►
Description
Hi, this is Vlad from Gitlab Support and in this clip Rocky and I create a couple of GKE clusters and and inspect the Gitlab deployment from one of those clusters.
Pre reqs: kubectl, helm, gcloud
Commands used (similar to):
helm upgrade --install gitlab gitlab/gitlab --timeout 600s --set global.hosts.domain=vlad-gke-gitlab62.sr.gitlab.support --set global.hosts.externalIP=34.91.218.78 --set certmanager-issuer.email=vlad@example.com --version 4.11.2
kubectl get secrets sh.helm.release.v1.gitlab.v1 -o jsonpath='{.data.release}' | base64 -D | base64 -D | gzip -d | jq
Here's a clip where Silvester and I do the same thing manually: https://www.youtube.com/watch?v=XcJqIggsJ5E
A
I've
started
the
recording,
so
thanks
david
for
joining
me
today,
rocky
for
joining
me
today.
A
We're
gonna
try
to
showcase
the
new
functionality
that
support
resources
has,
which
is
provisioning,
gke
clusters,
empty
ones
and
ones
that
already
have
gitlab
installed.
A
So
what
we're
gonna
do
is
rocky
is
gonna,
share
his
his
screen
and
he's
going
to
do
it
because
I've
done
it
quite
a
few
times.
Hopefully
it
will
work.
A
So
we'll
start
by
creating
a
new
tf
file
on
a
new
branch
and
by
the
way,
we've
already
done.
Another
another
run
at
this,
because
the
pipeline
takes
about
11
to
15
minutes,
which
is
not
good
for
a
demo.
So
we
already.
B
A
A
C
D
C
A
Yeah
we
have
to
replace
the
name,
because
both
of
them
are
called
block
gke
test
one.
So
not
only
you
need
to
replace
rocky
everywhere,
but
you
need
to
replace
the
test
one
bit
as
well.
So
let's
just
leave
test
one
for
for
the
simple
gk
cluster
and
replace
test
one
with
git
lab
or
something
for
for
the
second
module.
A
A
So
what
he
did
here,
because
we've
already
done
this
once
before-
we've
used
the
same
names
and
if
we
now
did
the
same
names
like
rocky
gke
test
one,
it
would
collide
with
the
other
resources.
So
that's
why
we're
changing
it
yep?
I
think
it
looks
good.
A
Let's
see,
actually,
let's
go
through
the
whole
thing
again
and
let's
explain
the
various
options
that
we
have
so
yeah
cluster
name,
it's
the
cluster
name.
Obviously
you
can
choose
a
region
and
that's
how
you
do
it.
You
uncomment
that
that
bit,
if
you
want
you
can
actually
do
that
rocky
you
can
you
can
change
the
region
to
whatever.
D
A
And
delete
the
minus
a
because
that's
just
just.
A
Yeah,
okay
and
yeah
you
can.
The
default
is
b.
So
if
you
want
to
use
a
you,
just
uncomment
equals
a.
A
Then
the
labels,
which
are
the
ones
from
above
frugal
hours
and
all
the
other
stuff,
your
user,
your
branch,
but
you
can
also
add
more
more
things
there.
If
you
want
and
then
the
source
it
just
goes
to
the
the
gk
terraform
module
yeah-
and
that's
it
that's
that's
all.
You
need
to
provision
a
gitlab,
an
empty
gke
cluster.
Obviously
you
need
to
also
do
the
outputs,
so
you
know
how
to
add
the
configuration
to
to
cube
ctl
and
to
get
the
endpoint.
A
Obviously
so
those
are
needed
to
in
order
to
connect
and
we'll
see
those
in
the
in
the
console
in
the
pipeline
later
and
then,
let's
go
to
rocky
gk,
gitlab
2
and
again
we
have
a
cluster
name
and
then
we
have
chart
version
equals
last
latest
sorry
which
is
14.02.
A
Actually,
let's,
let's
change
that,
let's
let's
make
it,
I
don't
know,
chart
version,
14,
10,
2
or
something
4,
10
2,
or
something
like
that,
and
if
this
is
missing.
So
if
you,
if
you
are
missing,
chart
version
that
just
means
you
are
trying
to
get
a
gke,
an
empty
gk
cluster,
so
you'll
notice
that
the
the
module
from
b4
doesn't
have
chart
version
because
obviously
you're
not
installing
gitlab,
and
if
we
detect
that
chart
version
is
missing.
