merith-tk/forgejo-runner
1
0
Fork 0
Code Issues Pull requests 2 Projects Releases Packages Wiki Activity Actions
forgejo-runner/entrypoint.sh

132 lines
4.1 KiB
Bash
Raw Normal View History

basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
#!/usr/bin/env bash
set -e
dont use root-user by default
2024-09-27 18:38:59 +01:00
# Technically not nessecary but it cleans up the logs from having token/secret values
update entrypoint and dockerfile, fix test workflow update dockerfile, rework entrypoint execution, update compose and test
2024-09-25 23:21:53 +01:00
run_command() {
fix Kind/Breaking tag
2024-09-27 18:46:35 +01:00
local cmd="$@"
I guess it works now sorry for the unprofessional commit message, I have been working on this effectively non-stop since the previous commit, and have been fighting docker networking being inconsistent as well as filepermisson issues, end me
2024-09-27 03:00:54 +01:00
# Replace any --token <value> or --secret <value> with [REDACTED]
local safe_cmd=$(echo "$cmd" | sed -E 's/--(token|secret) [^ ]+/--\1 [REDACTED]/g')
decho "Running command: $safe_cmd"
dont use root-user by default
2024-09-27 18:38:59 +01:00
eval "$cmd"
I guess it works now sorry for the unprofessional commit message, I have been working on this effectively non-stop since the previous commit, and have been fighting docker networking being inconsistent as well as filepermisson issues, end me
2024-09-27 03:00:54 +01:00
}
remove rootless dockerfile, updatedate entrypoint, update docker compose Removed the rootless dockerfile as upon further investigation into how a `rootless` container works, the entrypoint that has been written fully accomodates that to reflect this the compose file has had the rootless config removed from it as it is no longer needed to test a seperate container image, added a debug echo function `decho` to the entrypoint, when `DEBUG=true` it will print "[entrypoint] message content" added a 10 second wait to the entrypoint to allow other services such as docker-in-docker and forgejo to finish launching before the runner is launched, this is bypassable by `SKIP_WAIT=true` applied several modifications requested by viceice,
2024-09-26 23:08:31 +01:00
decho() {
if [[ "${DEBUG}" == "true" ]]; then
echo "[entrypoint] $@"
fi
}
update entrypoint and dockerfile, fix test workflow update dockerfile, rework entrypoint execution, update compose and test
2024-09-25 23:21:53 +01:00
# Check if the script is running as root
if [[ $(id -u) -eq 0 ]]; then
ISROOT=true
dont use root-user by default
2024-09-27 18:38:59 +01:00
decho "[WARNING] Running as root user"
update entrypoint and dockerfile, fix test workflow update dockerfile, rework entrypoint execution, update compose and test
2024-09-25 23:21:53 +01:00
fi
basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
fix Kind/Breaking tag
2024-09-27 18:46:35 +01:00
# Handle if `command` is passed, as command appends arguments to the entrypoint
if [ "$#" -gt 0 ]; then
run_command "$@"
exit
fi
add a root-user check, clean up some formatting
2024-09-25 21:34:18 +01:00
# Handle and alter the config file
basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
if [[ -z "${CONFIG_FILE}" ]]; then
update entrypoint and dockerfile, fix test workflow update dockerfile, rework entrypoint execution, update compose and test
2024-09-25 23:21:53 +01:00
echo "CONFIG_FILE is not set"
basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
CONFIG_FILE="/data/config.yml"
fi
CONFIG_ARG="--config ${CONFIG_FILE}"
remove rootless dockerfile, updatedate entrypoint, update docker compose Removed the rootless dockerfile as upon further investigation into how a `rootless` container works, the entrypoint that has been written fully accomodates that to reflect this the compose file has had the rootless config removed from it as it is no longer needed to test a seperate container image, added a debug echo function `decho` to the entrypoint, when `DEBUG=true` it will print "[entrypoint] message content" added a 10 second wait to the entrypoint to allow other services such as docker-in-docker and forgejo to finish launching before the runner is launched, this is bypassable by `SKIP_WAIT=true` applied several modifications requested by viceice,
2024-09-26 23:08:31 +01:00
decho "CONFIG: ${CONFIG_ARG}"
basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
dont use root-user by default
2024-09-27 18:38:59 +01:00
DOCKER_HOST=${DOCKER_HOST:-"tcp://docker:2367"}
I guess it works now sorry for the unprofessional commit message, I have been working on this effectively non-stop since the previous commit, and have been fighting docker networking being inconsistent as well as filepermisson issues, end me
2024-09-27 03:00:54 +01:00
DOCKER_CERT_PATH=${DOCKER_CERT_PATH:-"/certs/client"}
dont use root-user by default
2024-09-27 18:38:59 +01:00
DOCKER_TLS_VERIFY=${DOCKER_TLS_VERIFY:-1}
remove rootless dockerfile, updatedate entrypoint, update docker compose Removed the rootless dockerfile as upon further investigation into how a `rootless` container works, the entrypoint that has been written fully accomodates that to reflect this the compose file has had the rootless config removed from it as it is no longer needed to test a seperate container image, added a debug echo function `decho` to the entrypoint, when `DEBUG=true` it will print "[entrypoint] message content" added a 10 second wait to the entrypoint to allow other services such as docker-in-docker and forgejo to finish launching before the runner is launched, this is bypassable by `SKIP_WAIT=true` applied several modifications requested by viceice,
2024-09-26 23:08:31 +01:00
decho "DOCKER_HOST: ${DOCKER_HOST}"
I guess it works now sorry for the unprofessional commit message, I have been working on this effectively non-stop since the previous commit, and have been fighting docker networking being inconsistent as well as filepermisson issues, end me
2024-09-27 03:00:54 +01:00
decho "DOCKER_CERT_PATH: ${DOCKER_CERT_PATH}"
remove rootless dockerfile, updatedate entrypoint, update docker compose Removed the rootless dockerfile as upon further investigation into how a `rootless` container works, the entrypoint that has been written fully accomodates that to reflect this the compose file has had the rootless config removed from it as it is no longer needed to test a seperate container image, added a debug echo function `decho` to the entrypoint, when `DEBUG=true` it will print "[entrypoint] message content" added a 10 second wait to the entrypoint to allow other services such as docker-in-docker and forgejo to finish launching before the runner is launched, this is bypassable by `SKIP_WAIT=true` applied several modifications requested by viceice,
2024-09-26 23:08:31 +01:00
decho "DOCKER_TLS_VERIFY: ${DOCKER_TLS_VERIFY}"
basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
if [[ ! -f "${CONFIG_FILE}" ]]; then
remove rootless dockerfile, updatedate entrypoint, update docker compose Removed the rootless dockerfile as upon further investigation into how a `rootless` container works, the entrypoint that has been written fully accomodates that to reflect this the compose file has had the rootless config removed from it as it is no longer needed to test a seperate container image, added a debug echo function `decho` to the entrypoint, when `DEBUG=true` it will print "[entrypoint] message content" added a 10 second wait to the entrypoint to allow other services such as docker-in-docker and forgejo to finish launching before the runner is launched, this is bypassable by `SKIP_WAIT=true` applied several modifications requested by viceice,
2024-09-26 23:08:31 +01:00
echo "Creating ${CONFIG_FILE}"
I guess it works now sorry for the unprofessional commit message, I have been working on this effectively non-stop since the previous commit, and have been fighting docker networking being inconsistent as well as filepermisson issues, end me
2024-09-27 03:00:54 +01:00
run_command "forgejo-runner generate-config > ${CONFIG_FILE}"
address dockerfile feedback, further work on entrypoint
2024-09-25 21:00:54 +01:00
# Remove test environment variables if they exist in the config file
sed -i "/^ A_TEST_ENV_NAME_1:/d" ${CONFIG_FILE}
sed -i "/^ A_TEST_ENV_NAME_2:/d" ${CONFIG_FILE}
add a root-user check, clean up some formatting
2024-09-25 21:34:18 +01:00
# Apply default values for docker
I guess it works now sorry for the unprofessional commit message, I have been working on this effectively non-stop since the previous commit, and have been fighting docker networking being inconsistent as well as filepermisson issues, end me
