kimjunte/juntekim.com
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 13
juntekim.com/github_runner/install/install_arc.sh
Jun-te Kim 4f11b48eb8 added k8s
2025-12-06 20:16:08 +00:00

67 lines
2 KiB
Bash
Raw Blame History

#!/bin/bash
set -ex
# OPTIONAL: Enable MicroK8s features first
# sudo microk8s enable dns rbac hostpath-storage host-access
# sudo microk8s enable metrics-server
# OPTIONAL: Configure kubectl
# microk8s kubectl config view --raw > ~/.kube/config
# chmod 600 ~/.kube/config
# sudo usermod -aG microk8s $USER
# sudo chown -f -R $USER ~/.kube
# helm uninstall arc -n arc-systems || true
# echo "=== Install ARC Scale Set Controller ==="
# helm install arc \
# --namespace arc-systems \
# --create-namespace \
# oci://ghcr.io/actions/actions-runner-controller-charts/gha-runner-scale-set-controller
# helm uninstall mealcraft-runners -n arc-systems || true
# helm install mealcraft-runners \
# --namespace arc-systems \
# --create-namespace \
# --set runnerScaleSetName="mealcraft-runners" \
# --set githubConfigUrl="https://github.com/MealCraft" \
# --set githubConfigSecret.name="github-secret" \
# --set githubConfigSecret.github_token="$GITHUB_PAT" \
# --set containerMode.type="kubernetes" \
# --set containerMode.kubernetesModeDefaultContainer.image="ubuntu:22.04" \
# --set containerMode.kubernetesModeWorkVolumeClaim.accessModes[0]="ReadWriteOnce" \
# --set containerMode.kubernetesModeWorkVolumeClaim.storageClassName="microk8s-hostpath" \
# --set containerMode.kubernetesModeWorkVolumeClaim.resources.requests.storage="1Gi" \
# --set runnerLabels[0]="mealcraft" \
# oci://ghcr.io/actions/actions-runner-controller-charts/gha-runner-scale-set
echo "=== Applying RBAC for runner ==="
microk8s kubectl apply -f - <<'EOF'
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: arc-runner-readonly
rules:
- apiGroups: [""]
resources: ["pods"]
verbs: ["get", "list", "watch"]
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: arc-runner-readonly-binding
subjects:
- kind: ServiceAccount
name: default
namespace: arc-systems
roleRef:
kind: ClusterRole
name: arc-runner-readonly
apiGroup: rbac.authorization.k8s.io
EOF
echo "=== RBAC Applied Successfully ==="
Reference in a new issue View git blame Copy permalink