Docs
Go to coder.comRequest SupportRoadmap
Home
About
Comparison
Feedback
Environments
Getting started
Lifecycle
Editors and IDEs
Autostart
Dev URLs
Docker in environments
Environment parameters
Environment variables
Personalization
User preferences
Progressive web apps
SSH access
Workspaces as code
Workspace templates
Images
Import
Structure
Tags
Configure
SSL certificates
Deprecate
Embeddable button
Command line
Installation and setup
Remote terminal
File sync
Environment management
Setup
Architecture
Requirements
Kubernetes
Local preview
Amazon Elastic Kubernetes Service
Azure Kubernetes Service
Google Kubernetes Engine
Installation
Configuration
Licensing
Air-gapped deployment
Updating
Admin
Access control
User roles
Organizations
Password reset
User management
Environment management
Docker in environments
Extensions
GPU acceleration
JetBrains IDE installation
Memory overprovisioning
Shutdown
SSH configuration
Registries
Default registry
Workspace providers
Workspace provider deployment
Account dormancy
Appearance
Audit
Dev URLs
Git Integration
Usage metrics
Telemetry
Templates
Guides
Changelog
1.17.2
1.17.1
1.17.0
1.16.3
1.16.2
1.16.1
1.16.0
1.15.2
1.15.1
1.15.0
1.14.4
1.14.3
1.14.2
1.14.1
1.14.0
1.13.2
Home
/
Setup
/
Kubernetes

Google Kubernetes Engine

2 min read

Learn how to set up a GKE cluster for your Coder deployment.

This guide shows you how to set up a Google Kubernetes Engine (GKE) cluster to which Coder can deploy.

Prerequisites

Before proceeding, make sure that the gcloud CLI is installed on your machine and configured to interact with your Google Cloud Platform account.

Set Up the GKE Cluster

The following will spin up a Kubernetes cluster using the gcloud command (be sure to replace the parameters (specifically PROJECT_ID, NEW_CLUSTER_NAME, and ZONE) as needed to reflect the needs of your environment).

gcloud beta container --project "$PROJECT_ID" \
clusters create "$NEW_CLUSTER_NAME" \
   --zone "$ZONE" \
   --no-enable-basic-auth \
   --cluster-version "latest" \
   --machine-type "n1-standard-4" \
   --image-type "COS" \
   --disk-type "pd-standard" \
   --disk-size "50" \
   --metadata disable-legacy-endpoints=true \
   --scopes "https://www.googleapis.com/auth/cloud-platform" \
   --num-nodes "2" \
   --enable-stackdriver-kubernetes \
   --enable-ip-alias \
   --network "projects/$PROJECT_ID/global/networks/default" \
   --subnetwork \
   "projects/$PROJECT_ID/regions/$ZONE/subnetworks/default" \
   --default-max-pods-per-node "110" \
   --addons HorizontalPodAutoscaling,HttpLoadBalancing \
   --enable-autoupgrade \
   --enable-autorepair \
   --enable-network-policy \
   --enable-autoscaling \
   --min-nodes "1" \
   --max-nodes "8"

The example above includes the use of the enable-network-policy flag, which will result in the creation of a Calico cluster.

To create clusters capable of supporting use of the CVMs deployment option:

gcloud beta container --project "$PROJECT_ID" \
    clusters create "$NEW_CLUSTER_NAME" \
    --zone "$ZONE" \
    --no-enable-basic-auth \
    --node-version "latest" \
    --cluster-version "latest" \
    --machine-type "n1-standard-2" \
    --image-type "UBUNTU" \
    --disk-type "pd-standard" \
    --disk-size "50" \
    --metadata disable-legacy-endpoints=true \
    --scopes "https://www.googleapis.com/auth/cloud-platform" \
    --num-nodes "2" \
    --enable-stackdriver-kubernetes \
    --enable-ip-alias \
    --network "projects/$PROJECT_ID/global/networks/default" \
    --subnetwork \
    "projects/$PROJECT_ID/regions/$ZONE/subnetworks/default" \
    --default-max-pods-per-node "110" \
    --addons HorizontalPodAutoscaling,HttpLoadBalancing \
    --enable-autoupgrade \
    --enable-autorepair \
    --enable-network-policy \
    --enable-autoscaling \
    --min-nodes "1" \
    --max-nodes "8"

This process may take ~15-30 minutes to complete.

Access Control

GKE allows you to integrate Identity Access and Management (IAM) with Kubernetes' native Role-Based Access Control (RBAC) mechanism to authorize user actions in the cluster. IAM configuration is primarily applied at the project level and to all clusters within that project. Kubernetes RBAC configuration applies to individual clusters, allowing you to implement fine-grained authorization right down to the namespace level.

For more information, see:

Next Steps

At this point, you're ready to proceed to Installation.

Our docs are open source. See something wrong or unclear? Make an edit.

Go to coder.comGitHub