hiifong

Gitea runner controller quick start

hiifong 收录于 Gitea K8s Action Runner
  约 3100 字 预计阅读 7 分钟  - 次阅读   - 条评论  

Gitea runner controller quick start

runner-controller是gitea公司为gitea企业版量身定制的一套k8s控制器,可以实现runner自动伸缩等功能。

本教程为快速入门教程,不适用于生产环境。本教程主要从gitea企业版安装和k8s部署 runner-controller 两个方面进行简单指导,也是最小化部署教程,仅供参考。

必要条件

拥有一套 amd64 架构的k8s集群和安装有docker和docker compose, 还有必须确保你的网络可以无障碍访问github、docker等外网。

安装gitea-ee(gitea 企业版)

gitea企业版使用docker compose部署,以下展示的为最小配置的docker-compose文件, 使用sqlite作为数据库:

创建一个docker-compose.yml文件输入以下内容,

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23

version: "3"

networks:
  gitea:
    external: false

services:
  server:
    image: commitgo/gitea-ee:latest
    container_name: gitea
    environment:
      - USER_UID=1000
      - USER_GID=1000
    restart: always
    networks:
      - gitea
    volumes:
      - ./gitea:/data
      - /etc/timezone:/etc/timezone:ro
      - /etc/localtime:/etc/localtime:ro
    ports:
      - "3000:3000"
      - "2222:22"

使用docker compose up -d启动一个gitea实例。

在浏览器输入你部署gitea实例主机的ip:port, 数据库类型选择sqlite3其他选项默认就好了,直接点击install gitea,稍等片刻gitea就安装完成。接着打开注册页输入自己的用户信息进行注册,第一个注册用户即为gitea的管理员账号。

使用license激活gitea企业版

使用上一步注册的账号进行登录,打开 Site Administration -> License, 将Instance ID记录下来,等会申请license需要用到。

https://customers.gitea.com/网站申请试用license,需要使用gitea.com上的账号授权登录。

点击Start free trial开始申请试用license,接着点击My Gitea Enterprise is ready,在Instance ID输入之前记录下来的ID,Issued To照抄上面绿色背景里的Issued To就可以,点击Submit提交使用申请,提交申请后gitea会直接给你分发一个license,可以将license下载下来保存,或者直接点击复制按钮。

打开Site Administration -> License,将申请到的license粘贴到Submit license输入框,然后点击Submit就算完成激活工作了。

部署runner controller

第一步,先获取Runner的registration token,打开Site Administration -> Actions -> Runners -> Create new runner,将registration token记录下来,等会需要用到。

第二步,部署Local Path Provisioner,使用以下命令apply即可。

1

kubectl apply -f https://raw.githubusercontent.com/rancher/local-path-provisioner/v0.0.31/deploy/local-path-storage.yaml

第三步,部署runner controller。
创建install.yml文件,输入一下内容:

