Home Explore Help
Register Sign In
root
/
apps
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
apps
/
ix-dev
/
community
/
woodpecker-ci
/
templates
/
docker-compose.yaml

docker-compose.yaml 7.0 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118 
  1. {% set tpl = ix_lib.base.render.Render(values) %}
    2. 

  2. 

  3. {% set perm_container = tpl.deps.perms(values.consts.perms_container_name) %}
    4. 

  4. {% set server = tpl.add_container(values.consts.server_container_name, "image") %}
    5. 

  5. {% set agent = tpl.add_container(values.consts.agent_container_name, "agent_image") %}
    6. 

  6. {% set perms_config = {"uid": values.run_as.user, "gid": values.run_as.group, "mode": "check"} %}
    7. 

  7. 

  8. {% set pg_config = {
    9. 

  9.   "user": values.consts.db_user,
    10. 

  10.   "password": values.woodpecker.db_password,
    11. 

  11.   "database": values.consts.db_name,
    12. 

  12.   "volume": values.storage.postgres_data,
    13. 

  13. } %}
    14. 

  14. {% set postgres = tpl.deps.postgres(
    15. 

  15.   values.consts.postgres_container_name,
    16. 

  16.   values.woodpecker.postgres_image_selector,
    17. 

  17.   pg_config, perm_container
    18. 

  18. ) %}
    19. 

  19. 

  20. {# Agent #}
    21. 

  21. {% set agent_labels = namespace(x=[]) %}
    22. 

  22. {% for label in values.woodpecker.agent.labels %}
    23. 

  23.   {% do agent_labels.x.append("%s=%s" | format(label.key, label.value)) %}
    24. 

  24. {% endfor %}
    25. 

  25. 

  26. {% do agent.set_user(values.run_as.user, values.run_as.group) %}
    27. 

  27. {% do agent.depends.add_dependency(values.consts.server_container_name, "service_healthy") %}
    28. 

  28. {% do agent.healthcheck.set_custom_test(["CMD", "/bin/woodpecker-agent", "ping"]) %}
    29. 

  29. 

  30. {# Github Actions Docker Group #}
    31. 

  31. {% if values.ci %}{% do agent.add_group(118) %}{% endif %}
    32. 

  32. 

  33. {% do agent.environment.add_env("WOODPECKER_SERVER", "%s:%d" | format(values.consts.server_container_name, values.network.grpc_port.port_number)) %}
    34. 

  34. {% do agent.environment.add_env("WOODPECKER_BACKEND", "docker") %}
    35. 

  35. {% do agent.environment.add_env("WOODPECKER_GRPC_SECURE", false) %}
    36. 

  36. {% do agent.environment.add_env("WOODPECKER_HEALTHCHECK", true) %}
    37. 

  37. {% do agent.environment.add_env("WOODPECKER_HEALTHCHECK_ADDR", ":%d" | format(values.consts.agent_health_check_port)) %}
    38. 

  38. {% do agent.environment.add_env("WOODPECKER_AGENT_SECRET", values.woodpecker.agent_secret) %}
    39. 

  39. {% do agent.environment.add_env("WOODPECKER_MAX_WORKFLOWS", values.woodpecker.agent.max_workflows) %}
    40. 

  40. {% do agent.environment.add_env("WOODPECKER_AGENT_LABELS", agent_labels.x|join(",")) %}
    41. 

  41. {% do agent.environment.add_user_envs(values.woodpecker.agent_additional_envs) %}
    42. 

  42. 

  43. {% do agent.add_storage("/etc/woodpecker", values.storage.agent_config) %}
    44. 

  44. {% do perm_container.add_or_skip_action("agent_config", values.storage.agent_config, perms_config) %}
    45. 

  45. {% do agent.add_docker_socket(read_only=false) %}
    46. 

  46. 

  47. {# Server #}
    48. 

  48. {% do server.set_user(values.run_as.user, values.run_as.group) %}
    49. 

  49. {% do server.depends.add_dependency(values.consts.postgres_container_name, "service_healthy") %}
    50. 

  50. {% do server.healthcheck.set_custom_test(["CMD", "/bin/woodpecker-server", "ping"]) %}
    51. 

  51. 

  52. {% do server.environment.add_env("WOODPECKER_OPEN", values.woodpecker.allow_registration) %}
    53. 

  53. {% if values.woodpecker.forge.type == "github" %}
    54. 

  54.   {% do server.environment.add_env("WOODPECKER_GITHUB", true) %}
    55. 

  55.   {% do server.environment.add_env("WOODPECKER_GITHUB_CLIENT", values.woodpecker.forge.github.client_id) %}
    56. 

  56.   {% do server.environment.add_env("WOODPECKER_GITHUB_SECRET", values.woodpecker.forge.github.client_secret) %}
    57. 

  57. {% elif values.woodpecker.forge.type == "gitea" %}
    58. 

  58.   {% do server.environment.add_env("WOODPECKER_GITEA", true) %}
    59. 

  59.   {% do server.environment.add_env("WOODPECKER_GITEA_URL", values.woodpecker.forge.gitea.url) %}
    60. 

  60.   {% do server.environment.add_env("WOODPECKER_GITEA_CLIENT", values.woodpecker.forge.gitea.client_id) %}
    61. 

  61.   {% do server.environment.add_env("WOODPECKER_GITEA_SECRET", values.woodpecker.forge.gitea.client_secret) %}
    62. 

