The docker container contains cloud clis needed for interacting with the various clouds.
When using external postgres in GCP, we default to using Google Cloud SQL proxy. For security the setup is via a workload identity configuration. This requires the following vars to be set:
Name of the sql cluster connection as listed in the gcp portal
Name of service account in GCP that has the cloudsql.admin role. This account will be mapped to a kuberenetes service account thus granting the sql proxy access, via workload identity, to the sql server
Name of service account in GCP that has the iam.serviceAccountAdmin role. This account will be used to setting up the sql proxy's google service account mapping to the kubernetes service account
Path to the <V4_CFG_CLOUD_SERVICE_ACCOUNT_NAME> service account's keys