forked from Gitea/helm-actions
		
	Compare commits
	
		
			1 Commits
		
	
	
		
			bf56769a35
			...
			christophe
		
	
	| Author | SHA1 | Date | |
|---|---|---|---|
|   | 4afe065177 | 
| @@ -8,12 +8,12 @@ on: | |||||||
| jobs: | jobs: | ||||||
|   changelog: |   changelog: | ||||||
|     runs-on: ubuntu-latest |     runs-on: ubuntu-latest | ||||||
|     container: docker.io/thegeeklab/git-sv:2.0.5 |     container: docker.io/thegeeklab/git-sv:1.0.12 | ||||||
|     steps: |     steps: | ||||||
|       - name: install tools |       - name: install tools | ||||||
|         run: | |         run: | | ||||||
|           apk add -q --update --no-cache nodejs curl jq sed |           apk add -q --update --no-cache nodejs curl jq sed | ||||||
|       - uses: actions/checkout@v5 |       - uses: actions/checkout@v4 | ||||||
|         with: |         with: | ||||||
|           fetch-depth: 0 |           fetch-depth: 0 | ||||||
|       - name: Generate upcoming changelog |       - name: Generate upcoming changelog | ||||||
|   | |||||||
| @@ -13,7 +13,7 @@ jobs: | |||||||
|     runs-on: ubuntu-latest |     runs-on: ubuntu-latest | ||||||
|     container: commitlint/commitlint:19.7.1 |     container: commitlint/commitlint:19.7.1 | ||||||
|     steps: |     steps: | ||||||
|       - uses: actions/checkout@v5 |       - uses: actions/checkout@v4 | ||||||
|       - name: check PR title |       - name: check PR title | ||||||
|         run: | |         run: | | ||||||
|           echo "${{ gitea.event.pull_request.title }}" | commitlint --config .commitlintrc.json |           echo "${{ gitea.event.pull_request.title }}" | commitlint --config .commitlintrc.json | ||||||
|   | |||||||
| @@ -13,7 +13,7 @@ jobs: | |||||||
|   generate-chart-publish: |   generate-chart-publish: | ||||||
|     runs-on: ubuntu-latest |     runs-on: ubuntu-latest | ||||||
|     steps: |     steps: | ||||||
|       - uses: actions/checkout@v5 |       - uses: actions/checkout@v4 | ||||||
|       - name: install tools |       - name: install tools | ||||||
|         run: | |         run: | | ||||||
|           apt update -y |           apt update -y | ||||||
| @@ -59,7 +59,7 @@ jobs: | |||||||
|           helm registry logout registry-1.docker.io |           helm registry logout registry-1.docker.io | ||||||
|  |  | ||||||
|       - name: aws credential configure |       - name: aws credential configure | ||||||
|         uses: https://github.com/aws-actions/configure-aws-credentials@v5 |         uses: https://github.com/aws-actions/configure-aws-credentials@v4 | ||||||
|         with: |         with: | ||||||
|           aws-access-key-id: ${{ secrets.AWS_KEY_ID }} |           aws-access-key-id: ${{ secrets.AWS_KEY_ID }} | ||||||
|           aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} |           aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }} | ||||||
|   | |||||||
| @@ -9,6 +9,6 @@ jobs: | |||||||
|   shellcheck: |   shellcheck: | ||||||
|     runs-on: ubuntu-latest |     runs-on: ubuntu-latest | ||||||
|     steps: |     steps: | ||||||
|       - uses: actions/checkout@v5 |       - uses: actions/checkout@v4.2.2 | ||||||
|       - run: apt update --yes && apt install --yes shellcheck |       - run: apt update --yes && apt install --yes shellcheck | ||||||
|       - run: find . -type f -name "*.sh" -exec shellcheck -a {} \; |       - run: find . -type f -name "*.sh" -exec shellcheck -a {} \; | ||||||
|   | |||||||
| @@ -25,7 +25,7 @@ jobs: | |||||||
|         uses: pnpm/action-setup@v4 |         uses: pnpm/action-setup@v4 | ||||||
|         with: |         with: | ||||||
|           version: 10 |           version: 10 | ||||||
|       - uses: actions/checkout@v5 |       - uses: actions/checkout@v4 | ||||||
|       - name: install chart dependencies |       - name: install chart dependencies | ||||||
|         run: helm dependency build |         run: helm dependency build | ||||||
|       - name: lint |       - name: lint | ||||||
|   | |||||||
| @@ -1 +0,0 @@ | |||||||
| * @DaanSelen @volker.raschek @ChristopherHX |  | ||||||
| @@ -19,10 +19,6 @@ maintainers: | |||||||
|   - name: Daan Selen |   - name: Daan Selen | ||||||
|     email: dselen@nerthus.nl |     email: dselen@nerthus.nl | ||||||
|  |  | ||||||
|   # https://gitea.com/volker.raschek |  | ||||||
|   - name: Markus Pesch |  | ||||||
