Add support for setting custom node taints (#3774)

Introduced variable node_taints which can be set in inventory for specific hosts or in group_vars, which generates --register-with-taints command line argument for kubelet.
2026-02-01 09:38:12 -03:30 · 2018-11-28 00:56:49 +01:00
parent 92274a74f7
commit 8331f7b056
3 changed files with 12 additions and 3 deletions
--- a/docs/vars.md
+++ b/docs/vars.md
@@ -126,6 +126,13 @@ node_labels:
  label1_name: label1_value
  label2_name: label2_value
 ```
+* *node_taints* - Taints applied to nodes via kubelet --register-with-taints parameter.
+  For example, taints can be set in the inventory as variables or more widely in group_vars.
+  *node_taints* has to be defined as a list of strings in format `key=value:effect`, e.g.:
+```
+node_taints:
+  - "node.example.com/external=true:NoSchedule"
+```
 * *podsecuritypolicy_enabled* - When set to `true`, enables the PodSecurityPolicy admission controller and defines two policies `privileged` (applying to all resources in `kube-system` namespace and kubelet) and `restricted` (applying all other namespaces).
  Addons deployed in kube-system namespaces are handled.
 * *kubernetes_audit* - When set to `true`, enables Auditing.