  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477

apiVersion: v1
kind: Namespace
metadata:
  labels:
    app.kubernetes.io/managed-by: kustomize
    app.kubernetes.io/name: runner-controller
    control-plane: controller-manager
  name: runner-controller-system
---
apiVersion: apiextensions.k8s.io/v1
kind: CustomResourceDefinition
metadata:
  annotations:
    controller-gen.kubebuilder.io/version: v0.16.1
  name: runners.gitea.com
spec:
  group: gitea.com
  names:
    kind: Runner
    listKind: RunnerList
    plural: runners
    singular: runner
  scope: Namespaced
  versions:
  - name: v1
    schema:
      openAPIV3Schema:
        description: Runner is the Schema for the runners API
        properties:
          apiVersion:
            description: |-
              APIVersion defines the versioned schema of this representation of an object.
              Servers should convert recognized schemas to the latest internal value, and
              may reject unrecognized values.
              More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources              
            type: string
          kind:
            description: |-
              Kind is a string value representing the REST resource this object represents.
              Servers may infer this from the endpoint the client submits requests to.
              Cannot be updated.
              In CamelCase.
              More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds              
            type: string
          metadata:
            type: object
          spec:
            description: RunnerSpec defines the desired state of Runner
            properties:
              gitea:
                description: Gitea is the Gitea spec
                properties:
                  instanceUrl:
                    description: InstanceUrl is the URL of the Gitea instance
                    format: url
                    type: string
                  registrationToken:
                    description: RegistrationToken is the registration token of the
                      runner
                    type: string
                required:
                - instanceUrl
                - registrationToken
                type: object
              runtime:
                default:
                  image: gitea/act_runner:nightly-dind
                  labels:
                    ubuntu-20.04: docker://gitea/runner-images:ubuntu-20.04
                    ubuntu-22.04: docker://gitea/runner-images:ubuntu-22.04
                    ubuntu-latest: docker://gitea/runner-images:ubuntu-latest
                description: Runtime is the runtime spec
                properties:
                  image:
                    default: gitea/act_runner:nightly-dind
                    description: Image is the image of the runner
                    type: string
                  labels:
                    additionalProperties:
                      type: string
                    default:
                      ubuntu-20.04: docker://gitea/runner-images:ubuntu-20.04
                      ubuntu-22.04: docker://gitea/runner-images:ubuntu-22.04
                      ubuntu-latest: docker://gitea/runner-images:ubuntu-latest
                    description: Labels is the labels of the runner
                    type: object
                required:
                - labels
                type: object
              scalability:
                default:
                  cpuRequest: "2"
                  maxSize: 10
                  memoryRequest: 4Gi
                description: Scalability is the scalability spec
                properties:
                  cpuRequest:
                    anyOf:
                    - type: integer
                    - type: string
                    default: "2"
                    description: CpuRequest is the CPU request of each runner
                    pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
                    x-kubernetes-int-or-string: true
                  maxSize:
                    default: 10
                    description: MaxSize is the maximum size of the runner
                    maximum: 9999
                    minimum: 1
                    type: integer
                  memoryRequest:
                    anyOf:
                    - type: integer
                    - type: string
                    default: 4Gi
                    description: MemoryRequest is the memory request of each runner
                    pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
                    x-kubernetes-int-or-string: true
                type: object
              storage:
                default:
                  cacheServerVolumeSize: 500Gi
                  cacheVolumeSize: 100Gi
                  className: standard
                  dataVolumeSize: 100Mi
                description: Storage is the storage spec
                properties:
                  cacheServerVolumeSize:
                    anyOf:
                    - type: integer
                    - type: string
                    default: 500Gi
                    description: CacheServerVolumeSize is the size of the cache server
                      volume
                    pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
                    x-kubernetes-int-or-string: true
                  cacheVolumeSize:
                    anyOf:
                    - type: integer
                    - type: string
                    default: 100Gi
                    description: CacheVolumeSize is the size of the cache volume
                    pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
                    x-kubernetes-int-or-string: true
                  className:
                    default: standard
                    description: ClassName is the storage class name
                    type: string
                  dataVolumeSize:
                    anyOf:
                    - type: integer
                    - type: string
                    default: 100Mi
                    description: DataVolumeSize is the size of the data volume
                    pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$
                    x-kubernetes-int-or-string: true
                type: object
            required:
