ADD: update Nextcloud and Gitea configurations for domain and Docker settings; enhance Homarr deployment with resource limits and OIDC authentication

Co-authored-by: Copilot <copilot@github.com>
2026-04-25 14:13:07 +02:00
parent 39079615f5
commit 1125b8b072
4 changed files with 44 additions and 5 deletions
@@ -37,20 +37,28 @@ spec:
            - name: GITEA_RUNNER_NAME
              value: "k3s-runner-1"
            - name: GITEA_RUNNER_LABELS
-              value: "linux-x64:host,ubuntu-latest:docker://node:20-bookworm,alpine:docker://alpine:3.20"
+              value: "linux-x64:host,ubuntu-latest:docker://catthehacker/ubuntu:act-latest,ubuntu-22.04:docker://catthehacker/ubuntu:act-22.04,alpine:docker://alpine:3.20"
            - name: GITEA_RUNNER_REGISTRATION_TOKEN
              valueFrom:
                secretKeyRef:
                  name: gitea-runner-secret
                  key: GITEA_RUNNER_REGISTRATION_TOKEN
            - name: DOCKER_HOST
-              value: "tcp://localhost:2375"
+              value: "unix:///var/run/docker.sock"
          command:
            - /bin/sh
            - -c
          args:
            - |
              set -e
+              until [ -S /var/run/docker.sock ]; do
+                echo "Waiting for Docker socket..."
+                sleep 2
+              done
+              if [ -f /data/.runner_labels ] && [ "$(cat /data/.runner_labels)" != "${GITEA_RUNNER_LABELS}" ]; then
+                rm -f /data/.runner
+              fi
+              printf '%s' "${GITEA_RUNNER_LABELS}" > /data/.runner_labels
              if [ ! -f /data/.runner ]; then
                act_runner register \
                  --no-interactive \
@@ -63,20 +71,28 @@ spec:
          volumeMounts:
            - name: runner-data
              mountPath: /data
+            - name: docker-run
+              mountPath: /var/run
        - name: dind
          image: docker:27-dind
          imagePullPolicy: IfNotPresent
          securityContext:
            privileged: true
+          args:
+            - --insecure-registry=gitea.gitea.svc.cluster.local
          env:
            - name: DOCKER_TLS_CERTDIR
              value: ""
          volumeMounts:
            - name: docker-lib
              mountPath: /var/lib/docker
+            - name: docker-run
+              mountPath: /var/run
      volumes:
        - name: runner-data
          persistentVolumeClaim:
            claimName: gitea-runner-data
        - name: docker-lib
          emptyDir: {}
+        - name: docker-run
+          emptyDir: {}