N0rthernL1ghts/gha-runner-kms
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: N0rthernL1ghts:568f7878d12469d62bbb957d3f75d3debcbadf24
Branches Tags
N0rthernL1ghts:master
...
compare: N0rthernL1ghts:master
Branches Tags
N0rthernL1ghts:master

5 Commits
568f7878d1 ... master

Author SHA1 Message Date
xZero707
30d3bd3005 Make it possible to disable image push 2025-03-29 17:35:22 +01:00
xZero707
93bffbcb66 Add service dependency 2025-03-29 17:28:03 +01:00
xZero707
e4f7152ec3 Add example compose.yaml file 2025-03-29 17:27:43 +01:00
xZero707
7ee0660092 Add .gitignore and .dockerignore files 2025-03-29 17:23:04 +01:00
xZero707
73f0b654a2 Disable secret names normalization feature 2025-03-29 17:19:51 +01:00
6 changed files with 42 additions and 2 deletions
Expand all files Collapse all files

5
.dockerignore Normal file
View File

@@ -0,0 +1,5 @@
.idea/
data/
secrets/
compose.override.yaml
.git/

4
.gitignore vendored Normal file
View File

@@ -0,0 +1,4 @@
.idea/
data/
secrets/
compose.override.yaml

5
Dockerfile
View File

@@ -13,6 +13,11 @@ COPY ["./rootfs", "/"]
FROM knatnetwork/github-runner-kms:latest
RUN set -eux \
&& apk add --no-cache bash
COPY --from=rootfs ["/", "/"]
ENV NORMALIZE_SECRET_NAMES=0
ENTRYPOINT ["/init"]

11
bin/build
View File

@@ -1,15 +1,22 @@
#!/usr/bin/env bash
main() {
set -eux
set -eu
docker build -t "${XCR_REGISTRY:?}/n0rthernl1ghts/gha-runner-kms:latest" .
local git_hash
git_hash="$(git rev-parse --verify HEAD)"
docker tag "${XCR_REGISTRY:?}/n0rthernl1ghts/gha-runner-kms:latest" "${XCR_REGISTRY:?}/n0rthernl1ghts/gha-runner-kms:git-${git_hash}"
local enable_push="${1:-1}"
if [[ "${enable_push}" -ne 1 ]]; then
echo "Push is disabled."
return
fi
docker push "${XCR_REGISTRY}/n0rthernl1ghts/gha-runner-kms:latest"
docker push "${XCR_REGISTRY}/n0rthernl1ghts/gha-runner-kms:git-${git_hash}"
}
main
main "${@}"

19
compose.yaml Normal file
View File

@@ -0,0 +1,19 @@
secrets:
PAT_N0rthernL1ghts:
file: ./secrets/PAT_N0rthernL1ghts.txt
networks:
default:
services:
kms:
image: xcr.se/n0rthernl1ghts/gha-runner-kms:latest
hostname: vm-vulcan-ghr-prod-01-kms.router0.net
deploy:
replicas: 1
restart_policy:
condition: any
secrets:
- PAT_N0rthernL1ghts
networks:
default:

0
rootfs/etc/s6-overlay/s6-rc.d/svc-kms/dependencies.d/init-docker-secrets Normal file
View File