D
A
Yeah,
that's
it:
okay,
okay,
again
region
and
zone
yeah
you
you
can
leave
it
like
that
or
you
can
put
euro
quest
or
whatever,
whatever
works
for
you.
Yeah
zone,
gk
labels
and
now
cm
is.
A
Ideally,
oh
yeah
also
the
name
space
if
you
want
to
install
gitlab
in
a
namespace
as
opposed
to
installing
it
in
a
well
in
a
custom
namespace,
as
opposed
to
installing
it
in
the
default
namespace.
You
actually
specify
that
here
so
yeah
un
uncomment
that
so
uncommon
namespace
and
do
I
don't
know
whatever
I
usually
do,
gl,
because
it's
short
when
you're
typing,
but
whatever
you
want.
A
Okay
and
then
cm
issuer,
no
leave
it
uncommented,
so
we
can.
We
can
actually
showcase
it
later.
A
If
we
have
time
cm
or
email.
You
would
basically
add
here
your
your
email
address.
This
is
used
for
the
ssl
part,
the
ssl
certificate,
yeah,
okay.
What
else
I
think,
that's
it.
A
A
A
To
have
gcloud
installed
for
that,
where
else
the
dns,
where
to
connect
to
the
actual
cluster,
to
gitlab,
what
else
the
external
ip
and
the
initial
it
will
actually
give
you
the
a
command
to
run
in
your
terminal
to
get
from
the
cluster
the
initial
password
for
for
a
gitlab
in
order
to
be
able
to
connect,
and
obviously
the
username
is
root,
I
think
that's
it
is
there
anything
else?
C
A
A
A
But
it
should
be
fine
and
speaking
of
prereqs,
so
for
for
this,
you
need
to
have
gcloud
installed,
helm
and
qctl.
A
A
Manually,
okay,
yeah,
it's
running
cool
so
as
I've
said
until
this
completes,
which
will
be
another
10
minutes
or
so
we
have
another
pipeline
that
we
ran
earlier.
A
D
A
Is
what
the
output
would
look
like,
as
you
can
see,
we
have
what.
A
A
Yep
so
now,
if
you
do
cube
ctl
and
I
don't
know,
get
ns
for
name
spaces,
it
will
take
a
bit,
but
then
it
will
show
you
an
empty
cluster
cool
yeah
default
yeah.
So
this
is
the
empty
cluster
that
we
provisioned
and
if
we
do
the
same
command
for
the
other
environment.
So
if
you
take
the
gcloud
command
for
the
yeah
for
gitlab
rocky
gk,
gitlab
we'll
see
more.
A
Stuff
yep,
it's
as
simple
as
that
and
now
we're
on
this
other
environment.
I
think
there's
no
surprises
here,
because
we
we
use
the
default
if
I'm
not
mistaken,
yeah
but
just
do
get
get
parts
and
we
should
see
all
the
get
deployment
pods.
C
A
C
A
Yeah
all
the
poser
there
and
there's
another
command
that
we
need
to
run.
It's
the
one
that
says:
qctl
gets
secret
in
the
pipeline.
If
you
go
back
to
the
pipeline
yeah
that
one-
and
this
will
actually
give
you
the
password
initial
password
for
the
gitlab
that
you've
installed
by.
A
A
A
Gitlab
that
we've
just
installed
can
you
go
to
the
menu
and,
let's
look
at
the
version
admin.
I
think
we've
installed
the
latest,
but.
A
In
this
other
one
that
we
showcased
just
earlier,
I
think
we
did
13
10
to
or
something
like
that,
so
we'll
probably
see
that
soon
yeah
one
other
thing
that
I
wanted
to
show
here
is
using
helm.
So
if
you
go
back
to
the
console
and
just
just
do
helm
get
values
git
lab,
actually,
maybe
it
will
won't
work
for
you
because
I
don't
know
if
you
have
the
the
repo
but
yeah
just
hit,
enter
and
let's
see
what
it
says.
A
Okay,
awesome
so
yeah
those
are
actually
the
user
supplied
values
which
we
used
in
terraform,
because
the
way
terraform
is
provisioning.
