Deploys project on GKE 1.15.7

[diverdane]

This change fixes a problem whereby deployment of the marketplace
app would fail on GKE clusters with Kubernetes versions >= 1.15.

The main problem was that we were using the Google Marketplace Tools
Version 0.7.0, and this uses a version of kubectl (1.12) that does
not know how to authenticate with Kubernetes version 1.15 or newer.

The changes included are as follows:

• Upgraded the Google Marketplace Tools container image used by the Deployer from 0.7.0 to 0.10.0. The newer version of these tools provide an adaptive Kubectl client version (tools read the Kubernetes server version, then select a matching kubectl binary).
• Upgraded the Google Marketplace Tools submodule to 0.10.0.
• Upgraded the version of Helm used by the deployer from 2.6.1 to 2.16.1 to eliminate this Helm bug: helm dependency update fails after helm upgrade helm/helm#2998
• Deleted x-google-marketplace section for tester.image in schema.yaml to be consistent for Google Marketplace Tools v0.10.0
• Added a build.sh flag (-p or --persist) to persist the application deployment after testing.
• Fixed the deployment's deploy-info annotations to use keys that are valid JSON keys (i.e. with quotes).
• Fixed up a bunch of inaccuracies in README.md and DEVELOPMENT.md.

Fixes Issue #25 "Project fails to deploy on GKE 1.15.7-gke.23"
Fixes Issue #26 "GCP marketplace integration has automated tests against the latest GKE versions"

[sgnn7]

@diverdane Just a few small comment but great investigative work on this. We may need to consider bumping the version right after this commit (or as part of it).

[diverdane]

@sgnn7 - I made the changes that you suggested.
I also added a parallel CI stage so that our CI tests our Marketplace deploy on:

• A gke-1.12.10 cluster (Kubernetes 1.12.10)
• A gke-1.15.9 cluster (Kubernetes 1.15.9)
  (I don't think I have access to the CI Conjur, so the secrets.yml section for gke-1.15.9 uses a string for the GKE cluster name, rather than a Conjur variable.)

[sgnn7]

I feel like this is a risky move but maybe it will be fine. I'll leave it as-is.

[diverdane]

Yeah, I did not like adding this, but the first time I ran the 2 test cases in parallel, I saw an AlreadyExists error in one test. I didn't expect to see this sort of error when kubectl apply ... is being used, but there's apparently a race condition where the 2 instances of kubectl apply ... realize that a create is needed, and they both try the create at the same time. It's too bad there's no --ignore-already-created flag or similar to whatever the flag is for kubectl create ....

[sgnn7]

Pending resolution of convo on slack

[sgnn7]

I think pinning to full semver version might be better than to the minor version since you won't be able to know what version of components you're pulling/writing.

[diverdane]

Unfortunately, there are no tags using the full semver version in our registry: https://console.cloud.google.com/gcr/images/cloud-marketplace/GLOBAL/cyberark/conjur-open-source?gcrImageListsize=30
We can change this when we make a new release.

[diverdane]

Okay, I switched this to the full semver 1.4.0 in anticipation of us making a release 1.4.0 and then publishing it to Google Cloud Marketplace.

[sgnn7]

@diverdane Great work on this! LGTM!