* [docker-up] Minor fixes and add tests
Tool: gitpod/catfood.gitpod.cloud
* [image-builder-bob] Tests&fixes from an experimental PR
Tool: gitpod/catfood.gitpod.cloud
* [supervisor, ws-manager] Write docker credentials into client config file if passed into workspace
Tool: gitpod/catfood.gitpod.cloud
* [server] Introduce project.settings.enableDockerdAuthentication and expose it on the API
Tool: gitpod/catfood.gitpod.cloud
* [dashboard] Add "Docker registry authentication" toggle under projects/env vars
Tool: gitpod/catfood.gitpod.cloud
* [server] Guard project.settings.enableDockerdAuthentication by org write_settings permission
Tool: gitpod/catfood.gitpod.cloud
* review comments with cleanup + small fixes
Tool: gitpod/catfood.gitpod.cloud
* [go components] Fixed "go test ./..." in various components
Tool: gitpod/catfood.gitpod.cloud
* [go components] Update k8s 0.29.3 -> 0.30.9 API
- update the go-update-wc-deps.sh script to handle the brunt of that transition
- fixes Maintenance- + Subscriber-Controller
- document steps
Tool: gitpod/catfood.gitpod.cloud
* [ws-manager-mk2] Decide how to apply appamor config based on serverversion to support k8s 1.30+
Tool: gitpod/catfood.gitpod.cloud
* [gpctl] Missing go mod tidy
Tool: gitpod/catfood.gitpod.cloud
* Replace vulnerable outcaste-io/badger/v3 with original dgraph-io/badger/v3
Tool: gitpod/catfood.gitpod.cloud
* more go mod tidy
Tool: gitpod/catfood.gitpod.cloud
* [image-builder-bob, installer] Select the correct version of containerd....
Tool: gitpod/catfood.gitpod.cloud
---------
Co-authored-by: Gero Posmyk-Leinemann <gero@gitpod.io>
* [ws-manager-mk2] logging improvements
* Record phase transitions, rather record phase each time we reconcile
* Add OWI to log instances
Also, avoid logging workspace name in workspace_types.go, as it contains org and repo info.
* Fix logger WithValues
* Include OWI with reconciling workspace messages
* Include OWI with timeout logs
* Cleanup
* Rely on OWI on the context
Thanks, @WVerlaek!
* [sshgateway] use ssh CA to auth
* change name
* add error log
* fix
* mark volume optional
* [installer] validate ssh-ca secret
* Revert "[installer] validate ssh-ca secret"
This reverts commit ca6ede78a7b5a720fd315eca32eb277cb5063069.
We must support the scenario where the installer has the secret, but, it is not in the cluster yet.
---------
Co-authored-by: Kyle Brennan <kyle@gitpod.io>
* Enable leader election in ws-manager-mk2
* Update go modules
* Move workspace activity to CRD
* Remove workspace activity
* Cleanup
* Update ws-manager-mk2 CRD
* Cleanup
* Restore lastActivity logic
* TEST
* Disable observability
* Start the grpc server after leader election
* Bount the source of subscribers to an informer
* Cleanup
* Avoid deepCopy
* Remove goroutine to execute OnReconcile
* Refactor last activity to be consistent acrtoss the controllers
* Address feedback
* Enable leader election in wa-manager-mk2
* Switch to four parallel tests
* Cleanup
* Update activity started time after leader election
* Count maintenance test failures
* Wait before updating the activity started time
* Add a new trust bundle for custom SSL certificates
* Mount the customer certificate in the workspace
* Use the custom certificate in components
* Cleanup
* Set env variables and mount the crt in a different file
* rename custom ca cert file name
* Fix the filename in env vars
* Enable custom SSL certificate conditionally
---------
Co-authored-by: nandajavarma <nandaja.varma@gmail.com>
* [wsman-api] Add maximum lifetime to workspace request
* [wsman-api] Add maximum lifetime to workspace CRD
* [wsman] Set maximum lifetime during workspace start
* [wsman] Check custom max lifetime
* [wsman-api] Fix conflicting raw proto
* [wsman-mk2] Test custom max lifetime