|     email: markus.pesch+apps@cryptic.systems |  | ||||||
|  |  | ||||||
|   # https://gitea.com/ChristopherHX |   # https://gitea.com/ChristopherHX | ||||||
|   - name: Christopher Homberger |   - name: Christopher Homberger | ||||||
|     email: christopher.homberger@web.de |     email: christopher.homberger@web.de | ||||||
|   | |||||||
| @@ -6,10 +6,6 @@ The parameters which can be used to customize the deployment are described below | |||||||
|  |  | ||||||
| If you want to propose a new feature or mechanism, submit an [issue here](https://gitea.com/gitea/helm-actions/issues). | If you want to propose a new feature or mechanism, submit an [issue here](https://gitea.com/gitea/helm-actions/issues). | ||||||
|  |  | ||||||
| ## Docs |  | ||||||
|  |  | ||||||
| [Docs](./docs/README.md) |  | ||||||
|  |  | ||||||
| ## Rootless Defaults | ## Rootless Defaults | ||||||
|  |  | ||||||
| If `.Values.image.rootless: true`, then the following will occur. In case you use `.Values.image.fullOverride`, check that this works in your image: | If `.Values.image.rootless: true`, then the following will occur. In case you use `.Values.image.fullOverride`, check that this works in your image: | ||||||
| @@ -34,12 +30,12 @@ If `.Values.image.rootless: true`, then the following will occur. In case you us | |||||||
| | `statefulset.affinity`                    | Affinity for the statefulset                                                                                                                | `{}`                           | | | `statefulset.affinity`                    | Affinity for the statefulset                                                                                                                | `{}`                           | | ||||||
| | `statefulset.extraVolumes`                | Extra volumes for the statefulset                                                                                                           | `[]`                           | | | `statefulset.extraVolumes`                | Extra volumes for the statefulset                                                                                                           | `[]`                           | | ||||||
| | `statefulset.actRunner.repository`        | The Gitea act runner image                                                                                                                  | `gitea/act_runner`             | | | `statefulset.actRunner.repository`        | The Gitea act runner image                                                                                                                  | `gitea/act_runner`             | | ||||||
| | `statefulset.actRunner.tag`               | The Gitea act runner tag                                                                                                                    | `0.2.13`                       | | | `statefulset.actRunner.tag`               | The Gitea act runner tag                                                                                                                    | `0.2.11`                       | | ||||||
| | `statefulset.actRunner.pullPolicy`        | The Gitea act runner pullPolicy                                                                                                             | `IfNotPresent`                 | | | `statefulset.actRunner.pullPolicy`        | The Gitea act runner pullPolicy                                                                                                             | `IfNotPresent`                 | | ||||||
| | `statefulset.actRunner.extraVolumeMounts` | Allows mounting extra volumes in the act runner container                                                                                   | `[]`                           | | | `statefulset.actRunner.extraVolumeMounts` | Allows mounting extra volumes in the act runner container                                                                                   | `[]`                           | | ||||||
| | `statefulset.actRunner.config`            | Act runner custom configuration. See [Act Runner documentation](https://docs.gitea.com/usage/actions/act-runner#configuration) for details. | `Too complex. See values.yaml` | | | `statefulset.actRunner.config`            | Act runner custom configuration. See [Act Runner documentation](https://docs.gitea.com/usage/actions/act-runner#configuration) for details. | `Too complex. See values.yaml` | | ||||||
| | `statefulset.dind.repository`             | The Docker-in-Docker image                                                                                                                  | `docker`                       | | | `statefulset.dind.repository`             | The Docker-in-Docker image                                                                                                                  | `docker`                       | | ||||||
| | `statefulset.dind.tag`                    | The Docker-in-Docker image tag                                                                                                              | `28.3.3-dind`                  | | | `statefulset.dind.tag`                    | The Docker-in-Docker image tag                                                                                                              | `25.0.2-dind`                  | | ||||||
| | `statefulset.dind.pullPolicy`             | The Docker-in-Docker pullPolicy                                                                                                             | `IfNotPresent`                 | | | `statefulset.dind.pullPolicy`             | The Docker-in-Docker pullPolicy                                                                                                             | `IfNotPresent`                 | | ||||||
| | `statefulset.dind.extraVolumeMounts`      | Allows mounting extra volumes in the Docker-in-Docker container                                                                             | `[]`                           | | | `statefulset.dind.extraVolumeMounts`      | Allows mounting extra volumes in the Docker-in-Docker container                                                                             | `[]`                           | | ||||||
| | `statefulset.dind.extraEnvs`              | Allows adding custom environment variables, such as `DOCKER_IPTABLES_LEGACY`                                                                | `[]`                           | | | `statefulset.dind.extraEnvs`              | Allows adding custom environment variables, such as `DOCKER_IPTABLES_LEGACY`                                                                | `[]`                           | | ||||||
|   | |||||||
| @@ -1,3 +0,0 @@ | |||||||
| # Gitea Actions Helm Chart Docs |  | ||||||
|  |  | ||||||
| - [Share dind with job container](share-dind-with-job-container.md) |  | ||||||
| @@ -1,36 +0,0 @@ | |||||||
| # Share dind with job container |  | ||||||
|  |  | ||||||
| You can weaken isolation and allow jobs to call docker commands. |  | ||||||
|  |  | ||||||
| ## Limitations |  | ||||||
|  |  | ||||||
| - Docker bind mounts like `-v /path/on/self/container:/path/to/new/container` do not work, because they are going to mount the path from the dind container |  | ||||||
| - Docker port expose to local host `-e 80:8080` is not going to work |  | ||||||
|  |  | ||||||
| ## Example Values |  | ||||||
|  |  | ||||||
| ```yaml |  | ||||||
| enabled: true |  | ||||||
| statefulset: |  | ||||||
|   actRunner: |  | ||||||
|     # See full example here: https://gitea.com/gitea/act_runner/src/branch/main/internal/pkg/config/config.example.yaml |  | ||||||
|     config: | |  | ||||||
|       log: |  | ||||||
|         level: debug |  | ||||||
|       cache: |  | ||||||
|         enabled: false |  | ||||||
|       container: |  | ||||||
|         valid_volumes: |  | ||||||
|         - /var/run/docker.sock |  | ||||||
|         options: -v /var/run/docker.sock:/var/run/docker.sock |  | ||||||
|  |  | ||||||
| ## Specify an existing token secret |  | ||||||
| ## |  | ||||||
| existingSecret: "runner-token2" |  | ||||||
| existingSecretKey: "token" |  | ||||||
|  |  | ||||||
| ## Specify the root URL of the Gitea instance |  | ||||||
| giteaRootURL: "http://192.168.1.2:3000" |  | ||||||
| ``` |  | ||||||
|  |  | ||||||
| Now you can run docker commands inside your jobs. |  | ||||||
| @@ -9,19 +9,19 @@ | |||||||
|   labels: [ |   labels: [ | ||||||
|     'kind/dependency', |     'kind/dependency', | ||||||
|   ], |   ], | ||||||
|   digest: { |   "digest": { | ||||||
