Merge branch '324275-remove-agent-kubeconfig-feature-flag' into 'master'

Remove agent_kubeconfig_ci_variable feature flag See merge request gitlab-org/gitlab!67734

Merge branch '324275-remove-agent-kubeconfig-feature-flag' into 'master'
Remove agent_kubeconfig_ci_variable feature flag See merge request gitlab-org/gitlab!67734
800a2070 · Sean McGivern · 7952395c · 57b3effb · 7952395c · 800a2070
Commit 800a2070 authored Aug 12, 2021 by Sean McGivern
4 changed files
--- a/config/feature_flags/development/agent_kubeconfig_ci_variable.yml
+++ b/config/feature_flags/development/agent_kubeconfig_ci_variable.yml
---
-name: agent_kubeconfig_ci_variable
-introduced_by_url: https://gitlab.com/gitlab-org/gitlab/-/merge_requests/67089
-rollout_issue_url: https://gitlab.com/gitlab-org/gitlab/-/issues/337164
-milestone: '14.2'
-type: development
-group: group::configure
-default_enabled: false
--- a/doc/user/clusters/agent/ci_cd_tunnel.md
+++ b/doc/user/clusters/agent/ci_cd_tunnel.md
@@ -6,7 +6,8 @@ info: To determine the technical writer assigned to the Stage/Group associated w

 # CI/CD Tunnel

-> [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/327409) in GitLab 14.1.
+> - [Introduced](https://gitlab.com/gitlab-org/gitlab/-/issues/327409) in GitLab 14.1.
+> - Pre-configured `KUBECONFIG` [added](https://gitlab.com/gitlab-org/gitlab/-/issues/324275) in GitLab 14.2.

 The CI/CD Tunnel enables users to access Kubernetes clusters from GitLab CI/CD jobs even if there is no network
 connectivity between GitLab Runner and a cluster. GitLab Runner does not have to be running in the same cluster.
@@ -21,47 +22,22 @@ Prerequisites:
 - An [Agent record](index.md#create-an-agent-record-in-gitlab).
 - The agent is [installed in the cluster](index.md#install-the-agent-into-the-cluster).

-To access your cluster from a CI/CD job through the tunnel:
+If your project has one or more Agent records, a `KUBECONFIG` variable that is compatible with `kubectl` is provided to your CI/CD jobs. A separate context (`kubecontext`) is available for each configured Agent. By default, no context is selected.

-1. In your `.gitlab-ci.yml` add a section that creates a `kubectl` compatible configuration file (`kubecontext`) and use it in one
-   or more jobs:
+Contexts are named in the following format: `<agent-configuration-project-path>:<agent-name>`.

-   ```yaml
-   variables:
-     AGENT_ID: 4 # agent id that you got when you created the agent record
-     KUBE_CFG_FILE: "$CI_PROJECT_DIR/.kubeconfig.agent.yaml"
+To access your cluster from a CI/CD job through the tunnel:

-   .kubectl_config: &kubectl_config
-     - |
-       cat << EOF > "$KUBE_CFG_FILE"
-       apiVersion: v1
-       kind: Config
-       clusters:
-       - name: agent
-         cluster:
-           server: https://kas.gitlab.com/k8s-proxy/
-       users:
-       - name: agent
-         user:
-           token: "ci:$AGENT_ID:$CI_JOB_TOKEN"
-       contexts:
-       - name: agent
-         context:
-           cluster: agent
-           user: agent
-       current-context: agent
-       EOF
+1. In your `.gitlab-ci.yml` select the context for the agent you wish to use:

+   ```yaml
   deploy:
     image:
       name: bitnami/kubectl:latest
       entrypoint: [""]
     script:
-     - *kubectl_config
-     - kubectl --kubeconfig="$KUBE_CFG_FILE" get pods
+     - kubectl config use-context path/to/agent-configuration-project:your-agent-name
+     - kubectl get pods
   ```

 1. Execute `kubectl` commands directly against your cluster with this CI/CD job you just created.
-
-We are working on [creating the configuration file automatically](https://gitlab.com/gitlab-org/gitlab/-/issues/324275)
-to simplify the process.
--- a/ee/app/models/ee/ci/build.rb
+++ b/ee/app/models/ee/ci/build.rb
@@ -212,8 +212,6 @@ module EE
      override :kubernetes_variables
      def kubernetes_variables
        ::Gitlab::Ci::Variables::Collection.new.tap do |collection|
-          break collection unless ::Feature.enabled?(:agent_kubeconfig_ci_variable, project, default_enabled: :yaml)
-
          # A cluster deployemnt may also define a KUBECONFIG variable, so to keep existing
          # configurations working we shouldn't overwrite it here.
          # This check will be removed when Cluster and Agent configurations are

--- a/ee/spec/models/ci/build_spec.rb
+++ b/ee/spec/models/ci/build_spec.rb
@@ -256,14 +256,6 @@ RSpec.describe Ci::Build do

      it { is_expected.to include(key: 'KUBECONFIG', value: 'example-kubeconfig', public: false, file: true) }

-      context 'feature flag is disabled' do
-        before do
-          stub_feature_flags(agent_kubeconfig_ci_variable: false)
-        end
-
-        it { is_expected.not_to include(key: 'KUBECONFIG', value: 'example-kubeconfig', public: false, file: true) }
-      end
-
      context 'job is deploying to a cluster' do
        let(:deployment) { create(:deployment, deployment_cluster: create(:deployment_cluster)) }
        let(:job) { create(:ci_build, pipeline: pipeline, deployment: deployment) }