From f9832284e1f0a48a25f7bbca99277707e16cdd8f Mon Sep 17 00:00:00 2001
From: hsiddulugari <29220533+hsiddulugari@users.noreply.github.com>
Date: Thu, 21 Nov 2019 18:34:27 -0800
Subject: [PATCH] Added aws-iam-authenticator to docker and a launch script
 (#73)

* Add aws-iam-authenticator to docker and a launch script

* Move sloop-to-eks.sh to provider specific dir
---
 Dockerfile                    |  5 +++++
 README.md                     | 12 ++++++++++++
 providers/aws/sloop-to-eks.sh | 18 ++++++++++++++++++
 3 files changed, 35 insertions(+)
 create mode 100755 providers/aws/sloop-to-eks.sh

diff --git a/Dockerfile b/Dockerfile
index 6c7b460..0edf880 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -7,9 +7,14 @@ RUN go mod download
 
 COPY pkg ./pkg
 
+RUN curl -o /sloop/aws-iam-authenticator https://amazon-eks.s3-us-west-2.amazonaws.com/1.14.6/2019-08-22/bin/linux/amd64/aws-iam-authenticator \
+  && wait \
+  && chmod +x /sloop/aws-iam-authenticator
 RUN CGO_ENABLED=0 GOOS=linux GOARCH=amd64 go build -ldflags "-s" -installsuffix cgo -o sloop ./pkg/sloop
 
 FROM gcr.io/distroless/base
 COPY --from=build /sloop/sloop /sloop
 COPY --from=build /sloop/pkg/sloop/webfiles /pkg/sloop/webfiles
+COPY --from=build /sloop/aws-iam-authenticator /aws-iam-authenticator
+ENV PATH="/:${PATH}"
 CMD ["/sloop"]
diff --git a/README.md b/README.md
index 4a0e97d..d2afa91 100644
--- a/README.md
+++ b/README.md
@@ -77,6 +77,18 @@ docker run --rm -it -p 8080:8080 -v ~/.kube/:/kube/ -e KUBECONFIG=/kube/config s
 
 In this mode, data is written to a memory-backed volume and is discarded after each run. To preserve the data, you can host-mount /data with something like `-v /data/:/some_path_on_host/`
 
+### Local Docker Run and connecting to EKS
+
+This is very similar to above but abstracts running docker with AWS credentials for connecting to EKS
+
+```shell script
+make docker
+export AWS_ACCESS_KEY_ID=<access_key_id> AWS_SECRET_ACCESS_KEY=<secret_access_key> AWS_SESSION_TOKEN=<session_token>
+./providers/aws/sloop_to_eks.sh <cluster name>
+```
+
+Data retention policy stated above still applies in this case.
+
 ## Backup & Restore
 
 > This is an advanced feature. Use with caution.
diff --git a/providers/aws/sloop-to-eks.sh b/providers/aws/sloop-to-eks.sh
new file mode 100755
index 0000000..ba9660c
--- /dev/null
+++ b/providers/aws/sloop-to-eks.sh
@@ -0,0 +1,18 @@
+#!/bin/bash
+
+USAGE="Usage: ./sloop_to_eks.sh <cluster_name> [<region>]
+
+<cluster_name>: Provide EKS cluster to connect to.
+      <region>: defaults to us-west-2.
+"
+
+if [ $# -lt 1 ] || [ "$1" == "help" ]; then
+    echo "$USAGE"
+    exit 0
+fi
+REGION="us-west-2"
+if [ "$2" != "" ]; then
+    REGION=$2
+fi
+aws eks --region $REGION update-kubeconfig --name $1
+docker run --rm -it -p 8080:8080 -v ~/.kube/:/kube/ -e KUBECONFIG=/kube/config -e AWS_ACCESS_KEY_ID=$AWS_ACCESS_KEY_ID -e AWS_SECRET_ACCESS_KEY=$AWS_SECRET_ACCESS_KEY -e AWS_SESSION_TOKEN=$AWS_SESSION_TOKEN sloop