Provision and configure the GKE cluster that will host both the GitLab Runner manager and workloads for HRPv5. ## Work Items - [x] Evaluate shared VPC vs dedicated VPC trade-offs :point_right: https://gitlab.com/gitlab-com/gl-infra/production-engineering/-/work_items/28609. - [x] Make a decision on which GCP project to use - [x] Use existing project - OR - [ ] Provision new GCP project - [x] Test the networking :point_right: https://gitlab.com/gitlab-com/gl-infra/production-engineering/-/work_items/28609#note_3196932759. - [x] Provision GKE cluster with Data Plane V2 :point_right: https://ops.gitlab.net/gitlab-com/gl-infra/config-mgmt/-/merge_requests/13730. - [x] Provision the networking. :point_right: https://ops.gitlab.net/gitlab-com/gl-infra/config-mgmt/-/merge_requests/13859 - [x] Rewire the networking: https://ops.gitlab.net/gitlab-com/gl-infra/config-mgmt/-/merge_requests/13905 - [x] Configure Argo CD integration for Runner Managers cluster - [x] Create necessary IAM bindings in TF :point_right: https://ops.gitlab.net/gitlab-com/gl-infra/config-mgmt/-/merge_requests/13999 - [x] Create a dedicated nodepool for runner-managers :point_right: https://ops.gitlab.net/gitlab-com/gl-infra/config-mgmt/-/merge_requests/14012 - [x] gitlab-runner is able to create VMs via docker+machine :point_right: https://gitlab.com/gitlab-com/gl-infra/production-engineering/-/work_items/28835 - [x] gitlab-runner is using the shared cache :point_right: https://gitlab.com/gitlab-com/gl-infra/production-engineering/-/work_items/28874 - [x] Recreate a regional cluster (instead of zonal) :point_right: https://ops.gitlab.net/gitlab-com/gl-infra/config-mgmt/-/merge_requests/14044 - [x] Reregister with ArgoCD :point_right: https://ops.gitlab.net/gitlab-com/gl-infra/config-mgmt/-/merge_requests/14054 - [x] Deploy gitlab-runner via argoCD :point_right: https://gitlab.com/gitlab-com/gl-infra/argocd/apps/-/merge_requests/1717 - [x] Resolve external secrets issues: - [x] Add missing secrets, enable externalSecrets :point_right: https://gitlab.com/gitlab-com/gl-infra/argocd/apps/-/merge_requests/1742 - [x] Disable ServiceMonitor :point_right: https://gitlab.com/gitlab-com/gl-infra/argocd/apps/-/merge_requests/1743 - [x] Rename the cluster to the right name: https://gitlab.com/gitlab-com/gl-infra/argocd/apps/-/merge_requests/1746 - [x] Add external-secrets auth role :point_right: https://ops.gitlab.net/gitlab-com/gl-infra/config-mgmt/-/merge_requests/14058 - [x] Update the service identity workload :point_right: https://ops.gitlab.net/gitlab-com/gl-infra/config-mgmt/-/merge_requests/14059 - [x] Deploy monitoring/logging/security daemon sets - [x] New observability tenant onboarding: https://ops.gitlab.net/gitlab-com/gl-infra/config-mgmt/-/merge_requests/13941 - [x] Deploy observability stack to the new cluster: https://gitlab.com/gitlab-com/gl-infra/argocd/apps/-/merge_requests/1493 - [x] Enable podMonitor :point_right: https://gitlab.com/gitlab-com/gl-infra/argocd/apps/-/merge_requests/1780 - [x] Fix labels on the gitlab-runner pod :point_right: https://gitlab.com/gitlab-com/gl-infra/argocd/apps/-/merge_requests/1825 - [x] Add clusters to GLSH kubeconfig generation :point_right: https://gitlab.com/gitlab-com/runbooks/-/merge_requests/10610