Cloudflare

The role performs various tasks related to Cloudflare DNS configuration, as well the external-dns Helm chart deployment, reset and validation.

Role Settings

See the related role settings listed below, defined into main.yaml defaults file.

cloudflare_vars.kubernetes

  • Default value: null

See the related child settings, listed below.

kubernetes.acme

  • Default value: null
acme.server
  • Default value: string, staging, optional production

See the Let’s Encrypt rate limits documentation, for more details.

kubernetes.api

  • Default value: null
api.token
  • Default value: null

Read the API Token tutorial, for more details.

token.key
  • Default value: string, token
token.name
  • Default value: string, cloudflare-api-token
token.value
  • Default value: string

Encrypt the variable with ansible-vault.

kubernetes.helm

  • Default value: null
helm.chart
  • Default value: null
chart.name
  • Default value: string, external-dns
chart.version
  • Default value: string

Visit kubernetes-sigs/external-dns, for latest external-dns-helm-chart release version.

helm.repository
  • Default value: null
repository.name
  • Default value: string, external-dns
repository.org
  • Default value: string, kubernetes-sigs
repository.url
  • Default value: string, https://kubernetes-sigs.github.io

kubernetes.gateway

  • Default value: null

Read the Gateway API tutorial, for more details.

gateway.domain
  • Default value: string, domain.com, optional disabled

kubernetes.namespace

  • Default value: string, kube-system

kubernetes.policy

  • Default value: string, sync

kubernetes.resources

  • Default value: null
resources.limits
  • Default value: null
limits.cpu
  • Default value: string, 400m
limits.memory
  • Default value: string, 256Mi
resources.requests
  • Default value: null
requests.cpu
  • Default value: string, 100m
requests.memory
  • Default value: string, 64Mi

kubernetes.secret

  • Default value: null
secret.key
  • Default value: string, token
secret.name
  • Default value: string, cloudflare-api-token

kubernetes.tls

  • Default value: null
tls.cluster_issuer
  • Default value: null
cluster_issuer.name
  • Default value: string, cloudflare-cluster-issuer
tls.key_prefix
  • Default value: string, cloudflare

Role Tasks

See the related role tasks, listed below.

Facts

Ansible facts, see facts.yaml for details.

Main

Main role related tasks, see main.yaml for details.

Reset

Reset related tasks, see reset.yaml for details.

Validation

Validation related tasks, see validation.yaml for details.

Role Templates

See the related role templates, listed below.

Helm Chart

Helm chart values template, see values.j2 for details.

API Token

Kubernetes Secret resource template, see api_token.j2 for details.

Cluster Issuer

Kubernetes ClusterIssuer resource template, see cluster_issuer.j2 for details.