tudattr/ansible
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix(k3s_server): use inventory_hostname for primary detection and delegate token fetch

Browse Source 
Primary server detection previously used ansible_default_ipv4.address compared against
k3s_primary_server_ip, which breaks with --limit since facts are only gathered for the
targeted hosts, causing the variable to resolve to the wrong IP.

- Replace IP comparisons with `inventory_hostname == groups['k3s_server'] | first`
  in main.yaml (primary install, secondary install, kubeconfig tasks)
- Delegate the node-token slurp to the primary server unconditionally so
  pull_token.yaml works correctly when run against any single node with --limit

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
Tuan-Dat Tran
2026-04-21 23:30:57 +02:00
parent c084572521
commit c16e7cf740
2 changed files with 10 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
roles/k3s_server/tasks/main.yaml
View File

@@ -15,15 +15,15 @@
- name: Install primary k3s server
include_tasks: primary_installation.yaml
when: ansible_default_ipv4.address == k3s_primary_server_ip
when: inventory_hostname == groups['k3s_server'] | first
- name: Get token from primary k3s server
include_tasks: pull_token.yaml
- name: Install seconary k3s servers
include_tasks: secondary_installation.yaml
when: ansible_default_ipv4.address != k3s_primary_server_ip
when: inventory_hostname != groups['k3s_server'] | first
- name: Set kubeconfig on localhost
include_tasks: create_kubeconfig.yaml
when: ansible_default_ipv4.address == k3s_primary_server_ip
when: inventory_hostname == groups['k3s_server'] | first

14
roles/k3s_server/tasks/pull_token.yaml
View File

@@ -1,15 +1,15 @@
- name: Get K3s token from the first server
when: ansible_default_ipv4.address == k3s_primary_server_ip
- name: Get K3s token from the primary server
ansible.builtin.slurp:
src: /var/lib/rancher/k3s/server/node-token
register: k3s_token
register: k3s_token_raw
delegate_to: "{{ groups['k3s_server'] | first }}"
run_once: true
become: true
- name: Set fact on k3s_primary_server_ip
- name: Set k3s_token fact
ansible.builtin.set_fact:
k3s_token: "{{ k3s_token['content'] | b64decode | trim }}"
when:
- ansible_default_ipv4.address == k3s_primary_server_ip
k3s_token: "{{ k3s_token_raw['content'] | b64decode | trim }}"
run_once: true
- name: Write K3s token to local file for encryption
ansible.builtin.copy: