mirror of
https://github.com/kubernetes-sigs/kubespray.git
synced 2026-02-17 03:00:07 -03:30
20df44521d
* Feat: add external OCI cloud controller manager template & variable Signed-off-by: tico88612 <17496418+tico88612@users.noreply.github.com> * Feat: add external OCI cloud controller manager workflow Signed-off-by: tico88612 <17496418+tico88612@users.noreply.github.com> * Feat: migrate external OCI CCM config check from OCI cloud provider Signed-off-by: tico88612 <17496418+tico88612@users.noreply.github.com> * cloud_controller: oracle: simpler asserts Make the asserts check for Oracle Cloud Infrastructure external cloud controller more compact, and hence readable. Allows to put them back in the main tasks for less back and forth when reading the code. --------- Signed-off-by: tico88612 <17496418+tico88612@users.noreply.github.com> Co-authored-by: Max Gautier <mg@max.gautier.name>
46 lines
1.6 KiB
Django/Jinja
46 lines
1.6 KiB
Django/Jinja
{% if external_oracle_auth_use_instance_principals %}
|
|
useInstancePrincipals: true
|
|
{% endif %}
|
|
|
|
auth:
|
|
{% if external_oracle_auth_use_instance_principals %}
|
|
useInstancePrincipals: true
|
|
{% else %}
|
|
useInstancePrincipals: false
|
|
region: {{ external_oracle_auth_region }}
|
|
tenancy: {{ external_oracle_auth_tenancy }}
|
|
user: {{ external_oracle_auth_user }}
|
|
key: |
|
|
{{ external_oracle_auth_key }}
|
|
{% if external_oracle_auth_passphrase is defined %}
|
|
# Omit if there is not a password for the key
|
|
passphrase: {{ external_oracle_auth_passphrase }}
|
|
{% endif %}
|
|
fingerprint: {{ external_oracle_auth_fingerprint }}
|
|
{% endif %}
|
|
|
|
compartment: {{ external_oracle_compartment }}
|
|
|
|
vcn: {{ external_oracle_vcn }}
|
|
|
|
loadBalancer:
|
|
subnet1: {{ external_oracle_load_balancer_subnet1 }}
|
|
subnet2: {{ external_oracle_load_balancer_subnet2 }}
|
|
|
|
securityListManagementMode: {{ external_oracle_load_balancer_security_list_management_mode }}
|
|
|
|
{% if external_oracle_security_lists is defined and external_oracle_security_lists | length > 0 %}
|
|
# Optional specification of which security lists to modify per subnet. This does not apply if security list management is off.
|
|
securityLists:
|
|
{% for subnet_ocid, list_ocid in external_oracle_load_balancer_security_lists.items() %}
|
|
{{ subnet_ocid }}: {{ list_ocid }}
|
|
{% endfor %}
|
|
{% endif %}
|
|
|
|
# Optional rate limit controls for accessing OCI API
|
|
rateLimiter:
|
|
rateLimitQPSRead: {{ external_oracle_ratelimiter_qps_read }}
|
|
rateLimitBucketRead: {{ external_oracle_ratelimiter_bucket_read }}
|
|
rateLimitQPSWrite: {{ external_oracle_ratelimiter_qps_write }}
|
|
rateLimitBucketWrite: {{ external_oracle_ratelimiter_bucket_write }}
|