2024-09-27 03:00:54 +01:00
sed -i "/^ labels:/c\ labels: [\"docker:docker://code.forgejo.org/oci/node:20-bookworm\", \"ubuntu-22.04:docker://catthehacker/ubuntu:act-22.04\"]" ${CONFIG_FILE}
add a root-user check, clean up some formatting
2024-09-25 21:34:18 +01:00
sed -i "/^ network:/c\ network: host" ${CONFIG_FILE}
remove rootless dockerfile, updatedate entrypoint, update docker compose Removed the rootless dockerfile as upon further investigation into how a `rootless` container works, the entrypoint that has been written fully accomodates that to reflect this the compose file has had the rootless config removed from it as it is no longer needed to test a seperate container image, added a debug echo function `decho` to the entrypoint, when `DEBUG=true` it will print "[entrypoint] message content" added a 10 second wait to the entrypoint to allow other services such as docker-in-docker and forgejo to finish launching before the runner is launched, this is bypassable by `SKIP_WAIT=true` applied several modifications requested by viceice,
2024-09-26 23:08:31 +01:00
address dockerfile feedback, further work on entrypoint
2024-09-25 21:00:54 +01:00
fi
remove rootless dockerfile, updatedate entrypoint, update docker compose Removed the rootless dockerfile as upon further investigation into how a `rootless` container works, the entrypoint that has been written fully accomodates that to reflect this the compose file has had the rootless config removed from it as it is no longer needed to test a seperate container image, added a debug echo function `decho` to the entrypoint, when `DEBUG=true` it will print "[entrypoint] message content" added a 10 second wait to the entrypoint to allow other services such as docker-in-docker and forgejo to finish launching before the runner is launched, this is bypassable by `SKIP_WAIT=true` applied several modifications requested by viceice,
2024-09-26 23:08:31 +01:00
ENV_FILE=${ENV_FILE:-"/data/.env"}
decho "ENV_FILE: ${ENV_FILE}"
sed -i "/^ env_file:/c\ env_file: ${ENV_FILE}" ${CONFIG_FILE}
add a root-user check, clean up some formatting
2024-09-25 21:34:18 +01:00
address dockerfile feedback, further work on entrypoint
2024-09-25 21:00:54 +01:00
if [[ ! -f "${ENV_FILE}" ]]; then
disabled TLS in example, not needed for a closed docker network
2024-09-26 01:10:50 +01:00
echo "Creating ${ENV_FILE}"
touch ${ENV_FILE}
remove rootless dockerfile, updatedate entrypoint, update docker compose Removed the rootless dockerfile as upon further investigation into how a `rootless` container works, the entrypoint that has been written fully accomodates that to reflect this the compose file has had the rootless config removed from it as it is no longer needed to test a seperate container image, added a debug echo function `decho` to the entrypoint, when `DEBUG=true` it will print "[entrypoint] message content" added a 10 second wait to the entrypoint to allow other services such as docker-in-docker and forgejo to finish launching before the runner is launched, this is bypassable by `SKIP_WAIT=true` applied several modifications requested by viceice,
2024-09-26 23:08:31 +01:00
echo "DOCKER_HOST=${DOCKER_HOST}" >> ${ENV_FILE}
echo "DOCKER_TLS_VERIFY=${DOCKER_TLS_VERIFY}" >> ${ENV_FILE}
I guess it works now sorry for the unprofessional commit message, I have been working on this effectively non-stop since the previous commit, and have been fighting docker networking being inconsistent as well as filepermisson issues, end me
2024-09-27 03:00:54 +01:00
echo "DOCKER_CERT_PATH=${DOCKER_CERT_PATH}" >> ${ENV_FILE}
basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
fi
EXTRA_ARGS=""
if [[ ! -z "${RUNNER_LABELS}" ]]; then
EXTRA_ARGS="${EXTRA_ARGS} --labels ${RUNNER_LABELS}"
fi
remove rootless dockerfile, updatedate entrypoint, update docker compose Removed the rootless dockerfile as upon further investigation into how a `rootless` container works, the entrypoint that has been written fully accomodates that to reflect this the compose file has had the rootless config removed from it as it is no longer needed to test a seperate container image, added a debug echo function `decho` to the entrypoint, when `DEBUG=true` it will print "[entrypoint] message content" added a 10 second wait to the entrypoint to allow other services such as docker-in-docker and forgejo to finish launching before the runner is launched, this is bypassable by `SKIP_WAIT=true` applied several modifications requested by viceice,
