set apiserver etcd-quorum-read Change-Id: I4f4f1feb8ca6e0ceee9ac4f17e9e9da80d2740e4

commit: 4e72dfa72834c8d14312641385e1cf58d79e93c1 [log] [tgz]
author: Tomáš Kukrál <tkukral@mirantis.com> Tue Jan 24 11:59:35 2017 +0100
committer: Tomáš Kukrál <tkukral@mirantis.com> Tue Jan 24 11:59:35 2017 +0100
tree: 80ef3a3252c6b4c69e9e8a4bcab6135a1edb883f
parent: 09407cfa14a4801a5314dcc54f181a96912466be [diff]
diff --git a/kubernetes/files/manifest/kube-apiserver.manifest b/kubernetes/files/manifest/kube-apiserver.manifest
index f8b3cb1..344cfe7 100644
--- a/kubernetes/files/manifest/kube-apiserver.manifest
+++ b/kubernetes/files/manifest/kube-apiserver.manifest

@@ -27,6 +27,7 @@
       --secure-port={{ master.apiserver.get('secure_port', '443') }}
       --bind-address={{ master.apiserver.address }}
       --token-auth-file=/srv/kubernetes/known_tokens.csv
+      --etcd-quorum-read=true
       --v=2
       --allow-privileged=True
       1>>/var/log/kube-apiserver.log 2>&1

diff --git a/kubernetes/master/controller.sls b/kubernetes/master/controller.sls
index fd8435b..418b351 100644
--- a/kubernetes/master/controller.sls
+++ b/kubernetes/master/controller.sls

@@ -76,7 +76,7 @@
     - user: root
     - group: root
     - mode: 644
-    - contents: DAEMON_ARGS=" --insecure-bind-address={{ master.apiserver.insecure_address }} --etcd-servers={% for member in master.etcd.members %}http://{{ member.host }}:4001{% if not loop.last %},{% endif %}{% endfor %} --admission-control=NamespaceLifecycle,LimitRanger,SecurityContextDeny,ServiceAccount,ResourceQuota --service-cluster-ip-range={{ master.service_addresses }} --client-ca-file=/etc/kubernetes/ssl/ca-{{ master.ca }}.crt --basic-auth-file=/srv/kubernetes/basic_auth.csv --tls-cert-file=/etc/kubernetes/ssl/kubernetes-server.crt --tls-private-key-file=/etc/kubernetes/ssl/kubernetes-server.key --secure-port={{ master.apiserver.get('secure_port', '443') }} --bind-address={{ master.apiserver.address }} --token-auth-file=/srv/kubernetes/known_tokens.csv --v=2 --allow-privileged=True"
+    - contents: DAEMON_ARGS=" --insecure-bind-address={{ master.apiserver.insecure_address }} --etcd-servers={% for member in master.etcd.members %}http://{{ member.host }}:4001{% if not loop.last %},{% endif %}{% endfor %} --admission-control=NamespaceLifecycle,LimitRanger,SecurityContextDeny,ServiceAccount,ResourceQuota --service-cluster-ip-range={{ master.service_addresses }} --client-ca-file=/etc/kubernetes/ssl/ca-{{ master.ca }}.crt --basic-auth-file=/srv/kubernetes/basic_auth.csv --tls-cert-file=/etc/kubernetes/ssl/kubernetes-server.crt --tls-private-key-file=/etc/kubernetes/ssl/kubernetes-server.key --secure-port={{ master.apiserver.get('secure_port', '443') }} --bind-address={{ master.apiserver.address }} --token-auth-file=/srv/kubernetes/known_tokens.csv --v=2 --allow-privileged=True --etcd-quorum-read=true"
 
 /etc/default/kube-controller-manager:
   file.managed:
commit	4e72dfa72834c8d14312641385e1cf58d79e93c1	[log] [tgz]
author	Tomáš Kukrál <tkukral@mirantis.com>	Tue Jan 24 11:59:35 2017 +0100
committer	Tomáš Kukrál <tkukral@mirantis.com>	Tue Jan 24 11:59:35 2017 +0100
tree	80ef3a3252c6b4c69e9e8a4bcab6135a1edb883f
parent	09407cfa14a4801a5314dcc54f181a96912466be [diff]