            - gitea
            type: object
          status:
            description: RunnerStatus defines the observed state of Runner
            properties:
              targetSize:
                type: integer
              targetSizeUpdatedAt:
                format: date-time
                type: string
            required:
            - targetSize
            - targetSizeUpdatedAt
            type: object
        type: object
    served: true
    storage: true
    subresources:
      status: {}
---
apiVersion: v1
kind: ServiceAccount
metadata:
  labels:
    app.kubernetes.io/managed-by: kustomize
    app.kubernetes.io/name: runner-controller
  name: runner-controller-controller-manager
  namespace: runner-controller-system
---
apiVersion: rbac.authorization.k8s.io/v1
kind: Role
metadata:
  labels:
    app.kubernetes.io/managed-by: kustomize
    app.kubernetes.io/name: runner-controller
  name: runner-controller-leader-election-role
  namespace: runner-controller-system
rules:
- apiGroups:
  - ""
  resources:
  - configmaps
  verbs:
  - get
  - list
  - watch
  - create
  - update
  - patch
  - delete
- apiGroups:
  - coordination.k8s.io
  resources:
  - leases
  verbs:
  - get
  - list
  - watch
  - create
  - update
  - patch
  - delete
- apiGroups:
  - ""
  resources:
  - events
  verbs:
  - create
  - patch
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
  name: runner-controller-manager-role
rules:
- apiGroups:
  - ""
  resources:
  - configmaps
  - events
  - persistentvolumeclaims
  - persistentvolumes
  - pods
  - services
  verbs:
  - create
  - delete
  - get
  - list
  - patch
  - update
  - watch
- apiGroups:
  - gitea.com
  resources:
  - runners
  verbs:
  - create
  - delete
  - get
  - list
  - patch
  - update
  - watch
- apiGroups:
  - gitea.com
  resources:
  - runners/finalizers
  verbs:
  - update
- apiGroups:
  - gitea.com
  resources:
  - runners/status
  verbs:
  - get
  - patch
  - update
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
  name: runner-controller-metrics-auth-role
rules:
- apiGroups:
  - authentication.k8s.io
  resources:
  - tokenreviews
  verbs:
  - create
- apiGroups:
  - authorization.k8s.io
  resources:
  - subjectaccessreviews
  verbs:
  - create
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
  name: runner-controller-metrics-reader
rules:
- nonResourceURLs:
  - /metrics
  verbs:
  - get
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
  labels:
    app.kubernetes.io/managed-by: kustomize
    app.kubernetes.io/name: runner-controller
  name: runner-controller-runner-editor-role
rules:
- apiGroups:
  - gitea.com
  resources:
  - runners
  verbs:
  - create
  - delete
  - get
  - list
  - patch
  - update
  - watch
- apiGroups:
  - gitea.com
  resources:
  - runners/status
  verbs:
  - get
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
  labels:
    app.kubernetes.io/managed-by: kustomize
    app.kubernetes.io/name: runner-controller
  name: runner-controller-runner-viewer-role
rules:
- apiGroups:
  - gitea.com
  resources:
  - runners
  verbs:
  - get
  - list
  - watch
- apiGroups:
  - gitea.com
  resources:
  - runners/status
  verbs:
  - get
---
apiVersion: rbac.authorization.k8s.io/v1
kind: RoleBinding
metadata:
  labels:
    app.kubernetes.io/managed-by: kustomize
    app.kubernetes.io/name: runner-controller
  name: runner-controller-leader-election-rolebinding
  namespace: runner-controller-system
roleRef:
  apiGroup: rbac.authorization.k8s.io
  kind: Role
  name: runner-controller-leader-election-role
subjects:
- kind: ServiceAccount
  name: runner-controller-controller-manager
  namespace: runner-controller-system
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
  labels:
    app.kubernetes.io/managed-by: kustomize
    app.kubernetes.io/name: runner-controller
  name: runner-controller-manager-rolebinding
roleRef:
  apiGroup: rbac.authorization.k8s.io
  kind: ClusterRole
  name: runner-controller-manager-role
subjects:
- kind: ServiceAccount
  name: runner-controller-controller-manager
  namespace: runner-controller-system
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
  name: runner-controller-metrics-auth-rolebinding
roleRef:
  apiGroup: rbac.authorization.k8s.io
  kind: ClusterRole
  name: runner-controller-metrics-auth-role
subjects:
- kind: ServiceAccount
  name: runner-controller-controller-manager
  namespace: runner-controller-system
---
apiVersion: v1
kind: Service
metadata:
  labels:
    app.kubernetes.io/managed-by: kustomize
    app.kubernetes.io/name: runner-controller
    control-plane: controller-manager
  name: runner-controller-controller-manager-metrics-service
  namespace: runner-controller-system
spec:
  ports:
  - name: https
    port: 8443
    protocol: TCP
    targetPort: 8443
  selector:
    control-plane: controller-manager
---
apiVersion: apps/v1
kind: Deployment
metadata:
  labels:
    app.kubernetes.io/managed-by: kustomize
    app.kubernetes.io/name: runner-controller
    control-plane: controller-manager
  name: runner-controller-controller-manager
  namespace: runner-controller-system
spec:
  replicas: 1
  selector:
    matchLabels:
      control-plane: controller-manager
  template:
    metadata:
      annotations:
        kubectl.kubernetes.io/default-container: manager
      labels:
        control-plane: controller-manager
    spec:
      containers:
      - args:
        - --metrics-bind-address=:8443
        - --leader-elect
        - --health-probe-bind-address=:8081
        command:
        - /manager
        image: commitgo/runner-controller:v0.3.1
        livenessProbe:
          httpGet:
            path: /healthz
            port: 8081
          initialDelaySeconds: 15
          periodSeconds: 20
        name: manager
        readinessProbe:
          httpGet:
            path: /readyz
            port: 8081
          initialDelaySeconds: 5
          periodSeconds: 10
        resources:
          limits:
            cpu: 500m
            memory: 128Mi
          requests:
            cpu: 10m
            memory: 64Mi
        securityContext:
          allowPrivilegeEscalation: false
          capabilities:
            drop:
            - ALL
      securityContext:
        runAsNonRoot: true
      serviceAccountName: runner-controller-controller-manager
      terminationGracePeriodSeconds: 10

