.werft: Refactoring to use constant kubeconfig files instead of overrides

[ArthurSens]

Description

This PR refactors the whole deployment job so all interactions with any cluster have to be made with the appropriate kubeconfig file explicit set. This is being done because we've been constantly overriding kubecontexts throughout the job's logic and we've got to a point where it is super confusing to know what is being applied where.

It is a huge change and too much effort to review only looking at the changes. I'm making sure it works by starting multiple jobs using different configurations and checking if Gitpod runs and is able to start workspaces afterwards.

Related Issue(s)

Fixes #8997

How to test

• Start a preview on core-dev with Helm. Workspaces start.
• Start a preview on core-dev with Installer. Workspaces start.
• Start a preview on Harvester. Workspaces start.

Release Notes

NONE

[ArthurSens]

/werft run with-vm

👍 started the job as gitpod-build-arthursens-refactor-deploy-to-preview-8997.8

EDIT: This got stuck and timed-out, I'm looking into it

[mads-hartmann]

This is really impressive Arthur 👏 I left a few comments, but I don't think either of them are blocking. The biggest one is about quoting the paths we pass to exec. As we have full control over the paths in our source code I don't think it's worth making the change but I'll leave it up to you to decide.

I added the blocked label so you can test all the various scenarios.

[mads-hartmann]

This would have been nicer to just have as a type instead of class.

[mads-hartmann]

For this file you could have exposed a single class and then have all the functions as public/private methods. That way you wouldn't need to pass the kubeconfig around.

I don't think it's worth doing now, just as inspiration for future refactoring if you're feeling like it 😉

[ArthurSens]

Yeah, that definitely crossed my mind while doing this, maybe its worth raising an issue to refactor this later

[mads-hartmann]

To be on the 100% safe side it would be nicest to quote the path, so it is --kubeconfig "${CORE_DEV_KUBECONFIG_PATH}". This goes for all of the places where we are using a path in an exec call

[ArthurSens]

/werft run with-vm

👍 started the job as gitpod-build-arthursens-refactor-deploy-to-preview-8997.27

EDIT: Problems copying certificates from core-dev to the preview on k3s

[ArthurSens]

/werft run with-vm

[ArthurSens]

/werft run with-helm

👍 started the job as gitpod-build-arthursens-refactor-deploy-to-preview-8997.32

EDIT: Failed to clean previous installer installation prior to deploy with helm

[ArthurSens]

/werft run with-clean-slate-deployment

👍 started the job as gitpod-build-arthursens-refactor-deploy-to-preview-8997.35

[ArthurSens]

/werft run with-clean-slate-deployment with-helm

👍 started the job as gitpod-build-arthursens-refactor-deploy-to-preview-8997.37

[ArthurSens]

Oh damn, I spent way too much time trying to understand how my changes could have made helm to fail, but it is also failing in main 🥲

[ArthurSens]

/werft run with-clean-slate-deployment

👍 started the job as gitpod-build-arthursens-refactor-deploy-to-preview-8997.38

[ArthurSens]

Tested with installer on both core-dev and Harvester, worked fine. Helm was a failure 🙅, but, after testing on main, looks like helm is currently broken everywhere :/

[ArthurSens]

/werft run with-helm

👍 started the job as gitpod-build-arthursens-refactor-deploy-to-preview-8997.41

[ArthurSens]

Sorry team-webapp, I'm just cherrypicking Janx's commit to test a deployment with Helm, I'll drop the commit afterwards