kb/ssh
0
0
Fork 0
Code Issues Pull Requests Actions Projects Releases Wiki Activity

feature/new-oci-deployment #2

Merged
marcio.fernandes merged 30 commits from feature/new-oci-deployment into main 2026-05-03 01:17:48 +00:00
Conversation 0 Commits 30 Files Changed 5
+159 -4
3 changed files with 159 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files
Showing only changes of commit 3b8f043d5b - Show all commits
.gitea/actions/buildkit-build-push-dev/action.yaml
+87
View File
@@ -0,0 +1,87 @@
name: BuildKit Build and push - dev
description: "Build and push images using remote Buildkit"
inputs:
registry_addr:
description: registry address
required: true
registry_username:
description: "registry username"
required: true
registry_password:
description: "registry password"
required: true
buildkit_addr:
description: "buildkit address"
required: true
tags:
description: "image tags / buildctl image name"
required: true
context:
description: "buildctl build context"
required: false
default: "."
dockerfile:
description: "buildctl build dockerfile/folder"
required: true
default: "."
filename:
description: "Docker file name (Default: Dockerfile)"
required: true
default: "Dockerfile"
build_args:
description: "Build arguments (multiline KEY=VALUE)"
required: false
default: ""
runs:
using: "composite"
steps:
- name: run buildctl build and push
shell: bash
run: |
###############################################
# Create DOCKER_CONFIG for this pipeline
###############################################
DOCKER_CONFIG_DIR="${RUNNER_TEMP}/.buildctl_docker"
mkdir -p "$DOCKER_CONFIG_DIR"
trap 'rm -rf "$DOCKER_CONFIG_DIR"' EXIT
AUTH=$(printf "%s:%s" "${{ inputs.registry_username }}" "${{ inputs.registry_password }}" | base64 -w0)
cat > "$DOCKER_CONFIG_DIR/config.json" <<EOF
{
"auths": {
"${{ inputs.registry_addr }}": {
"auth": "$AUTH"
}
}
}
EOF
###############################################
# Build args
###############################################
BUILD_ARG_FLAGS=""
while IFS= read -r line; do
[[ -z "$line" ]] && continue
BUILD_ARG_FLAGS="$BUILD_ARG_FLAGS --opt build-arg:${line}"
done <<< "${{ inputs.build_args }}"
echo "Using build args: $BUILD_ARG_FLAGS"
###############################################
# Build + push using BuildKit REMOTE + SECRET
###############################################
buildctl \
--addr tcp://${{ inputs.buildkit_addr }} \
build \
--frontend=dockerfile.v0 \
--local context=${{ inputs.context }} \
--local dockerfile=${{ inputs.dockerfile }} \
--opt filename=${{ inputs.filename }} \
$BUILD_ARG_FLAGS \
--secret id=harbor,src=$DOCKER_CONFIG_DIR/config.json \
--output type=image,name=${{ inputs.tags }},push=true
.gitea/workflows/ssh-client-build-deploy.yaml
+4 -4
View File
@@ -24,12 +24,12 @@ jobs:
curl -fsSL https://git.limbosolutions.com/kb/gitea/raw/branch/main/cloud-scripts/setup-limbo-actions.sh | bash 2>&1 curl -fsSL https://git.limbosolutions.com/kb/gitea/raw/branch/main/cloud-scripts/setup-limbo-actions.sh | bash 2>&1
- name: Build and push ssh-client container images - name: Build and push ssh-client container images
uses: ./.gitea/limbo_actions/buildkit-build-push uses: ./.gitea/actions/buildkit-build-push-dev
with: with:
tags: git.limbosolutions.com/kb/ssh-client tags: git.limbosolutions.com/kb/ssh-client
registry_addr: ${{ vars.GITLIMBO_DOCKER_REGISTRY_ADDRESS }} registry_addr: ${{ vars.OCI_LIMBO_REGISTRY_ADDRESS }}
registry_username: ${{ secrets.GITLIMBO_DOCKER_REGISTRY_USERNAME }} registry_username: ${{ secrets.OCI_LIMBO_REGISTRY_USERNAME }}
registry_password: ${{ secrets.GITLIMBO_DOCKER_REGISTRY_PASSWORD }} registry_password: ${{ secrets.OCI_LIMBO_REGISTRY_PASSWORD }}
buildkit_addr: ${{ vars.BUILDKIT_ADDRESS }} buildkit_addr: ${{ vars.BUILDKIT_ADDRESS }}
dockerfile: ${{gitea.workspace}}/docker/ssh-client dockerfile: ${{gitea.workspace}}/docker/ssh-client
context: ${{gitea.workspace}}/docker/ssh-client context: ${{gitea.workspace}}/docker/ssh-client
fatboy-debian/Dockerfile
+68
View File
@@ -0,0 +1,68 @@
FROM ubuntu:22.04
ENV DEBIAN_FRONTEND=noninteractive
# ---------------------------------------------------------
# Base dependencies
# ---------------------------------------------------------
RUN apt-get update && apt-get install -y \
tini \
curl \
wget \
jq \
bash \
tar \
rsync \
rclone \
ansible \
openssh-client \
iptables \
uidmap \
slirp4netns \
fuse-overlayfs \
ca-certificates \
&& rm -rf /var/lib/apt/lists/*
# ---------------------------------------------------------
# Install ACT Runner
# ---------------------------------------------------------
RUN curl -L https://dl.gitea.com/act_runner/0.6.0/act_runner-0.6.0-linux-amd64 \
-o /usr/local/bin/act_runner && \
chmod +x /usr/local/bin/act_runner
# ---------------------------------------------------------
# Install kubectl
# ---------------------------------------------------------
RUN curl -LO "https://storage.googleapis.com/kubernetes-release/release/$(curl -s https://storage.googleapis.com/kubernetes-release/release/stable.txt)/bin/linux/amd64/kubectl" && \
chmod +x kubectl && mv kubectl /usr/local/bin/
# ---------------------------------------------------------
# Install Helm
# ---------------------------------------------------------
RUN HELM_VERSION=$(curl -s https://api.github.com/repos/helm/helm/releases/latest | jq -r .tag_name) && \
curl -fsSL https://get.helm.sh/helm-${HELM_VERSION}-linux-amd64.tar.gz -o helm.tar.gz && \
tar -zxvf helm.tar.gz && \
mv linux-amd64/helm /usr/local/bin/helm && \
rm -rf linux-amd64 helm.tar.gz
# ---------------------------------------------------------
# Install BuildKit (buildkitd + buildctl)
# ---------------------------------------------------------
ENV BUILDKIT_VERSION=v0.28.0
RUN curl -L "https://github.com/moby/buildkit/releases/download/${BUILDKIT_VERSION}/buildkit-${BUILDKIT_VERSION}.linux-amd64.tar.gz" \
| tar -xz -C /usr/local/bin --strip-components=1
# ---------------------------------------------------------
# Install rootlesskit (required for BuildKit rootless)
# ---------------------------------------------------------
RUN curl -L https://github.com/rootless-containers/rootlesskit/releases/download/v1.1.1/rootlesskit-x86_64.tar.gz \
| tar -xz -C /usr/local/bin
# ---------------------------------------------------------
# Default entrypoint
# ---------------------------------------------------------
WORKDIR /data
ENTRYPOINT ["/usr/bin/tini", "--", "/usr/local/bin/act_runner"]
CMD ["daemon", "--config", "/etc/act_runner/config.yaml"]