archive-gh-me/gitpod
1
0
Fork 0
mirror of https://github.com/gitpod-io/gitpod.git synced 2025-12-08 17:36:30 +00:00
Code Issues Projects Releases Wiki Activity
9,325 Commits 1,231 Branches 1,883 Tags
Commit Graph

1124 Commits

Author SHA1 Message Date
Alex Tugarev
682eb3d14e [installer] allow ingress from c/iam to c/server 
A dedicated service host will be exposed internally to the IAM component.
 2023-01-03 12:10:42 +01:00
Lupael
35a30ea5b7 Wrong cloud provider 
The cloud provider name was wrong, I corrected it, from AWS to AKA.
 2023-01-02 15:17:42 +01:00
Thomas Schubart
296069f2bc Update containerd to 1.6.14 2022-12-30 12:26:39 +01:00
Milan Pavlik
e282f5a165 [iam] Bind OIDC Client config service 2022-12-27 09:10:36 +01:00
Alex Tugarev
7136c68be3 [iam] adding preview-env config 2022-12-22 12:40:31 -03:00
Alex Tugarev
034543f154 [iam] add networkpolicy 2022-12-22 10:07:31 -03:00
Victor Nogueira
119badcf19 Fix License filename in headers (License-AGPL.txt -> License.AGPL.txt) 2022-12-22 10:02:31 -03:00
Filip Troníček
348f325a9d Update Code to 1.74.2 2022-12-21 12:55:30 -03:00
Filip Troníček
96f30277ea Introduce new version designs 2022-12-20 13:05:29 -03:00
Andrea Falzetti
50caba2cda add run-gp layer to certain users 
Co-authored-by: Anton Kosyakov <anton@gitpod.io>
Co-authored-by: Victor Nogueira <victor@gitpod.io>
 2022-12-20 09:22:29 -03:00
Tarun Pothulapati
320421ddcc [installer] Update third_party charts to use full index 
This PR updates the `repository` field for third_party
charts to use full index so that we don't loose out
on older version charts as they get truncated.

Signed-off-by: Tarun Pothulapati <tarun@gitpod.io>
 2022-12-20 06:05:29 -03:00
JenTing Hsiao
2698a7a657 Apply suggestions from code review 2022-12-20 02:45:29 -03:00
Wouter Verlaek
72d9152a71 [image-builder] Enable TLS in workspace clusters 
Fix cyclic import cycle

Update altnames

Update golden testdata, todo

Update grpc opts

Testing

Remove blocking dial

Only add TLS in ws cluster

Conditional TLS

Add comments
 2022-12-20 02:45:29 -03:00
Moritz Eysholdt
03075cebdd Fix a wrong license header. 2022-12-16 10:11:26 -03:00
Filip Troníček
b8c0826aaa Update code to 1.74.1 2022-12-15 17:43:25 -03:00
Sven Efftinge
aaa0653d54 [ubp] reset usage on chargebee cancellation 2022-12-15 12:32:25 -03:00
Gero Posmyk-Leinemann
8a03b3a156 [installer, gitpod-db] Introduce database.ssl.ca 2022-12-15 12:29:24 -03:00
JenTing Hsiao
e7233ecde2 Forbid job to run concurrency 
When using concurrentPolicy=Replace and the job failed but haven't reach the backoff
limit, the new job will replace the original one if the schedule time is
less than the sum of the backoff time.

It causes a problem that the job alert
`kube_job_status_failed{job_name=~"refresh-credential.*",reason="BackoffLimitExceeded"}` can't be fired.

Signed-off-by: JenTing Hsiao <hsiaoairplane@gmail.com>
 2022-12-15 05:48:24 -03:00
JenTing Hsiao
59ba9a4495 Check secret key credentials 
Signed-off-by: JenTing Hsiao <hsiaoairplane@gmail.com>
 2022-12-15 05:48:24 -03:00
JenTing Hsiao
37772682ab Rename from registry-credential to refresh-credential 
Signed-off-by: JenTing Hsiao <hsiaoairplane@gmail.com>
 2022-12-15 05:48:24 -03:00
JenTing Hsiao
4fe4bf6ce4 Address review comment 
- Provide AWS doc/code link
- Check IsAWSECRURL in Object once
- Check credential AWS access/secret key pair exists

Signed-off-by: JenTing Hsiao <hsiaoairplane@gmail.com>
 2022-12-15 05:48:24 -03:00
JenTing Hsiao
3f8bafb4d2 installer: add create secrets permission 
Signed-off-by: JenTing Hsiao <hsiaoairplane@gmail.com>
 2022-12-15 05:48:24 -03:00
JenTing Hsiao
3bfe4522c4 registry-credential: support public AWS ECR credential rotation 
Signed-off-by: JenTing Hsiao <hsiaoairplane@gmail.com>
 2022-12-15 05:48:24 -03:00
Simon Emms
1215a7fe19 [installer]: add registry-credential as leeway dependency (#15306) 2022-12-15 05:48:24 -03:00
JenTing Hsiao
6b28dc6508 installer: update according to load from config 
Signed-off-by: JenTing Hsiao <hsiaoairplane@gmail.com>
 2022-12-15 05:48:24 -03:00
JenTing Hsiao
b086e0d405 installer: use container image from leeway built 
Signed-off-by: JenTing Hsiao <hsiaoairplane@gmail.com>
 2022-12-15 05:48:24 -03:00
JenTing Hsiao
cb54303705 installer: add registry-credential component 
Signed-off-by: JenTing Hsiao <hsiaoairplane@gmail.com>
 2022-12-15 05:48:24 -03:00
JenTing Hsiao
c942486f47 installer: update volume mount when Secret updates 
According to Kubernetes doc, a container using a Secret as a
subPath volume mount will not receive Secret updates.

