From 75156749aea0535bafbfca0be9710cec89ca2b56 Mon Sep 17 00:00:00 2001 From: William Wang Date: Mon, 8 Dec 2025 14:41:24 +0800 Subject: [PATCH] fix: worker should not hava kubeconfig Signed-off-by: William Wang --- .../core/roles/kubernetes/join-kubernetes/tasks/main.yaml | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/builtin/core/roles/kubernetes/join-kubernetes/tasks/main.yaml b/builtin/core/roles/kubernetes/join-kubernetes/tasks/main.yaml index 682c1863..f7e63ff0 100644 --- a/builtin/core/roles/kubernetes/join-kubernetes/tasks/main.yaml +++ b/builtin/core/roles/kubernetes/join-kubernetes/tasks/main.yaml @@ -14,12 +14,14 @@ /usr/local/bin/kubeadm join --config=/etc/kubernetes/kubeadm-config.yaml --ignore-preflight-errors=FileExisting-crictl,ImagePull - name: Join | Synchronize kubeconfig to remote node for current user + when: .groups.kube_control_plane | default list | has .inventory_hostname copy: src: >- {{ .work_dir }}/kubekey/kubeconfig dest: ~/.kube/config - name: Join | Synchronize kubeconfig to remote node for root + when: .groups.kube_control_plane | default list | has .inventory_hostname copy: src: >- {{ .work_dir }}/kubekey/kubeconfig @@ -30,15 +32,18 @@ block: - name: Join | Remove master and control-plane taints from node ignore_errors: true + delegate_to: "{{ .init_kubernetes_node }}" command: | /usr/local/bin/kubectl taint nodes {{ .hostname }} node-role.kubernetes.io/master=:NoSchedule- /usr/local/bin/kubectl taint nodes {{ .hostname }} node-role.kubernetes.io/control-plane=:NoSchedule- - name: Join | Add worker label to node + delegate_to: "{{ .init_kubernetes_node }}" command: | /usr/local/bin/kubectl label --overwrite node {{ .hostname }} node-role.kubernetes.io/worker= - name: Join | Add custom annotations to node when: .annotations | empty | not + delegate_to: "{{ .init_kubernetes_node }}" command: | kubectl annotate {{ .hostname }} {{- range $k,$v := .annotations }}{{ printf "%s=%s" $k $v}} {{- end }}