* [dev] Bump grpc/grpc-js 1.10.8 -> 1.12.6 and authzed/authzed-node 0.15.0 -> 1.2.2
Tool: gitpod/catfood.gitpod.cloud
* [server] Streamline spicedb gRPC client usage and creation options
- instead of doing retries on two levels, rely on the gRPC-level retries
- to mitigate the loss of insights, introduce createDebugLogInterceptor
- client options: use sane defaults derived from the documentation instead of the excessive ones we had in place before
- use "waitForReady" option: it should a) make our calls for responsive on re-connects, while b) - because we keep re-trying on DEADLINE_EXCEEDED - should be as reliable as before
Tool: gitpod/catfood.gitpod.cloud
* [protocol] Centralize grpc.isConnectionAlive
Tool: gitpod/catfood.gitpod.cloud
* [server] SpiceDB client: retry with new client on "Waiting for LB pick" error
Tool: gitpod/catfood.gitpod.cloud
* [go components] Fixed "go test ./..." in various components
Tool: gitpod/catfood.gitpod.cloud
* [go components] Update k8s 0.29.3 -> 0.30.9 API
- update the go-update-wc-deps.sh script to handle the brunt of that transition
- fixes Maintenance- + Subscriber-Controller
- document steps
Tool: gitpod/catfood.gitpod.cloud
* [ws-manager-mk2] Decide how to apply appamor config based on serverversion to support k8s 1.30+
Tool: gitpod/catfood.gitpod.cloud
* [gpctl] Missing go mod tidy
Tool: gitpod/catfood.gitpod.cloud
* Replace vulnerable outcaste-io/badger/v3 with original dgraph-io/badger/v3
Tool: gitpod/catfood.gitpod.cloud
* more go mod tidy
Tool: gitpod/catfood.gitpod.cloud
* [image-builder-bob, installer] Select the correct version of containerd....
Tool: gitpod/catfood.gitpod.cloud
---------
Co-authored-by: Gero Posmyk-Leinemann <gero@gitpod.io>
* Add WS image metrics to workspace instances
* Update tests
* fix ws-manager-api field description
* Prefer existing DB values for metrics
* Copy proto comments over to protocol type
* [yarn] Bump @grpc/grpc-js to 1.10.8 and @authzed/authzed-node to 0.15.0
* [server] SpiceDB: explicit re-try on UNAVAILABLE
We tried to configured this inside the SpiceDBClientProvider already, but somehow it still surfaced.
* [server, bridge] Configure "grpc.dns_min_time_between_resolutions_ms" to be 2s instead of 30s
* [sshgateway] use ssh CA to auth
* change name
* add error log
* fix
* mark volume optional
* [installer] validate ssh-ca secret
* Revert "[installer] validate ssh-ca secret"
This reverts commit ca6ede78a7b5a720fd315eca32eb277cb5063069.
We must support the scenario where the installer has the secret, but, it is not in the cluster yet.
---------
Co-authored-by: Kyle Brennan <kyle@gitpod.io>
* Extend ws-manager API to support workspace class descriptions
fixes ENG-1065
* Extend DescribeCluster in ws-manager-mk2
to acurately report the available workspace classes
fixes ENG-1066
* Add workspace classes to cluster in DB
* Intergrate workspace cluster collection in ws-manager-bridge
* Feature flag off discovered workspace class usage
* Fix build
* Add unittest for getSupportedWorkspaceClasses
* Fix workspace class storage
* Adress review feedback
* Enable leader election in ws-manager-mk2
* Update go modules
* Move workspace activity to CRD
* Remove workspace activity
* Cleanup
* Update ws-manager-mk2 CRD
* Cleanup
* Restore lastActivity logic
* TEST
* Disable observability
* Start the grpc server after leader election
* Bount the source of subscribers to an informer
* Cleanup
* Avoid deepCopy
* Remove goroutine to execute OnReconcile
* Refactor last activity to be consistent acrtoss the controllers
* Address feedback
* Add a new trust bundle for custom SSL certificates
* Mount the customer certificate in the workspace
* Use the custom certificate in components
* Cleanup
* Set env variables and mount the crt in a different file
* rename custom ca cert file name
* Fix the filename in env vars
* Enable custom SSL certificate conditionally
---------
Co-authored-by: nandajavarma <nandaja.varma@gmail.com>
* Upgrade ts-node to 10.4
* [server] Make typings work in workspace AND leeway
* [leeway] Increase node heap size to 8GB
---------
Co-authored-by: Gero Posmyk-Leinemann <gero@gitpod.io>
