generated from oci/template
start lxc work
This commit is contained in:
parent
192c36b866
commit
b0604254e7
2 changed files with 44 additions and 3 deletions
27
Dockerfile
27
Dockerfile
|
|
@ -1,8 +1,29 @@
|
|||
FROM code.forgejo.org/forgejo/runner:5
|
||||
FROM code.forgejo.org/forgejo/runner:5 AS runner
|
||||
FROM debian:bullseye
|
||||
|
||||
COPY --from=runner /bin/forgejo-runner /bin/forgejo-runner
|
||||
|
||||
USER root
|
||||
COPY ./entrypoint.sh /entrypoint.sh
|
||||
RUN chmod +x /entrypoint.sh
|
||||
|
||||
USER runner
|
||||
ENTRYPOINT [ "/entrypoint.sh" ]
|
||||
# Install required packages
|
||||
RUN apt-get update && \
|
||||
apt-get install -y sudo lxc lxc-templates uidmap && \
|
||||
apt-get clean
|
||||
|
||||
# Configure user and permissions
|
||||
RUN useradd -m runner && \
|
||||
echo "runner ALL=(ALL) NOPASSWD: ALL" > /etc/sudoers.d/runner && \
|
||||
chmod 0440 /etc/sudoers.d/runner && \
|
||||
mkdir /data && chown runner:runner /data
|
||||
|
||||
# Enable subuid and subgid for unprivileged containers
|
||||
RUN echo "runner:100000:65536" >> /etc/subuid && \
|
||||
echo "runner:100000:65536" >> /etc/subgid
|
||||
|
||||
VOLUME [ "/data" ]
|
||||
|
||||
WORKDIR /data
|
||||
|
||||
ENTRYPOINT [ "/entrypoint.sh" ]
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue