samsung-cnct · davidewatson · Feb 15, 2017 · Feb 13, 2017 · Feb 1, 2017 · Feb 2, 2017
diff --git a/ansible/roles/kraken.fabric/kraken.fabric.flannel/defaults/main.yml b/ansible/roles/kraken.fabric/kraken.fabric.flannel/defaults/main.yml
@@ -1 +1,2 @@
 ---
+api_servers: "{{ lookup('file', kubeconfig)|from_yaml|json_query('clusters[*].cluster.server') }}"
diff --git a/ansible/roles/kraken.fabric/kraken.fabric.flannel/tasks/main.yml b/ansible/roles/kraken.fabric/kraken.fabric.flannel/tasks/main.yml
@@ -12,6 +12,13 @@
   template: src=config.yaml.part.jinja2
             dest="{{ config_base | expanduser }}/{{kraken_config.cluster}}/fabric/config.yaml"
 
+- name: Wait for api server to become available in case it's not
+  wait_for:
+    host: "{{ item|regex_replace('https://','') }}"
+    port: 443
+    timeout: 600
+  with_items: "{{ api_servers }}"
+
 - name: Ensure the kube-networking namespace exists
   command: >
     kubectl --kubeconfig={{ kubeconfig | expanduser }} create namespace kube-networking

diff --git a/ansible/roles/kraken.provider/kraken.provider.aws/tasks/aws-action.yaml b/ansible/roles/kraken.provider/kraken.provider.aws/tasks/aws-action.yaml
@@ -26,7 +26,7 @@
 - name: Set the kraken end point fact
   set_fact:
     kraken_endpoint: "{{ endpoint_result.stdout }}"
-  when: kraken_action == 'up'
+  when: endpoint_result|succeeded and not endpoint_result|skipped
 
 - name: Get kraken aws_route53_zone.private_zone.zone_id
   shell: > 
@@ -74,4 +74,4 @@
     - route53_zone
     - aws_prefix
     - terraform.tfstate
-    - terraform.tfstate.backup
+    - terraform.tfstate.backup
diff --git a/ansible/roles/kraken.readiness/tasks/do-wait.yaml b/ansible/roles/kraken.readiness/tasks/do-wait.yaml
@@ -7,8 +7,16 @@
   set_fact: 
     wait_api_start_timestamp: "{{ lookup('pipe','date +%Y%m%d%H%M%S') }}"
 
-- name: Wait for api server to become available
-  wait_for: host={{ kraken_endpoint }} port=443 timeout={{ readiness_wait }}
+- name: Fetch k8s api server address
+  set_fact:
+    api_servers: "{{ lookup('file', kubeconfig)|from_yaml|json_query('clusters[*].cluster.server') }}"
+
+- name: Wait for api server to become available in case it's not
+  wait_for:
+    host: "{{ item|regex_replace('https://','') }}"
+    port: 443
+    timeout: "{{ readiness_wait }}"
+  with_items: "{{ api_servers }}"
 
 - name: Get timestamp after api server wait
   set_fact: 

diff --git a/ansible/roles/kraken.services/defaults/main.yml b/ansible/roles/kraken.services/defaults/main.yml
@@ -2,4 +2,5 @@
 kubeconfig: "{{ config_base | expanduser }}/{{kraken_config.cluster}}/admin.kubeconfig"
 helm_home: "{{ config_base | expanduser }}/{{kraken_config.cluster}}/.helm"
 tiller: tiller-deploy
-tiller_image: 
+tiller_image: 
+api_servers: "{{ lookup('file', kubeconfig)|from_yaml|json_query('clusters[*].cluster.server') }}"
diff --git a/ansible/roles/kraken.services/tasks/kill-services.yaml b/ansible/roles/kraken.services/tasks/kill-services.yaml
@@ -3,7 +3,7 @@
   command: >
     kubectl --kubeconfig={{ kubeconfig }} get services --all-namespaces -o json
   register: added_services
-  when: kraken_action == 'down'
+  when: kraken_action == 'down' and kubeconfig|is_file
   ignore_errors: yes
 
 - name: Register services fact
@@ -18,17 +18,6 @@
   when: kraken_action == 'down'
   ignore_errors: yes
 