|     automerge: true, |     "automerge": true | ||||||
|   }, |   }, | ||||||
|   automergeStrategy: 'squash', |   automergeStrategy: 'squash', | ||||||
|   'git-submodules': { |   'git-submodules': { | ||||||
|     enabled: true, |     'enabled': true | ||||||
|   }, |   }, | ||||||
|   customManagers: [ |   customManagers: [ | ||||||
|     { |     { | ||||||
|       description: 'Gitea-version of https://docs.renovatebot.com/presets-regexManagers/#regexmanagersgithubactionsversions', |       description: 'Gitea-version of https://docs.renovatebot.com/presets-regexManagers/#regexmanagersgithubactionsversions', | ||||||
|       customType: 'regex', |       customType: 'regex', | ||||||
|       managerFilePatterns: [ |       fileMatch: [ | ||||||
|         '/.gitea/workflows/.+\\.ya?ml$/', |         '.gitea/workflows/.+\\.ya?ml$', | ||||||
|       ], |       ], | ||||||
|       matchStrings: [ |       matchStrings: [ | ||||||
|         '# renovate: datasource=(?<datasource>[a-z-.]+?) depName=(?<depName>[^\\s]+?)(?: (?:lookupName|packageName)=(?<packageName>[^\\s]+?))?(?: versioning=(?<versioning>[a-z-0-9]+?))?\\s+[A-Za-z0-9_]+?_VERSION\\s*:\\s*["\']?(?<currentValue>.+?)["\']?\\s', |         '# renovate: datasource=(?<datasource>[a-z-.]+?) depName=(?<depName>[^\\s]+?)(?: (?:lookupName|packageName)=(?<packageName>[^\\s]+?))?(?: versioning=(?<versioning>[a-z-0-9]+?))?\\s+[A-Za-z0-9_]+?_VERSION\\s*:\\s*["\']?(?<currentValue>.+?)["\']?\\s', | ||||||
| @@ -30,9 +30,7 @@ | |||||||
|     { |     { | ||||||
|       description: 'Detect helm-unittest yaml schema file', |       description: 'Detect helm-unittest yaml schema file', | ||||||
|       customType: 'regex', |       customType: 'regex', | ||||||
|       managerFilePatterns: [ |       fileMatch: ['.vscode/settings\\.json$'], | ||||||
|         '/.vscode/settings\\.json$/', |  | ||||||
|       ], |  | ||||||
|       matchStrings: [ |       matchStrings: [ | ||||||
|         'https:\\/\\/raw\\.githubusercontent\\.com\\/(?<depName>[^\\s]+?)\\/(?<currentValue>v[0-9.]+?)\\/schema\\/helm-testsuite\\.json', |         'https:\\/\\/raw\\.githubusercontent\\.com\\/(?<depName>[^\\s]+?)\\/(?<currentValue>v[0-9.]+?)\\/schema\\/helm-testsuite\\.json', | ||||||
|       ], |       ], | ||||||
|   | |||||||
| @@ -54,7 +54,7 @@ spec: | |||||||
|             - name: DOCKER_TLS_VERIFY |             - name: DOCKER_TLS_VERIFY | ||||||
|               value: "1" |               value: "1" | ||||||
|             - name: DOCKER_CERT_PATH |             - name: DOCKER_CERT_PATH | ||||||
|               value: /certs/client |               value: /certs/server | ||||||
|             - name: GITEA_RUNNER_REGISTRATION_TOKEN |             - name: GITEA_RUNNER_REGISTRATION_TOKEN | ||||||
|               valueFrom: |               valueFrom: | ||||||
|                 secretKeyRef: |                 secretKeyRef: | ||||||
| @@ -70,7 +70,7 @@ spec: | |||||||
|             - mountPath: /actrunner/config.yaml |             - mountPath: /actrunner/config.yaml | ||||||
|               name: act-runner-config |               name: act-runner-config | ||||||
|               subPath: config.yaml |               subPath: config.yaml | ||||||
|             - mountPath: /certs/client |             - mountPath: /certs/server | ||||||
|               name: docker-certs |               name: docker-certs | ||||||
|             - mountPath: /data |             - mountPath: /data | ||||||
|               name: data-act-runner |               name: data-act-runner | ||||||
| @@ -86,7 +86,7 @@ spec: | |||||||
|             - name: DOCKER_TLS_VERIFY |             - name: DOCKER_TLS_VERIFY | ||||||
|               value: "1" |               value: "1" | ||||||
|             - name: DOCKER_CERT_PATH |             - name: DOCKER_CERT_PATH | ||||||
|               value: /certs/client |               value: /certs/server | ||||||
|             {{- if .Values.statefulset.dind.extraEnvs }} |             {{- if .Values.statefulset.dind.extraEnvs }} | ||||||
|             {{- toYaml .Values.statefulset.dind.extraEnvs | nindent 12 }} |             {{- toYaml .Values.statefulset.dind.extraEnvs | nindent 12 }} | ||||||
|             {{- end }} |             {{- end }} | ||||||
| @@ -95,7 +95,7 @@ spec: | |||||||
|           resources: |           resources: | ||||||
