Console
    Start free

    Deploy an app to GKE using Cloud Deploy

    This page shows you how to use Cloud Deploy to deliver a sample application image named nginx to a sequence of two Google Kubernetes Engine clusters.

    In this quickstart, you'll do the following:

    1. Create the two clusters.

    2. Create a Skaffold configuration and a Kubernetes manifest to specify the (pre-built) container image to deploy.

    3. Define your Cloud Deploy delivery pipeline and deployment targets , which point to the two clusters.

    4. Instantiate your delivery pipeline by creating a release, which automatically deploys to the first target.

    5. Promote the release to the second target.

    6. View both rollouts in Google Cloud console.

    Before you begin

    1. Sign in to your Google Cloud account. If you're new to Google Cloud, create an account to evaluate how our products perform in real-world scenarios. New customers also get $300 in free credits to run, test, and deploy workloads.

    2. In the Google Cloud console, on the project selector page, select or create a Google Cloud project.

      Roles required to select or create a project

      • Select a project : Selecting a project doesn't require a specific IAM role—you can select any project that you've been granted a role on.
      • Create a project : To create a project, you need the Project Creator role ( roles/resourcemanager.projectCreator ), which contains the resourcemanager.projects.create permission. Learn how to grant roles .

      Go to project selector

    3. If you're using an existing project for this guide, verify that you have the permissions required to complete this guide . If you created a new project, then you already have the required permissions.

    4. Verify that billing is enabled for your Google Cloud project .

    5. Enable the Cloud Deploy, Cloud Build, GKE, and Cloud Storage APIs.

      Roles required to enable APIs

      To enable APIs, you need the Service Usage Admin IAM role ( roles/serviceusage.serviceUsageAdmin ), which contains the serviceusage.services.enable permission. Learn how to grant roles .

      Enable the APIs

    6. Install the Google Cloud CLI.

    7. If you're using an external identity provider (IdP), you must first sign in to the gcloud CLI with your federated identity .

    8. To initialize the gcloud CLI, run the following command:

      gcloud  
init

    9. In the Google Cloud console, on the project selector page, select or create a Google Cloud project.

      Roles required to select or create a project

      • Select a project : Selecting a project doesn't require a specific IAM role—you can select any project that you've been granted a role on.
      • Create a project : To create a project, you need the Project Creator role ( roles/resourcemanager.projectCreator ), which contains the resourcemanager.projects.create permission. Learn how to grant roles .

      Go to project selector

    10. If you're using an existing project for this guide, verify that you have the permissions required to complete this guide . If you created a new project, then you already have the required permissions.

    11. Verify that billing is enabled for your Google Cloud project .

    12. Enable the Cloud Deploy, Cloud Build, GKE, and Cloud Storage APIs.

      Roles required to enable APIs

      To enable APIs, you need the Service Usage Admin IAM role ( roles/serviceusage.serviceUsageAdmin ), which contains the serviceusage.services.enable permission. Learn how to grant roles .

      Enable the APIs

    13. Install the Google Cloud CLI.

    14. If you're using an external identity provider (IdP), you must first sign in to the gcloud CLI with your federated identity .

    15. To initialize the gcloud CLI, run the following command:

      gcloud  
init

    Required roles

    To ensure that the Cloud Deploy service account has the necessary permissions to run Cloud Deploy operations and deploy to Cloud Run, ask your administrator to grant the following IAM roles to the Cloud Deploy service account on your project:

    For more information about granting roles, see Manage access to projects, folders, and organizations .

    Your administrator might also be able to give the Cloud Deploy service account the required permissions through custom roles or other predefined roles .

    Create your Google Kubernetes Engine clusters

    Create two clusters: qsdev and qsprod , with default settings. The clusters' Kubernetes API endpoints must be network-reachable from the public internet. GKE clusters are externally accessible by default.

     gcloud  
container  
clusters  
create-auto  
quickstart-cluster-qsdev  
--project = 
 PROJECT_ID 
  
--region = 
us-central1 && 
gcloud  
container  
clusters  
create-auto  
quickstart-cluster-qsprod  
--project = 
 PROJECT_ID 
  
--region = 
us-central1

    Prepare your Skaffold configuration and Kubernetes manifest

    Cloud Deploy uses Skaffold to provide the details for what to deploy and how to deploy it properly for your separate targets .

