CircleCI cannot specify region to deploy to in GKE

Question

I have been tying to update a deployment in a GKE cluster using CircleCI. I was able to make container build and upload to GCR work just fine.

But I could not find a way to specify the GCP region when authenticating using the command such as gcloud --quiet container clusters get-credentials $K8S_CLUSTER --region=$MY_REGION for updating my Kubernetes deployment.

#!/bin/bash -eo pipefail
gcloud --quiet config set project $GOOGLE_PROJECT_ID
gcloud --quiet config set compute/region $MY_REGION
gcloud --quiet container clusters get-credentials $K8S_CLUSTER --region $MY_REGION
kubectl set image deployment/$DEPLOYMENT $APP_NAME=gcr.io/$PROJECT_ID/$APP_NAME:v2

Updated property [core/project].
Updated property [compute/region].
ERROR: (gcloud.container.clusters.get-credentials) unrecognized arguments:
  --region
  asia-southeast1
Exited with code 2

We know there's an argument called --region to specify the region.

root@host# gcloud container clusters get-credentials -h
Usage: gcloud container clusters get-credentials NAME [optional flags]
  optional flags may be  --help | --internal-ip | --region | --zone

For detailed information on this command and its flags, run:
  gcloud container clusters get-credentials --help
root@host#

Why doesn't CircleCI's version of gcloud does not support this parameter?

I even tried Orbs gcr and gke, and the same error happens.

Answer 1

Question is quite old (1 year, 5 months) and many changes might appear to CircleCI and GKE.

Based on error output:

ERROR: (gcloud.container.clusters.get-credentials) unrecognized arguments:
  --region
  asia-southeast1

It looks like GKE couldn't execute this command.

Tests

In test I've created proper environment variables like: $GOOGLE_PROJECT_ID, $MY_REGION, $K8S_CLUSTER and hello-world test deployment.

$ gcloud --quiet config set project $GOOGLE_PROJECT_ID
Updated property [core/project].
$ gcloud --quiet config set compute/region $MY_REGION
Updated property [compute/region].

Next step was to use get-credentials information.

Common mistake is that users think that --region and --zone have the same meaning which is not true. More details can be found in Documentation Identifying a region or zone

While --region flag was used, cluster needs to be a Regional cluster not Zonal.

Output while cluster (cluster-1) is Zonal:

$ gcloud --quiet container clusters get-credentials $K8S_CLUSTER --region $MY_REGION
Fetching cluster endpoint and auth data.
ERROR: (gcloud.container.clusters.get-credentials) ResponseError: code=404, message=Not found: projects/project/locations/asia-southeast1/clusters/cluster-1.
Could not find [cluster-1] in [asia-southeast1].
Did you mean [cluster-1] in [asia-southeast1-a]?

Please keep in mind that this is the newest version. Older versions might have different warning/error content.

But if you would use Regional cluster (cluster-2)

$ gcloud --quiet container clusters get-credentials $K8S_CLUSTER --region $MY_REGION
Fetching cluster endpoint and auth data.
kubeconfig entry generated for cluster-2.

Editing deployment:

$ kubectl set image deployment/hello-world hello-app=gcr.io/google-samples/hello-app:2.0
deployment.apps/hello-world image updated

Conclusion

While you are specifying --region or --zone please remember to check if cluster was created as Zonal or Regional, otherwise, you will encounter Error.