|             {{- toYaml .Values.statefulset.resources | nindent 12 }} |             {{- toYaml .Values.statefulset.resources | nindent 12 }} | ||||||
|           volumeMounts: |           volumeMounts: | ||||||
|             - mountPath: /certs/client |             - mountPath: /certs/server | ||||||
|               name: docker-certs |               name: docker-certs | ||||||
|             {{- with .Values.statefulset.dind.extraVolumeMounts }} |             {{- with .Values.statefulset.dind.extraVolumeMounts }} | ||||||
|             {{- toYaml . | nindent 12 }} |             {{- toYaml . | nindent 12 }} | ||||||
| @@ -112,10 +112,6 @@ spec: | |||||||
|       tolerations: |       tolerations: | ||||||
|         {{- toYaml . | nindent 8 }} |         {{- toYaml . | nindent 8 }} | ||||||
|       {{- end }} |       {{- end }} | ||||||
|       {{- if .Values.statefulset.dnsConfig }} |  | ||||||
|       dnsConfig: |  | ||||||
|         {{- toYaml .Values.statefulset.dnsConfig | nindent 8 }} |  | ||||||
|       {{- end }} |  | ||||||
|       volumes: |       volumes: | ||||||
|         - name: act-runner-config |         - name: act-runner-config | ||||||
|           configMap: |           configMap: | ||||||
|   | |||||||
| @@ -69,7 +69,7 @@ tests: | |||||||
|           name: gitea-unittests-actions-act-runner |           name: gitea-unittests-actions-act-runner | ||||||
|       - equal: |       - equal: | ||||||
|           path: spec.template.metadata.annotations["checksum/config"] |           path: spec.template.metadata.annotations["checksum/config"] | ||||||
|           value: "2bafbf04b3c4293c8ddf895ae3d908e14176ee54a6c724c8cf5b2a1e43c6ece7" |           value: "7566d9c60261bf8cbff6a6936fc7aead96cec540d8c793d142a5ad4664c56ba5" | ||||||
|   - it: renders a StatefulSet http (with correct GITEA_INSTANCE_URL env from giteaRootURL) |   - it: renders a StatefulSet http (with correct GITEA_INSTANCE_URL env from giteaRootURL) | ||||||
|     template: templates/statefulset.yaml |     template: templates/statefulset.yaml | ||||||
|     set: |     set: | ||||||
|   | |||||||
| @@ -10,7 +10,6 @@ | |||||||
| ## @param statefulset.resources Act runner resources | ## @param statefulset.resources Act runner resources | ||||||
| ## @param statefulset.nodeSelector NodeSelector for the statefulset | ## @param statefulset.nodeSelector NodeSelector for the statefulset | ||||||
| ## @param statefulset.tolerations Tolerations for the statefulset | ## @param statefulset.tolerations Tolerations for the statefulset | ||||||
| ## @param statefulset.dnsConfig dnsConfig for the statefulset |  | ||||||
| ## @param statefulset.affinity Affinity for the statefulset | ## @param statefulset.affinity Affinity for the statefulset | ||||||
| ## @param statefulset.extraVolumes Extra volumes for the statefulset | ## @param statefulset.extraVolumes Extra volumes for the statefulset | ||||||
| ## @param statefulset.actRunner.repository The Gitea act runner image | ## @param statefulset.actRunner.repository The Gitea act runner image | ||||||
| @@ -35,13 +34,12 @@ statefulset: | |||||||
|   resources: {} |   resources: {} | ||||||
|   nodeSelector: {} |   nodeSelector: {} | ||||||
|   tolerations: [] |   tolerations: [] | ||||||
|   dnsConfig: {} |  | ||||||
|   affinity: {} |   affinity: {} | ||||||
|   extraVolumes: [] |   extraVolumes: [] | ||||||
|  |  | ||||||
|   actRunner: |   actRunner: | ||||||
|     repository: gitea/act_runner |     repository: gitea/act_runner | ||||||
|     tag: 0.2.13 |     tag: 0.2.11 | ||||||
|     pullPolicy: IfNotPresent |     pullPolicy: IfNotPresent | ||||||
|     extraVolumeMounts: [] |     extraVolumeMounts: [] | ||||||
|  |  | ||||||
| @@ -51,13 +49,10 @@ statefulset: | |||||||
|         level: debug |         level: debug | ||||||
|       cache: |       cache: | ||||||
|         enabled: false |         enabled: false | ||||||
|       container: |  | ||||||
|         require_docker: true |  | ||||||
|         docker_timeout: 300s |  | ||||||
|  |  | ||||||
|   dind: |   dind: | ||||||
|     repository: docker |     repository: docker | ||||||
|     tag: 28.3.3-dind |     tag: 25.0.2-dind | ||||||
|     pullPolicy: IfNotPresent |     pullPolicy: IfNotPresent | ||||||
|     extraVolumeMounts: [] |     extraVolumeMounts: [] | ||||||
|  |  | ||||||
|   | |||||||
		Reference in New Issue
	
	Block a user