gitpod-io
diff --git a/‎.werft/jobs/build/deploy-to-preview-environment.ts
Lines changed: 2 additions & 66 deletions b/‎.werft/jobs/build/deploy-to-preview-environment.ts
Lines changed: 2 additions & 66 deletions
diff --git a/‎.werft/jobs/build/prepare.ts
Lines changed: 1 addition & 0 deletions b/‎.werft/jobs/build/prepare.ts
Lines changed: 1 addition & 0 deletions
diff --git a/‎.werft/platform-delete-preview-environment.ts
Lines changed: 0 additions & 1 deletion b/‎.werft/platform-delete-preview-environment.ts
Lines changed: 0 additions & 1 deletion
diff --git a/‎.werft/util/certs.ts
Lines changed: 1 addition & 0 deletions b/‎.werft/util/certs.ts
Lines changed: 1 addition & 0 deletions
diff --git a/‎.werft/util/gcloud.ts
Lines changed: 0 additions & 127 deletions b/‎.werft/util/gcloud.ts
Lines changed: 0 additions & 127 deletions
diff --git a/‎.werft/util/preview.ts
Lines changed: 0 additions & 63 deletions b/‎.werft/util/preview.ts
Lines changed: 0 additions & 63 deletions
diff --git a/‎.werft/vm/vm.ts
Lines changed: 1 addition & 0 deletions b/‎.werft/vm/vm.ts
Lines changed: 1 addition & 0 deletions
diff --git a/‎dev/preview/infrastructure/harvester/dns.tf
Lines changed: 50 additions & 0 deletions b/‎dev/preview/infrastructure/harvester/dns.tf
Lines changed: 50 additions & 0 deletions
@@ -14,14 +14,13 @@ import {
     installCertificate,
     InstallCertificateParams,
 } from "../../util/certs";
-import { sleep, env } from "../../util/util";
+import { env } from "../../util/util";
 import { CORE_DEV_KUBECONFIG_PATH, PREVIEW_K3S_KUBECONFIG_PATH } from "./const";
 import { Werft } from "../../util/werft";
 import { JobConfig } from "./job-config";
 import * as VM from "../../vm/vm";
 import { Analytics, Installer } from "./installer/installer";
 import { previewNameFromBranchName } from "../../util/preview";
-import { createDNSRecord } from "../../util/gcloud";
 import { SpanStatusCode } from "@opentelemetry/api";
 
 // used by Installer
@@ -240,7 +239,7 @@ async function deployToDevWithInstaller(
 ) {
     // to test this function, change files in your workspace, sideload (-s) changed files into werft or set annotations (-a) like so:
     // werft run github -f -j ./.werft/build.yaml -s ./.werft/build.ts -s ./.werft/jobs/build/installer/post-process.sh -a with-clean-slate-deployment=true
-    const { version, destname, namespace, domain } = deploymentConfig;
+    const { version, namespace } = deploymentConfig;
     const deploymentKubeconfig = PREVIEW_K3S_KUBECONFIG_PATH;
 
     // find free ports
@@ -357,7 +356,6 @@ async function deployToDevWithInstaller(
     });
     werft.done(installerSlices.DEPLOYMENT_WAITING);
 
-    await addVMDNSRecord(werft, destname, domain);
     addAgentSmithToken(werft, deploymentConfig.namespace, installer.options.kubeconfigPath, tokenHash);
 
     werft.done(phases.DEPLOY);
@@ -402,63 +400,6 @@ interface DeploymentConfig {
     withObservability: boolean;
 }
 
