Add ansible files

2025-11-23 11:22:45 +00:00
parent 8fc60f9d8b
commit bc439597cb
26 changed files with 1364 additions and 0 deletions
--- a/ansible/files/gitea_runner.template.yaml.WORKING
+++ b/ansible/files/gitea_runner.template.yaml.WORKING
@@ -0,0 +1,100 @@
+---
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: act-runner-data
+  namespace: gitea
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 5Gi
+  storageClassName: nfs-csi
+
+---
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: act-runner-certs
+  namespace: gitea
+spec:
+  accessModes:
+    - ReadWriteOnce
+  resources:
+    requests:
+      storage: 1Gi
+  storageClassName: nfs-csi
+
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  labels:
+    app: act-runner
+  name: act-runner
+  namespace: gitea
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: act-runner
+  strategy: {}
+  template:
+    metadata:
+      creationTimestamp: null
+      labels:
+        app: act-runner
+    spec:
+      restartPolicy: Always
+      volumes:
+        - name: docker-certs
+          emptyDir: {}
+        - name: runner-data
+          # emptyDir: {}
+          persistentVolumeClaim:
+            claimName: act-runner-data
+      containers:
+        - name: runner
+          image: docker.io/gitea/act_runner:latest-dind
+          # command: ["sh", "-c", "while ! nc -z localhost 2376 </dev/null; do echo 'waiting for docker daemon...'; sleep 5; done; /sbin/tini -- /opt/act/run.sh"]
+          securityContext:
+            privileged: true
+            capabilities:
+              add: ["SYS_ADMIN"]
+          env:
+            - name: DOCKER_HOST
+              value: tcp://127.0.0.1:2376
+              # value: unix:///var/run/docker.sock
+            - name: DOCKER_CERT_PATH
+              value: /certs/client
+            - name: DOCKER_TLS_VERIFY
+              value: "0"
+            - name: GITEA_INSTANCE_URL
+              value: http://gitea-http.gitea.svc.cluster.local:3000
+            # - name: GITEA_RUNNER_LABELS
+            #   value: "ubuntu-latest:docker://docker.io/gitea/runner-images:ubuntu-latest"
+            - name: GITEA_RUNNER_REGISTRATION_TOKEN
+              valueFrom:
+                secretKeyRef:
+                  name: gitea-runner-registration-token
+                  key: token
+          volumeMounts:
+            - name: docker-certs
+              mountPath: /certs
+            - name: runner-data
+              mountPath: /data
+        # - name: daemon
+        #   image: docker:29.0.2-dind
+        #   env:
+        #     - name: DOCKER_TLS_CERTDIR
+        #       value: /certs
+        #     - name: DOCKER_HOST
+        #       value: tcp://127.0.0.1:2376
+        #     - name: DOCKER_TLS_VERIFY
+        #       value: "0"
+        #   securityContext:
+        #     privileged: true
+        #   volumeMounts:
+        #     - name: docker-certs
+        #       mountPath: /certs