Docker image for the quaternity of gcloud, helm, kubectl and SOPS.
The image also contains:
latestlatest build from mastertagImages will be taged by combination of packed HELM client version, gcloud and build-number, e.g. 2.12.1-228.0.0-68. There will be no git tag anymore. View all available image tags on DockerHub
- Use a fork of this repo
- Add a PR
Passing script with multiple commands
docker run -v /path/to/your/script.sh:/data/commands.sh:ro kiwigrid/gcloud-kubectl-helmPassing script and GCP key-file
docker run -v /path/to/your/script.sh:/data/commands.sh:ro -volume /path/to/your/key-file.json:/data/gcp-key-file.json:ro kiwigrid/gcloud-kubectl-helmdocker run -ti -v /path/to/your/workspace:/data/ kiwigrid/gcloud-kubectl-helm bash
# authenticate and paste token
$ gcloud auth application-default login
# setup kubectl context
$ gcloud container clusters get-credentials
# run helm
$ helm install release /data/your/chart -f values.yaml
# or with sops encrypted secrets file
$ helm secrets install release /data/your/chart -f values.yaml -f secrets.myapp.yamlUsing this image from a CI/CD pipeline is very handy. It's recommended to start the container at the beginning of your pipeline. Afterwards one can pass single commands to running container.
CONTAINER_NAME=gkh-container
# Start container
docker run \
--volume /path/to/your/workdir:/workspace:ro \
--workdir /workspace
--volume /path/to/your/gcp-key-file.json:/data/gcp-key-file.json:ro \
--env GOOGLE_APPLICATION_CREDENTIALS=/data/gcp-key-file.json
--rm \
-t \
--name $CONTAINER_NAME \
kiwigrid/gcloud-kubectl-helm:latest /bin/bash
# Execute arbitrary commands
docker exec $CONTAINER_NAME gcloud auth activate-service-account --key-file=/data/gcp-key-file.json
docker exec $CONTAINER_NAME gcloud config set project my-gcp-project-id
docker exec $CONTAINER_NAME gcloud container clusters get-credentials my-gke-cluster --project my-gcp-project-id --zone my-gke-zone
docker exec $CONTAINER_NAME helm list
docker exec $CONTAINER_NAME gcloud deployment-manager deployments describe my-deployment
# Kill
docker kill $CONTAINER_NAMEAuthorize access to GCP with a service account and fetch credentials for running cluster
gcloud auth activate-service-account --key-file=/data/gcp-key-file.json
gcloud container clusters get-credentials <clusterName> --project <projectId> [--region=<region> | --zone=<zone>]
helm list
kubectl get pods --all-namespacesTo import public GPG keys from keyserver, add them space separated to GPG_PUB_KEYS env variable.
docker run -e GPG_PUB_KEYS=<key id> kiwigrid/gcloud-kubectl-helm:latestTo include adding of distributed helm chart repos, add REPO_YAML_URL as env variable. E.g.
docker run -e REPO_YAML_URL=https://raw.githubusercontent.com/helm/hub/master/config/repo-values.yaml kiwigrid/gcloud-kubectl-helm:latestThis repo is inspired by
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent