tasks/main.yml
 :language: yaml
 ```
 

diff --git a/roles/join/tasks/main.yml b/roles/join/tasks/main.yml
@@ -13,3 +13,15 @@
     src: /root/join_result.md
     dest: "roles/join/files/{{ inventory_hostname }}/join_result.md"
     flat: true
+- name: Copy admin.conf
+  ansible.builtin.copy:
+    src: roles/init/files/admin.conf
+    dest: "{{ item.path }}"
+    owner: "{{ item.owner }}"
+    group: kube
+    mode: u+rw,o-rwx
+  loop:
+    - path: /root/.kube/config
+      owner: root
+    - path: "/home/{{ join_nonroot }}/.kube/config"
+      owner: "{{ join_nonroot }}"
diff --git a/site.yml b/site.yml
@@ -29,3 +29,10 @@
     - role: join
       tags:
         - join
+- name: Apply required post-init configuration
+  hosts: kcp01_init
+  become: true
+  roles:
+    - role: kube
+      tags:
+        - kube