    In this quickstart, you create a skaffold.yaml file, which identifies the Kubernetes manifest to be used to deploy the sample app.

    1. Open a terminal window.

    2. Create a new directory, named deploy-gke-quickstart and navigate into it.

       mkdir deploy-gke-quickstart
cd deploy-gke-quickstart

    3. Create a file named skaffold.yaml with the following contents:

        apiVersion 
 : 
  
 skaffold 
 / 
 v4beta7 
 kind 
 : 
  
 Config 
 manifests 
 : 
  
 rawYaml 
 : 
  
 - 
  
 k8s 
 -* 
 deploy 
 : 
  
 kubectl 
 : 
  
 {}

      This file is a minimal Skaffold config, identifying your manifest. For this quickstart, you create the file. But you can also have Cloud Deploy create one for you , for simple, non-production applications.

      See the skaffold.yaml reference for more information about this file.

    4. Create a file named k8s-pod.yaml , with the following contents:

        apiVersion 
 : 
  
 v1 
 kind 
 : 
  
 Pod 
 metadata 
 : 
  
 name 
 : 
  
 getting 
 - 
 started 
 spec 
 : 
  
 containers 
 : 
  
 - 
  
 name 
 : 
  
 nginx 
  
 image 
 : 
  
 my 
 - 
 app 
 - 
 image

      This file is a basic Kubernetes manifest , which is applied to the cluster to deploy the application. The container image to deploy is set here as a placeholder, my-app-image , which is replaced with the specific image when you create the release .

    Create your delivery pipeline and targets

    You can define your pipeline and targets in one file or in separate files. In this quickstart, you create a single file.

    1. In the deploy-gke-quickstart directory, create a new file: clouddeploy.yaml , with the following contents:

        apiVersion 
 : 
  
 deploy.cloud.google.com/v1 
 kind 
 : 
  
 DeliveryPipeline 
 metadata 
 : 
  
 name 
 : 
  
 my-gke-demo-app-1 
 description 
 : 
  
 main application pipeline 
 serialPipeline 
 : 
  
 stages 
 : 
  
 - 
  
 targetId 
 : 
  
 qsdev 
  
 profiles 
 : 
  
 [] 
  
 - 
  
 targetId 
 : 
  
 qsprod 
  
 profiles 
 : 
  
 [] 
 --- 
 apiVersion 
 : 
  
 deploy.cloud.google.com/v1 
 kind 
 : 
  
 Target 
 metadata 
 : 
  
 name 
 : 
  
 qsdev 
 description 
 : 
  
 development cluster 
 gke 
 : 
  
 cluster 
 : 
  
 projects/ PROJECT_ID 
/locations/us-central1/clusters/quickstart-cluster-qsdev 
 --- 
 apiVersion 
 : 
  
 deploy.cloud.google.com/v1 
 kind 
 : 
  
 Target 
 metadata 
 : 
  
 name 
 : 
  
 qsprod 
 description 
 : 
  
 production cluster 
 gke 
 : 
  
 cluster 
 : 
  
 projects/ PROJECT_ID 
/locations/us-central1/clusters/quickstart-cluster-qsprod

    2. Register your pipeline and targets with the Cloud Deploy service:

        gcloud 
  
 deploy 
  
 apply 
  
 -- 
 file 
 = 
 clouddeploy 
 . 
 yaml 
  
 -- 
 region 
 = 
 us 
 - 
 central1 
  
 -- 
 project 
 = 
  PROJECT_ID

      You now have a pipeline, with targets, ready to deploy your application to your first target.

    3. Confirm your pipeline and targets:

      In the Google Cloud console, navigate to the Cloud Deploy Delivery pipelinespage to view of list of your available delivery pipelines.

