Update KOTS app to release-2022.11.2.14

corneliusludmann · corneliusludmann · commit 72e822c8dbc2 · 2023-03-01T17:05:39.000Z
diff --git a/install/kots/manifests/gitpod-installation-status.yaml b/install/kots/manifests/gitpod-installation-status.yaml
@@ -30,7 +30,7 @@ spec:
       containers:
         - name: installation-status
           # This will normally be the release tag
-          image: "eu.gcr.io/gitpod-core-dev/build/installer:sje-installer-fixes.0"
+          image: "eu.gcr.io/gitpod-core-dev/build/installer:release-2022.11.2.16"
           envFrom:
             - configMapRef:
                 name: gitpod-kots-config
diff --git a/install/kots/manifests/gitpod-installer-job.yaml b/install/kots/manifests/gitpod-installer-job.yaml
@@ -39,7 +39,7 @@ spec:
       containers:
         - name: installer
           # This will normally be the release tag
-          image: "eu.gcr.io/gitpod-core-dev/build/installer:sje-installer-fixes.0"
+          image: "eu.gcr.io/gitpod-core-dev/build/installer:release-2022.11.2.16"
           volumeMounts:
             - mountPath: /mnt/node0
               name: node-fs0
diff --git a/install/kots/manifests/kots-app.yaml b/install/kots/manifests/kots-app.yaml
diff --git a/install/kots/manifests/kots-preflight.yaml b/install/kots/manifests/kots-preflight.yaml
@@ -12,7 +12,157 @@ spec:
         name: validate-config
         namespace: '{{repl Namespace }}'
         podSpec:
-          containers: []
+          containers:
+            - name: installer
+              image: "eu.gcr.io/gitpod-core-dev/build/installer:release-2022.11.2.16"
+              volumeMounts:
+                - mountPath: /mnt/node0
+                  name: node-fs0
+                  readOnly: true
+                - mountPath: /tmp
+                  name: temp-storage
+              env:
+                - name: MOUNT_PATH
+                  value: /mnt/node0
+                - name: REGISTRY_DOCKER_CONFIG_JSON
+                  valueFrom:
+                    secretKeyRef:
+                      name: custom-registry-credentials
+                      key: .dockerconfigjson
+                      optional: true
+                - name: EXTERNAL_DOCKER_CONFIG_JSON
+                  valueFrom:
+                    secretKeyRef:
+                      name: external-container-registry
+                      key: .dockerconfigjson
+                      optional: true
+                - name: LOCAL_REGISTRY_IMAGE_PULL_DOCKER_CONFIG_JSON
+                  valueFrom:
+                    secretKeyRef:
+                      name: repl{{ ImagePullSecretName | quote }}
+                      key: .dockerconfigjson
+                      optional: true
+                - name: GITPOD_INSTALLER_CONFIG
+                  value: /tmp/gitpod-config.yaml
+                - name: GITPOD_OBJECTS
+                  value: /tmp/gitpod
+                - name: CURSOR
+                  value: repl{{ Cursor | quote }}
+                - name: DISTRIBUTION
+                  value: repl{{ Distribution | quote }}
+                - name: DOMAIN
+                  value: repl{{ ConfigOption "domain" | quote }}
+                - name: NAMESPACE
+                  value: repl{{ Namespace | quote }}
+                - name: OPEN_VSX_URL
+                  value: repl{{ ConfigOption "openVsxUrl" | quote }}
+                - name: SSH_GATEWAY
+                  value: repl{{ ConfigOption "ssh_gateway" | quote }}
+                - name: HTTP_PROXY_NAME
+                  value: '{{repl if (ConfigOptionEquals "enable_proxy_settings" "1" ) }}http-proxy-settings{{repl end }}'
+                - name: LICENSE_NAME
+                  value: gitpod-license
+                - name: SSH_GATEWAY_HOST_KEY_NAME
+                  value: ssh-gateway-host-key
+                - name: DB_INCLUSTER_ENABLED
+                  value: repl{{ ConfigOption "db_incluster" | quote }}
+                - name: DB_CLOUDSQL_ENABLED
+                  value: repl{{ ConfigOption "db_cloudsql_enabled" | quote }}
+                - name: DB_CLOUDSQL_INSTANCE
+                  value: repl{{ ConfigOption "db_cloudsql_instance" | quote }}
+                - name: DB_CLOUDSQL_SERVICE_ACCOUNT_NAME
+                  value: cloudsql
+                - name: DB_EXTERNAL_CERTIFICATE_NAME
+                  value: database
+                - name: HAS_LOCAL_REGISTRY
+                  value: repl{{ HasLocalRegistry | quote }}
+                - name: LOCAL_REGISTRY_ADDRESS
+                  value: repl{{ LocalRegistryAddress | quote }}
+                - name: LOCAL_REGISTRY_HOST
+                  value: repl{{ LocalRegistryHost | quote }}
