Merge pull request #1 from fullstack-devops/feature/init

working base

Author: eksrha

.github/dependabot.yml

@@ -0,0 +1,11 @@
+# To get started with Dependabot version updates, you'll need to specify which
+# package ecosystems to update and where the package manifests are located.
+# Please see the documentation for all configuration options:
+# https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates
+
+version: 2
+updates:
+  - package-ecosystem: "docker" # See documentation for possible values
+    directory: "/" # Location of package manifests
+    schedule:
+      interval: "daily"

.github/workflows/build-pr.yml

@@ -0,0 +1,38 @@
+name: Build PR
+
+on:
+  pull_request:
+
+jobs:
+  generate_infos:
+    uses: fullstack-devops/actions/.github/workflows/generate-build-infos.yml@main
+    secrets:
+      token: ${{ secrets.GITHUB_TOKEN }}
+
+  build:
+    runs-on: ubuntu-latest
+    needs: generate_infos
+    steps:
+      - name: Check out the repo
+        uses: actions/checkout@v2
+
+      - name: Login to GitHub Container Registry
+        uses: docker/login-action@v1
+        with:
+          registry: ghcr.io
+          username: ${{ github.repository_owner }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@v1
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v1
+
+      - name: Build github-runner-base
+        uses: docker/build-push-action@v2
+        with:
+          context: ./
+          push: false
+          tags: |
+            ghcr.io/${{ github.repository_owner }}/github-runner-base:latest
+            ghcr.io/${{ github.repository_owner }}/github-runner-base:${{needs.generate_infos.outputs.version}}

.github/workflows/create-release.yml

@@ -0,0 +1,44 @@
+name: Create Release
+
+concurrency:
+  group: ci-${{ github.repository }}-release
+  cancel-in-progress: false
+
+on:
+  push:
+    branches:
+      - "main"
+
+jobs:
+  create_release:
+    uses: fullstack-devops/actions/.github/workflows/create-release.yml@main
+    secrets:
+      token: ${{ secrets.GITHUB_TOKEN }}
+
+  build:
+    runs-on: ubuntu-latest
+    needs: create_release
+    steps:
+      - name: Check out the repo
+        uses: actions/checkout@v2
+
+      - name: Login to GitHub Container Registry
+        uses: docker/login-action@v1
+        with:
+          registry: ghcr.io
+          username: ${{ github.repository_owner }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@v1
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v1
+
+      - name: Build and push github-runner-base
+        uses: docker/build-push-action@v2
+        with:
+          context: ./
+          push: true
+          tags: |
+            ghcr.io/${{ github.repository_owner }}/github-runner-base:latest
+            ghcr.io/${{ github.repository_owner }}/github-runner-base:${{needs.create_release.outputs.version}}

Dockerfile

@@ -0,0 +1,62 @@
+FROM ubuntu:20.04
+
+COPY export-aarch-infos.sh /export-aarch-infos.sh
+RUN chmod +x /export-aarch-infos.sh
+
+ARG DEBIAN_FRONTEND=noninteractive
+
+ENV USERNAME="runner"
+ENV RUNNER_HOME="/home/${USERNAME}/runner"
+ENV GH_WORKDIR="/home/${USERNAME}"
+
+# https://github.com/actions/runner/releases
+ENV GH_RUNNER_VERSION=2.289.1
+ENV GH_RUNNER_LABELS=ubuntu-20.04
+
+ENV AWESOME_CI_VERSION 0.11.1
+
+# install packages along with jq so we can parse JSON
+# add additional packages as necessary
+ARG PACKAGES="libffi-dev libicu-dev build-essential libssl-dev ca-certificates jq sed grep git curl wget zip"
+
+RUN apt-get update \
+  && apt-get install -y ${PACKAGES} \
+  && rm -rf /var/lib/apt/lists/* \
+  && apt-get clean
+
+# install awesoeme ci
+RUN export ARCH=$(/export-aarch-infos.sh a-short)  \
+  && curl -L -O https://github.com/eksrvb/awesome-ci/releases/download/${AWESOME_CI_VERSION}/awesome-ci_${AWESOME_CI_VERSION}_${ARCH} \
+  && mv awesome-ci_${AWESOME_CI_VERSION}_${ARCH} /usr/local/src/awesome-ci_${AWESOME_CI_VERSION}_${ARCH} \
+  && chmod +x /usr/local/src/awesome-ci_${AWESOME_CI_VERSION}_${ARCH} \
+  && ln -s /usr/local/src/awesome-ci_${AWESOME_CI_VERSION}_${ARCH} /usr/local/bin/
+
+WORKDIR /home/${USERNAME}/runner
+
+# add a non-sudo user
+RUN useradd -m $USERNAME \
+  && usermod -aG sudo $USERNAME \
+  && chown -R $USERNAME /home/${USERNAME} \
+  && mkdir -p ${RUNNER_HOME}
+
+# Install github runner
+RUN export ARCH=$(/export-aarch-infos.sh x-short)  \
+  && curl -L -O https://github.com/actions/runner/releases/download/v${GH_RUNNER_VERSION}/actions-runner-linux-${ARCH}-${GH_RUNNER_VERSION}.tar.gz \
+  && tar -zxf actions-runner-linux-x64-${GH_RUNNER_VERSION}.tar.gz \
+  && rm -f actions-runner-linux-x64-${GH_RUNNER_VERSION}.tar.gz \
+  && ./bin/installdependencies.sh \
+  && cd ./bin \
+  && apt-get clean
+
+# copy over the start script
+COPY gh-entrypoint.sh /gh-entrypoint.sh
+# make the script executable
+RUN chmod +x /gh-entrypoint.sh
+
+RUN chown -R $USERNAME /home/${USERNAME}
+RUN chown -R $USERNAME /gh-entrypoint.sh
+
+# set the entrypoint to the entrypoint.sh script
+ENTRYPOINT ["/gh-entrypoint.sh"]
+
+USER $USERNAME

LICENSE

@@ -186,7 +186,7 @@
       same "printed page" as the copyright notice for easier
       identification within third-party archives.
 
-   Copyright [yyyy] [name of copyright owner]
+   Copyright [2022] [eksrha]
 
    Licensed under the Apache License, Version 2.0 (the "License");
    you may not use this file except in compliance with the License.

export-aarch-infos.sh

@@ -0,0 +1,31 @@
+#!/bin/bash
+# https://en.wikipedia.org/wiki/Uname#Examples
+
+transform_aarch() {
+    definition=$1
+    return_value="not-defined"
+    case "$(uname -i)" in
+        # AMD64 or x86-64 or x64
+        amd64|x86_64|x64)
+            case $definition in
+                x-long) return_value="x86-64";;
+                x-short) return_value="x64";;
+                a-long) return_value="amd64";;
+                a-short) return_value="amd64";;
+                *) return_value="not-defined";;
+            esac
+            ;;
+        x86)
+            case $definition in
+                x-long) return_value="x86";;
+                x-short) return_value="x86";;
+                a-long) return_value="amd32";;
+                a-short) return_value="amd";;
+                *) return_value="not-defined";;
+            esac
+            ;;
+    esac
+    echo -n "$return_value"
+}
+
+echo $(transform_aarch $1)

gh-entrypoint.sh

@@ -0,0 +1,70 @@
+#!/bin/bash
+
+if [ -z ${GH_ACCESS_TOKEN} ];
+then
+    echo "Environment variable 'GH_ACCESS_TOKEN' is not set"
+    exit 1
+fi
+
+if [ -z ${GH_URL} ];
+then
+    echo "Environment variable 'GH_URL' is not set"
+    echo "Using public github.com!"
+    GH_URL="https://github.com/"
+fi
+### Add trailing slash to GH_URL if needed
+last_char="${GH_URL: -1}"
+[[ $last_char != "/" ]] && GH_URL="$GH_URL/"; :
+
+if [ -z ${GH_API_URL} ];
+then
+    echo "Environment variable 'GH_API_URL' is not set"
+    echo "Using public github.com!"
+    GH_API_URL="https://api.github.com/"
+fi
+### Add trailing slash to GH_API_URL if needed
+last_char="${GH_API_URL: -1}"
+[[ $last_char != "/" ]] && GH_API_URL="$GH_API_URL/"; :
+
+ACCESS_TOKEN=$GH_ACCESS_TOKEN
+unset GH_ACCESS_TOKEN
+
+if [ -z ${GH_ORGANIZATION} ];
+then
+    echo "Environment variable 'GH_ORGANIZATION' is not set"
+    exit 1
+fi
+
+if [ -z ${RUNNER_HOME} ];
+then
+    echo "Environment variable 'RUNNER_HOME' is not set"
+    exit 1
+fi
+
+REG_TOKEN=$(curl -s -X POST -H "Accept: application/vnd.github.v3+json" -H "Authorization: token $ACCESS_TOKEN" ${GH_API_URL}orgs/${GH_ORGANIZATION}/actions/runners/registration-token | jq .token --raw-output)
+
+echo "Individual Runner Name: $HOSTNAME"
+echo "Runner Home: $RUNNER_HOME"
+
+${RUNNER_HOME}/config.sh \
+    --name ${HOSTNAME} \
+    --token ${REG_TOKEN} \
+    --work ${GH_WORKDIR} \
+    --url "${GH_URL}${GH_ORGANIZATION}" \
+    --labels ${GH_RUNNER_LABELS} \
+    --unattended \
+    --replace
+echo "Runner configured"
+
+cleanup() {
+    echo "Removing runner..."
+    REG_TOKEN=$(curl -s -X POST -H "Accept: application/vnd.github.v3+json" -H "Authorization: token ${ACCESS_TOKEN}" ${GH_API_URL}orgs/${GH_ORGANIZATION}/actions/runners/registration-token | jq .token --raw-output)
+    ${RUNNER_HOME}/config.sh remove --token ${REG_TOKEN}
+    exit 1
+}
+
+trap cleanup 0
+${RUNNER_HOME}/run.sh & 
+
+echo $! > /tmp/runner_pid
+wait $!