This
gke
both
gke
environment
types
is
it
does
it
as
if
it
would
use
helm,
which
is
awesome,
because
now
you
just
use
helm
and
have
all
the
good
stuff
that
you
need
so
right
now.
A
Yeah,
we
need
to
tweak
it
a
little
bit.
Okay,
so
yeah
just
put
it
there
and,
let's
start
replacing
things
so
good
luck,
gitlab
timeout!
You
can
so
the
global
hosts
domain.
You
need
to
ch
that
that
too
change
change
that
as
well
sorry
go
back
or
email
it
to
the
end,
because
that's
blood
specific,
just
just
do
it
your
own.
I
don't
know.
A
Yeah
something
like
that,
it
doesn't
necessarily
have
to
be
correct,
because
I
don't
think
you're
going
to
have
this
this
environment
for
a
whole
year
until
your
license
expires.
But
I
don't
know
your
certificate
expires,
but
we'll
see
and
yeah
they
put
there,
the
external
ip
so
35
to
30
yeah.
That
bit.
A
Okay,
what
else
the
global
house.
B
A
A
A
And
I
think
that's
that's
it
and
what
this
command
will
do
is
it
will
actually
downgrade
your
your
gitlab
version,
so
it
will
go
to
from
1402
to
13,
11
2
or
whatever
you
want
to
put
there.
I
mean
I
that's
that's
what
it
was
for
me,
but
yeah
just
go
ahead
and
run
this.
C
C
A
A
Actually,
let
me
let
me
give
you
a
link
which
might
help
others
as
well,
so
just
one
second.
A
C
A
A
A
Yeah,
okay,
we'll
just
circle
back
to
it.
Let's
see
if
the
deployment
was
okay.
A
Hook
failed
warning.
This
wouldn't
be
a
demo
if
something
didn't
went
wrong,
yeah,
it's
time
to
move
held
resources.
So
this
looks
like
a
our
back
issue.
Maybe
you
don't
have
the
proper
permissions
in
in
gcp
github.
A
If
I,
if
I
try
it,
I
I
bet
it
would
work
for
me.
I
think
it's
failing
on
a
permissions
issue
where
you're
trying
to
to
do
to
change
some
some
to
grant
some
permissions,
and
maybe
you
don't
have
that
in
the
tell
you
what
I'll.
Just
it's.
C
A
I'll
just
try
to
update
those
now
and
let's
see
if
it
works,.
A
A
A
We'll
we'll
try
to
command
again,
it's
done.
Okay,
so
it
looks
almost
identical
to
the
other
one.
It's
just
the
names
that
changed
yeah,
so
we
didn't
make
any
mistakes.
What
else
we
can
yeah?
Let's
try
the
other
command
again,
let's
see
if,
if
not,
we
can
just
try
on
these
other.
B
A
A
Certification,
it
could
be,
let's
try
to
see
if
it
fails
and
if
not,
we
can
just
try
on
the
on
the
other
cluster,
because
there
we
had
set
the.
B
A
A
Can
you
open
a
new
tab,
so
we
can
a
new
tab
in
the
console
in
the
in
your
terminal?
Okay,
so
we
leave
this
running
because
I
yeah
just
try
control
t.
Maybe
it
works
okay
and
let's,
let's
start
using
this,
the
other,
so
the
one
that
we
just
go
directly
to
the
to
the
one
that
says.
B
A
A
A
A
Okay,
the
first
one,
okay
cool.
I
didn't
realize
that
yeah,
let's,
let's
just
use.
A
A
Just
to
make
sure
and
then
do
cube,
ctl
get
pods
and
let's
see
their
status,
they're
up,
yeah
they're
still
initializing.
So
that's
why
we're
seeing
because
obviously
it's
upgraded,
but
if
we
describe
the
web
services
so
look
at
one.
That
is
49
minutes,
no
one
that
is
already
running,
but
it's
new.
A
So
look
at
the
bottom
pods
where
it
says
web
service
default,
blah,
blah
blah
and
the
very
first
one,
the
first
yeah
that
that
one,
I
think,
that's
no,
the
other
one
from
above
the
first
web
service,
one
yeah,
because
no
it's
not
running
yet.
A
Sorry
do
and
do
the
command
again,
because
maybe
something
in
the
meantime
changed
and
do
minus
double.
A
Minus
w,
so
it's
it's
watching
just
hanging
out.