      Open the Delivery pipelines page

      The delivery pipeline you just created is shown, and the two targets are listed in the Targetscolumn.

      delivery pipeline visualization in Google Cloud console

    Create a release

    A release is the central Cloud Deploy resource representing the changes being deployed. The delivery pipeline defines the lifecycle of that release. See Cloud Deploy service architecture for details about that lifecycle.

    Run the following command from the deploy-gke-quickstart directory to create a release resource that represents the container image to deploy:

      gcloud 
  
 deploy 
  
 releases 
  
 create 
  
 test 
 - 
 release 
 - 
 001 
  
 \ 
  
 --project= PROJECT_ID 
\ 
  
 --region=us-central1 \ 
  
 --delivery-pipeline=my-gke-demo-app-1 \ 
  
 --images=my-app-image=gcr.io/google-containers/nginx@sha256:f49a843c290594dcf4d193535d1f4ba8af7d56cea2cf79d1e9554f077f1e7aaa

    Notice the --images= flag , which you use to replace the placeholder ( my-app-image ) in the manifest with the specific, SHA-qualified image. Google recommends that you templatize your manifests this way, and that you use SHA-qualified image names at release creation.

    As with all releases (unless they include --disable-initial-rollout ), Cloud Deploy automatically creates a rollout resource too. The application is automatically deployed into the first target in the progression.

    Promote the release

    1. From the Delivery pipelinespage, click the my-gke-demo-app-1 pipeline.

      Open the Delivery pipelines page

      The Delivery pipeline details page shows a graphical representation of your delivery pipeline's progress. In this case, it shows that the release was deployed to the qsdev target.

      delivery pipeline visualization in Google Cloud console

    2. On the first target in the delivery pipeline visualization, click Promote.

      The Promote releasedialog is shown. It shows the details of the target you're promoting to.

    3. Click Promote.

      The release is now queued for deployment into qsprod . When deployment is complete, the delivery pipeline visualization shows it as deployed:

      delivery pipeline visualization in Google Cloud console

    View the results in Google Cloud console

    1. In the Google Cloud console, navigate to the Cloud Deploy Delivery pipelinespage to view your my-gke-demo-app-1delivery pipeline.

      Open the Delivery pipelines page

    2. Click the name of your delivery pipeline "my-gke-demo-app-1".

      The pipeline visualization shows the app's progress through the pipeline.

      delivery pipeline visualization in Google Cloud console

      And your release is listed on the Releasestab under Delivery pipeline details.

    3. Click the release name, test-release-001 .

      Your rollouts appear under Rollouts. You can click a rollout to view its details, including the deployment log.

      rollouts in Google Cloud console

    Clean up

    To avoid incurring charges to your Google Cloud account for the resources used on this page, follow these steps.

    1. Delete the qsdev cluster:

        gcloud 
  
 container 
  
 clusters 
  
 delete 
  
 quickstart 
 - 
 cluster 
 - 
 qsdev 
  
 -- 
 region 
 = 
 us 
 - 
 central1 
  
 -- 
 project 
 = 
  PROJECT_ID

    2. Delete the qsprod cluster:

        gcloud 
  
 container 
  
 clusters 
  
 delete 
  
 quickstart 
 - 
 cluster 
 - 
 qsprod 
  
 -- 
 region 
 = 
 us 
 - 
 central1 
  
 -- 
 project 
 = 
  PROJECT_ID

    3. Delete the delivery pipeline, targets, release and rollouts:

        gcloud 
  
 deploy 
  
 delete 
  
 -- 
 file 
 = 
 clouddeploy 
 . 
 yaml 
  
 -- 
 force 
  
 -- 
 region 
 = 
 us 
 - 
 central1 
  
 -- 
 project 
 = 
  PROJECT_ID

    4. Delete the Cloud Storage buckets that Cloud Deploy created.

      One ends with _clouddeploy , and the other is [region].deploy-artifacts.[project].appspot.com .

      Open the Cloud Storage browser page

    That's it, you completed this quickstart!

    What's next
    Create a Mobile Website
    View Site in Mobile | Classic
    Share by: