Role - kubeinit_registry¶
Role Documentation¶
Please, refer to the kubeinit_registry role official docs for further information.
Role Defaults¶
This section highlights all of the defaults and variables set within the “kubeinit_registry” role.
# All variables intended for modification should be placed in this file.
# All variables within this role should have a prefix of "kubeinit_registry_"
kubeinit_registry_debug: '{{ (ansible_verbosity | int) >= 2 | bool }}'
kubeinit_registry_hide_sensitive_logs: true
kubeinit_registry_enabled: true
kubeinit_registry_container_engine: docker
#kubeinit_registry_container_engine: podman
kubeinit_registry_user: registryusername
kubeinit_registry_password: registrypassword
kubeinit_registry_email: [email protected]
# The space after the first single quote is required, do not remove
# Something in Ansible appears to be recognizing this as valid Python,
# so it's getting transformed into a Python list and then serialized
# using Python's str(), which is why we end up with the single-quoted values.
kubeinit_registry_pullsecret: ' { "auths": {} }'
kubeinit_registry_required_packages_aux: "{% if ( kubeinit_inventory_cluster_distro\
\ == 'rke' or kubeinit_inventory_cluster_distro == 'cdk' ) %} python3, python3-dns,\
\ jq, apache2-utils, skopeo {% else %} python3, python3-dns, jq, httpd-tools, skopeo\
\ {% endif %}"
kubeinit_registry_required_packages: "{{ kubeinit_registry_required_packages_aux.split(',')\
\ }}"
kubeinit_registry_directory: /var/kubeinit/local_registry
kubeinit_registry_directory_auth: '{{ kubeinit_registry_directory }}/auth'
kubeinit_registry_directory_cert: '{{ kubeinit_registry_directory }}/certs'
kubeinit_registry_directory_data: '{{ kubeinit_registry_directory }}/data'
kubeinit_registry_port: 5000
kubeinit_registry_host: "{{ hostvars[ groups['all'] | map('regex_search','^.*service.*$')\
\ | select('string') | list | first ].inventory_hostname }}"
kubeinit_registry_fqdn: '{{ kubeinit_registry_host }}.{{ kubeinit_inventory_cluster_name
}}.{{ kubeinit_inventory_cluster_domain }}'
kubeinit_registry_fqdn_alt: registry.{{ kubeinit_inventory_cluster_name }}.{{ kubeinit_inventory_cluster_domain
}}
kubeinit_registry_uri: '{{ kubeinit_registry_fqdn }}:{{ kubeinit_registry_port }}'
kubeinit_registry_auth_file: registry-auths.json
kubeinit_registry_pod_name: kubeinit-registry
kubeinit_registry_certificate_country: US
kubeinit_registry_certificate_state: MyState
kubeinit_registry_certificate_locality: MyCity
kubeinit_registry_certificate_organization: MyCompany
kubeinit_registry_certificate_organizational_unit: MyDepartment
Molecule Scenarios¶
Molecule is being used to test the “kubeinit_registry” role. The following section highlights the drivers in service and provides an example playbook showing how the role is leveraged.