gitea runners

2026-04-08 12:40:13 +02:00
parent 5e205944c6
commit b3d4a26a07
4 changed files with 135 additions and 4 deletions
--- a/infra/gitea-actions.yaml
+++ b/infra/gitea-actions.yaml
@@ -0,0 +1,42 @@
+apiVersion: argoproj.io/v1alpha1
+kind: Application
+metadata:
+  name: gitea-actions
+  namespace: argocd
+  annotations:
+    argocd.argoproj.io/sync-wave: "2"
+  labels:
+    app.kubernetes.io/name: gitea-actions
+    app.kubernetes.io/part-of: platform
+    app.kubernetes.io/managed-by: argocd
+  finalizers:
+  - resources-finalizer.argocd.argoproj.io
+spec:
+  project: default
+
+  sources:
+  - repoURL: https://dl.gitea.com/charts
+    chart: actions
+    targetRevision: "*"
+    helm:
+      releaseName: gitea-actions
+      valueFiles:
+      - $values/infra/values/gitea-actions-values.yaml
+
+  - repoURL: git@github.com:fortedigital/sturdy-adventure.git
+    targetRevision: HEAD
+    ref: values
+
+  destination:
+    server: https://kubernetes.default.svc
+    namespace: gitea
+
+  syncPolicy:
+    automated:
+      prune: true
+      selfHeal: true
+      allowEmpty: false
+    syncOptions:
+    - CreateNamespace=true
+    - Validate=true
+    - ServerSideApply=true
--- a/infra/values/gitea-actions-values.yaml
+++ b/infra/values/gitea-actions-values.yaml
@@ -0,0 +1,37 @@
+## Gitea Act Runner - Helm values
+## Chart: actions (https://dl.gitea.com/charts)
+
+replicaCount: 3
+
+runner:
+  config: |
+    log:
+      level: info
+    runner:
+      labels:
+        - "ubuntu-latest:docker://node:20-bookworm"
+        - "ubuntu-22.04:docker://node:20-bookworm"
+
+  existingSecret: gitea-runner-token
+
+  resources:
+    requests:
+      cpu: 250m
+      memory: 256Mi
+    limits:
+      cpu: "1"
+      memory: 1Gi
+
+gitea:
+  instance:
+    url: http://gitea-http.gitea.svc.cluster.local:3000
+
+dind:
+  enabled: true
+  resources:
+    requests:
+      cpu: 250m
+      memory: 256Mi
+    limits:
+      cpu: "1"
+      memory: 1Gi
--- a/infra/values/gitea-values.yaml
+++ b/infra/values/gitea-values.yaml
@@ -21,16 +21,18 @@ gitea:
      LFS_START_SERVER: true

    service:
-      DISABLE_REGISTRATION: true
+      DISABLE_REGISTRATION: false
      REQUIRE_SIGNIN_VIEW: false
      ALLOW_ONLY_EXTERNAL_REGISTRATION: true

    openid:
-      ENABLE_OPENID_SIGNIN: true
-      ENABLE_OPENID_SIGNUP: true
+      ENABLE_OPENID_SIGNIN: false
+      ENABLE_OPENID_SIGNUP: false

    oauth2:
      ENABLED: true
+      ENABLE_AUTO_REGISTRATION: true
+      USERNAME: email

    session:
      PROVIDER: db
@@ -69,7 +71,6 @@ gitea:
    groupClaimName: ""
    adminGroup: ""
    restrictedGroup: ""
-
  # -- Prometheus metrics (scraped via annotations, no ServiceMonitor CRD needed)
  metrics:
    enabled: true