---
#- name: Add kubernetes repository
#  yumrepo:
#    name: kubernetes
#    description: "Kubernetes Repository"
#    baseurl: https://packages.cloud.google.com/yum/repos/kubernetes-$releasever-x86_64
#    gpgcheck: yes
#    enabled: yes
#    gpgkey: https://packages.cloud.google.com/yum/doc/yum-key.gpg
#    state: present

- name: Add Official kubernetes's repo
  template:
    src: "etc/yum.repos.d/kubernetes.repo.j2"
    dest: "/etc/yum.repos.d/kubernetes.repo"
    group: root
    owner: root
    mode: 0644
  when:
    - not ansible_machine == "armv7l"
    - not ansible_machine == "armv6l"

- name: Register kubernetes firewalld service
  template:
    src: "etc/firewalld/services/kubernetes.xml.j2"
    dest: "/etc/firewalld/services/kubernetes.xml"
    group: root
    owner: root
    mode: 0644
  register: need_firewalld_reload
  when:
    - kubernetes_server == true

#- name: Reload firewalld configuration
#  service:
#    name: firewalld
#    state: reloaded
#    enabled: yes
#  when:
#    - kubernetes_server == true

- name: reload firewalld to refresh service list
  command: firewall-cmd --reload
  when:
    - need_firewalld_reload is changed
    - kubernetes_server == true

# Définir interface
- name: Open Firewalld
  firewalld:
    service: kubernetes
    permanent: true
    state: enabled
    immediate: true
  when:
#    - need_firewall == true
#    - firewall_name == "firewalld"
    - kubernetes_server == true