Différences

Ci-dessous, les différences entre deux révisions de la page.

--- tech:notes_k8s_-_kind_pour_awx [2025/10/29 12:29] – Jean-Baptiste
+++ tech:notes_k8s_-_kind_pour_awx [2026/01/20 10:55] (Version actuelle) – Jean-Baptiste
@@ Ligne 5: / Ligne 5: @@
 Voir :
+* [[Pb cgroup controllers not delegated to non-privileged users - SystemD delegate failed - cgroupControllers]]
 * https://kind.sigs.k8s.io/docs/user/rootless/
-* https://ansible.readthedocs.io/projects/awx-operator/en/latest/installation/kind-install.html#kind-install
+* https://docs.ansible.com/projects/awx-operator/en/latest/installation/kind-install.html
 * https://une-tasse-de.cafe/blog/kind/
 * https://ansible.readthedocs.io/projects/awx-operator/en/latest/user-guide/advanced-configuration/custom-volume-and-volume-mount-options.html
+* https://wiki.evolix.org/HowtoAWX
 Voir aussi :
@@ Ligne 27: / Ligne 29: @@
 * Contrôle des extravars (surveys)
 * Planification (schedules)
+Reducing complexity
+* EE : software dependencies, portability, content separation
@@ Ligne 60: / Ligne 67: @@
 ~~~bash
 KIND_EXPERIMENTAL_PROVIDER=nerdctl
+# nerdctl / kind a besoin de connaitre le chemin de iptables
+export PATH=$PATH:/usr/sbin/
 ~~~
@@ Ligne 111: / Ligne 121: @@
 ~~~
+install Nginx Ingress controller
+~~~bash
+kubectl apply -f https://raw.githubusercontent.com/kubernetes/ingress-nginx/main/deploy/static/provider/kind/deploy.yaml
+~~~
 ------
@@ Ligne 145: / Ligne 160: @@
 https://www.kubernet.dev/fixing-pod-has-unbound-immediate-persistentvolumeclaims-error-in-kubernetes-a-detailed-guide/
 ### Démarage auto
@@ Ligne 188: / Ligne 204: @@
 ~~~
 Voir aussi :
 * https://feldspaten.org/2022/07/09/On-the-joy-of-podman-and-auto-updates/
 * https://github.com/containers/podman/discussions/20218#discussioncomment-7169693
 * https://unix.stackexchange.com/questions/714167/best-practices-for-running-a-rootless-container-as-a-systemd-service-with-user
 ~~~bash
@@ Ligne 201: / Ligne 218: @@
 ## Pb
+### Err failed to create fsnotify watcher - too many open files
-### Err failed to create fsnotify watcher: too many open files
 ~~~bash
@@ Ligne 212: / Ligne 228: @@
 Solution
-~~~
-#sudo sysctl -w fs.inotify.max_user_watches=2099999999
-#sudo sysctl -w fs.inotify.max_user_instances=2099999999
-#sudo sysctl -w fs.inotify.max_queued_events=2099999999
-#sysctl -w fs.inotify.max_user_watches=1048576
+''/etc/sysctl.d/10-k8s.conf''
-#sysctl -w fs.inotify.max_user_instances=8192
-~~~
-''/etc/sysctl.d/10-k8s.conf''
 ~~~python
 # Raise inotify resource limits
 fs.inotify.max_user_instances = 1024
 fs.inotify.max_user_watches = 524288
 ~~~
 ~~~bash
@@ Ligne 234: / Ligne 242: @@
+## AWX
-## AWX
 Voir :
-* https://ansible.readthedocs.io/projects/awx-operator/en/latest/installation/basic-install.html
+  * https://ansible.readthedocs.io/projects/awx-operator/en/latest/installation/basic-install.html
-* https://ansible.readthedocs.io/projects/awx-operator/en/latest/installation/kind-install.html
+  * https://ansible.readthedocs.io/projects/awx-operator/en/latest/installation/kind-install.html
 ~~~bash
@@ Ligne 267: / Ligne 275: @@
-FIXME
+------
+~~~yaml
+kind: Cluster
+apiVersion: kind.x-k8s.io/v1alpha4
+nodes:
+- role: control-plane
+  extraMounts:
+    - containerPath: /data/postgres-13
+      hostPath: /data/postgres-13
+    - containerPath: /files
+      hostPath: /data/files
+      readOnly: true
+    - containerPath: /shares
+      hostPath: /data/shares
+~~~
+~~~bash
+kind create cluster --config cluster-config.yml
+kubectl get pods -A -w
+git clone https://github.com/ansible/awx-operator.git
+cd awx-operator
+export NAMESPACE=awx
+kubectl create ns ${NAMESPACE}
+kubectl config set-context --current --namespace=$NAMESPACE
+export RELEASE_TAG=`curl -s https://api.github.com/repos/ansible/awx-operator/releases/latest | grep tag_name | cut -d '"' -f 4`
+git checkout $RELEASE_TAG
+cd config/manager
+~/code/awx-operator/bin/kustomize edit set image controller=quay.io/ansible/awx-operator:0.14.0
+cd ~/code/awx-operator/
+~/code/awx-operator/bin/kustomize build config/default | kubectl apply -f -
+kubectl get pods -w
+tee awx-pv.yml <<EOF
+---
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: awx-postgres-13-volume
+spec:
+  accessModes:
+    - ReadWriteOnce
+  persistentVolumeReclaimPolicy: Retain
+  capacity:
+    storage: 8Gi
+  storageClassName: local-path
+  hostPath:
+    path: /data/postgres-13
+---
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: awx-projects-volume
+spec:
+  accessModes:
+    - ReadWriteOnce
+  persistentVolumeReclaimPolicy: Retain
+  capacity:
+    storage: 2Gi
+  storageClassName: local-path
+  hostPath:
+    path: /data/projects
+EOF
+kubectl apply -f awx-pv.yml
+kubectl get pv -w
+tee awx-pvc.yml <<EOF
+---
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: awx-projects-claim
+spec:
+  accessModes:
+    - ReadWriteOnce
+  volumeMode: Filesystem
+  resources:
+    requests:
+      storage: 2Gi
+  storageClassName: local-path
+EOF
+kubectl apply -f awx-pvc.yml
+kubectl get pvc -w
+tee awx-deployment.yml<<EOF
+---
+apiVersion: awx.ansible.com/v1beta1
+kind: AWX
+metadata:
+  name: awx
+spec:
+  # These parameters are designed for use with AWX Operator 0.29.0
+  # and AWX 21.6.0
+  postgres_configuration_secret: awx-postgres-configuration
+  postgres_storage_class: local-path
+  postgres_storage_requirements:
+    requests:
+      storage: 8Gi
+  projects_persistence: true
+  garbage_collect_secrets: false
+  projects_existing_claim: awx-projects-claim
+  postgres_init_container_resource_requirements: {}
+  postgres_resource_requirements: {}
+  web_resource_requirements: {}
+  task_resource_requirements: {}
+  ee_resource_requirements: {}
+  service_type: ClusterIP
+  ingress_type: ingress
+  hostname: awx.robert.local
+  ingress_annotations: |
+    kubernetes.io/ingress.class: traefik
+EOF
+kubectl apply -f awx-deployment.yml
+kubectl get AWX -w
+# nerdctl exec -ti kind-control-plane bash
+# mkdir /data/postgres-13
+~~~