k3s with secrets encryption

main
Ricard Illa 2022-11-02 13:29:32 +01:00
parent 669988c9f3
commit aee69b212b
4 changed files with 10 additions and 3 deletions

View File

@ -38,6 +38,9 @@ all:
lbu_media: mmcblk0p2 lbu_media: mmcblk0p2
lbu_backupdir: /media/mmcblk0p2 lbu_backupdir: /media/mmcblk0p2
k3s_args:
- --secrets-encryption
dmcrypt_targets: dmcrypt_targets:
- name: "WDC WDS400T1R0A" - name: "WDC WDS400T1R0A"
target: "disk0" target: "disk0"

View File

@ -0,0 +1 @@
k3s_args: []

View File

@ -41,9 +41,9 @@
access_time: preserve access_time: preserve
- name: copy service file - name: copy service file
copy: template:
src: init.d/k3s src: init.d/k3s.j2
dest: /etc/init.d dest: /etc/init.d/k3s
mode: '0755' mode: '0755'
when: ansible_distribution == "Alpine" when: ansible_distribution == "Alpine"

View File

@ -13,6 +13,9 @@ supervisor=supervise-daemon
name=k3s name=k3s
command="/usr/local/bin/k3s" command="/usr/local/bin/k3s"
command_args="server \ command_args="server \
{% for arg in k3s_args %}
{{ arg }} \
{% endfor %}
>>/var/log/k3s.log 2>&1" >>/var/log/k3s.log 2>&1"
output_log=/var/log/k3s.log output_log=/var/log/k3s.log