bump: update kubernetes metrics server to latest

Signed-off-by: Gerard Vanloo <gerard.vanloo@ibm.com>

Author: Red-GV

sre/dev/local_cluster/kind-config.yaml

@@ -3,3 +3,11 @@ apiVersion: kind.x-k8s.io/v1alpha4
 name: kind-cluster
 nodes:
   - role: control-plane
+    kubeadmConfigPatches:
+      - |
+        apiVersion: kubeadm.k8s.io/v1beta4
+        kind: ClusterConfiguration
+      - |
+        apiVersion: kubelet.config.k8s.io/v1beta1
+        kind: KubeletConfiguration
+        serverTLSBootstrap: true

sre/roles/tools/tasks/install.yaml

@@ -1,4 +1,43 @@
 ---
+- name: Retrieve all kubelet-serving certificates
+  kubernetes.core.k8s_info:
+    api_version: certificates.k8s.io/v1
+    kind: CertificateSigningRequest
+    kubeconfig: "{{ tools_cluster.kubeconfig }}"
+    field_selectors:
+      - spec.signerName=kubernetes.io/kubelet-serving
+    wait: true
+  register: csr_info
+  when:
+    - tools_cluster.cloud_provider == 'kind'
+
+- name: Approve pending certificates
+  ansible.builtin.command:
+    cmd: kubectl certificate approve {{ item.metadata.name }}
+  environment:
+    KUBECONFIG: "{{ tools_cluster.kubeconfig | ansible.builtin.expanduser }}"
+  register: cert_approve_output
+  changed_when: cert_approve_output.rc == 0
+  loop: "{{ csr_info.resources }}"
+  when:
+    - tools_cluster.cloud_provider == 'kind'
+    - item.status.conditions is not defined
+
+- name: Wait for approvals to clear
+  kubernetes.core.k8s_info:
+    api_version: certificates.k8s.io/v1
+    kind: CertificateSigningRequest
+    kubeconfig: "{{ tools_cluster.kubeconfig }}"
+    name: "{{ item.metadata.name }}"
+    wait: true
+    wait_condition:
+      type: Approved
+      status: "True"
+  loop: "{{ csr_info.resources }}"
+  when:
+    - tools_cluster.cloud_provider == 'kind'
+    - item.status.conditions is not defined
+
 - name: Import Prometheus installation tasks
   ansible.builtin.import_tasks:
     file: install_prometheus.yaml

sre/roles/tools/tasks/install_kubernetes_metrics_server.yaml

@@ -15,7 +15,7 @@
   kubernetes.core.helm:
     chart_ref: metrics-server
     chart_repo_url: https://kubernetes-sigs.github.io/metrics-server/
-    chart_version: 3.12.2
+    chart_version: 3.13.0
     kubeconfig: "{{ tools_cluster.kubeconfig }}"
     release_name: "{{ helm_release.name }}"
     release_namespace: "{{ helm_release.namespace }}"

sre/roles/tools/tasks/reinit_kubernetes_metrics_server.yaml

@@ -18,3 +18,4 @@
     namespace: "{{ helm_release.namespace }}"
     replicas: 1
     wait: true
+    wait_timeout: 60

sre/roles/tools/tasks/reinit_opensearch.yaml

@@ -30,6 +30,8 @@
                   - DELETE
                   - http://opensearch-cluster-master:9200/{{ item.index }}
             restartPolicy: Never
+        ttlSecondsAfterFinished: 60
+    state: present
   loop: "{{ opensearch_deletion_jobs }}"
   loop_control:
     label: job/{{ item.name }}
@@ -39,7 +41,7 @@
     api_version: batch/v1
     kind: Job
     kubeconfig: "{{ tools_cluster.kubeconfig }}"
-    name: opensearch-{{ item.name }}-index-deleter
+    name: "{{ item.name }}"
     namespace: "{{ helm_release.namespace }}"
     wait: true
     wait_condition:
@@ -48,31 +50,3 @@
   loop: "{{ opensearch_deletion_jobs }}"
   loop_control:
     label: job/{{ item.name }}
-
-- name: Delete all jobs
-  kubernetes.core.k8s:
-    kubeconfig: "{{ tools_cluster.kubeconfig }}"
-    resource_definition:
-      apiVersion: batch/v1
-      kind: Job
-      metadata:
-        name: opensearch-{{ item.name }}-index-deleter
-        namespace: "{{ helm_release.namespace }}"
-    state: absent
-  loop: "{{ opensearch_deletion_jobs }}"
-  loop_control:
-    label: job/{{ item.name }}
-
-- name: Delete all job pods
-  kubernetes.core.k8s:
-    delete_all: true
-    kind: Pod
-    kubeconfig: "{{ tools_cluster.kubeconfig }}"
-    label_selectors:
-      - job-name=opensearch-{{ item.name }}-index-deleter
-    namespace: "{{ helm_release.namespace }}"
-    state: absent
-    wait: true
-  loop: "{{ opensearch_deletion_jobs }}"
-  loop_control:
-    label: job/{{ item.name }}