3 # Ignore to update versions here
4 # docker build --no-cache --build-arg KUBECTL_VERSION=${tag} --build-arg HELM_VERSION=${helm} --build-arg KUSTOMIZE_VERSION=${kustomize_version} -t ${image}:${tag} .
5 ARG HELM_VERSION=2.17.0
6 ARG KUBECTL_VERSION=1.19.16
7 ARG KUSTOMIZE_VERSION=v3.8.1
8 ARG KUBESEAL_VERSION=0.18.1
10 # Install helm (latest release)
11 # ENV BASE_URL="https://storage.googleapis.com/kubernetes-helm"
12 ENV BASE_URL="https://get.helm.sh"
13 ENV TAR_FILE="helm-v${HELM_VERSION}-linux-amd64.tar.gz"
14 RUN apk add --update --no-cache curl ca-certificates bash git && \
15 curl -sL ${BASE_URL}/${TAR_FILE} | tar -xvz && \
16 mv linux-amd64/helm /usr/bin/helm && \
17 chmod +x /usr/bin/helm && \
20 RUN helm init --client-only
23 RUN helm plugin install https://github.com/databus23/helm-diff && rm -rf /tmp/helm-*
26 RUN helm plugin install https://github.com/quintush/helm-unittest && rm -rf /tmp/helm-*
29 RUN helm plugin install https://github.com/chartmuseum/helm-push && rm -rf /tmp/helm-*
31 # Install kubectl (same version of aws esk)
32 RUN curl -sLO https://storage.googleapis.com/kubernetes-release/release/v${KUBECTL_VERSION}/bin/linux/amd64/kubectl && \
33 mv kubectl /usr/bin/kubectl && \
34 chmod +x /usr/bin/kubectl
36 # Install kustomize (latest release)
37 RUN curl -sLO https://github.com/kubernetes-sigs/kustomize/releases/download/kustomize%2F${KUSTOMIZE_VERSION}/kustomize_${KUSTOMIZE_VERSION}_linux_amd64.tar.gz && \
38 tar xvzf kustomize_${KUSTOMIZE_VERSION}_linux_amd64.tar.gz && \
39 mv kustomize /usr/bin/kustomize && \
40 chmod +x /usr/bin/kustomize
42 # Install eksctl (latest version)
43 RUN curl -sL "https://github.com/weaveworks/eksctl/releases/latest/download/eksctl_$(uname -s)_amd64.tar.gz" | tar xz -C /tmp && \
44 mv /tmp/eksctl /usr/bin && \
45 chmod +x /usr/bin/eksctl
48 RUN apk add --update --no-cache python3 && \
49 python3 -m ensurepip && \
50 pip3 install --upgrade pip && \
51 pip3 install awscli && \
54 # https://docs.aws.amazon.com/eks/latest/userguide/install-aws-iam-authenticator.html
55 # Install aws-iam-authenticator
56 RUN authenticator=$(aws --no-sign-request s3 ls s3://amazon-eks --recursive |grep aws-iam-authenticator$|grep amd64 |awk '{print $NF}' |sort -V|tail -1) && \
57 aws --no-sign-request s3 cp s3://amazon-eks/${authenticator} /usr/bin/aws-iam-authenticator && \
58 chmod +x /usr/bin/aws-iam-authenticator
61 RUN apk add --update --no-cache jq yq
63 # Install for envsubst
64 RUN apk add --update --no-cache gettext
67 RUN curl -L https://github.com/bitnami-labs/sealed-secrets/releases/download/v${KUBESEAL_VERSION}/kubeseal-${KUBESEAL_VERSION}-linux-amd64.tar.gz -o - | tar xz -C /usr/bin/ && \
68 chmod +x /usr/bin/kubeseal
73 RUN chmod a+x deploy.sh