ryan/lunarfront-charts
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
116 Commits 1 Branch 0 Tags
main
Commit Graph

23 Commits

Author SHA1 Message Date
Ryan Moon
8d53a603b0 fix: run haproxy as root to bind port 443 2026-04-03 08:04:10 -05:00
Ryan Moon
46fda1f393 fix: add NET_BIND_SERVICE capability to haproxy for port 443 2026-04-03 08:02:14 -05:00
Ryan Moon
0d18d36d18 fix: increase haproxy memory limit to 128Mi 2026-04-03 08:01:16 -05:00
Ryan Moon
0737bf0e69 fix: add haproxy sidecar to prepend PROXY protocol for registry pushes 
Routes git.lunarfront.tech:443 through a local haproxy that adds the
PROXY protocol header nginx requires, bypassing the DO LB hairpin.
 2026-04-03 07:59:25 -05:00
Ryan Moon
56cb7ce6dc fix: auto-register runner if .runner file missing, store state in /data 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-03 07:32:18 -05:00
Ryan Moon
a6926c4b04 fix: use nc TCP check for dind readiness instead of docker info 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-03 07:30:01 -05:00
Ryan Moon
f82fc1252c fix: move dind wait into runner container command to fix init deadlock 2026-04-03 07:23:43 -05:00
Ryan Moon
a7facce892 fix: use Recreate strategy for single-replica RWO PVC workloads (gitea, runner) 2026-04-03 07:17:49 -05:00
Ryan Moon
2af2ceb91c feat: pin all system workloads to system node pool 2026-04-03 07:12:15 -05:00
Ryan Moon
bda73afa18 fix: add hostAliases for git.lunarfront.tech so dind can reach registry via nginx 2026-04-03 06:48:35 -05:00
Ryan Moon
705dab6e49 fix: add init container to wait for dind before starting runner 2026-04-03 06:37:57 -05:00
Ryan Moon
fd5be2805f fix: use internal Gitea service URL to avoid LB hairpin on gRPC 2026-04-03 06:36:39 -05:00
Ryan Moon
285ae3665c fix: route runner to nginx ClusterIP to avoid DO LB hairpin 2026-04-03 06:33:08 -05:00
Ryan Moon
e91187cb89 fix: revert to HTTPS for runner, removed git from WAF 2026-04-02 21:11:44 -05:00
Ryan Moon
f7a92e1237 fix: use internal cluster URL for runner to bypass Cloudflare WAF 2026-04-02 20:56:47 -05:00
Ryan Moon
d3e1b398c6 feat: rename git2/registry to git.lunarfront.tech 2026-04-02 20:43:00 -05:00
Ryan Moon
a938a3dcea fix: add PVC for runner state to persist registration across restarts 2026-04-02 19:57:07 -05:00
Ryan Moon
07dbdb5f39 fix: revert to plain act_runner:latest, let dind sidecar handle docker 2026-04-02 19:20:50 -05:00
Ryan Moon
17e0ffacea fix: use catthehacker docker images for runner labels (host mode lacks node) 2026-04-02 19:18:40 -05:00
Ryan Moon
2614b7adcf fix: use dind-rootless runner image for docker socket access 2026-04-02 19:16:54 -05:00
Ryan Moon
7ca7dacdaf fix: run CI jobs on host to avoid nested Docker container issues 2026-04-02 19:06:42 -05:00
Ryan Moon
9c209ee88b fix: add runner config to pass docker_host to job containers 2026-04-02 19:04:15 -05:00
Ryan Moon
89e5437876 feat: add Gitea runner deployment with dind and resource limits 2026-04-02 18:24:10 -05:00