创建example.yml文件,输入以下内容:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22

apiVersion: gitea.com/v1
kind: Runner
metadata:
  labels:
    app.kubernetes.io/name: runner-controller
    app.kubernetes.io/managed-by: kustomize
  name: "gitea-runner" # TODO, like my-runner
spec:
  gitea:
    instanceUrl: "<填入gitea实例地址>" # TODO, like https://mygitea.com/
    registrationToken: "<填入第一步获取到的registration token>" # TODO, it's the same token to register runners
  runtime:
    labels:
      ubuntu-latest: docker://gitea/runner-images:ubuntu-latest
      ubuntu-22.04: docker://gitea/runner-images:ubuntu-22.04
      ubuntu-20.04: docker://gitea/runner-images:ubuntu-20.04
  storage:
    className: "local-path" # TODO, it should be real storage class in your k8s cluster
  scalability:
    maxSize: 10
    cpuRequest: 4
    memoryRequest: 8Gi

应用runner controller配置,

1
2

kubectl apply -f install.yml
kubectl apply -f example.yml

测试runner

创建一个仓库,接着在该仓库创建.gitea/workflows/test.yml文件,输入一下内容:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19

name: Gitea Actions Demo
run-name: ${{ gitea.actor }} is testing out Gitea Actions 🚀
on: [push]

jobs:
  Explore-Gitea-Actions:
    runs-on: ubuntu-latest
    steps:
      - run: echo "🎉 The job was automatically triggered by a ${{ gitea.event_name }} event."
      - run: echo "🐧 This job is now running on a ${{ runner.os }} server hosted by Gitea!"
      - run: echo "🔎 The name of your branch is ${{ gitea.ref }} and your repository is ${{ gitea.repository }}."
      - name: Check out repository code
        uses: actions/checkout@v4
      - run: echo "💡 The ${{ gitea.repository }} repository has been cloned to the runner."
      - run: echo "🖥️ The workflow is now ready to test your code on the runner."
      - name: List files in the repository
        run: |
          ls ${{ gitea.workspace }}          
      - run: echo "🍏 This job's status is ${{ job.status }}."

在该仓库的Actions tab里查看运行结果。

更新于 2025-04-18 
CC BY-NC 4.0
阅读原始文档
GiteaK8sKubernetesActionRunnerRunner-Controller
返回 | 主页
Buy Me a Coffee ~~
hiifong 支付宝支付宝
hiifong 微信微信
0%