Cherry-pick #225 #254 #267 to v1.0-branch (#268)

* Add IAM Role and Policy for Service Account support (#225)

* Add IAM Role and Policy for Service Account support

* Use more elegant way to handle AssumeRoleWithWebIdentityPolicyDocument

* Create kubeflow namespace before we create service account

* Add more service account under IAM Role kf-admin control

* Rebase go mod changes

* Improve kfctl for AWS (#254)

* Optimize size of policy document

* Clean up cert-manager namespace in `Delete`

* Clean up web identity roles and provider after

* Create separate eks and k8sClient files

* Use kfdef to replace fields in cluster_features.yaml

* Refactor codes and address a few TODOs

* Resolve cert-manager webhook issue and unblock namespace deletion

* Add kfDef deleteApplication, addOverlay, removeOverlay support

* Add kustomize settings for managed sql

* Fix syntax issues to build kfctl

* Add OWNERS file under awsplugin

* Fix test - remove unless test files

* Create OIDC secret and pass to alb-ingress-controller (#267)

1. Remove cognito and add oidc overlay to istio-ingress applications
2. Create a secret using clientId and clientSecret and pass to alb

Signed-off-by: Jiaxin Shan <[email protected]>

go.mod

@@ -1,11 +1,12 @@
 module github.com/kubeflow/kfctl/v3
 
 require (
-	cloud.google.com/go v0.38.0
+	cloud.google.com/go v0.47.0
+	github.com/Azure/go-autorest v13.3.3+incompatible // indirect
 	github.com/MakeNowJust/heredoc v1.0.0 // indirect
 	github.com/PuerkitoBio/purell v1.1.1 // indirect
 	github.com/Sirupsen/logrus v0.0.0-00010101000000-000000000000 // indirect
-	github.com/aws/aws-sdk-go v1.17.7
+	github.com/aws/aws-sdk-go v1.27.1
 	github.com/cenkalti/backoff v2.2.1+incompatible
 	github.com/chai2010/gettext-go v0.0.0-20170215093142-bf70f2a70fb1 // indirect
 	github.com/deckarep/golang-set v1.7.1
@@ -17,34 +18,40 @@ require (
 	github.com/ghodss/yaml v1.0.1-0.20190212211648-25d852aebe32
 	github.com/go-logr/logr v0.1.0
 	github.com/go-openapi/jsonpointer v0.19.2 // indirect
-	github.com/gogo/protobuf v1.2.2-0.20190730201129-28a6bbf47e48
-	github.com/google/go-cmp v0.3.0
+	github.com/gogo/protobuf v1.3.1
+	github.com/golangplus/testing v0.0.0-20180327235837-af21d9c3145e
+	github.com/google/go-cmp v0.3.1
 	github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 // indirect
 	github.com/hashicorp/go-getter v1.0.2
-	github.com/imdario/mergo v0.3.7
+	github.com/hashicorp/go-version v1.2.0
+	github.com/imdario/mergo v0.3.8
 	github.com/kubernetes-sigs/application v0.8.0
 	github.com/onrik/logrus v0.2.1
 	github.com/operator-framework/operator-sdk v0.13.0
 	github.com/otiai10/copy v1.0.2
 	github.com/pkg/errors v0.8.1
-	github.com/prometheus/common v0.6.0
+	github.com/prometheus/common v0.7.0
 	github.com/sirupsen/logrus v1.4.2
 	github.com/spf13/cobra v0.0.5
 	github.com/spf13/pflag v1.0.5
 	github.com/spf13/viper v1.4.0
+	github.com/stretchr/testify v1.4.0
+	github.com/tektoncd/pipeline v0.10.1
+	github.com/tidwall/gjson v1.4.0
+	github.com/tidwall/pretty v1.0.1 // indirect
 	go.uber.org/zap v1.12.0 // indirect
 	golang.org/dl v0.0.0-20191220003028-84da647cadd0 // indirect
 	golang.org/x/crypto v0.0.0
-	golang.org/x/net v0.0.0-20190812203447-cdfb69ac37fc
+	golang.org/x/net v0.0.0-20191119073136-fc4aabc6c914
 	golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45
 	google.golang.org/api v0.10.0
-	google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55
+	google.golang.org/genproto v0.0.0-20191009194640-548a555dbc03
 	gopkg.in/airbrake/gobrake.v2 v2.0.9 // indirect
 	gopkg.in/gemnasium/logrus-airbrake-hook.v2 v2.1.2 // indirect
-	gopkg.in/yaml.v2 v2.2.4
-	k8s.io/api v0.0.0
+	gopkg.in/yaml.v2 v2.2.5
+	k8s.io/api v0.17.0
 	k8s.io/apiextensions-apiserver v0.0.0
-	k8s.io/apimachinery v0.0.0
+	k8s.io/apimachinery v0.17.1
 	k8s.io/cli-runtime v0.0.0
 	k8s.io/client-go v12.0.0+incompatible
 	k8s.io/kubernetes v1.16.2

pkg/kfapp/aws/OWNERS

@@ -0,0 +1,2 @@
+approvers:
+  - jeffwan