* [docker-up] Minor fixes and add tests
Tool: gitpod/catfood.gitpod.cloud
* [image-builder-bob] Tests&fixes from an experimental PR
Tool: gitpod/catfood.gitpod.cloud
* [supervisor, ws-manager] Write docker credentials into client config file if passed into workspace
Tool: gitpod/catfood.gitpod.cloud
* [server] Introduce project.settings.enableDockerdAuthentication and expose it on the API
Tool: gitpod/catfood.gitpod.cloud
* [dashboard] Add "Docker registry authentication" toggle under projects/env vars
Tool: gitpod/catfood.gitpod.cloud
* [server] Guard project.settings.enableDockerdAuthentication by org write_settings permission
Tool: gitpod/catfood.gitpod.cloud
* review comments with cleanup + small fixes
Tool: gitpod/catfood.gitpod.cloud
* [go components] Fixed "go test ./..." in various components
Tool: gitpod/catfood.gitpod.cloud
* [go components] Update k8s 0.29.3 -> 0.30.9 API
- update the go-update-wc-deps.sh script to handle the brunt of that transition
- fixes Maintenance- + Subscriber-Controller
- document steps
Tool: gitpod/catfood.gitpod.cloud
* [ws-manager-mk2] Decide how to apply appamor config based on serverversion to support k8s 1.30+
Tool: gitpod/catfood.gitpod.cloud
* [gpctl] Missing go mod tidy
Tool: gitpod/catfood.gitpod.cloud
* Replace vulnerable outcaste-io/badger/v3 with original dgraph-io/badger/v3
Tool: gitpod/catfood.gitpod.cloud
* more go mod tidy
Tool: gitpod/catfood.gitpod.cloud
* [image-builder-bob, installer] Select the correct version of containerd....
Tool: gitpod/catfood.gitpod.cloud
---------
Co-authored-by: Gero Posmyk-Leinemann <gero@gitpod.io>
* [sshgateway] use ssh CA to auth
* change name
* add error log
* fix
* mark volume optional
* [installer] validate ssh-ca secret
* Revert "[installer] validate ssh-ca secret"
This reverts commit ca6ede78a7b5a720fd315eca32eb277cb5063069.
We must support the scenario where the installer has the secret, but, it is not in the cluster yet.
---------
Co-authored-by: Kyle Brennan <kyle@gitpod.io>
* Add a new trust bundle for custom SSL certificates
* Mount the customer certificate in the workspace
* Use the custom certificate in components
* Cleanup
* Set env variables and mount the crt in a different file
* rename custom ca cert file name
* Fix the filename in env vars
* Enable custom SSL certificate conditionally
---------
Co-authored-by: nandajavarma <nandaja.varma@gmail.com>
* Add trust.cert-manager.io for to bundle CA certificates
Signed-off-by: Manuel de Brito Fontes <aledbf@gmail.com>
* Configure CA volume and volumemount in components
* Update ws-manager golden files
* Deploy trust manager in preview
* Remove duplicated volume
* Update installer golden files
* Generate a bundle only for registry-facade
* Update golden files
* Fix initcontainer volume mounts
* Update golden files
* Fix registry-facade certificate
* Update golden files
* Disable skip_verify
* Enable force conflict with apply server side
Signed-off-by: Manuel de Brito Fontes <aledbf@gmail.com>
* Avoid random werft namespace errors
Signed-off-by: Manuel de Brito Fontes <aledbf@gmail.com>
---------
Signed-off-by: Manuel de Brito Fontes <aledbf@gmail.com>
