Re configure config yamls

Prince Rachit Sinha · Prince Rachit Sinha · commit f93e7b6fb9e7 · 2021-07-01T14:23:22.000Z
diff --git a/.werft/build.ts b/.werft/build.ts
@@ -413,8 +413,7 @@ export async function deployToDev(deploymentConfig: DeploymentConfig, workspaceF
 
         werft.log("helm", "installing k3s ws cluster")
         exec(`export KUBECONFIG=${pathToKubeConfig} && helm dependencies up`);
-        exec(`export KUBECONFIG=${pathToKubeConfig} && /usr/local/bin/helm3 upgrade --install --timeout 10m -f ../.werft/values.dev.yaml ${flags} ${helmInstallName} .`);
-        // exec(`export KUBECONFIG=${pathToKubeConfig} && kubectl apply -f ../.werft/jaeger.yaml`);
+        exec(`export KUBECONFIG=${pathToKubeConfig} && /usr/local/bin/helm3 upgrade --install --timeout 10m -f ../.werft/values.dev.yaml ../werft/values.devK3sWs.yaml ${flags} ${helmInstallName} .`);
     }
 
     function addDeploymentFlags() {
diff --git a/.werft/values.devK3sWs.yaml b/.werft/values.devK3sWs.yaml
@@ -0,0 +1,227 @@
+installation:
+  stage: devstaging
+  tenant: gitpod-core
+  region: europe-west1
+  cluster: "00"
+  shortname: "dev"
+hostname: staging.gitpod-dev.com
+imagePrefix: eu.gcr.io/gitpod-core-dev/build/
+certificatesSecret:
+  secretName: proxy-config-certificates
+version: not-set
+imagePullPolicy: Always
+affinity:
+  nodeAffinity:
+    requiredDuringSchedulingIgnoredDuringExecution:
+      nodeSelectorTerms:
+      - matchExpressions:
+        - key: gitpod.io/workload_services
+          operator: In
+          values:
+          - "true"
+authProviders: []
+tracing:
+  endoint: http://jaeger-collector:14268/api/traces
+  samplerType: const
+  samplerParam: "1"
+
+components:
+
+  agentSmith:
+    name: "agent-smith"
+    disabled: false
+    # in preview envs, we never want DaemonSets not to be scheduled (because they don't trigger scaleup)
+    resources:
+      cpu: 1m
+      memory: 32Mi
+
+  server:
+    replicas: 1
+    makeNewUsersAdmin: true # for development
+    theiaPluginsBucketName: gitpod-core-dev-plugins
+    enableLocalApp: true
+    enableOAuthServer: true
+    blockNewUsers: true
+    blockNewUsersPasslist:
+    - "gitpod.io"
+
+  registryFacade:
+    daemonSet: true
+    # in preview envs, we never want DaemonSets not to be scheduled (because they don't trigger scaleup)
+    resources:
+      cpu: 1m
+      memory: 32Mi
+
+  contentService:
+    remoteStorage:
+      blobQuota: 1073741824 # 1 GiB
+
+  workspace:
+    # configure GCP registry
+    pullSecret:
+      secretName: gcp-sa-registry-auth
+    affinity:
+      default: "gitpod.io/workload_workspace"
+    templates:
+      default:
+        spec:
+          dnsConfig:
+            nameservers:
+            - 1.1.1.1
+            - 8.8.8.8
+          dnsPolicy: None   # do NOT query against K8s DNS (https://kubernetes.io/docs/concepts/services-networking/dns-pod-service/)
+          env:
+          - name: THEIA_PREVENT_METADATA_ACCESS
+            value: true
+      regular:
+        spec:
+          containers:
+          - name: "workspace"
+            env:
+            - name: THEIA_RATELIMIT_LOG
+              value: "50"
+            - name: SUPERVISOR_DEBUG_ENABLE
+              value: "true"
+      prebuild:
+        spec:
+          containers:
+          - name: workspace
+            # Intended to reduce the density for prebuilds
+            resources:
+              limits:
+                cpu: "5"
+                memory: 12Gi
+              requests:
+                cpu: 1m
+                ephemeral-storage: 5Gi
+                memory: 4608Mi  # = 2 * 2304Mi
+
+  # Allow per-branch ingress from another, in-cluster proxy
+  proxy:
+    replicas: 1
+    ports:
+      http:
+        expose: true
+        containerPort: 80
+        nodePort: null
+      https:
+        expose: true
+        containerPort: 443