  62.   {% do server.environment.add_env("WOODPECKER_GITEA_SKIP_VERIFY", values.woodpecker.forge.gitea.skip_tls_verify) %}
    63. 

  63. {% elif values.woodpecker.forge.type == "forgejo" %}
    64. 

  64.   {% do server.environment.add_env("WOODPECKER_FORGEJO", true) %}
    65. 

  65.   {% do server.environment.add_env("WOODPECKER_FORGEJO_URL", values.woodpecker.forge.forgejo.url or "https://next.forgejo.org") %}
    66. 

  66.   {% do server.environment.add_env("WOODPECKER_FORGEJO_CLIENT", values.woodpecker.forge.forgejo.client_id) %}
    67. 

  67.   {% do server.environment.add_env("WOODPECKER_FORGEJO_SECRET", values.woodpecker.forge.forgejo.client_secret) %}
    68. 

  68.   {% do server.environment.add_env("WOODPECKER_FORGEJO_SKIP_VERIFY", values.woodpecker.forge.forgejo.skip_tls_verify) %}
    69. 

  69. {% elif values.woodpecker.forge.type == "bitbucket" %}
    70. 

  70.   {% do server.environment.add_env("WOODPECKER_BITBUCKET", true) %}
    71. 

  71.   {% do server.environment.add_env("WOODPECKER_BITBUCKET_CLIENT", values.woodpecker.forge.bitbucket.client_id) %}
    72. 

  72.   {% do server.environment.add_env("WOODPECKER_BITBUCKET_SECRET", values.woodpecker.forge.bitbucket.client_secret) %}
    73. 

  73. {% elif values.woodpecker.forge.type == "gitlab" %}
    74. 

  74.   {% do server.environment.add_env("WOODPECKER_GITLAB", true) %}
    75. 

  75.   {% do server.environment.add_env("WOODPECKER_GITLAB_URL", values.woodpecker.forge.gitlab.url or "https://gitlab.com") %}
    76. 

  76.   {% do server.environment.add_env("WOODPECKER_GITLAB_CLIENT", values.woodpecker.forge.gitlab.client_id) %}
    77. 

  77.   {% do server.environment.add_env("WOODPECKER_GITLAB_SECRET", values.woodpecker.forge.gitlab.client_secret) %}
    78. 

  78.   {% do server.environment.add_env("WOODPECKER_GITLAB_SKIP_VERIFY", values.woodpecker.forge.gitlab.skip_tls_verify) %}
    79. 

  79. {% endif %}
    80. 

  80. 

  81. {% do server.environment.add_env("WOODPECKER_HOST", values.woodpecker.external_url) %}
    82. 

  82. {% do server.environment.add_env("WOODPECKER_SERVER_ADDR", ":%d" | format(values.network.http_port.port_number)) %}
    83. 

  83. {% do server.environment.add_env("WOODPECKER_GRPC_ADDR", ":%d" | format(values.network.grpc_port.port_number)) %}
    84. 

  84. {% do server.environment.add_env("WOODPECKER_AGENT_SECRET", values.woodpecker.agent_secret) %}
    85. 

  85. {% do server.environment.add_env("WOODPECKER_DATABASE_DRIVER", "postgres") %}
    86. 

  86. {% do server.environment.add_env("WOODPECKER_DATABASE_DATASOURCE", postgres.get_url("postgres")) %}
    87. 

  87. {% do server.environment.add_user_envs(values.woodpecker.server_additional_envs) %}
    88. 

  88. 

  89. {% if values.network.certificate_id %}
    90. 

  90.   {% set cert = values.ix_certificates[values.network.certificate_id] %}
    91. 

  91.   {% do server.configs.add("private", cert.privatekey, values.consts.ssl_key_path) %}
    92. 

  92.   {% do server.configs.add("public", cert.certificate, values.consts.ssl_cert_path) %}
    93. 

  93. 

  94.   {% do server.environment.add_env("WOODPECKER_SERVER_CERT", values.consts.ssl_cert_path) %}
    95. 

  95.   {% do server.environment.add_env("WOODPECKER_SERVER_KEY", values.consts.ssl_key_path) %}
    96. 

  96.   {% do server.environment.add_env("SERVER_ADDR_TLS", ":%d" | format(values.network.https_port.port_number)) %}
    97. 

  97. 

  98.   {% do server.add_port(values.network.https_port) %}
    99. 

  99. 

  100.   {% do tpl.portals.add(values.network.https_port, {"name": "HTTPS", "scheme": "https"}) %}
    101. 

  101. {% endif %}
    102. 

  102. 

  103. {% do server.add_port(values.network.http_port) %}
    104. 

  104. 

  105. {% for store in values.storage.additional_storage %}
    106. 

  106.   {% do agent.add_storage(store.mount_path, store) %}
    107. 

  107.   {% do perm_container.add_or_skip_action(store.mount_path, store, perms_config) %}
    108. 

  108. {% endfor %}
    109. 

  109. 

  110. {% if perm_container.has_actions() %}
    111. 

  111.   {% do perm_container.activate() %}
    112. 

  112.   {% do agent.depends.add_dependency(values.consts.perms_container_name, "service_completed_successfully") %}
    113. 

  113.   {% do postgres.add_dependency(values.consts.perms_container_name, "service_completed_successfully") %}
    114. 

  114. {% endif %}
    115. 

  115. 

  116. {% do tpl.portals.add(values.network.http_port, {"name": "HTTP"}) %}
    117. 

  117. 

  118. {{ tpl.render() | tojson }}
    119.