search

techno-tim / k3s-ansible

The easiest way to bootstrap a self-hosted High Availability Kubernetes cluster. A fully automated HA k3s etcd install with kube-vip, MetalLB, and more. Build. Destroy. Repeat.
https://technotim.live/posts/k3s-etcd-ansible/
Apache License 2.0
2.41k stars 1.05k forks source link

add support for provisioning idempotency when using external data source #218

Closed xunkutech closed 1 year ago

xunkutech commented 1 year ago

Proposed Changes

When we use an external data source instead of etcd, we have the possibility to archive idempotency for the initialization of the cluster. The only problem is that we have to keep the random node password of the nodes for rejoining. Considering the security, we use {{ node_password_salt + ansible_hostname | md5 }} as the invariant node password for each node. After that, the nodes can be re-registered to the cluster when the cluster is reinitialized by this playbook.

Checklist

timothystewart6 commented 1 year ago

Going to close this for now since we haven't seen any activity. Feel free to reopen the PR after the items are addressed. Thank you!