D
A
A
A
Yeah,
let's,
let's
just
get
to
the
other
one,
and
we
can
revisit
this
before
we
wrap
things
up
so
run
again.
The
command
yep.
A
And
let's
do
what
did
we
do?
First,
get.
A
C
D
Yeah
is
it
the
same
one,
the
same
url.
A
Maybe
that's
that's
the
problem.
I
think
we
missed
something
somewhere
when
we
created
the
second
one.
A
A
A
A
A
Kind
of
confused
modded
things
with
trying
to
do
having.
A
A
Yeah
yep
there
yeah
yeah,
just
after
password,
minus
and
gl,
I
think
equals.
C
A
Yeah,
no
no
gl,
just
gl
yeah
like
that
yep!
That's
it.
A
A
A
Actually,
the
menu
is
different
because
in
140
it's
you
have
to
click
like
menu,
just
click,
the
wrench
and
the
the
image
of
this
okay.
A
Awesome
and
yeah:
let's:
let's
do
again:
what
did
we
do?
The.
A
C
A
Let's
run
a
command
similar
to
to
the
the
other
one,
so
the
one
that
I
the
really
long
one
but.
A
But
this
time
we're
gonna
delete
the
minus
version,
okay
and
it
will
basically
upgrade
to
the
latest
so
delete
minus
minus
version,
yep,
that's
it
and
the
rest
yeah.
You
need
to
change
that
as
well,
make
sure.
So
you
have
the
email
just
above
there,
okay
and
then
the
ip
is
there
external
ip
34,
90
86
100.
C
A
Yeah,
I
think
anywhere,
but
just
let's
put
it
at
the
end.
So
it's
clear.
A
C
C
A
D
C
C
A
Yeah,
I'm
not
sure
if
we
should
spend
time
on,
maybe
just
let's:
let's
try
it
with
minus
minus
version,
something.
A
B
B
A
D
A
No,
I
think
we
have
to
roll
back
for
this
one
we'll
do
it
at
the
at
the
end.
A
Yeah
actually
yeah
check
the
pods
because
they
might
still
be
coming
up.
A
A
A
A
A
The
last
thing
I
want
to
do
is
roll
back.
The
other.
C
C
So
the
latest
one
is
I'm.
A
A
Yeah,
just
let's
just
do
helm
roll
back.
A
Gitlab
and
then
that's
it,
I
mean
you
can
do
version,
but
actually
no
make
that
one.
C
A
No,
I
mean,
on
the
other
context,
on
the
other,
the
one
that
that
works
so
go
to
the
the
other
tab.
The.
A
And
wait:
wait.
We
need
to
adapt
it
a
little
bit.
We
need
to
add
minus
n,
first
of
all,
before
minus
o
yeah.
Just
do
it
further
further
to
the
to
the
left.
A
C
A
C
A
Yeah
it
completed
and
we
can
now
change
the
context
just
to
make
sure
and
try
to
run
that.
Oh.
A
A
A
A
A
Okay,
okay,
and
what
I
want
you
to
copy
is
the
one
of
the
four
at
the
end
so
sh.helm
that
release
blah
blah
yeah,
the
last
one
would
do
just
fine.
So
this
is
essentially
a
secret
where
helm
keeps
all
the
information
that
it
needs
to
remember
versions
and
stuff
like
that,
so
it
can
roll
back
and
do
a
bunch.
A
Helps
us
out
when
deploying
from
a
different
machine
and
then
using
helm
on
your
personal
computer.
So
now
just
do
the
long
command
that
I've
sent
you
before,
but
we
need
to
use
this
instead
of
the
the
one
that
I
I
put
there.
A
Can
you
copy
it
from
from
there
or
have
you
done
that?
Okay?
A
A
A
A
C
D
C
A
C
A
Okay,
yeah,
maybe
when
we
copy
pasted
something
something
weird
went
wrong
so
yeah
this.
This
is
kind
of
of
manifest
of
the
deployment
and
it
has
all
the
information
that
helped
me
use
this.
I
just
thought
this
was
interesting
to
showcase
make
sure
to
give
that
a
good
read,
and
I
think
that's
that's
pretty
much
it.
I
have
gone
over
time
and
I
think
you
have
another
meeting
and
so
do
I
so
thank
you
I'll.