Replace Microk8s with k0s to allow Dockerization with DinD #22
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…fication scripts; Makefile targets; docs updates
…ce verification with shared cluster
… and rewrite kubeconfig accordingly
…emote cannot reach kube-API (single-node k0s)
… state (single-node k0s)
…o avoid remote API dependence
…ation if CR absent quickly
…e cannot reach local-only kube-API)
…hable kube-API/state)
…de, still fail on divergent mismatches
…t in constrained environments
… plan and deployment docs with progress and usage
…r-setup; docs: SAN and serve guidance
…ple; API bootstrap+settings example
…BAC fix + yaml; setup-all auto-attach + operator-setup; docs: DinD TLS/registry
…ocs: registry push helper, DinD notes; plan: mark operator on k0s done
… reset KEEP_K0S preserve k0s state; docs/plan updates
…NT docs; emphasize planning docs updates
…ate docs and scripts; stub migration helper
… k0s bring-up and verifier docs
… MetalLB apply with retries
…guration - Implemented panic recovery in the reverse proxy to prevent empty TLS closures and log errors. - Added a new Kubernetes manifest for local path storage, including necessary RBAC roles, service accounts, and a deployment for the local path provisioner. - Updated the RethinkDB service to use the local path storage class for persistent volumes. - Created a temporary local path config map for helper pod setup and teardown scripts. - Added deployment scripts for local path provisioner and MetalLB, ensuring memberlist secret creation and webhook readiness. - Enhanced Tailscale router deployment to normalize auth keys and allow retries on failure. - Improved Headscale bootstrap script to extract preauth keys more reliably. - Updated scripts for k0s node setup to support host networking and external address resolution. - Modified multi-device setup and workspace verification scripts to use the new API endpoints. - Added a simple supervisor to the host app to ensure it restarts on exit. - Marked the task of preventing unintended HostApp shutdowns as complete in the todo list.
…gle-node and fallback paths; require remote logs
…perspective/logs/placement
- Updated architecture documentation to reflect the strict production posture, eliminating local proxy fallbacks and requiring direct connectivity to the kube-apiserver. - Modified API router to remove local proxy fallback logic and ensure strict error handling for cluster health checks. - Introduced a new script for starting k0s workers with appropriate configurations and mounts for CNI binaries and configurations. - Added a new script for bringing up k0s workers, ensuring necessary directories and files are created. - Enhanced the federation end-to-end verification script to ensure remote HostApp settings are configured correctly and to handle API proxy URL configurations. - Updated the verification logic to ensure both local and remote perspectives are validated, including workspace placement checks. - Cleaned up the todo list to reflect recent changes and improvements.
…xy configuration and addon options
…line job status; implement proxy verification in settings
…e lifecycle management, implementation plan, and security considerations
…tation plan, constraints, and operational contract
…xt, decision, rationale, and implementation plan for improved clarity and structure
- Updated `clusterLocalStatus` to utilize `healthyClusterWithFallback` for improved K8s reachability checks, allowing for proxy fallback and providing recommended actions based on the fallback status. - Modified the `Router` to incorporate fallback logic when checking cluster health, ensuring that the system can gracefully handle timeout-like errors by attempting to connect via a local proxy if configured. - Removed the obsolete `router_fallback_test.go` and added comprehensive tests in `router_test.go` to validate the new behavior. - Introduced `healthyClusterWithFallback` function to encapsulate the logic for checking cluster health with a fallback to a proxy. - Enhanced the `headscale` manager to utilize a script for managing headscale resources, including creating and starting headscale instances, and storing credentials securely. - Added JSON output support to the headscale management scripts for better integration with automated systems. - Updated the orchestration handlers to persist error states in the database when headscale operations fail, improving error tracking and recovery. - Implemented tests for the headscale manager to ensure correct behavior when using scripts and storing credentials.
…add integration tests and update helper script for improved key management
…handling and logging in Headscale manager
… and manual trigger API for state synchronization
…rification script for running the test
…egration and testing flow
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.