kubes 0.6.2 → 0.6.7

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 4068263aefa8212b17485e3a257813b806e0efc0617c01e7210db576759c2f27
-  data.tar.gz: e649b39644516f59a09c08ec33d05c9ceb9adde006c6bda386f370bec8e205d8
+  metadata.gz: 2a0f5afc7b3beafd9168f700e9607ada98c314a120cd5e73b4c208ef5df41d8e
+  data.tar.gz: c0e7ebb8ce109a5c289398c4d667d2d8514ce8808ebf8dcb73f07c7413cdcd3a
 SHA512:
-  metadata.gz: 0f65b2736c9967eee1a24b65513bed5bb79177c54f8870871e1428e4ba6ff4b2e2501e5d6a1a78ada9f2db971763a6b1f6d35b4818fcfaf76df95baa37aba049
-  data.tar.gz: cfb8c9a0371d7efd6e9a4d8deeb1c503a18c63fd291a0a89275b9bf84996fa7a6ce7f3dfc7c83e8ff98546fc94c80a65bf41f953121833b0f3614c5a635098de
+  metadata.gz: 24e451e47931af0e0c0ba51ec37d3da01030b88b48cc2054856a9b01a837c46428ebe9ea4eb55002bfa3584dcf6cecf9ee2bb67847831f39539598642b738892
+  data.tar.gz: aa1760c56955f2afb2f71c17fa26479a8f11ac6b021d4f2e269d21ea4e23c0d80a6a032b1e6d1e0d85dc271ec222e40e1ae8416c66f86d9c9cc41e4e31a351e8

data/.gcloudignore

@@ -0,0 +1,22 @@
+*.gem
+*.rbc
+/.bundle
+/.config
+/.yardoc
+/_yardoc
+/coverage
+/doc/
+/Gemfile.lock
+/InstalledFiles
+/lib/bundler/man
+/pkg
+/rdoc
+/spec/reports
+/test/tmp
+/test/version_tmp
+/tmp
+
+.git
+pkg
+docs
+spec

data/.gitignore

@@ -14,4 +14,4 @@
 /spec/reports
 /test/tmp
 /test/version_tmp
-/tmp
+/tmp

data/CHANGELOG.md

@@ -3,6 +3,21 @@
 All notable changes to this project will be documented in this file.
 This project *loosely tries* to adhere to [Semantic Versioning](http://semver.org/), even before v1.0.
 
+## [0.6.7] - 2020-11-12
+- dependencies version bump: kubes_google
+
+## [0.6.6] - 2020-11-12
+- dependencies version bump: kubes_aws and kubes_google
+
+## [0.6.5] - 2020-11-12
+- [#39](https://github.com/boltops-tools/kubes/pull/39) google secrets fetcher option
+
+## [0.6.4] - 2020-11-11
+- [#38](https://github.com/boltops-tools/kubes/pull/38) fix auto auth for docker login to registry, docs for secret base64, update dependencies
+
+## [0.6.3] - 2020-11-11
+- [#37](https://github.com/boltops-tools/kubes/pull/37) Dockerfile for ci and hook updates
+
 ## [0.6.2]
 - [#36](https://github.com/boltops-tools/kubes/pull/36) add plugin hooks support
 

data/Dockerfile

@@ -1,10 +1,10 @@
-FROM ruby:2.7-alpine
+FROM ruby:2.7
 
-RUN apk add --no-cache docker
-RUN apk add --no-cache build-base ruby ruby-dev
-
-RUN wget https://storage.googleapis.com/kubernetes-release/release/v1.18.6/bin/linux/amd64/kubectl
-RUN chmod u+x kubectl && mv kubectl /bin/kubectl
+COPY docker docker
+RUN docker/install/docker.sh
+RUN docker/install/gcloud.sh
+ENV PATH=/opt/google/google-cloud-sdk/bin/:$PATH
+RUN docker/install/kubectl.sh
 
 WORKDIR /app
 ADD . /app

data/Dockerfile.alpine

@@ -0,0 +1,20 @@
+FROM ruby:2.7-alpine
+
+# This Dockerfile is much lighter but won't work with gke whitelisting. Getting this error when the google gke sdk is called:
+#
+#    Error loading shared library ld-linux-x86-64.so.2: No such file or directory #986
+#
+# If you don't need gke whitelisting, then this image should work and is lighter.
+
+RUN apk add --no-cache docker
+RUN apk add --no-cache build-base ruby ruby-dev
+
+RUN wget https://storage.googleapis.com/kubernetes-release/release/v1.19.0/bin/linux/amd64/kubectl
+RUN chmod u+x kubectl && mv kubectl /bin/kubectl
+
+WORKDIR /app
+ADD . /app
+RUN bundle install
+RUN rake install
+
+ENTRYPOINT ["/usr/local/bundle/bin/kubes"]

data/docker/install/docker.sh

@@ -0,0 +1,8 @@
+#!/bin/bash
+
+apt-get update
+apt-get install apt-transport-https ca-certificates curl gnupg-agent software-properties-common -y
+curl -fsSL https://download.docker.com/linux/debian/gpg | apt-key add -
+add-apt-repository "deb [arch=amd64] https://download.docker.com/linux/debian $(lsb_release -cs) stable"
+apt-get update
+apt-get install docker-ce docker-ce-cli containerd.io -y

data/docker/install/gcloud.sh

@@ -0,0 +1,18 @@
+#!/bin/bash -eu
+
+[ -e /opt/google ] && exit
+
+mkdir -p /opt/google
+
+cd /opt/google
+wget https://dl.google.com/dl/cloudsdk/channels/rapid/downloads/google-cloud-sdk-318.0.0-linux-x86_64.tar.gz
+tar zxf google-cloud-sdk*.tar.gz
+rm -f google-cloud-sdk*.tar.gz
+
+/opt/google/google-cloud-sdk/install.sh -q
+
+cat << FOE >> ~/.bash_profile
+
+source /opt/google/google-cloud-sdk/completion.bash.inc
+source /opt/google/google-cloud-sdk/path.bash.inc
+FOE

data/docker/install/kubectl.sh

@@ -0,0 +1,4 @@
+#!/bin/bash
+
+wget https://storage.googleapis.com/kubernetes-release/release/v1.19.0/bin/linux/amd64/kubectl
+chmod u+x kubectl && mv kubectl /bin/kubectl

data/docs/_docs/config/reference.md

@@ -16,6 +16,7 @@ kubectl.order.roles | Change ordering for Kubes Roles. | See [source code](https
 logger | Logger object | Logger.new($stdout)
 logger.level | Logger level. Can also be set with `KUBES_LOG_LEVEL` env var | info
 repo | The Docker repo to use. Required to be set. | nil
+repo_auto_auth | Whether or not to try to auth authorize docker repo registry if not yet logged in. Can also be set with env var `KUBES_REPO_AUTO_AUTO` | true
 skip | List of resources to skip. Can also be set with the `KUBES_SKIP` env var. `KUBES_SKIP` should be a list of strings separated by spaces. It adds onto the `config.skip` option. | []
 state.docker_image_path | Where to store the state file with the last build Docker image. | .kubes/state/docker_image.txt
 suffix_hash | Whether or not to append suffix hash to ConfigMap and Secret | true

data/docs/_docs/helpers.md

@@ -26,16 +26,4 @@ There are also provider-specific helpers:
 * [AWS Helpers]({% link _docs/helpers/aws.md %})
 * [Google Helpers]({% link _docs/helpers/google.md %})
 
-## Generator
-
-To help you get started quickly, you can generate starter helper code.
-
-    $ kubes new helper custom
-          create  .kubes/helpers/custom_helper.rb
-
-.kubes/helpers/custom_helper.rb
-
-```ruby
-module CustomHelper
-end
-```
+{% include helpers/generator.md %}

data/docs/_docs/helpers/aws/secrets.md

@@ -45,11 +45,23 @@ data:
   USER: dGVzdDIK
 ```
 
-The values are automatically base64 encoded.
+By default, the values are automatically base64 encoded.
 
 ## Base64 Option
 
-The value is automatically base64 encoded. You can set the `base64` option to turn on and off the automated base64 encoding.
+By default, the values are automatically base64 encoded. You can change the default behavior with a config option.
+
+.kubes/config.rb
+
+```ruby
+KubesAws.configure do |config|
+  config.secrets.base64 = false
+end
+```
+
+Note: The use of `KubesAws.configure` instead of `Kubes.configure` here.
+
+You can also set the `base64` option to turn on and off the automated base64 encoding on a per secret basis.
 
 ```ruby
 aws_secret("demo-#{Kubes.env}-USER", base64: true)  # default is base64=true

data/docs/_docs/helpers/aws/ssm.md

@@ -44,11 +44,11 @@ data:
   USER: dGVzdDIK
 ```
 
-The values are automatically base64 encoded.
+The values are base64 encoded based on the SSM parameter type. When the type is a `SecureString`, Kubes base64 encodes it. Other types are not base64 encoded.  You can override this behavior with the base64 option, described next.
 
 ## Base64 Option
 
-The value is automatically base64 encoded. You can set the `base64` option to turn on and off the automated base64 encoding.
+The value is automatically base64 encoded based on whether or not the SSM parameter type is a `SecureString`. You can explicitly the `base64` option if needed though. Example:
 
 ```ruby
 aws_ssm("/demo/#{Kubes.env}/USER", base64: true)  # default is base64=true

data/docs/_docs/helpers/custom.md

@@ -38,3 +38,4 @@ data:
   DATABASE_ENDPOINT: <%= database_endpoint %>
 ```
 
+{% include helpers/generator.md %}

data/docs/_docs/helpers/google.md

@@ -14,4 +14,22 @@ List of Google helpers:
 * By default, `KubeGoogle.logger = Kubes.logger`. This means, you can set `logger.level = "debug"` in `.kubes/config.rb` to see more details.
 * The `gcloud` cli is used to create IAM roles. So `gcloud` is required.
 * Note: Would like to use the google sdk, but it wasn't obvious how to do so. PRs are welcomed.
-* The Google helpers are provided by the [boltops-tools/kubes_google](https://github.com/boltops-tools/kubes_google) library.
+* The Google helpers are provided by the [boltops-tools/kubes_google](https://github.com/boltops-tools/kubes_google) library.
+
+## Authentication
+
+Most of the Google helpers use the SDK to call the Google Cloud API. As such, it needs to be authenticated.  You can do this by setting the `GOOGLE_APPLICATION_CREDENTIALS` environment variable point to the path with a service account credentials file. IE:
+
+.bash_profile
+
+    export GOOGLE_APPLICATION_CREDENTIALS=~/.gcp/service-account.json
+
+If you would like to use a user IAM credentials instead of a service account. You can also run use [application-default login](https://cloud.google.com/sdk/gcloud/reference/auth/application-default/login). Example:
+
+    gcloud auth application-default login
+
+This generates an Application Default Credentials at `.config/gcloud/application_default_credentials.json`. Note, make sure that `GOOGLE_APPLICATION_CREDENTIALS` is not set or else the `application_default_credentials.json` will not be used.  Also, the google sdk prints a warning to use a service account instead. You can suppress that warning with this:
+
+.bash_profile
+
+    export GOOGLE_AUTH_SUPPRESS_CREDENTIALS_WARNINGS=1

data/docs/_docs/helpers/google/gke.md

@@ -10,16 +10,21 @@ GKE Private Clusters whitelist and only allow authorized IPs to communicate with
 
 ## Setup
 
-To enable the GKE IP whitelisting feature, it's a single line:
+To enable the GKE IP whitelisting feature, it's a few simple configurations:
 
 .kubes/config/env/dev.rb
 
 ```ruby
 KubesGoogle.configure do |config|
-  config.gke.cluster_name = "projects/#{ENV['GOOGLE_PROJECT']}/locations/us-central1/clusters/dev-cluster"
+  config.gke.cluster_name = "dev-cluster"
+  config.gke.google_region = ENV['GOOGLE_REGION']
+  config.gke.google_project = ENV['GOOGLE_PROJECT']
+  config.gke.enable_get_credentials = true # enable hook to call: gcloud container clusters get-credentials
 end
 ```
 
+Note: The use of `KubesGoogle.configure` instead of `Kubes.configure` here.
+
 This enables `kubes apply` before and after hooks to add and remove the current machine IP.
 
 ## Options
@@ -28,6 +33,60 @@ Here are the `config.gke` settings:
 
 Name | Description | Default
 ---|---|---
-cluster_name | GKE cluster name. This is required. | nil
-enable_hooks | This will be true when the cluster_name is set. So there's no need to set it. The option provides a quick way to override and disable running the hooks. | true
-whitelist_ip | Explicit IP to whitelist. By default the IP address of the current machine is automatically detected and used. | nil
+{% include plugins/gke-config.md %}
+
+## Build Docker Image
+
+To build kubes as a Docker image entrypoint for [Google CloudBuild Custom Builder](https://cloud.google.com/cloud-build/docs/configuring-builds/use-community-and-custom-builders).
+
+    git clone http://github.com/boltops-tools/kubes
+    cd kubes
+    gcloud builds submit --tag gcr.io/$GOOGLE_PROJECT/kubes
+
+Be sure to set GOOGLE_PROJECT to your own project id.
+
+## Example Codebuild YAML
+
+cloudbuild.yaml:
+
+```yaml
+steps:
+- name: 'gcr.io/$PROJECT_ID/kubes'
+  args: ['deploy']
+  env:
+  - 'DOCKER_REPO=gcr.io/$PROJECT_ID/demo'
+  - 'GOOGLE_PROJECT=$PROJECT_ID' # .kubes/config.rb: config.repo
+  - 'KUBES_ENV=$_KUBES_ENV'
+  - 'KUBES_EXTRA=$_KUBES_EXTRA'
+  - 'KUBES_REPO_AUTO_AUTH=0'
+
+substitutions:
+  _KUBES_ENV: dev
+  _KUBES_EXTRA: ''
+options:
+    substitution_option: 'ALLOW_LOOSE'
+```
+
+Make sure to replace the substitutions with your own values. IE: _KUBES_ENV, etc.
+
+## Google CloudBuild IAM Permissions
+
+In order to update the GKE cluster master authorized IP and whitelist the CloudBuild IP, you'll need to allow the CloudBuild IAM role permissions.
+
+Important: The "Kubernetes Engine Developer" that is available in the Cloud Build Settings page as described in [Configuring access for Cloud Build Service Account](https://cloud.google.com/cloud-build/docs/securing-builds/configure-access-for-cloud-build-service-account) does not suffice. You'll need to add the "Kubernetes Engine Cluster Admin" role. Here are the steps:
+
+1. Go to the Google IAM Console and search "cloudbuild"
+2. Click "Edit Member"
+3. Add the "Kubernetes Engine Cluster Admin" role
+
+## Run CloudBuild
+
+Run cloudbuild to deploy the dev env:
+
+    gcloud builds submit --config cloudbuild.yaml
+
+To deploy the prod env:
+
+    gcloud builds submit --config cloudbuild.yaml --substitutions _KUBES_ENV=prod
+
+See [gcloud builds submit](https://cloud.google.com/sdk/gcloud/reference/builds/submit) reference docs for more options.

data/docs/_docs/helpers/google/secrets.md

@@ -57,7 +57,19 @@ GOOGLE_PROJECT | Google project id. This is required.
 
 ## Base64 Option
 
-The value is automatically base64 encoded. You can set the `base64` option to turn on and off the automated base64 encoding.
+By default, the values are automatically base64 encoded. You can change the default behavior with a config option.
+
+.kubes/config.rb
+
+```ruby
+KubesGoogle.configure do |config|
+  config.secrets.base64 = true
+end
+```
+
+Note: The use of `KubesGoogle.configure` instead of `Kubes.configure` here.
+
+You can also set the `base64` option to turn on and off the automated base64 encoding on a per secret basis.
 
 ```ruby
 google_secret("demo-#{Kubes.env}-USER", base64: true)  # default is base64=true
@@ -65,3 +77,19 @@ google_secret("demo-#{Kubes.env}-PASS", base64: false)
 ```
 
 {% include helpers/base64.md %}
+
+## Fetcher Strategy
+
+Some systems configured with a VPN seem to have issues with the Google secrets SDK. You may see an error:
+
+    Handshake failed with fatal error SSL_ERROR_SSL: error:100000f7:SSL routines:OPENSSL_internal:WRONG_VERSION_NUMBER.
+
+As a workaround to this error, you can use the `gcloud` instead of the default `sdk` fetcher strategy. To configure it:
+
+.kubes/config.rb
+
+```ruby
+KubesGoogle.configure do |config|
+  config.secrets.fetcher = "gcloud"
+end
+```

data/docs/_docs/plugins.md

@@ -0,0 +1,12 @@
+---
+title: Kubes Plugins
+---
+
+Kubes makes it easier to work with Kubernetes by automating the deployment workflow. Many of the conveniences it adds is done with plugins. For example, `aws_secret`, `aws_ssm`, `google_secret` are implemented with Cloud Provider specific Kubes plugins.
+
+## Baseline Plugins
+
+The baseline plugins that currently ship with Kubes are:
+
+* [kubes_aws]({% link _docs/plugins/aws.md %})
+* [kubes_google]({% link _docs/plugins/google.md %})

data/docs/_docs/plugins/aws.md

@@ -0,0 +1,21 @@
+---
+title: AWS Kubes Plugin
+---
+
+The AWS Kubes Plugin adds support helpers like `aws_secret`. You can configure it's behavior. Example:
+
+.kubes/config.rb
+
+```ruby
+KubesAws.configure do |config|
+  config.secrets.base64 = false
+end
+```
+
+## Options Reference Table
+
+Here's a table with the options:
+
+Name | Description | Default
+---|---|---
+secrets.base64 | Whether or not to automatically base64 encoded values returned by the `aws_secret` helper. | true

data/docs/_docs/plugins/google.md

@@ -0,0 +1,22 @@
+---
+title: Google Kubes Plugin
+---
+
+The Google Kubes Plugin adds support helpers like `google_secret`. You can configure it's behavior. Example:
+
+.kubes/config.rb
+
+```ruby
+KubesGoogle.configure do |config|
+  config.secrets.base64 = true
+end
+```
+
+## Options Reference Table
+
+Here's a table with the options:
+
+Name | Description | Default
+---|---|---
+secrets.base64 | Whether or not to automatically base64 encoded values returned by the `google_secret` helper. | true
+{% include plugins/gke-config.md %}

data/docs/_docs/variables.md

@@ -9,15 +9,4 @@ You can set variables to be made available to the templates. Generally, it is re
 * [{{ doc.title }}]({{ doc.url }})
 {% endfor %}
 
-## Generator
-
-To help you get started quickly, you can generate starter variable code.
-
-    $ kubes new variable
-          create  .kubes/variables/dev.rb
-
-.kubes/variables/dev.rb
-
-```ruby
-@example = "dev-value"
-```
+{% include variables/generator.md %}

data/docs/_docs/variables/advanced.md

@@ -60,3 +60,5 @@ base/KIND/ENV.rb  | base/deployment/dev.rb
 ROLE/KIND.rb      | web/deployment.rb
 ROLE/KIND/base.rb | web/deployment/base.rb
 ROLE/KIND/ENV.rb  | web/deployment/dev.rb
+
+{% include variables/generator.md %}

data/docs/_docs/variables/basic.md

@@ -135,3 +135,5 @@ spec:
 apiVersion: apps/v1
 kind: Deployment
 ```
+
+{% include variables/generator.md %}

data/docs/_docs/vs/custom.md

@@ -4,7 +4,7 @@ nav_text: Custom Solutions
 categories: vs
 ---
 
-Kubernetes provide a great platform to run and manage Docker containers. The `kubectl` command how you usually interact with a Kubernetes cluster.  It does its job well and is quite a powerful tool.
+Kubernetes provides a great platform to run and manage Docker containers. The `kubectl` command is usually how you interact with a Kubernetes cluster.  It does its job well and is quite a powerful tool.
 
 {% include vs/article.md %}
 
@@ -51,7 +51,7 @@ We've duplicated `service.yaml` and `deployment.yaml`, though. Instead, it'll be
 
 ## PreBuilt Docker Image
 
-Additionally, the Docker image is expected to be prebuilt. Because you must first build the Docker image, folks will usually write bash script that perform these additional steps and then glue things together.
+Additionally, the Docker image is expected to be prebuilt. Because you must first build the Docker image, folks will usually write bash script that performs these additional steps and then glue things together.
 
 ## Kubernetes Resources Galore
 
@@ -82,7 +82,7 @@ The same code is used to create different environments. Kubes achieves this with
 
 ## Hooks
 
-Kubes support a variety of hooks run scripts at any part of the `kubectl` commands. This allows you customize and add app-specific logic needed. Example:
+Kubes support a variety of hooks run scripts at any part of the `kubectl` commands. This allows you to customize and add app-specific logic needed. Example:
 
 .kubes/config/hooks/kubectl.rb
 

data/docs/_includes/helpers/generator.md

@@ -0,0 +1,13 @@
+## Generator
+
+To help you get started quickly, you can generate starter helper code.
+
+    $ kubes new helper custom
+          create  .kubes/helpers/custom_helper.rb
+
+.kubes/helpers/custom_helper.rb
+
+```ruby
+module CustomHelper
+end
+```

data/docs/_includes/layering/layers.md

@@ -48,15 +48,13 @@ ROLE/KIND/ENV.{{ include.ext }}  | web/deployment/dev.{{ include.ext }}
 2. Then you can define the core of your resource definition in the `ROLE/KIND.{{ include.ext }}`. Example: `web/deployment.{{ include.ext }}`
 3. Finally, you can provide environment-specific overrides in the `ROLE/KIND/ENV.{{ include.ext }}`. Example: `web/deployment/dev.{{ include.ext }}`.
 
-Here's an example of the structure:
+Here's a concrete example of layering with the deployment resource kind:
 
-    .kubes/resources/
-    ├── base
-    │   ├── all.{{ include.ext }}
-    │   └── deployment.{{ include.ext }}
-    └── web
-        ├── deployment
-        │   ├── dev.{{ include.ext }}
-        │   └── prod.{{ include.ext }}
-        ├── deployment.{{ include.ext }}
-        └── service.{{ include.ext }}
+    .kubes/resources/base/all.{{ include.ext }}
+    .kubes/resources/base/deployment.{{ include.ext }}
+    .kubes/resources/web/deployment.{{ include.ext }}
+    .kubes/resources/web/deployment/dev.{{ include.ext }}
+
+All of these files get layered and merged together to produce a resulting deployment.{{ include.ext }}
+
+    .kubes/output/web/deployment.{{ include.ext }}

data/docs/_includes/plugins/gke-config.md

@@ -0,0 +1,6 @@
+gke.cluster_name | GKE cluster name. This is required when using the [GKE whitelisting feature]({% link _docs/helpers/google/gke.md %}). | nil
+gke.enable_get_credentials | Whether or not to run the hook that calls `gcloud container clusters get-credentials`. This spares you from having to call it manually. | false
+gke.enable_hooks | This will be true when the cluster_name is set. So there's no need to set it. The option provides a quick way to override and disable running the hooks. | true
+gke.google_project | Google project. Can also be set with the env var `GOOGLE_PROJECT`. `GOOGLE_PROJECT` takes precedence. | nil
+gke.google_region | Google region cluster is in. Can also be set with the env var `GOOGLE_REGION`. `GOOGLE_REGION` takes precedence. | nil
+gke.whitelist_ip | Explicit IP to whitelist. By default the IP address of the current machine is automatically detected and used. | nil

data/docs/_includes/sidebar.html

@@ -173,6 +173,12 @@
           <li><a href="{% link _docs/extra-env/dsl.md %}">DSL</a></li>
         </ul>
       </li>
+      <li><a href="{% link _docs/plugins.md %}">Plugins</a>
+        <ul>
+          <li><a href="{% link _docs/plugins/aws.md %}">AWS</a></li>
+          <li><a href="{% link _docs/plugins/google.md %}">Google</a></li>
+        </ul>
+      </li>
       <li>Misc
         <ul>
           <li><a href="{% link _docs/misc/kustomize.md %}">Kustomize Support</a></li>

data/docs/_includes/variables/generator.md

@@ -0,0 +1,23 @@
+## Generator
+
+To help you get started quickly, you can generate starter variable code.
+
+    $ kubes new variable
+          create  .kubes/variables/dev.rb
+
+.kubes/variables/dev.rb
+
+```ruby
+@example = "dev-value"
+```
+
+To create the prod variables, set `KUBES_ENV=prod`.
+
+    $ KUBES_ENV=prod kubes new variable
+          create  .kubes/variables/prod.rb
+
+.kubes/variables/prod.rb
+
+```ruby
+@example = "prod-value"
+```

data/kubes.gemspec

@@ -29,8 +29,8 @@ Gem::Specification.new do |spec|
   spec.add_dependency "zeitwerk"
 
   # core helper libs
-  spec.add_dependency "kubes_aws", "~> 0.2.0"
-  spec.add_dependency "kubes_google", "~> 0.3.0"
+  spec.add_dependency "kubes_aws", "~> 0.3.1"
+  spec.add_dependency "kubes_google", "~> 0.3.5"
 
   spec.add_development_dependency "bundler"
   spec.add_development_dependency "byebug"

data/lib/kubes/auth.rb

@@ -13,6 +13,7 @@ module Kubes
     # Currently only support ECR and GCR
     # TODO: consider moving this to plugin gems
     def strategy_class
+      return unless auth?
       case @image
       when /\.amazonaws\.com/ # IE: 112233445566.dkr.ecr.us-west-2.amazonaws.com/demo/sinatra
         Ecr
@@ -20,5 +21,13 @@ module Kubes
         Gcr
       end
     end
+
+    def auth?
+      if ENV['KUBES_REPO_AUTO_AUTH'].nil?
+        Kubes.config.repo_auto_auth
+      else
+        %w[1 true].include?(ENV['KUBES_REPO_AUTO_AUTH'])
+      end
+    end
   end
 end

data/lib/kubes/config.rb

@@ -31,6 +31,7 @@ module Kubes
       config.kubectl.order.kinds = kind_order
 
       config.repo = nil # expected to be set by .kubes/config.rb
+      config.repo_auto_auth = true
 
       config.logger = Logger.new($stderr)
       config.logger.level = ENV['KUBES_LOG_LEVEL'] || :info

data/lib/kubes/hooks/builder.rb

@@ -15,7 +15,6 @@ module Kubes::Hooks
     end
 
     def build
-      return @hooks unless File.exist?(@dsl_file)
       evaluate_file(@dsl_file)
       evaluate_plugin_hooks
       @hooks.deep_stringify_keys!

data/lib/kubes/version.rb

@@ -1,3 +1,3 @@
 module Kubes
-  VERSION = "0.6.2"
+  VERSION = "0.6.7"
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: kubes
 version: !ruby/object:Gem::Version
-  version: 0.6.2
+  version: 0.6.7
 platform: ruby
 authors:
 - Tung Nguyen
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2020-11-10 00:00:00.000000000 Z
+date: 2020-11-12 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: activesupport
@@ -142,28 +142,28 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0
+        version: 0.3.1
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.2.0
+        version: 0.3.1
 - !ruby/object:Gem::Dependency
   name: kubes_google
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.3.0
+        version: 0.3.5
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: 0.3.0
+        version: 0.3.5
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
@@ -243,15 +243,20 @@ extensions: []
 extra_rdoc_files: []
 files:
 - ".dockerignore"
+- ".gcloudignore"
 - ".gitignore"
 - ".rspec"
 - CHANGELOG.md
 - Dockerfile
+- Dockerfile.alpine
 - Gemfile
 - Guardfile
 - LICENSE.txt
 - README.md
 - Rakefile
+- docker/install/docker.sh
+- docker/install/gcloud.sh
+- docker/install/kubectl.sh
 - docs/.gitignore
 - docs/CNAME
 - docs/Gemfile
@@ -357,6 +362,9 @@ files:
 - docs/_docs/patterns/migrations.md
 - docs/_docs/patterns/multiple-envs.md
 - docs/_docs/patterns/secrets.md
+- docs/_docs/plugins.md
+- docs/_docs/plugins/aws.md
+- docs/_docs/plugins/google.md
 - docs/_docs/resources.md
 - docs/_docs/resources/base.md
 - docs/_docs/resources/role.md
@@ -380,6 +388,7 @@ files:
 - docs/_includes/google_analytics.html
 - docs/_includes/header.html
 - docs/_includes/helpers/base64.md
+- docs/_includes/helpers/generator.md
 - docs/_includes/intro/features.md
 - docs/_includes/intro/install.md
 - docs/_includes/js.html
@@ -391,8 +400,10 @@ files:
 - docs/_includes/learn/repos.md
 - docs/_includes/learn/review.md
 - docs/_includes/learn/start.md
+- docs/_includes/plugins/gke-config.md
 - docs/_includes/reference.md
 - docs/_includes/sidebar.html
+- docs/_includes/variables/generator.md
 - docs/_includes/vs/article.md
 - docs/_includes/vs/kubes/layering.md
 - docs/_includes/vs/kubes/structure.md