152 lines
4.2 KiB
YAML
152 lines
4.2 KiB
YAML
---
|
|
apiVersion: apps/v1
|
|
kind: Deployment
|
|
metadata:
|
|
name: gitea
|
|
labels:
|
|
app: gitea
|
|
spec:
|
|
selector:
|
|
matchLabels:
|
|
app: gitea
|
|
replicas: 1
|
|
strategy:
|
|
type: RollingUpdate
|
|
rollingUpdate:
|
|
maxSurge: 1
|
|
maxUnavailable: 0
|
|
template:
|
|
metadata:
|
|
labels:
|
|
app: gitea
|
|
spec:
|
|
nodeSelector:
|
|
kubernetes.io/hostname: master.tail2fe2d.ts.net
|
|
volumes:
|
|
- name: storage
|
|
hostPath:
|
|
path: /k8s/gitea
|
|
type: Directory
|
|
containers:
|
|
- name: gitea
|
|
image: 'gitea/gitea:latest'
|
|
resources:
|
|
requests:
|
|
memory: "512Mi"
|
|
cpu: "200m"
|
|
limits:
|
|
memory: "2Gi"
|
|
cpu: "1000m"
|
|
env:
|
|
- name: GITEA__service__REGISTER_MANUAL_CONFIRM
|
|
value: "true"
|
|
- name: GITEA__service__ENABLE_CAPTCHA
|
|
value: "false"
|
|
- name: GITEA__service__REQUIRE_CAPTCHA_FOR_LOGIN
|
|
value: "true"
|
|
- name: GITEA__service__REQUIRE_EXTERNAL_REGISTRATION_CAPTCHA
|
|
value: "true"
|
|
- name: GITEA__service__CAPTCHA_TYPE
|
|
value: "hcaptcha"
|
|
envFrom:
|
|
- secretRef:
|
|
name: gitea-recapcha-creds
|
|
ports:
|
|
- name: http
|
|
containerPort: 3000
|
|
protocol: TCP
|
|
- name: ssh
|
|
containerPort: 22
|
|
protocol: TCP
|
|
volumeMounts:
|
|
- name: storage
|
|
mountPath: /data
|
|
|
|
---
|
|
apiVersion: apps/v1
|
|
kind: Deployment
|
|
metadata:
|
|
name: gitea-runner
|
|
spec:
|
|
replicas: 1
|
|
selector:
|
|
matchLabels:
|
|
app: gitea-runner
|
|
template:
|
|
metadata:
|
|
labels:
|
|
app: gitea-runner
|
|
spec:
|
|
nodeSelector:
|
|
kubernetes.io/hostname: home.homenet
|
|
volumes:
|
|
- name: docker-sock
|
|
hostPath:
|
|
path: /var/run/docker.sock
|
|
type: Socket
|
|
- name: runner-data
|
|
emptyDir:
|
|
sizeLimit: 30Gi
|
|
affinity:
|
|
nodeAffinity:
|
|
preferredDuringSchedulingIgnoredDuringExecution:
|
|
- weight: 3
|
|
preference:
|
|
matchExpressions:
|
|
- key: kubernetes.io/hostname
|
|
operator: In
|
|
values:
|
|
- home.homenet
|
|
- weight: 1
|
|
preference:
|
|
matchExpressions:
|
|
- key: kubernetes.io/hostname
|
|
operator: In
|
|
values:
|
|
- master.tail2fe2d.ts.net
|
|
- weight: 2
|
|
preference:
|
|
matchExpressions:
|
|
- key: kubernetes.io/hostname
|
|
operator: In
|
|
values:
|
|
- nas.homenet
|
|
requiredDuringSchedulingIgnoredDuringExecution:
|
|
nodeSelectorTerms:
|
|
- matchExpressions:
|
|
- key: kubernetes.io/hostname
|
|
operator: In
|
|
values:
|
|
- home.homenet
|
|
- nas.homenet
|
|
- master.tail2fe2d.ts.net
|
|
containers:
|
|
- name: gitea-runner
|
|
image: gitea/act_runner:nightly
|
|
resources:
|
|
requests:
|
|
cpu: "100m"
|
|
memory: "256Mi"
|
|
ephemeral-storage: "1Gi" # reserve ephemeral storage
|
|
limits:
|
|
cpu: "2000m"
|
|
memory: "4Gi"
|
|
ephemeral-storage: "28Gi" # hard cap for /data usage
|
|
volumeMounts:
|
|
- name: docker-sock
|
|
mountPath: /var/run/docker.sock
|
|
- name: runner-data
|
|
mountPath: /data
|
|
env:
|
|
- name: GITEA_INSTANCE_URL
|
|
value: "https://gt.hexor.cy"
|
|
- name: GITEA_RUNNER_REGISTRATION_TOKEN
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: gitea-runner-act-runner-secrets
|
|
key: token
|
|
- name: GITEA_RUNNER_NAME
|
|
value: "k8s-runner"
|
|
- name: GITEA_RUNNER_LABELS
|
|
value: "ubuntu-latest:docker://ghcr.io/catthehacker/ubuntu:act-latest,ubuntu-22.04:docker://ghcr.io/catthehacker/ubuntu:act-22.04,ubuntu-20.04:docker://ghcr.io/catthehacker/ubuntu:act-20.04"
|