Add option to add authentication to Jaeger and custom tags

[aledbf]

Description

Related Issue(s)

Fixes #13381
Fixes #13385

How to test

• Configure the installer setting

tracing:
  secretName: XXXXX

and verify the env variablesJAEGER_USER and JAEGER_PASSWORD are configured.

Release Notes

Werft options:

• /werft with-local-preview
  If enabled this will build install/preview
• /werft with-preview
• /werft with-integration-tests=all
  Valid options are all, workspace, webapp, ide

[werft-gitpod-dev-com]

started the job as gitpod-build-aledbf-jaeger.3 because the annotations in the pull request description changed
(with .werft/ from main)

[aledbf]

/werft run with-clean-slate-deployment

👍 started the job as gitpod-build-aledbf-jaeger.6
(with .werft/ from main)

[aledbf]

/werft run with-preview with-clean-slate-deployment

👍 started the job as gitpod-build-aledbf-jaeger.7
(with .werft/ from main)

[aledbf]

/werft run with-clean-slate-deployment with-preview

👍 started the job as gitpod-build-aledbf-jaeger.9
(with .werft/ from main)

[easyCZ]

Why do we expose these as ENV variables? In general, mounting the secret as a volume is preferred for credentials and here we could do that if the SecretName is specified.

[aledbf]

That's how the library is configured.

gitpod/components/common-go/tracing/tracing.go

Line 42 in 45b0b45

cfg, err := jaegercfg.FromEnv()

[easyCZ]

We could construct that manually, from the information we mount - https://pkg.go.dev/github.com/uber/jaeger-client-go/config#Configuration

I'll raise an issue as a follow-up (which will likely never get done) as I don't want to block your change but we do abuse env variables a fair bit.

[easyCZ]

Do we need this indirection here if we're actually keeping them the same? Could we instead consolidate on func TracingEnv(...). If the need for these to actually be different arises, we can refactor.

[aledbf]

I don't know the reason.
ping @mrsimonemms

[mrsimonemms]

Nothing to do with me I'm afraid. This was added by @andrew-farries around 5 months ago - 1119e55

[atduarte]

@aledbf updated release notes as it didn't seem to be useful for the end Gitpod user. Let me know if this change is wrong.

[roboquat]

@aledbf: Adding the "do-not-merge/release-note-label-needed" label because no release-note block was detected, please follow our release note process to remove it.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[aledbf]

@atduarte it depends on who is the "Gitpod user". If you are installing Gitpod, this is an important thing to know.

[atduarte]

@aledbf I understand the confusion. Release Notes are automatically added to the gitpod.io changelog (October's, September's) and therefore should focus only on the end-user (i.e. the developer persona). Some additional internal information can be found here: 1, 2.

[loujaybee]

@atduarte it depends on who is the "Gitpod user". If you are installing Gitpod, this is an important thing to know - @aledbf

You are correct that we should treat the installer as a first-class citizen for the Self-Hosted context, however see below for reasons on why we should omit for now 👇

Release Notes are automatically added to the gitpod.io changelog (https://github.com/gitpod-io/website/pull/2883, September's) and therefore should focus only on the end-user - @atduarte

Currently, yes. That's also my understanding. @lucasvaltl can confirm, but I believe Self-Hosted are cherry-picking PR's and manually curating the release notes right now (see past example) and omitting Release Notes. No defined heuristic exists (that I'm aware of) to distinguish Self-Hosted / installer facing pull requests from SaaS or developer persona pull requests... that heuristic needs creating and agree'ing on, then we can easily distinguish between the two.

CC: @filiptronicek