-- name: Clean up services
-  command: >
-    kubectl --kubeconfig={{ kubeconfig }} delete --namespace {{ item.metadata.namespace }} svc {{ item.metadata.name }}
-  with_items: "{{ the_services }}"
-  when: item.status.loadBalancer.ingress[0].hostname is defined and kraken_action == 'down'
-  ignore_errors: yes
-
-- name: Pauase to let services come down
-  pause: minutes=5
-  when: kraken_action == 'down'
-
 - name: Clean up releases
   command: >
     helm delete --purge {{ item.name }}
@@ -37,16 +26,49 @@
     HELM_HOME: "{{ helm_home }}"
   with_items: "{{cluster_services}}"
   ignore_errors: yes
-  when: tiller_present|success
+  when: tiller_present|succeeded and not tiller_present|skipped
 
 - name: Clean up tiller if present
   command: >
     kubectl --kubeconfig={{ kubeconfig }} delete deployment {{ tiller }} --namespace=kube-system
-  when: tiller_present|success
+  when: tiller_present|succeeded and not tiller_present|skipped
+
+- name: Clean up services
+  command: >
+    kubectl --kubeconfig={{ kubeconfig }} delete --namespace {{ item.metadata.namespace }} svc {{ item.metadata.name }}
+  with_items: "{{ the_services }}"
+  when: item.status.loadBalancer.ingress[0].hostname is defined and kraken_action == 'down'
+  ignore_errors: yes
 
 - name: Delete all service namespaces
   command: >
     kubectl --kubeconfig={{ kubeconfig }} delete namespace {{ item }}
   with_items: "{{ cluster_namespaces }}"
   when: cluster_namespaces is defined
   ignore_errors: yes
+
+- name: Get vpc id
+  shell: "terraform state show -state={{ config_base | expanduser }}/{{kraken_config.cluster}}/terraform.tfstate module.vpc.aws_vpc.vpc  | awk '/^id/{print $3}'"
+  register: terraform_state_show
+  when: kraken_action == 'down'
+  changed_when: false
+
+- name: Set vpc_id fact
+  set_fact:
+    vpcid: "{{ terraform_state_show.stdout }}"
+  when: kraken_action == 'down'
+
+- name: Wait for ELBs to be deleted
+  action:
+    module: ec2_elb_facts
+    region: "{{ kraken_config.providerConfig.region }}"
+    aws_access_key: "{{ kraken_config.providerConfig.authentication.accessKey or omit}}"
+    aws_secret_key: "{{ kraken_config.providerConfig.authentication.accessSecret or omit }}"
+    profile: "{{ kraken_config.providerConfig.authentication.credentialsProfile or omit }}"
+  register: elb_facts
+  vars:
+    vpc_lookup: "elbs[?vpc_id=='{{ vpcid }}']"
+  when: kraken_action == 'down' and kraken_config.provider == 'aws'
+  until: (elb_facts is none) or (elb_facts|json_query(vpc_lookup) is none) or (elb_facts|json_query(vpc_lookup)|length <= 1)
+  retries: 600
+  delay: 1
diff --git a/ansible/roles/kraken.services/tasks/main.yml b/ansible/roles/kraken.services/tasks/main.yml
@@ -21,6 +21,7 @@
   shell: >
     kubectl --kubeconfig={{ kubeconfig }} get deployment {{ tiller }} --namespace=kube-system
   register: tiller_present
+  when: kubeconfig|is_file
   ignore_errors: yes
 
 - include: kill-services.yaml

diff --git a/ansible/roles/kraken.services/tasks/run-services.yaml b/ansible/roles/kraken.services/tasks/run-services.yaml
@@ -25,6 +25,13 @@
     helm_init_command: "{{helm_command}} init --tiller-image {{ tiller_image }}"
   when: (tiller_image is defined) and (tiller_image is not none) and (tiller_image|trim != '')
 
+- name: Wait for api server to become available in case it's not
+  wait_for:
+    host: "{{ item|regex_replace('https://','') }}"
+    port: 443
+    timeout: 600
+  with_items: "{{ api_servers }}"
+
 - name: Init helm dry-run
   command: >
     {{helm_init_command}} --dry-run
@@ -45,8 +52,13 @@
   retries: 60 
   delay: 1
 
-- name: Give tiller rc a chance to fully init
-  pause: seconds=60
+- name: Wait for tiller to be ready
+  command: "kubectl --kubeconfig={{ kubeconfig | expanduser }} --namespace=kube-system get deploy tiller-deploy -o json"
+  register: output
+  until: ((output.stdout|from_json).status.availableReplicas|default(0)) > 0
+  retries: 600
+  delay: 1
+  changed_when: false
 
 - name: Remove helm repositories
   command: >
Original file line number	Diff line number	Diff line change
		@@ -1 +1,2 @@
		---
		api_servers: "{{ lookup('file', kubeconfig)\|from_yaml\|json_query('clusters[*].cluster.server') }}"