[kots]: add support for SSH gateway (allows JetBrains IDE et al)

Original work by @corneliusludmann

Author: Simon Emms

install/kots/manifests/gitpod-installer-job.yaml

@@ -157,6 +157,16 @@ spec:
                 fi
               fi
 
+              if [ '{{repl ConfigOptionEquals "ssh_gateway" "1" }}' = "true" ];
+              then
+                echo "Gitpod: Generate SSH host key"
+                apk update && apk add --no-cache openssh-keygen # TODO: Move installation of openssh-keygen to installer image
+                ssh-keygen -t rsa -q -N "" -f host.key
+                kubectl create secret generic ssh-gateway-host-key --from-file=host.key -n {{repl Namespace }} || echo "SSH Gateway Host Key secret has not been created. Does it exist already?"
+                yq e -i '.sshGatewayHostKey.kind = "secret"' "${CONFIG_FILE}"
+                yq e -i '.sshGatewayHostKey.name = "ssh-gateway-host-key"' "${CONFIG_FILE}"
+              fi
+
               echo "Gitpod: Generate the Kubernetes objects and apply"
               /app/installer render -c "${CONFIG_FILE}" --namespace {{repl Namespace }} | kubectl apply -f -
 

install/kots/manifests/kots-config.yaml

@@ -322,3 +322,12 @@ spec:
           required: true
           when: '{{repl ConfigOptionEquals "cert_manager_enabled" "0" }}'
           help_text: A file containing the TLS private key.
+
+    - name: features
+      title: Additional features
+      items:
+        - name: ssh_gateway
+          title: Allow login to your workspace via SSH
+          type: bool
+          default: "0"
+          help_text: 'Enabling the SSH gateway allows use of additional desktop IDEs. IMPORTANT: This uses port 22 on your Kubernetes nodes. When enabled, this will prevent login to the cluster via SSH. If you wish to maintain SSH access to your cluster, please configure another SSH port on your nodes.'