For some weird reason i cannot get gcp authentication to work in a multi project using stack references on github actions.

error: configured Kubernetes cluster is unreachable: unable to load schema information from the API server: Get "<https://35.189.230.20/openapi/v2?timeout=32s>": error executing access token command "gcloud config config-helper --format=json": err=exit status 1 output= stderr=WARNING: Could not open the configuration file: [/home/runner/.config/gcloud/configurations/config_default].
ERROR: (gcloud.config.config-helper) You do not currently have an active account selected.
Please run:

  $ gcloud auth login

to obtain new credentials.

If you have already logged in with a different account:

    $ gcloud config set account ACCOUNT

to select an already authenticated account to use.

The GOOGLE_CREDENTIALS secret is loaded in the envs. It used to work in a different repo, only difference is that this “project” does not include the gcp library since we get the kubeconfig from a different project/stack. (trying that now but i have to convince typescript to allow unused imports)

Ok, I have some idea what this might be.

I think i just figured it out, i’m not running the docker action but the action to just install pulumi and run the commands from there.

👍

I’m actually generating the kubeconfig differently I’m issuing an OAuth token to google and use it in my kubeconfig instead of using the gcloud helper command