+                - name: IMAGE_PULL_SECRET_NAME
+                  value: repl{{ ImagePullSecretName | quote }}
+                - name: REGISTRY_INCLUSTER_ENABLED
+                  value: repl{{ ConfigOption "reg_incluster" | quote }}
+                - name: REGISTRY_URL
+                  value: repl{{ ConfigOption "reg_url" | quote }}
+                - name: REGISTRY_INCLUSTER_STORAGE
+                  value: repl{{ ConfigOption "reg_incluster_storage" | quote }}
+                - name: REGISTRY_INCLUSTER_STORAGE_S3_REGION
+                  value: repl{{ ConfigOption "reg_incluster_storage_s3_region" | quote }}
+                - name: REGISTRY_INCLUSTER_STORAGE_S3_ENDPOINT
+                  value: repl{{ ConfigOption "reg_incluster_storage_s3_endpoint" | quote }}
+                - name: REGISTRY_INCLUSTER_STORAGE_S3_BUCKET_NAME
+                  value: repl{{ ConfigOption "reg_incluster_storage_s3_bucketname" | quote }}
+                - name: REGISTRY_INCLUSTER_STORAGE_S3_CERTIFICATE_NAME
+                  value: container-registry-s3-backend
+                - name: REGISTRY_DOCKER_CONFIG_ENABLED
+                  value: repl{{ ConfigOption "reg_docker_config_enable" | quote }}
+                - name: REGISTRY_EXTERNAL_CERTIFICATE_NAME
+                  value: container-registry
+                - name: STORE_PROVIDER
+                  value: repl{{ ConfigOption "store_provider" | quote }}
+                - name: STORE_REGION
+                  value: repl{{ ConfigOption "store_region" | quote }}
+                - name: STORE_GCP_PROJECT
+                  value: repl{{ ConfigOption "store_gcp_project" | quote }}
+                - name: STORE_S3_ENDPOINT
+                  value: repl{{ ConfigOption "store_s3_endpoint" | quote }}
+                - name: STORE_S3_BUCKET
+                  value: repl{{ ConfigOption "store_s3_bucket" | quote }}
+                - name: STORE_AZURE_CREDENTIALS_NAME
+                  value: storage-azure
+                - name: STORE_GCP_SERVICE_ACCOUNT_NAME
+                  value: storage-gcp
+                - name: STORE_S3_CREDENTIALS_NAME
+                  value: storage-s3
+                - name: CERT_MANAGER_ENABLED
+                  value: repl{{ ConfigOption "cert_manager_enabled" | quote }}
+                - name: TLS_SELF_SIGNED_ENABLED
+                  value: repl{{ ConfigOption "tls_self_signed_enabled" | quote }}
+                - name: TLS_CUSTOM_CA_CRT_ENABLED
+                  value: repl{{ ConfigOptionNotEquals "tls_ca_crt" "" | quote }}
+                - name: TLS_CUSTOM_CA_CRT_CREDENTIALS_NAME
+                  value: ca-certificate
+                - name: USER_MANAGEMENT_BLOCK_ENABLED
+                  value: repl{{ ConfigOption "user_management_block_enabled" | quote }}
+                - name: USER_MANAGEMENT_BLOCK_PASSLIST
+                  value: repl{{ ConfigOption "user_management_block_passlist" | quote }}
+                - name: ADVANCED_MODE_ENABLED
+                  value: repl{{ ConfigOption "advanced_mode_enabled" | quote }}
+                - name: COMPONENT_PROXY_SERVICE_TYPE
+                  value: repl{{ ConfigOption "component_proxy_service_serviceType" | quote }}
+                - name: CUSTOMIZATION_PATCH_ENABLED
+                  value: repl{{ ConfigOptionNotEquals "customization_patch" "" | quote }}
+                - name: INSTALLER_TIMEOUT
+                  value: repl{{ ConfigOption "installer_timeout" | quote }}
+                - name: CONFIG_PATCH
+                  value: repl{{ ConfigOptionData "config_patch" | default "" | quote }}
+                - name: CUSTOMIZATION_PATCH
+                  value: repl{{ ConfigOptionData "customization_patch" | default "" | quote }}
+                - name: INSTALLER_DRY_RUN
+                  value: "true"
+              command:
+                - /app/scripts/kots-install.sh
+          affinity:
+            nodeAffinity:
+              requiredDuringSchedulingIgnoredDuringExecution:
+                nodeSelectorTerms:
+                  - matchExpressions:
+                      - key: gitpod.io/workload_workspace_regular
+                        operator: Exists
+                  - matchExpressions:
+                      - key: gitpod.io/workload_workspace_headless
+                        operator: Exists
+          serviceAccountName: kotsadm
+          restartPolicy: OnFailure
+          volumes:
+            - name: node-fs0
+              hostPath:
+                path: /
+                type: Directory
+            - name: temp-storage
+              emptyDir: {}
     - clusterResources:
         namespaces:
           - '{{repl Namespace }}'
