gitpod

mirror of https://github.com/gitpod-io/gitpod.git synced 2025-12-08 17:36:30 +00:00

Author	SHA1	Message	Date
Gero Posmyk-Leinemann	561fde446c	[server] Fix custom CA (#20770 ) Configure NODE_EXTRA_CA_CERTS env var to point to the CA certificate bundle file	2025-04-24 06:21:34 -04:00
iQQBot	52a7727b4f	[node-labeler] Refactor node labeling to use taints instead of labels (#20652 ) * [node-labeler] Refactor node labeling to use taints instead of labels * [agent-smith] Add toleration to daemonset * Add workspace component tolerations to various Gitpod components if it running in Full installation * Apply suggestions from code review Co-authored-by: Kyle Brennan <kyle@gitpod.io> * Update components/node-labeler/cmd/run.go Co-authored-by: Kyle Brennan <kyle@gitpod.io> --------- Co-authored-by: Kyle Brennan <kyle@gitpod.io>	2025-03-11 03:30:39 -04:00
Gero Posmyk-Leinemann	76781bf322	[dev] Update workspace libraries to match kubernetes (containerd, runc, buildkit) (#20526 ) * [workspace] Set lib versions: containerd to 1.6.36, runc 1.1.14 and buildkit to 0.12.5 Reasoning: https://linear.app/gitpod/issue/CLC-982/update-containerd-to-latest-patch-16x-k8s-and-runc-libs-in-gitpod-mono#comment-d5450e2c * [golangci] Remove superfluous notlint and checks * [image-builder-mk3] Fix incomplete tests where a library made the field "mediaType" non-optimal Original change: https://github.com/opencontainers/image-spec/pull/1091 * [docker] Switch from github.com/docker/distribution/reference to github.com/distribution/reference * [ws-daemon] Internalize libcontainer/specconv because it got dropped between runc 1.1.10 and 1.1.14	2025-01-20 09:32:10 -05:00
Sven Efftinge	ff186330e7	[bridge] add healthz endpoint (#19747 )	2024-05-16 17:42:54 +08:00
Manuel Alejandro de Brito Fontes	692963d2e9	Update containerd and buildkit go modules (#19376 ) * Update containerd and buildkit go modules * Fix build * Fix typecheck errors --------- Co-authored-by: Thomas Schubart <thomas@gitpod.io>	2024-02-01 20:22:44 +02:00
Thomas Schubart	55c9165c0d	Support managed redis (#18581 ) * [installer] Specify redis configuration for server * [server] Configure Redis authentication * [wsman-bridge] Configure Redis authentication * [wsman-bridge] Add redis credentials to environment	2023-08-24 10:30:50 +02:00
Huiwen	700b6050ba	Make db waiter to wait latest migration (#18455 ) * Make db waiter to wait latest migration * Move generate out of build * Remove conn require * Allow to ignore migration check * Use shell * Use fail and remote useless log * Generate service-waiter txt when create migration * Revert "Generate service-waiter txt when create migration" This reverts commit 11c12b83544a448f9784f8aa94cdfd69cfb15f45. * Add log	2023-08-10 13:51:36 +02:00
Milan Pavlik	a778e6dd76	[installer] Remove messagebus WEB-618 (#18216 ) * [server] Publish events during workspace starter * retest * fix * fix * retest * retest * retest * retest * retest * retest * retest * retest * [server] Publish events during workspace starter * retest * retest * retest * retest * retest * retest * retest * retest * retest * retest * retest * fix * [installer] Remove messagebus * fix * fix	2023-07-24 20:51:40 +08:00
Milan Pavlik	a3d54e2a13	[service-waiter] Extend to support redis WEB-602 (#18196 ) * [service-waiter] Extend to support redis * hook up to installer	2023-07-07 17:59:24 +08:00
Milan Pavlik	3b6472b158	[ws-man-bridge] Use chainguard image WEB-576 (#18084 ) * [ws-man-bridge] Use chainguard image * fix * retest * Fix * fix? * fix	2023-06-28 18:32:46 +08:00
Thomas Schubart	2fb046fc1c	[wsman-mk2] Remove ws-manager-mk1 (#17738 )	2023-05-25 17:05:59 +08:00
Thomas Schubart	09bb1b218c	[installer] Use mk2 tls certificates for server (#17317 )	2023-04-24 19:19:45 +08:00
Manuel Alejandro de Brito Fontes	5b30eb5b8c	Remove unused caCertSecret (#16793 ) * Add trust.cert-manager.io for to bundle CA certificates Signed-off-by: Manuel de Brito Fontes <aledbf@gmail.com> * Configure CA volume and volumemount in components * Update ws-manager golden files * Deploy trust manager in preview * Remove duplicated volume * Update installer golden files * Generate a bundle only for registry-facade * Update golden files * Fix initcontainer volume mounts * Update golden files * Fix registry-facade certificate * Update golden files * Disable skip_verify * Enable force conflict with apply server side Signed-off-by: Manuel de Brito Fontes <aledbf@gmail.com> * Avoid random werft namespace errors Signed-off-by: Manuel de Brito Fontes <aledbf@gmail.com> --------- Signed-off-by: Manuel de Brito Fontes <aledbf@gmail.com>	2023-03-21 11:44:13 +01:00
Manuel Alejandro de Brito Fontes	97f8d4b802	Ensure the spread of pods on different nodes (#16810 ) * Ensure the spread of pods on different nodes * Replace string ClusterFirst * Replace Always string in DNSPolicy * Fix registry-facade affinity * Fix ws-proxy affinity * Address feedback * Update golden files	2023-03-15 10:21:07 +01:00
Gero Posmyk-Leinemann	11caa55346	[installer] Replace flag withoutWorkspaceComponents with 'Kind != "Full"'	2023-02-02 11:17:40 +01:00
Simon Emms	6ef48d59c6	[installer]: refactor message bus config to use an external secret Previously, this was defined as a Helm secret inline. Now, this uses the way that the Installer supports by default.	2023-01-23 14:45:30 +01:00
Wouter Verlaek	b1d53399e7	Experimental app cluster without ws components Workspace image builds Update golden output Deploy ws-manager tls secret in webapp Remove ws-manager secrets Update golden outputs Enable movedImageBuilder by default Add wsmanager tls to server if not meta install Update output.golden Install ws-proxy in meta Update golden Move wsproxy to IDE objs Create experimental flag Move ws-proxy to idecomponents Remove ws-manager TLS cert from ws-proxy skipSelf if WithoutWorkspaceComponents enabled Fix ws-proxy config	2022-12-13 16:12:23 -03:00
Christian Weichel	478a75e744	Switch license to AGPL	2022-12-08 13:05:19 -03:00
Tarun Pothulapati	c2eb0c15d1	[installer] manually set `allowPrivilegeEscalation` to false This PR manually sets the `allowPrivilegeEscalation` container config to false where we don't need extra capabilities. This is needed as not setting this explicitely could mean that it could still be `true` based on other settings. This also helps us future proof on any behaviour changes around this. Signed-off-by: Tarun Pothulapati <tarun@gitpod.io>	2022-12-05 06:28:15 -03:00
Manuel Alejandro de Brito Fontes	def55ee7ba	Add option to add authentication to Jaeger and custom tags	2022-10-11 13:51:26 +02:00
Simon Emms	2fd3dd3586	[installer]: remove the custom labels from the selector labels	2022-08-09 04:16:53 -03:00
Manuel Alejandro de Brito Fontes	14095f470b	Refactor configuration of localhost address, metric and debug ports	2022-07-23 11:19:18 -03:00
Thomas Schubart	88e5beb8d6	[bridge] Regularly check for class updates	2022-07-06 23:15:53 +05:30
Simon Emms	8fad588e6b	[installer]: add customization functions to components	2022-06-24 17:02:33 +05:30
Andrew Farries	7363937d54	Rename `TracingEnv` to `WorkspaceTracingEnv`	2022-05-11 13:25:26 +05:30
Andrew Farries	674db36fbb	Make resources configurable for all components Use the common.ResourceRequirements function from the parent commits, passing in the existing defaults.	2022-04-28 20:04:14 +05:30
Andrew Farries	0ae3201a7e	Set Replicas for multiple components So that they respect the new `experimental.common.podConfig.<component>.replicas` setting.	2022-04-26 13:14:38 +05:30
Simon Emms	948ae5192b	[installer]: add DropImageRepo functionality to RepoName This moves the ImageName and RepoName functions to the RenderContext struct.	2022-04-21 18:26:33 +05:30
Andrew Farries	3fdd2d9754	Rename `common.Affinity` to `NodeAffinity`	2022-04-20 02:48:32 +05:30
Gero Posmyk-Leinemann	92641cacc6	[installer] Add missing ports to server, ws-manager-bridge	2022-04-14 21:00:27 +05:30
Simon Emms	840d29a151	[installer]: add annotation to make DB resources restart if changes	2022-03-07 17:38:14 +05:30
Simon Emms	4820e804bb	[installer]: move to /install	2022-02-22 17:03:02 +05:30

32 Commits