+        nodePort: null
+      metrics:
+        containerPort: 9145
+    serviceSessionAffinity: "None"
+    serviceExternalTrafficPolicy: null
+    serviceType: "ClusterIP"
+    deployIngressService: false
+    loadBalancerIP: null
+
+  # Enable events trace
+  wsManager:
+    eventTraceLogLocation: "/tmp/evts.json"
+
+  imageBuilder:
+    hostDindData: "/mnt/disks/ssd0/builder"
+    # configure GCP registry
+    registry:
+      name: eu.gcr.io/gitpod-core-dev/registry
+      secretName: gcp-sa-registry-auth
+      path: gcp-sa-registry-auth
+    registryCerts: []
+
+  wsDaemon:
+    hostWorkspaceArea: /mnt/disks/ssd0/workspaces
+    volumes:
+    - name: gcloud-tmp
+      hostPath:
+        path: /mnt/disks/ssd0/sync-tmp
+        type: DirectoryOrCreate
+    volumeMounts:
+    - mountPath: /mnt/sync-tmp
+      name: gcloud-tmp
+    userNamespaces:
+      fsShift: fuse-overlayfs
+      shiftfsModuleLoader:
+        enabled: false
+      seccompProfileInstaller:
+        enabled: true
+    # in preview envs, we never want DaemonSets not to be scheduled (because they don't trigger scaleup)
+    resources:
+      cpu: 1m
+      memory: 32Mi
+
+  wsScheduler:
+    scaler:
+      enabled: true
+      controller:
+        kind: "constant"
+        constant:
+          setpoint: 1
+
+  # Enable ws-proxy in dev
+  wsProxy:
+    name: "ws-proxy"
+    disabled: false
+    replicas: 1
+    wsManagerProxy:
+      enabled: true
+    ports:
+      wsManagerProxy:
+        expose: true
+        containerPort: 8081
+
+# configure GCP registry
+docker-registry:
+  enabled: false
+
+minio:
+  accessKey: EXAMPLEvalue
+  secretKey: Someone.Should/ReallyChangeThisKey!!
+  serviceAccount:
+    name: ws-daemon
+    create: false
+      # make sure the pod ends up where it's supposed to stay
+  affinity:
+    nodeAffinity:
+      requiredDuringSchedulingIgnoredDuringExecution:
+        nodeSelectorTerms:
+        - matchExpressions:
+          - key: gitpod.io/workload_workspace
+            operator: In
+            values:
+            - "true"
+
+mysql:
+  primary:
+    # make sure the pod ends up where it's supposed to stay
+    affinity:
+      nodeAffinity:
+        requiredDuringSchedulingIgnoredDuringExecution:
+          nodeSelectorTerms:
+          - matchExpressions:
+            - key: gitpod.io/workload_workspace
+              operator: In
+              values:
+              - "true"
+
+rabbitmq:
+  # ensure shovels are configured on boot
+  shovels:
+    - name: messagebus-0
+      srcUri: "amqp://$USERNAME:$PASSWORD@messagebus-0"
+  auth:
+    username: override-me
+    password: override-me
+  # make sure the pod ends up where it's supposed to stay
+    affinity:
+    nodeAffinity:
+      requiredDuringSchedulingIgnoredDuringExecution:
+        nodeSelectorTerms:
+        - matchExpressions:
+          - key: gitpod.io/workload_workspace
+            operator: In
+            values:
+            - "true"
+
+cert-manager:
+  enabled: true

Original file line number	Diff line number	Diff line change
`@@ -413,8 +413,7 @@ export async function deployToDev(deploymentConfig: DeploymentConfig, workspaceF`
`413`	`413`
`414`	`414`	`werft.log("helm", "installing k3s ws cluster")`
`415`	`415`	exec(`export KUBECONFIG=${pathToKubeConfig} && helm dependencies up`);
`416`		- exec(`export KUBECONFIG=${pathToKubeConfig} && /usr/local/bin/helm3 upgrade --install --timeout 10m -f ../.werft/values.dev.yaml ${flags} ${helmInstallName} .`);
`417`		- // exec(`export KUBECONFIG=${pathToKubeConfig} && kubectl apply -f ../.werft/jaeger.yaml`);
	`416`	+ exec(`export KUBECONFIG=${pathToKubeConfig} && /usr/local/bin/helm3 upgrade --install --timeout 10m -f ../.werft/values.dev.yaml ../werft/values.devK3sWs.yaml ${flags} ${helmInstallName} .`);
`418`	`417`	`}`
`419`	`418`
`420`	`419`	`function addDeploymentFlags() {`