2024-09-26 23:08:31 +01:00
decho "EXTRA_ARGS: ${EXTRA_ARGS}"
basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
address dockerfile feedback, further work on entrypoint
2024-09-25 21:00:54 +01:00
# Set the runner file
dont use root-user by default
2024-09-27 18:38:59 +01:00
RUNNER_FILE=${RUNNER_FILE:-"runner.json"} # use json so editors know how to highlight
remove rootless dockerfile, updatedate entrypoint, update docker compose Removed the rootless dockerfile as upon further investigation into how a `rootless` container works, the entrypoint that has been written fully accomodates that to reflect this the compose file has had the rootless config removed from it as it is no longer needed to test a seperate container image, added a debug echo function `decho` to the entrypoint, when `DEBUG=true` it will print "[entrypoint] message content" added a 10 second wait to the entrypoint to allow other services such as docker-in-docker and forgejo to finish launching before the runner is launched, this is bypassable by `SKIP_WAIT=true` applied several modifications requested by viceice,
2024-09-26 23:08:31 +01:00
decho "RUNNER_FILE: ${RUNNER_FILE}"
basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
sed -i "/^ file:/c\ file: ${RUNNER_FILE}" ${CONFIG_FILE}
remove rootless dockerfile, updatedate entrypoint, update docker compose Removed the rootless dockerfile as upon further investigation into how a `rootless` container works, the entrypoint that has been written fully accomodates that to reflect this the compose file has had the rootless config removed from it as it is no longer needed to test a seperate container image, added a debug echo function `decho` to the entrypoint, when `DEBUG=true` it will print "[entrypoint] message content" added a 10 second wait to the entrypoint to allow other services such as docker-in-docker and forgejo to finish launching before the runner is launched, this is bypassable by `SKIP_WAIT=true` applied several modifications requested by viceice,
2024-09-26 23:08:31 +01:00
if [[ "${SKIP_WAIT}" != "true" ]]; then
echo, not secho
2024-09-26 23:16:51 +01:00
echo "Waiting 10s to allow other services to start up..."
remove rootless dockerfile, updatedate entrypoint, update docker compose Removed the rootless dockerfile as upon further investigation into how a `rootless` container works, the entrypoint that has been written fully accomodates that to reflect this the compose file has had the rootless config removed from it as it is no longer needed to test a seperate container image, added a debug echo function `decho` to the entrypoint, when `DEBUG=true` it will print "[entrypoint] message content" added a 10 second wait to the entrypoint to allow other services such as docker-in-docker and forgejo to finish launching before the runner is launched, this is bypassable by `SKIP_WAIT=true` applied several modifications requested by viceice,
2024-09-26 23:08:31 +01:00
sleep 10
fi
basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
if [[ ! -s "${RUNNER_FILE}" ]]; then
address dockerfile feedback, further work on entrypoint
2024-09-25 21:00:54 +01:00
touch ${RUNNER_FILE}
basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
try=$((try + 1))
success=0
remove rootless dockerfile, updatedate entrypoint, update docker compose Removed the rootless dockerfile as upon further investigation into how a `rootless` container works, the entrypoint that has been written fully accomodates that to reflect this the compose file has had the rootless config removed from it as it is no longer needed to test a seperate container image, added a debug echo function `decho` to the entrypoint, when `DEBUG=true` it will print "[entrypoint] message content" added a 10 second wait to the entrypoint to allow other services such as docker-in-docker and forgejo to finish launching before the runner is launched, this is bypassable by `SKIP_WAIT=true` applied several modifications requested by viceice,
2024-09-26 23:08:31 +01:00
decho "try: ${try}, success: ${success}"
update entrypoint and dockerfile, fix test workflow update dockerfile, rework entrypoint execution, update compose and test
