deuill
/
coreos-home-server
mirror of https://github.com/deuill/coreos-home-server.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

gitea: Don't run Actions Runner as root

This commit is contained in:
Alex Palaistras 2024-04-05 18:24:54 +01:00
parent 4da644b634
commit 667fa7c76d
1 changed files with 6 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
service/gitea/container/run-gitea-actions
View File

@ -5,9 +5,13 @@ set -eu
# Initialize configuration for Gitea Actions.
envsubst < /etc/gitea/actions.yaml.template > /etc/gitea/actions.yaml
# Create data directories and correct permissions for data files.
chown -R git:git /var/lib/gitea-actions
chown root:git /run/podman-gitea-actions.sock
# Initialize token for Gitea Actions in shared volume.
if ! test -f /var/lib/gitea-actions/runner-global; then
/usr/bin/act_runner --config /etc/gitea/actions.yaml register \
gosu git /usr/bin/act_runner --config /etc/gitea/actions.yaml register \
--no-interactive \
--name "actions-global" \
--instance "https://${GITEA_DOMAIN}" \
@ -15,4 +19,4 @@ if ! test -f /var/lib/gitea-actions/runner-global; then
fi
# Run entrypoint under specific user.
exec /usr/bin/act_runner --config /etc/gitea/actions.yaml daemon "$@"
exec gosu git /usr/bin/act_runner --config /etc/gitea/actions.yaml daemon "$@"