-async function addVMDNSRecord(werft: Werft, name: string, domain: string) {
-    const ingressIP = getHarvesterIngressIP();
-    let proxyLBIP = null;
-    werft.log(installerSlices.DNS_ADD_RECORD, "Getting loadbalancer IP");
-    for (let i = 0; i < 60; i++) {
-        try {
-            let lb = exec(
-                `kubectl --kubeconfig ${CORE_DEV_KUBECONFIG_PATH} -n loadbalancers get service lb-${name} -o=jsonpath='{.status.loadBalancer.ingress[0].ip}'`,
-                { silent: true },
-            );
-            if (lb.length > 4) {
-                proxyLBIP = lb.toString();
-                break;
-            }
-            await sleep(1000);
-        } catch (err) {
-            await sleep(1000);
-        }
-    }
-    if (proxyLBIP == null) {
-        werft.fail(installerSlices.DNS_ADD_RECORD, new Error("Can't get loadbalancer IP"));
-    }
-    werft.log(installerSlices.DNS_ADD_RECORD, "Get loadbalancer IP: " + proxyLBIP);
-
-    await Promise.all([
-        createDNSRecord({
-            domain: domain,
-            projectId: "gitpod-core-dev",
-            dnsZone: "preview-gitpod-dev-com",
-            IP: ingressIP,
-            slice: installerSlices.DNS_ADD_RECORD,
-        }),
-        createDNSRecord({
-            domain: `*.${domain}`,
-            projectId: "gitpod-core-dev",
-            dnsZone: "preview-gitpod-dev-com",
-            IP: ingressIP,
-            slice: installerSlices.DNS_ADD_RECORD,
-        }),
-        createDNSRecord({
-            domain: `*.ws.${domain}`,
-            projectId: "gitpod-core-dev",
-            dnsZone: "preview-gitpod-dev-com",
-            IP: ingressIP,
-            slice: installerSlices.DNS_ADD_RECORD,
-        }),
-        createDNSRecord({
-            domain: `*.ssh.ws.${domain}`,
-            projectId: "gitpod-core-dev",
-            dnsZone: "preview-gitpod-dev-com",
-            IP: proxyLBIP,
-            slice: installerSlices.DNS_ADD_RECORD,
-        }),
-    ]);
-    werft.done(installerSlices.DNS_ADD_RECORD);
-}
-
 async function installMetaCertificates(
     werft: Werft,
     branch: string,
@@ -475,11 +416,6 @@ async function installMetaCertificates(
     await installCertificate(werft, metaInstallCertParams, { ...metaEnv(), slice: slice });
 }
 
-// returns the static IP address
-function getHarvesterIngressIP(): string {
-    return "159.69.172.117";
-}
-
 function metaEnv(_parent?: ExecOptions): ExecOptions {
     return env("", _parent);
 }
 
@@ -89,6 +89,7 @@ function createVM(werft: Werft, config: JobConfig) {
     // set some common vars for TF
     // We pass the GCP credentials explicitly, otherwise for some reason TF doesn't pick them up
     const commonVars = `GOOGLE_BACKEND_CREDENTIALS=${GCLOUD_SERVICE_ACCOUNT_PATH} \
+                        GOOGLE_APPLICATION_CREDENTIALS=${GCLOUD_SERVICE_ACCOUNT_PATH} \
                         TF_VAR_dev_kube_path=${CORE_DEV_KUBECONFIG_PATH} \
                         TF_VAR_harvester_kube_path=${HARVESTER_KUBECONFIG_PATH} \
                         TF_VAR_preview_name=${config.previewEnvironment.destname} \
 
@@ -90,7 +90,6 @@ async function removePreviewEnvironment(previewEnvironment: PreviewEnvironment)
     werft.log(SLICES.DELETING_PREVIEW, `Starting deletion of all resources related to ${previewEnvironment.name}`);
     try {
         // We're running these promises sequentially to make it easier to read the log output.
-        await previewEnvironment.removeDNSRecords(SLICES.DELETING_PREVIEW);
         await previewEnvironment.delete();
         werft.done(SLICES.DELETING_PREVIEW);
     } catch (e) {
 
@@ -25,6 +25,7 @@ export async function certReady(werft: Werft, config: JobConfig, slice: string):
     for (var i = 1;i<=maxAttempts;i++) {
         werft.log(slice, `Creating cert: Attempt ${i}`);
         exec(`GOOGLE_BACKEND_CREDENTIALS=${GCLOUD_SERVICE_ACCOUNT_PATH} \
+                        GOOGLE_APPLICATION_CREDENTIALS=${GCLOUD_SERVICE_ACCOUNT_PATH} \
                         TF_VAR_dev_kube_path=${CORE_DEV_KUBECONFIG_PATH} \
                         TF_VAR_harvester_kube_path=${HARVESTER_KUBECONFIG_PATH} \
                         TF_VAR_preview_name=${config.previewEnvironment.destname} \
 
@@ -1,6 +1,5 @@
 import { createHash } from "crypto";
 import { PREVIEW_K3S_KUBECONFIG_PATH } from "../jobs/build/const";
-import { deleteDNSRecord } from "./gcloud";
 import * as VM from "../vm/vm";
 import { exec } from "./shell";
 import { Werft } from "./werft";
@@ -64,68 +63,6 @@ export class HarvesterPreviewEnvironment {
         VM.deleteVM({ name: this.name });
     }
 
-    async removeDNSRecords(sliceID: string) {
-        this.werft.log(sliceID, "Deleting harvester related DNS records for the preview environment");
-        await Promise.all([
-            deleteDNSRecord(
-                "A",
-                `*.ssh.ws.${this.name}.preview.gitpod-dev.com`,
-                "gitpod-core-dev",
-                "preview-gitpod-dev-com",
-                sliceID,
-            ),
-            deleteDNSRecord(
-                "A",
-                `*.ws.${this.name}.preview.gitpod-dev.com`,
-                "gitpod-core-dev",
-                "preview-gitpod-dev-com",
-                sliceID,
-            ),
-            deleteDNSRecord(
-                "A",
-                `*.${this.name}.preview.gitpod-dev.com`,
-                "gitpod-core-dev",
-                "preview-gitpod-dev-com",
-                sliceID,
-            ),
-            deleteDNSRecord(
-                "A",
-                `${this.name}.preview.gitpod-dev.com`,
-                "gitpod-core-dev",
-                "preview-gitpod-dev-com",
-                sliceID,
-            ),
-            deleteDNSRecord(
-                "A",
-                `prometheus-${this.name}.preview.gitpod-dev.com`,
-                "gitpod-core-dev",
-                "preview-gitpod-dev-com",
-                sliceID,
-            ),
-            deleteDNSRecord(
-                "TXT",
-                `prometheus-${this.name}.preview.gitpod-dev.com`,
-                "gitpod-core-dev",
-                "preview-gitpod-dev-com",
-                sliceID,
-            ),
-            deleteDNSRecord(
-                "A",
-                `grafana-${this.name}.preview.gitpod-dev.com`,
-                "gitpod-core-dev",
-                "preview-gitpod-dev-com",
-                sliceID,
-            ),
-            deleteDNSRecord(
-                "TXT",
-                `grafana-${this.name}.preview.gitpod-dev.com`,
-                "gitpod-core-dev",
-                "preview-gitpod-dev-com",
-                sliceID,
-            ),
-        ]);
-    }
-
     /**
      * Checks whether a preview environment is active based on the db activity.
      *
 
@@ -17,6 +17,7 @@ export function deleteVM(options: { name: string }) {
 
     try {
         exec(`DESTROY=true \
+                                    GOOGLE_APPLICATION_CREDENTIALS=${GCLOUD_SERVICE_ACCOUNT_PATH} \
                                     GOOGLE_BACKEND_CREDENTIALS=${GCLOUD_SERVICE_ACCOUNT_PATH} \
                                     TF_VAR_dev_kube_path=${CORE_DEV_KUBECONFIG_PATH} \
                                     TF_VAR_harvester_kube_path=${HARVESTER_KUBECONFIG_PATH} \
 
@@ -0,0 +1,50 @@
+data "google_dns_managed_zone" "preview-gitpod-dev" {
+  provider = google
+  name     = "preview-gitpod-dev-com"
+}
+
+resource "google_dns_record_set" "root" {
+  provider = google
+
+  name = "${var.preview_name}.${data.google_dns_managed_zone.preview-gitpod-dev.dns_name}"
+  type = "A"
+  ttl  = 300
+
+  managed_zone = data.google_dns_managed_zone.preview-gitpod-dev.name
+  rrdatas      = [var.harvester_ingress_ip]
+}
+
+resource "google_dns_record_set" "root-wc" {
+  provider = google
+
+  name = "*.${var.preview_name}.${data.google_dns_managed_zone.preview-gitpod-dev.dns_name}"
+  type = "A"
+  ttl  = 300
+
+  managed_zone = data.google_dns_managed_zone.preview-gitpod-dev.name
+  rrdatas      = [var.harvester_ingress_ip]
+}
+
+
+resource "google_dns_record_set" "root-wc-ws" {
+  provider = google
+
+  name = "*.ws.${var.preview_name}.${data.google_dns_managed_zone.preview-gitpod-dev.dns_name}"
+  type = "A"
+  ttl  = 300
+
+  managed_zone = data.google_dns_managed_zone.preview-gitpod-dev.name
+  rrdatas      = [var.harvester_ingress_ip]
+}
+
+
+resource "google_dns_record_set" "root-wc-ws-ssh" {
+  provider = google
+
+  name = "*.ssh.ws.${var.preview_name}.${data.google_dns_managed_zone.preview-gitpod-dev.dns_name}"
+  type = "A"
+  ttl  = 300
+
+  managed_zone = data.google_dns_managed_zone.preview-gitpod-dev.name
+  rrdatas      = [kubernetes_service.dev-svc.status[0].load_balancer[0].ingress[0].ip]
+}