2024-05-05 14:00:09 +02:00
|
|
|
---
|
2024-03-19 21:22:41 +00:00
|
|
|
# Copyright 2023 The Forgejo Authors.
|
|
|
|
|
# SPDX-License-Identifier: MIT
|
|
|
|
|
|
|
|
|
|
#
|
|
|
|
|
# Create a secret with:
|
|
|
|
|
#
|
|
|
|
|
# openssl rand -hex 20
|
|
|
|
|
#
|
|
|
|
|
# Replace all occurences of {SHARED_SECRET} below with the output.
|
|
|
|
|
#
|
|
|
|
|
# NOTE: a token obtained from the Forgejo web interface cannot be used
|
|
|
|
|
# as a shared secret.
|
|
|
|
|
#
|
|
|
|
|
# Replace {ROOT_PASSWORD} with a secure password
|
2024-05-08 23:01:18 +02:00
|
|
|
|
2024-03-19 21:22:41 +00:00
|
|
|
services:
|
2024-03-19 21:23:29 +00:00
|
|
|
# https://code.forgejo.org/forgejo/runner/src/branch/main/examples/docker-compose
|
2024-03-19 21:22:41 +00:00
|
|
|
docker-in-docker:
|
|
|
|
|
image: docker:dind
|
2024-05-05 14:00:09 +02:00
|
|
|
command: ["dockerd", "-H", "tcp://0.0.0.0:2375", "--tls=false"]
|
2024-05-08 23:01:18 +02:00
|
|
|
privileged: true
|
2024-03-19 21:22:41 +00:00
|
|
|
|
|
|
|
|
forgejo:
|
|
|
|
|
image: codeberg.org/forgejo/forgejo:1.21
|
|
|
|
|
container_name: forgejo
|
|
|
|
|
command: >-
|
|
|
|
|
bash -c '
|
|
|
|
|
/bin/s6-svscan /etc/s6 &
|
|
|
|
|
sleep 10 ;
|
|
|
|
|
su -c "forgejo forgejo-cli actions register --secret {SHARED_SECRET} --labels docker --version 3.3.0" git ;
|
|
|
|
|
su -c "forgejo admin user create --admin --username root --password {ROOT_PASSWORD} --email root@example.com" git ;
|
|
|
|
|
sleep infinity
|
|
|
|
|
'
|
|
|
|
|
environment:
|
|
|
|
|
FORGEJO__security__INSTALL_LOCK: "true"
|
|
|
|
|
FORGEJO__log__LEVEL: "debug"
|
|
|
|
|
FORGEJO__repository__ENABLE_PUSH_CREATE_USER: "true"
|
|
|
|
|
FORGEJO__repository__DEFAULT_PUSH_CREATE_PRIVATE: "false"
|
|
|
|
|
FORGEJO__repository__DEFAULT_REPO_UNITS: "repo.code,repo.actions"
|
|
|
|
|
volumes:
|
|
|
|
|
- ./volumes/forgejo-data:/data
|
|
|
|
|
ports:
|
2024-05-08 23:01:18 +02:00
|
|
|
- "127.0.0.1:13000:3000"
|
2024-03-19 21:22:41 +00:00
|
|
|
|
2024-05-08 23:01:18 +02:00
|
|
|
runner-daemon:
|
2024-03-19 21:22:41 +00:00
|
|
|
image: code.forgejo.org/forgejo/runner:3.3.0
|
2024-05-08 23:01:18 +02:00
|
|
|
container_name: forgejo_runner_daemon
|
|
|
|
|
command: "forgejo-runner --config config.yml daemon"
|
2024-03-19 21:22:41 +00:00
|
|
|
environment:
|
|
|
|
|
DOCKER_HOST: tcp://docker-in-docker:2375
|
|
|
|
|
volumes:
|
|
|
|
|
- ./volumes/runner-data:/data
|
2024-05-08 23:01:18 +02:00
|
|
|
links:
|
|
|
|
|
- docker-in-docker
|
|
|
|
|
- forgejo
|
|
|
|
|
depends_on:
|
|
|
|
|
runner-register:
|
|
|
|
|
condition: service_completed_successfully
|
|
|
|
|
|
|
|
|
|
# runner-register needs only to run at first startup
|
|
|
|
|
runner-register:
|
|
|
|
|
image: code.forgejo.org/forgejo/runner:3.3.0
|
|
|
|
|
container_name: forgejo_runner
|
2024-03-19 21:22:41 +00:00
|
|
|
command: >-
|
|
|
|
|
bash -ec '
|
|
|
|
|
while : ; do
|
|
|
|
|
forgejo-runner create-runner-file --connect --instance http://forgejo:3000 --name runner --secret {SHARED_SECRET} && break ;
|
|
|
|
|
sleep 1 ;
|
|
|
|
|
done ;
|
|
|
|
|
forgejo-runner generate-config > config.yml ;
|
|
|
|
|
sed -i -e "s|network: .*|network: host|" config.yml ;
|
|
|
|
|
sed -i -e "s|labels: \[\]|labels: \[\"docker:docker://alpine:3.18\"\]|" config.yml ;
|
|
|
|
|
chown -R 1000:1000 /data
|
|
|
|
|
'
|
|
|
|
|
environment:
|
|
|
|
|
DOCKER_HOST: tcp://docker-in-docker:2375
|
|
|
|
|
volumes:
|
|
|
|
|
- ./volumes/runner-data:/data
|
2024-05-08 23:01:18 +02:00
|
|
|
user: 0:0
|
|
|
|
|
links:
|
|
|
|
|
- docker-in-docker
|
|
|
|
|
- forgejo
|