Signed-off-by: JenTing Hsiao <hsiaoairplane@gmail.com>
 2022-12-15 05:48:24 -03:00
Wouter Verlaek
40e78a254d [image-builder] Change affinity in ws clusters 2022-12-14 14:17:24 -03:00
Milan Pavlik
6d52267ce6 [iam] Mount database secret as a file 2022-12-14 04:49:24 -03:00
Wouter Verlaek
52119de9d6 Remove ws-proxy from IDE components 2022-12-13 16:12:23 -03:00
Wouter Verlaek
b1d53399e7 Experimental app cluster without ws components 
Workspace image builds

Update golden output

Deploy ws-manager tls secret in webapp

Remove ws-manager secrets

Update golden outputs

Enable movedImageBuilder by default

Add wsmanager tls to server if not meta install

Update output.golden

Install ws-proxy in meta

Update golden

Move wsproxy to IDE objs

Create experimental flag

Move ws-proxy to idecomponents

Remove ws-manager TLS cert from ws-proxy

skipSelf if WithoutWorkspaceComponents enabled

Fix ws-proxy config
 2022-12-13 16:12:23 -03:00
Andrew Farries
16d619c659 Green: Ensure db-waiter connects through toxiproxy 
Inline the `database-waiter` init container and modify its environment.
 2022-12-13 11:43:23 -03:00
Andrew Farries
18bb2679f9 Red: Add test to check db-waiter connects via toxi 2022-12-13 11:43:23 -03:00
Victor Nogueira
756c5b0248 Replace "Status" by "JetBrains Launcher" and run it in a separate image from IDEs 
Co-authored-by: Anton Kosyakov <anton@gitpod.io>
Co-authored-by: Andrea Falzetti <andrea@gitpod.io>
 2022-12-13 11:35:23 -03:00
mustard
f4ea3a56a1 Revert "Revert "[supervisor] use public api in supervisor"" 
This reverts commit 44dfc5e19be3b89d96ab25f2f83476d57aa7b8ef.
 2022-12-12 09:05:22 -03:00
Mads Hartmann
06557ea800 Remove build artifacts from leeway package srcs lists 2022-12-12 08:12:22 -03:00
Simon Emms
5b27ce7b9d [installer]: add required bucket name to mirror kots command 2022-12-12 07:23:22 -03:00
utam0k
ea1090bcf1 installer: Update golden files 2022-12-12 04:00:21 -03:00
utam0k
a7accce55d ws-daemon: Ensure that node-labeler always monitors the ws-daemon container 2022-12-12 04:00:21 -03:00
Thomas Schubart
06074b311b [content-service] Review Comments 
- Ensure all items are fetched
- Remove double init of client
- Specify region and credentials from config
- Remove insecure s3 test (deprecated)
 2022-12-09 10:29:19 -03:00
Thomas Schubart
c3a97c9ccb [installer] Configure S3 2022-12-09 10:29:19 -03:00
Christian Weichel
799e6059c4 [content-service] Implement support for S3 2022-12-09 10:29:19 -03:00
Huiwen
44dfc5e19b Revert "[supervisor] use public api in supervisor" 
This reverts commit f3fcfbf003425f947bf3a0a28e452709623b6d74.
 2022-12-09 08:21:19 -03:00
Simon Emms
407e60f202 [installer]: make the kots install overwrite the config if exists 2022-12-09 07:49:19 -03:00
Simon Emms
e4dd9ed259 [installer]: update config readme 2022-12-09 03:45:18 -03:00
Simon Emms
1724791fd2 [installer]: allow config documenting script to ignore keys with no json tag 2022-12-09 03:45:18 -03:00
mustard
f3fcfbf003 [supervisor] use public api in supervisor 
Co-authored-by: mustard <mhqnwt@gmail.com>
Co-authored-by: Anton Kosyakov <anton@gitpod.io>
Co-authored-by: Jean Pierre <jeanp413@hotmail.com>
Co-authored-by: iQQBot <tianshi8650@gmail.com>
 2022-12-08 17:48:18 -03:00
Christian Weichel
478a75e744 Switch license to AGPL 2022-12-08 13:05:19 -03:00
Simon Emms
fd18fe2594 [installer]: improve the comparison method for the golden files 2022-12-08 07:19:18 -03:00