Manager image patch

.gitignore

@@ -15,6 +15,9 @@ bin
 # Output of the go coverage tool, specifically when used with LiteIDE
 *.out
 
+# Manager image patch file
+/config/manager_image_patch.yaml
+
 # Kubernetes Generated files - skip generated files, except for vendored files
 
 !vendor/**/zz_generated.*

Makefile

@@ -96,7 +96,7 @@ docker-push-release:  docker-tag-release
 docker-build:
 	docker build . -t ${IMG}
 	@echo "updating kustomize image patch file for manager resource"
-	sed -i'' -e 's@image: .*@image: '"${IMG}"'@' ./config/manager_image_patch.yaml
+	echo "#" > ./config/manager_image_patch.yaml
 
 docker-build-ci:
 	docker build . -t $(IMG) -f Dockerfile_ci

README.md

@@ -62,7 +62,13 @@ Currently the most reliable way of installing Gatekeeper is to build and install
 
 #### Deploying a Release using Prebuilt Image
 
-If you want to deploy a released version of Gatekeeper in your cluster with a prebuilt image, then you can run the following command:
+If you want to deploy a released version of Gatekeeper in your cluster with a prebuilt image, then first copy the following kustomize configuration patch:
+
+  ```sh
+  cp config/manager_image_patch_template.yaml config/manager_image_patch.yaml
+  ```
+
+Then modify the new manager_image_patch.yaml file to point to your prebuilt image. Finally, run the following:  
 
   ```sh
   kubectl apply -f https://raw.githubusercontent.com/open-policy-agent/gatekeeper/master/deploy/gatekeeper-constraint.yaml

config/manager_image_patch.yaml → config/manager_image_patch_template.yaml

@@ -1,3 +1,4 @@
+# You can copy this file to manager_image_patch.yaml to specify a prebuilt image
 apiVersion: apps/v1
 kind: StatefulSet
 metadata:
@@ -8,5 +9,5 @@ spec:
     spec:
       containers:
       # Change the value of image field below to your controller image URL
-      - image: gcr.io/smythe-kpc/open-policy-agent/gatekeeper:latest
+      - image: <IMAGE URL>
         name: manager