Add instructions for macOS. #70
@ -25,3 +25,8 @@ GITEA__log__LEVEL=TRACE
|
|||||||
```
|
```
|
||||||
to the `server` definition in `docker-compose.yml` and re-start.
|
to the `server` definition in `docker-compose.yml` and re-start.
|
||||||
Details on how to setup remote debugging of the gitea server inside its container can be found [here](gitea-debugging.md).
|
Details on how to setup remote debugging of the gitea server inside its container can be found [here](gitea-debugging.md).
|
||||||
|
|
||||||
|
#### Action Runners
|
||||||
|
|
||||||
|
A Dockerized action runner is deployed by default for the labels `ubuntu-latest` and `ubuntu-22.04`. Details on deploying
|
||||||
|
additional runners can be found [here](act-runner.md).
|
||||||
|
66
gitea/act-runner.md
Normal file
66
gitea/act-runner.md
Normal file
@ -0,0 +1,66 @@
|
|||||||
|
## Deploying Action Runners
|
||||||
|
|
||||||
|
### Releases
|
||||||
|
Gitea publishes binary releases of [gitea/act_runner](https://gitea.com/gitea/act_runner/releases) for many platform and architectures, which can be used to deploy new action runners simply.
|
||||||
|
|
||||||
|
The following example uses `gitea/act_runner` 0.2.6 to deploy a runner on macOS Ventura 13.3 x64.
|
||||||
|
|
||||||
|
### Registration Token
|
||||||
|
|
||||||
|
> Note: Runners can be registered globally for an entire Gitea instance, for a specific organization, or for a single repo. This example registers globally.
|
||||||
|
|
||||||
|
Before executing the runner, first obtain a registration token by visiting http://gitea.local:3000/admin/actions/runners, clicking the 'Create new Runner' button, and copying the displayed
|
||||||
|
registration token, for example, `FTyMBkcK9ErmD0wm8LfBzfXOUUlQA7dBJF6BB64Z`.
|
||||||
|
|
||||||
|
### Runner Registration and Startup
|
||||||
|
|
||||||
|
After you have obtained a registration token, download the `gitea/act_runner` release matching your platform and architecture and run it as follows:
|
||||||
|
|
||||||
|
```
|
||||||
|
# Download latest gitea/act_runner release for your platform.
|
||||||
|
$ wget https://gitea.com/gitea/act_runner/releases/download/latest/act_runner-0.2.6-darwin-amd64 && chmod a+x act_runner-0.2.6-darwin-amd64
|
||||||
|
|
||||||
|
# Register the runner with the Gitea instance using the token obtained above.
|
||||||
|
$ ./act_runner-0.2.6-darwin-amd64 register \
|
||||||
|
--instance http://gitea.local:3000 \
|
||||||
|
--labels 'darwin-latest-amd64:host,darwin-13-amd64:host' \
|
||||||
|
--name 'darwin-amd64-001' \
|
||||||
|
--token "FTyMBkcK9ErmD0wm8LfBzfXOUUlQA7dBJF6BB64Z" \
|
||||||
|
--no-interactive
|
||||||
|
|
||||||
|
# Launch it in daemon mode, waiting for jobs.
|
||||||
|
$ ./act_runner-0.2.6-darwin-amd64 daemon
|
||||||
|
```
|
||||||
|
|
||||||
|
### Labels
|
||||||
|
|
||||||
|
The most important detail in this example is the label. For the Ubuntu runner which is deployed automatically with this project, the label `ubuntu-latest:docker://cerc/act-runner-task-executor:local` is
|
||||||
|
used, which instructs `gitea/act_runner` that a task which `runs-on: ubuntu-latest` should be executed inside an instance of the `cerc/act-runner-task-executor:local` Docker container. In this example, the label is `darwin-latest-amd64:host`. This means that a task which `runs-on: darwin-latest-amd64` will be executed natively on the host machine. Since there are additional security implications when executing tasks
|
||||||
|
on the host, only trusted repositories with strict access controls should be allowed to schedule CI jobs on the runner.
|
||||||
|
|
||||||
|
### Example Workflow
|
||||||
|
|
||||||
|
This very simple workflow will schedule jobs on both macOS (`darwin-latest-amd64`) and Linux (`ubuntu-latest`) runners.
|
||||||
|
|
||||||
|
```
|
||||||
|
name: macOS test
|
||||||
|
|
||||||
|
on:
|
||||||
|
push:
|
||||||
|
branches:
|
||||||
|
- main
|
||||||
|
|
||||||
|
jobs:
|
||||||
|
test-macos:
|
||||||
|
name: "Run on macOS"
|
||||||
|
runs-on: darwin-latest-amd64
|
||||||
|
steps:
|
||||||
|
- name: "uname"
|
||||||
|
run: uname -a
|
||||||
|
test-linux:
|
||||||
|
name: "Run on Ubuntu"
|
||||||
|
runs-on: ubuntu-latest
|
||||||
|
steps:
|
||||||
|
- name: "uname"
|
||||||
|
run: uname -a
|
||||||
|
```
|
@ -6,9 +6,10 @@ if [[ -n "$CERC_SCRIPT_DEBUG" ]]; then
|
|||||||
set -x
|
set -x
|
||||||
fi
|
fi
|
||||||
|
|
||||||
# See: https://stackoverflow.com/a/74449556
|
|
||||||
secure_password() {
|
secure_password() {
|
||||||
cat /dev/urandom | tr -dc A-Za-z0-9~_- | head -c 10 && echo
|
# use openssl as the source, because it behaves similarly on both linux and macos
|
||||||
|
# we generate extra bytes so that even if tr deletes some chars we will still have plenty
|
||||||
|
openssl rand -base64 32 | tr -d '\/+=' | head -c 10 && echo
|
||||||
telackey marked this conversation as resolved
Outdated
|
|||||||
}
|
}
|
||||||
|
|
||||||
GITEA_USER=${CERC_GITEA_NEW_ADMIN_USERNAME:-"gitea_admin"}
|
GITEA_USER=${CERC_GITEA_NEW_ADMIN_USERNAME:-"gitea_admin"}
|
||||||
|
Loading…
Reference in New Issue
Block a user
Should also change the comment in line 9 since it no longer pertains?
(but probably this change should be in a separate PR?)
Done
Was the change necessary because macos doesn't have
/dev/urandom
?No, it has /dev/urandom, but
tr
is not able to consume it without explicitly settingLC_CTYPE=C
, otherwise it complains about invalid input. Once you get past that hurdle, the options do not behave the same way, and '-dc' ends up selecting the complement of the set rather than deleting it, so you end up with only unprintable characters.Might be worthwhile adding a comment saying openssl used because it's available and works on both macos and Linux?
Added