Skip to content

docs: updated prereqs documentation for Agent deployment on GKE #512

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
joefernandez merged 2 commits into from
Aug 27, 2025
Merged

docs: updated prereqs documentation for Agent deployment on GKE #512

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
f920afa
docs: updated prereqs documentation for Agent deployment on GKE
vicentefb Jul 15, 2025
7bea887
Merge branch 'main' into UpdateGkeAgentDeployPreReqsDocumentation
joefernandez Aug 27, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
17 changes: 13 additions & 4 deletions docs/deploy/gke.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -362,15 +362,24 @@ Before you begin, ensure you have the following set up:

1. **A running GKE cluster:** You need an active Kubernetes cluster on Google Cloud.

2. **`gcloud` CLI:** The Google Cloud CLI must be installed, authenticated, and configured to use your target project. Run `gcloud auth login` and `gcloud config set project [YOUR_PROJECT_ID]`.
2. **Required CLIs:**
* **`gcloud` CLI:** The Google Cloud CLI must be installed, authenticated, and configured to use your target project. Run `gcloud auth login` and `gcloud config set project [YOUR_PROJECT_ID]`.
* **kubectl:** The Kubernetes CLI must be installed to deploy the application to your cluster.

3. **Required IAM Permissions:** The user or service account running the command needs, at a minimum, the following roles:
3. **Enabled Google Cloud APIs:** Make sure the following APIs are enabled in your Google Cloud project:
* Kubernetes Engine API (`container.googleapis.com`)
* Cloud Build API (`cloudbuild.googleapis.com`)
* Container Registry API (`containerregistry.googleapis.com`)

4. **Required IAM Permissions:** The user or Compute Engine default service account running the command needs, at a minimum, the following roles:

* **Kubernetes Engine Developer** (`roles/container.developer`): To interact with the GKE cluster.

* **Artifact Registry Writer** (`roles/artifactregistry.writer`): To push the agent's container image.
* **Storage Object Viewer** (`roles/storage.objectViewer`): To allow Cloud Build to download the source code from the Cloud Storage bucket where gcloud builds submit uploads it.

* **Artifact Registry Create on Push Writer** (`roles/artifactregistry.createOnPushWriter`): To allow Cloud Build to push the built container image to Artifact Registry. This role also permits the on-the-fly creation of the special gcr.io repository within Artifact Registry if needed on the first push.

4. **Docker:** The Docker daemon must be running on your local machine to build the container image.
* **Logs Writer** (`roles/logging.logWriter`): To allow Cloud Build to write build logs to Cloud Logging.

### The `deploy gke` Command

Expand Down