You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This plugin provides a standalone way to generate an ExecCredential for use by k8s.io/client-go applications.
3
+
> Note: This is a hard fork of [this repo](https://github.com/traviswt/gke-auth-plugin). This version adds support for service account impersonation and uses `client.authentication.k8s.io/v1` instead of `v1beta1`
4
4
5
-
Google already provides a [gke-gcloud-auth-plugin](https://cloud.google.com/blog/products/containers-kubernetes/kubectl-auth-changes-in-gke); however, that plugin depends on the gcloud CLI, which is written in Python. This dependency graph is Large if you want to authenticate and interact with a GKE cluster from a go application.
5
+
This plugin provides a standalone way to generate an ExecCredential for use by k8s.io/client-go applications or
6
+
human users.
6
7
7
-
The plugin is for use outside of a cluster; when running in the cluster, mount a service account and use that token to interact with the Kubernetes API.
8
+
Google already provides a [gke-gcloud-auth-plugin](https://cloud.google.com/blog/products/containers-kubernetes/kubectl-auth-changes-in-gke); however,
9
+
that plugin depends on the gcloud CLI, which is written in Python. This dependency graph is large, if you want to authenticate and interact with a GKE cluster from a go application.
docker run -it --rm --name gke-auth-plugin-dev-container -v ${PWD}:/home/nonroot gke-auth-plugin-dev
20
-
21
-
make
22
-
```
11
+
This plugin is for use outside of a cluster; when running in the cluster, mount a service account and use that token to interact with the Kubernetes API.
You can straight up replace the gke-gcloud-auth-plugin with this binary, or place on your path and update your kubeconfig exec command to run gke-auth-plugin.
0 commit comments