Fixed a lot during reinstall

README.md

@@ -29,14 +29,30 @@ grep 'OBJC_DISABLE_INITIALIZE_FORK_SAFETY' ~/.zshrc || echo "OBJC_DISABLE_INITIA
 source ~/.zshrc
 ```
 
+## Install on Linux (non-root)
+```bash
+mkdir -p "${HOME}/bin"
+if [[ "${PATH}" != *"${HOME}/bin"* ]]; then echo 'PATH="${HOME}/bin:${PATH}"' >> ~/.bash_profile; source ~/.bash_profile; fi
+curl -L "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl" -o "${HOME}/bin/kubectl"
+curl -L "https://github.com/siderolabs/talos/releases/download/latest/talosctl-linux-amd64"  -o "${HOME}/bin/talosctl"
+curl -L "https://get.helm.sh/helm-$(curl -s https://api.github.com/repos/helm/helm/releases/latest | jq -r '.tag_name' )-linux-amd64.tar.gz" | tar -C "${HOME}/bin" -xpzf - linux-amd64/helm --strip-components 1  
+chmod +x "${HOME}/bin/"*
+```
+
 ## Usage
 ### First time: Login on Vaultwarden:
 ```zsh
 bw  login
 ```
 
-### Execute playbook
+### Execute playbook - VPSses
 ```zsh
-BW_SESSION=$(bw unlock --raw)  bw sync
+bw sync
 BW_SESSION=$(bw unlock --raw)  ansible-playbook  site.yml  --limit customer_deovero
+```
+
+### Execute playbook - (Re)install Talos on Hardware
+```zsh
+bw sync
+BW_SESSION=$(bw unlock --raw)  ansible-playbook  ./playbooks/snel.kubernetes-cluster/dci_reinstall_talos.yml  --limit customer_deovero
 ```

configs/talos/talos-patch-control.yaml

@@ -1,6 +1,6 @@
 machine:
   nodeLabels:
     # These are deprecated but make Rancher happy
-    node-role.kubernetes.io/control-plane: true
+    node-role.kubernetes.io/control-plane: ""
     node-role.kubernetes.io/etcd: true
     node-role.kubernetes.io/master: true

configs/talos/talos-patch.yaml

@@ -3,7 +3,7 @@ machine:
   install:
     bootloader: true
     extensions:
-      - image: ghcr.io/siderolabs/iscsi-tools:v0.1.4
+      - image: ghcr.io/siderolabs/iscsi-tools:v0.1.3 # v0.1.4 is crashing on Talos 1.5.x
     wipe: true
   kubelet:
     registerWithFQDN: true

inventory/customer_deovero.yml

@@ -1,9 +1,6 @@
 ---
 kubernetes:
   children:
-    ansible_host:
-      hosts:
-        localhost:
     customer_deovero:
       vars:
         cluster_name: deovero.k8s.snel.com
@@ -17,7 +14,7 @@ kubernetes:
             talos_control_nodes:
               hosts:
                 c1.deovero.k8s.snel.com:
-                  ansible_host: 185.62.56.239
+                  ansible_host: 185.62.58.191
                 c2.deovero.k8s.snel.com:
                   ansible_host: 185.62.58.208
                 c3.deovero.k8s.snel.com:

inventory/general_k8s.yml

@@ -10,3 +10,11 @@ kubernetes:
     debian:
       children:
         ubuntu:
+control_hosts:
+  children:
+    ansible_host:
+      hosts:
+        localhost:
+    jump_host:
+      hosts:
+        jump.snel.com:

inventory/group_vars/all.yml

@@ -41,3 +41,11 @@ cloudflare_token: !vault |
   3635623433346165320a373533323734343764393761653036383961623931333165656537306464
   62393830623464333330316439376164636537366363333336363762643434373534383236613034
   6539346663303038376533346131313634643939386235323831
+hostbill_api_id: 970e6844d8552807fa1a
+hostbill_api_key: !vault |
+  $ANSIBLE_VAULT;1.1;AES256
+  63313930386465313737643634346263623530353333363539616231376636313235313032633339
+  6161303463333534313961623539343232323838396234650a616138333932373066366635353336
+  64383731393231613237383361633830666538663039396539373234393836373565363565636137
+  6263316436363862360a303862356431376230623664616361663637363632303864343030356235
+  34663663343634613663353863366261353430383031623038386461373439663837

inventory/host_vars/jump.snel.com.yml

@@ -0,0 +1,2 @@
+---
+ansible_user: deovero-jeroen