External-Mirrors/kubespray
2
0
Fork 0
mirror of https://github.com/kubernetes-sigs/kubespray.git synced 2026-03-02 01:08:54 -03:30
Code Issues Packages Projects Releases Wiki Activity

Use node cert for etcd tasks instead of delegating to first etcd (#2386)

Browse Source 
For etcdctl commands, use admin cert instead of node because this file
doesn't exist on etcd only hosts.
This commit is contained in:
Matthew Mosesohn
2018-02-27 22:23:51 +03:00
committed by GitHub
parent 810c10a0e9
commit bc0fc5df98
3 changed files with 10 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
roles/network_plugin/calico/rr/tasks/main.yml
View File

@@ -50,8 +50,8 @@
command: |-
{{ bin_dir }}/etcdctl \
--peers={{ etcd_access_addresses }} \
--cert-file {{ etcd_cert_dir }}/node-{{ groups['etcd'][0] }}.pem \
--key-file {{ etcd_cert_dir }}/node-{{ groups['etcd'][0] }}-key.pem \
--cert-file {{ etcd_cert_dir }}/admin-{{ groups['etcd'][0] }}.pem \
--key-file {{ etcd_cert_dir }}/admin-{{ groups['etcd'][0] }}-key.pem \
set /calico/bgp/v1/rr_v4/{{ rr_ip }} \
'{
"ip": "{{ rr_ip }}",