kimjunte/juntekim.com
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 13
juntekim.com/github_runner/install/install_arc.sh
Jun-te Kim cb5b325790 save
2025-12-06 21:31:51 +00:00

73 lines
2.1 KiB
Bash
Raw Blame History

#!/bin/bash
set -ex
# OPTIONAL: Enable MicroK8s features first
# sudo microk8s enable dns rbac hostpath-storage host-access
# sudo microk8s enable metrics-server
# OPTIONAL: Configure kubectl
# microk8s kubectl config view --raw > ~/.kube/config
# chmod 600 ~/.kube/config
# sudo usermod -aG microk8s $USER
# sudo chown -f -R $USER ~/.kube
helm uninstall arc -n arc-systems || true
echo "=== Install ARC Scale Set Controller ==="
helm install arc \
--namespace arc-systems \
--create-namespace \
oci://ghcr.io/actions/actions-runner-controller-charts/gha-runner-scale-set-controller
helm uninstall mealcraft-runners -n arc-systems || true
helm install mealcraft-runners \
--namespace arc-systems \
--create-namespace \
--set runnerScaleSetName="mealcraft-runners" \
--set githubConfigUrl="https://github.com/MealCraft" \
--set githubConfigSecret.name="github-secret" \
--set githubConfigSecret.github_token="$GITHUB_PAT" \
\
--set dockerInDockerEnabled=true \
\
--set containerMode.type="kubernetes" \
--set containerMode.kubernetesModeDefaultContainer.image="docker:24.0-dind" \
--set containerMode.kubernetesModeDefaultContainer.options="--privileged" \
\
--set containerMode.kubernetesModeWorkVolumeClaim.accessModes[0]="ReadWriteOnce" \
--set containerMode.kubernetesModeWorkVolumeClaim.storageClassName="microk8s-hostpath" \
--set containerMode.kubernetesModeWorkVolumeClaim.resources.requests.storage="20Gi" \
\
--set runnerLabels[0]="mealcraft" \
oci://ghcr.io/actions/actions-runner-controller-charts/gha-runner-scale-set
echo "=== Applying RBAC for runner ==="
microk8s kubectl apply -f - <<'EOF'
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRole
metadata:
name: arc-runner-readonly
rules:
- apiGroups: [""]
resources: ["pods"]
verbs: ["get", "list", "watch"]
---
apiVersion: rbac.authorization.k8s.io/v1
kind: ClusterRoleBinding
metadata:
name: arc-runner-readonly-binding
subjects:
- kind: ServiceAccount
name: default
namespace: arc-systems
roleRef:
kind: ClusterRole
name: arc-runner-readonly
apiGroup: rbac.authorization.k8s.io
EOF
echo "=== RBAC Applied Successfully ==="
Reference in a new issue View git blame Copy permalink