Skip to content

Commit

Permalink
Allow privileged on gitlab runners
Browse files Browse the repository at this point in the history
  • Loading branch information
@Pythoner6
Pythoner6 committed Feb 3, 2024
1 parent 7c1c399 commit f3ac6a4
Showing 1 changed file with 9 additions and 1 deletion.
10 changes: 9 additions & 1 deletion k8s/gitlab/gitlab.cue
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,14 @@ let nodeAffinity = {
kustomizations: $default: #dependsOn: [dcsi.kustomizations.helm, cnpg.kustomizations.helm, rook.kustomizations.cluster]
kustomizations: $default: manifest: {
ns: #AppNamespace
runnerNs: c8s.#Namespace & {#name: "gitlab-runners"}
runnerNs: c8s.#Namespace & {
#name: "gitlab-runners"
metadata: labels: {
"pod-security.kubernetes.io/enforce": "privileged"
"pod-security.kubernetes.io/audit": "privileged"
"pod-security.kubernetes.io/warn": "privileged"
}
}
"gitlab-db": clusters.#Cluster & {
spec: {
instances: 3
Expand Down Expand Up @@ -245,6 +252,7 @@ kustomizations: helm: manifest: {
[runners.kubernetes]
namespace = "\(kustomizations.$default.manifest.runnerNs.metadata.name)"
image = "alpine"
privileged = true
[runners.kubernetes.node_selector]
"kubernetes.io/arch" = "amd64"
"kubernetes.io/os" = "linux"
Expand Down

0 comments on commit f3ac6a4

Please sign in to comment.