* [sshgateway] use ssh CA to auth
* change name
* add error log
* fix
* mark volume optional
* [installer] validate ssh-ca secret
* Revert "[installer] validate ssh-ca secret"
This reverts commit ca6ede78a7b5a720fd315eca32eb277cb5063069.
We must support the scenario where the installer has the secret, but, it is not in the cluster yet.
---------
Co-authored-by: Kyle Brennan <kyle@gitpod.io>
* Extend ws-manager API to support workspace class descriptions
fixes ENG-1065
* Extend DescribeCluster in ws-manager-mk2
to acurately report the available workspace classes
fixes ENG-1066
* Add workspace classes to cluster in DB
* Intergrate workspace cluster collection in ws-manager-bridge
* Feature flag off discovered workspace class usage
* Fix build
* Add unittest for getSupportedWorkspaceClasses
* Fix workspace class storage
* Adress review feedback
* Enable leader election in ws-manager-mk2
* Update go modules
* Move workspace activity to CRD
* Remove workspace activity
* Cleanup
* Update ws-manager-mk2 CRD
* Cleanup
* Restore lastActivity logic
* TEST
* Disable observability
* Start the grpc server after leader election
* Bount the source of subscribers to an informer
* Cleanup
* Avoid deepCopy
* Remove goroutine to execute OnReconcile
* Refactor last activity to be consistent acrtoss the controllers
* Address feedback
* Enable leader election in wa-manager-mk2
* Switch to four parallel tests
* Cleanup
* Update activity started time after leader election
* Count maintenance test failures
* Wait before updating the activity started time
* Add a new trust bundle for custom SSL certificates
* Mount the customer certificate in the workspace
* Use the custom certificate in components
* Cleanup
* Set env variables and mount the crt in a different file
* rename custom ca cert file name
* Fix the filename in env vars
* Enable custom SSL certificate conditionally
---------
Co-authored-by: nandajavarma <nandaja.varma@gmail.com>
* [wsman-mk2] Remove ws-manager-mk2 from experimental
* [ws-daemon] Remove readiness check for service
* [ws-daemon] Use mk2 working area only
* [preview] Remove mk2 customization
* [installer] Remove constant
* Add trust.cert-manager.io for to bundle CA certificates
Signed-off-by: Manuel de Brito Fontes <aledbf@gmail.com>
* Configure CA volume and volumemount in components
* Update ws-manager golden files
* Deploy trust manager in preview
* Remove duplicated volume
* Update installer golden files
* Generate a bundle only for registry-facade
* Update golden files
* Fix initcontainer volume mounts
* Update golden files
* Fix registry-facade certificate
* Update golden files
* Disable skip_verify
* Enable force conflict with apply server side
Signed-off-by: Manuel de Brito Fontes <aledbf@gmail.com>
* Avoid random werft namespace errors
Signed-off-by: Manuel de Brito Fontes <aledbf@gmail.com>
---------
Signed-off-by: Manuel de Brito Fontes <aledbf@gmail.com>
