mirror of
https://github.com/deuill/coreos-home-server.git
synced 2024-06-03 01:25:31 +00:00
Don't use PrivateTmp
for Gitea Actions container
The `PrivateTmp` directive causes issues for network namespacing in containers, and can be avoided by simply creating a separate folder.
This commit is contained in:
parent
bd901a757e
commit
1a02ddf0b3
|
@ -10,12 +10,12 @@ EnvironmentFile=%E/coreos-home-server/gitea/gitea.env
|
||||||
Image=localhost/gitea:latest
|
Image=localhost/gitea:latest
|
||||||
PodmanArgs=--security-opt label=disable --entrypoint /run-gitea-actions
|
PodmanArgs=--security-opt label=disable --entrypoint /run-gitea-actions
|
||||||
Volume=%N:/var/lib/%N:z
|
Volume=%N:/var/lib/%N:z
|
||||||
Volume=/tmp/runner-token:/etc/gitea/runner-token
|
Volume=/tmp/gitea/actions/runner-token:/etc/gitea/runner-token
|
||||||
Volume=/run/gitea-actions/podman.sock:/run/gitea-actions/podman.sock
|
Volume=/run/gitea-actions/podman.sock:/run/gitea-actions/podman.sock
|
||||||
|
|
||||||
[Service]
|
[Service]
|
||||||
ExecStartPre=/bin/bash -c 'podman exec gitea gosu git /usr/bin/gitea -c /etc/gitea/config.ini actions generate-runner-token > /tmp/runner-token'
|
ExecStartPre=/bin/install --mode 0700 -d /tmp/gitea-actions
|
||||||
PrivateTmp=true
|
ExecStartPre=/bin/bash -c 'podman exec gitea gosu git /usr/bin/gitea -c /etc/gitea/config.ini actions generate-runner-token > /tmp/gitea-actions/runner-token'
|
||||||
Restart=on-failure
|
Restart=on-failure
|
||||||
|
|
||||||
[Install]
|
[Install]
|
||||||
|
|
Loading…
Reference in New Issue
Block a user