https://gitlab.com/gitlab-org/charts/gitlab-runner/blob/main/values.yaml
https://gitlab.com/gitlab-org/gitlab-runner/-/issues/3967
https://artifacthub.io/packages/helm/gitlab/gitlab-runner
helm 升级安装
gitlab-runner-rbac.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
|
apiVersion: v1
kind: ServiceAccount
metadata:
name: gitlab-runner
namespace: vesystem-dev
---
kind: Role
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: gitlab-runner
namespace: vesystem-dev
rules:
- apiGroups: [""]
resources: ["*"]
verbs: ["*"]
---
kind: RoleBinding
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: gitlab-runner
namespace: vesystem-dev
subjects:
- kind: ServiceAccount
name: gitlab-runner
namespace: vesystem-dev
roleRef:
kind: Role
name: gitlab-runner
apiGroup: rbac.authorization.k8s.io
|
1
2
3
4
5
6
7
8
9
|
kubectl create secret docker-registry secret-docker-harbor \
--namespace vesystem-dev \
--docker-server="https://harbor.alayou.xyz" \
--docker-username="robot_gitlab-runner" \
--docker-password="e3Q7EkwcRBGDlg0Mjc3rP6nazVk7ElLp"
kubectl delete secret secret-docker-harbor --namespace vesystem-dev
|
gitlab-runner-values.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
|
imagePullPolicy: IfNotPresent
imagePullSecrets:
- name: "secret-docker-harbor"
replicas: 3
gitlabUrl: http://192.168.51.40/
runnerRegistrationToken: "cz-V4yecnnUQzYg4x_VU"
terminationGracePeriodSeconds: 3600
concurrent: 10
checkInterval: 30
sessionServer:
enabled: false
rbac:
create: false
rules: []
serviceAccountName: gitlab-runner
clusterWideAccess: false
podSecurityPolicy:
enabled: false
resourceNames:
- gitlab-runner
metrics:
enabled: true
portName: metrics
port: 9252
serviceMonitor:
enabled: false
service:
enabled: false
type: ClusterIP
runners:
tags: dev-k8s,vesystem-dev
config: |
[[runners]]
[runners.kubernetes]
namespace = "{{.Release.Namespace}}"
image = "ubuntu:16.04"
imagePullSecrets: ["secret-docker-harbor"]
serviceAccountName: gitlab-runner
|
1
|
helm upgrade --namespace=vesystem-dev gitlab-runner -f gitlab-runner-values.yaml gitlab/gitlab-runner
|
1
|
helm upgrade --namespace=vesystem-dev gitlab-runner --set gitlabUrl=http://192.168.51.40,runnerRegistrationToken=cz-V4yecnnUQzYg4x_VU,tags=dev-k8s --set envVars[0].name=RUNNER_TAG_LIST,envVars[0].value=dev-k8s --set rbac.serviceAccountName=gitlab-runner --set runners.imagePullSecrets[0]="secret-docker-harbor" gitlab/gitlab-runner
|