| classes: |
| - service.etcd.server.cluster |
| - service.kubernetes.control.cluster |
| - system.haproxy.proxy.listen.kubernetes.apiserver |
| - system.keepalived.cluster.instance.kube_api_server_vip |
| - system.linux.system.repo.docker_legacy |
| - system.salt.minion.cert.etcd_server |
| - system.kubernetes.master.cluster |
| - system.kubernetes.control.roles.cluster-admin |
| - cluster.k8s-ha-calico-cloudprovider.kubernetes.compute |
| - cluster.k8s-ha-calico-cloudprovider |
| parameters: |
| _param: |
| keepalived_k8s_apiserver_vip_interface: ${_param:primary_interface} |
| keepalived_k8s_apiserver_vip_address: ${_param:kubernetes_control_address} |
| keepalived_k8s_apiserver_vip_password: password |
| etcd: |
| server: |
| source: |
| engine: docker_hybrid |
| ssl: |
| enabled: true |
| setup: |
| calico: |
| key: /calico/v1/ipam/v4/pool/${_param:calico_private_network}-${_param:calico_private_netmask} |
| value: '{"masquerade":true,"cidr":"${_param:calico_private_network}/${_param:calico_private_netmask}"}' |
| kubernetes: |
| common: |
| addons: |
| netchecker: |
| enabled: true |
| helm: |
| enabled: false |
| coredns: |
| enabled: ${_param:kubernetes_coredns_enabled} |
| externaldns: |
| enabled: ${_param:kubernetes_externaldns_enabled} |
| image: ${_param:kubernetes_externaldns_image} |
| provider: ${_param:kubernetes_externaldns_provider} |
| cloudprovider: |
| enabled: true |
| provider: openstack |
| params: |
| auth_url: ${_param:openstack_auth_url} |
| region_name: ${_param:openstack_region_name} |
| tenant_name: ${_param:openstack_tenant_name} |
| username: ${_param:openstack_username} |
| password: ${_param:openstack_password} |
| subnet_id: ${_param:openstack_subnet_id} |
| floating_network_id: ${_param:openstack_floating_network_id} |
| master: |
| etcd: |
| ssl: |
| enabled: true |
| network: |
| calico: |
| enabled: true |
| etcd: |
| ssl: |
| enabled: true |
| namespace: |
| netchecker: |
| enabled: true |