2024-09-25 23:21:53 +01:00
basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
# The point of this loop is to make it simple, when running both forgejo-runner and gitea in docker,
# for the forgejo-runner to wait a moment for gitea to become available before erroring out. Within
# the context of a single docker-compose, something similar could be done via healthchecks, but
# this is more flexible.
while [[ $success -eq 0 ]] && [[ $try -lt ${MAX_REG_ATTEMPTS:-10} ]]; do
dont use root-user by default
2024-09-27 18:38:59 +01:00
if [[ ! -z "${FORGEJO_SECRET}" ]]; then
run_command "forgejo-runner create-runner-file --connect \
update entrypoint and dockerfile, fix test workflow update dockerfile, rework entrypoint execution, update compose and test
2024-09-25 23:21:53 +01:00
--instance \"${FORGEJO_URL:-http://forgejo:3000}\" \
--name \"${RUNNER_NAME:-$(hostname)}\" \
I guess it works now sorry for the unprofessional commit message, I have been working on this effectively non-stop since the previous commit, and have been fighting docker networking being inconsistent as well as filepermisson issues, end me
2024-09-27 03:00:54 +01:00
--secret \"${FORGEJO_SECRET}\" \
${CONFIG_ARG}\
${EXTRA_ARGS} 2>&1 | tee /tmp/reg.log"
dont use root-user by default
2024-09-27 18:38:59 +01:00
else
run_command "forgejo-runner register \
I guess it works now sorry for the unprofessional commit message, I have been working on this effectively non-stop since the previous commit, and have been fighting docker networking being inconsistent as well as filepermisson issues, end me
2024-09-27 03:00:54 +01:00
--instance \"${FORGEJO_URL:-http://forgejo:3000}\" \
--name \"${RUNNER_NAME:-$(hostname)}\" \
--token \"${RUNNER_TOKEN}\" \
--no-interactive \
${CONFIG_ARG}\
${EXTRA_ARGS} 2>&1 | tee /tmp/reg.log"
dont use root-user by default
2024-09-27 18:38:59 +01:00
fi
I guess it works now sorry for the unprofessional commit message, I have been working on this effectively non-stop since the previous commit, and have been fighting docker networking being inconsistent as well as filepermisson issues, end me
2024-09-27 03:00:54 +01:00
cat /tmp/reg.log | grep -E 'connection successful|registered successfully' >/dev/null
basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
if [[ $? -eq 0 ]]; then
echo "SUCCESS"
success=1
else
echo "Waiting to retry ..."
sleep 5
fi
remove rootless dockerfile, updatedate entrypoint, update docker compose Removed the rootless dockerfile as upon further investigation into how a `rootless` container works, the entrypoint that has been written fully accomodates that to reflect this the compose file has had the rootless config removed from it as it is no longer needed to test a seperate container image, added a debug echo function `decho` to the entrypoint, when `DEBUG=true` it will print "[entrypoint] message content" added a 10 second wait to the entrypoint to allow other services such as docker-in-docker and forgejo to finish launching before the runner is launched, this is bypassable by `SKIP_WAIT=true` applied several modifications requested by viceice,
2024-09-26 23:08:31 +01:00
decho "try: ${try}, success: ${success}"
basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
done
fi
add a root-user check, clean up some formatting
2024-09-25 21:34:18 +01:00
basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
# Prevent reading the token from the forgejo-runner process
unset RUNNER_TOKEN
remove rootless dockerfile, updatedate entrypoint, update docker compose Removed the rootless dockerfile as upon further investigation into how a `rootless` container works, the entrypoint that has been written fully accomodates that to reflect this the compose file has had the rootless config removed from it as it is no longer needed to test a seperate container image, added a debug echo function `decho` to the entrypoint, when `DEBUG=true` it will print "[entrypoint] message content" added a 10 second wait to the entrypoint to allow other services such as docker-in-docker and forgejo to finish launching before the runner is launched, this is bypassable by `SKIP_WAIT=true` applied several modifications requested by viceice,
2024-09-26 23:08:31 +01:00
unset FORGEJO_SECRET
basic entrypoint, automatic registration of runner works
2024-09-25 17:46:06 +01:00
update entrypoint and dockerfile, fix test workflow update dockerfile, rework entrypoint execution, update compose and test
2024-09-25 23:21:53 +01:00
run_command "forgejo-runner daemon ${CONFIG_ARG}"
Reference in a new issue Copy permalink