init commit

Author: extrawurst

.github/FUNDING.yml

@@ -0,0 +1 @@
+github: rustunit

.github/workflows/cd.yml

@@ -0,0 +1,31 @@
+name: cd
+
+on:
+  push:
+    branches: ["main"]
+  pull_request:
+
+jobs:
+  build_runner:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+      attestations: write
+    steps:
+      - uses: actions/checkout@v4
+      - name: Log in to the Container registry
+        uses: docker/login-action@v3
+        with:
+          registry: ghcr.io
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+      - uses: extractions/setup-just@v1
+      - name: Docker build
+        run: |
+          cd runner
+          just build
+      - name: Docker Push
+        run: |
+          cd runner
+          just push

README.md

@@ -1,2 +1,13 @@
 # github-runner
 Our custom docker image used for self hosted gh runners
+
+It requires you to have setup a github PAT with these scopes:
+* `repo`
+* `admin:org`
+
+This runner is build to be used on an organizational level, you need to provide these two `env` vars:
+
+```
+$ORGANIZATION
+$ACCESS_TOKEN
+```

dockerfile

@@ -0,0 +1,32 @@
+FROM ghcr.io/actions/actions-runner:2.320.0
+
+USER root
+
+# Update and upgrade the system
+RUN apt-get update -y && apt-get upgrade -y
+
+# Install necessary packages
+RUN apt-get install -y --no-install-recommends \
+    curl \
+    wget \
+    build-essential \
+    libssl-dev \
+    libffi-dev \
+    jq \
+    sudo \
+    libasound2-dev \
+    libudev-dev \
+    unzip \
+    pkg-config \
+    apt-transport-https \
+    ca-certificates && \
+    rm -rf /var/lib/apt/lists/*
+
+# Copy the start script and make it executable
+COPY start.sh /start.sh
+RUN chmod +x /start.sh
+
+USER runner 
+
+# Define the entrypoint
+ENTRYPOINT ["/start.sh"]

justfile

@@ -0,0 +1,11 @@
+
+IMAGE_NAME:="ghcr.io/rustunit/github-runner"
+IMAGE_TAG:="0.1.0"
+
+build:
+    docker build -t {{IMAGE_NAME}}:latest .
+    docker build -t {{IMAGE_NAME}}:{{IMAGE_TAG}} .
+
+push:
+    docker push {{IMAGE_NAME}}
+    docker push {{IMAGE_NAME}}:{{IMAGE_TAG}}

start.sh

@@ -0,0 +1,26 @@
+#!/bin/bash
+
+ORGANIZATION=$ORGANIZATION
+ACCESS_TOKEN=$ACCESS_TOKEN
+
+echo "Get Reg-Token for ${ORGANIZATION} and '${ORGANIZATION}'"
+
+REG_TOKEN=$(curl -sX POST -H "Authorization: token ${ACCESS_TOKEN}" https://api.github.com/orgs/${ORGANIZATION}/actions/runners/registration-token | jq .token --raw-output)
+
+cd /home/docker/actions-runner
+
+echo "Config..."
+
+./config.sh --url https://github.com/${ORGANIZATION} --token ${REG_TOKEN}
+
+cleanup() {
+    echo "Removing runner..."
+    ./config.sh remove --unattended --token ${REG_TOKEN}
+}
+
+trap 'cleanup; exit 130' INT
+trap 'cleanup; exit 143' TERM
+
+echo "Run..."
+
+./run.sh & wait $!