search

atomist / sdm-pack-k8s

Extension Pack for an Atomist SDM to integrate Kubernetes deployments
Apache License 2.0
3 stars 2 forks source link

Support Kubernetes credential helpers #25

Closed ddgenome closed 5 years ago

ddgenome commented 5 years ago

Currently only in-cluster and kubeconfig with static credential authentication is supported. Add support for using credentials helpers like those used by EKS and GKE.

AdilusPrimus commented 5 years ago

EKS Use case: Id did set the KUBECONFIG variable pointing on my ~/.kube/config and I did define as well an ENV variable called AWS_PROFILE pointing on ~/.aws/credentials. It does recognize as seen in the logs, the right Kubernetes server as currently configured locally on my system: {"url":"https://7XXXX00E61.sk1.us-east-1.eks.amazonaws.com","version":"v1beta1","path":"/apis/apps/v1beta1","http":{"requestOptions":{"baseUrl":"https://XXXX0E61.sk1.us-east-1.eks.amazonaws.com", but it doesn't seem to be able to use the auth helpers as discussed with @ddgenome here: failed: Failed to create namespace testing: namespaces is forbidden: User "system:anonymous" cannot create namespaces at the cluster scope I'll try to adapt the scripts as documented in the following example of the js k8s library integrated in the atomist k8s plugin: https://github.com/godaddy/kubernetes-client/blob/master/examples/iam-auth.js Thanks @ddgenome for your time!