unkin/packer-images
2
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

Compare commits

base: unkin:dccf8d98378470fa2abbb1938426d2655ac1580a
Branches Tags
unkin:master
unkin:benvin/artifactapi_updates
..
compare: unkin:fdd16502f06ea5dd4352075ecb227c8d1f401033
Branches Tags
unkin:benvin/artifactapi_updates
unkin:master

1 Commits
dccf8d9837 ... fdd16502f0

Author SHA1 Message Date
Ben Vincent
fdd16502f0 feat: enable incus support in actionsdind container
All checks were successful
Build / build (pull_request) Successful in 18m12s
Details 
- add incus-images backend
- set incus-images as default backend
- manage deploying client.key/client.crt from vault to specific containers
 2025-04-23 19:02:07 +10:00
6 changed files with 25 additions and 0 deletions
Show Stats Expand all files Collapse all files

2
Makefile
View File

@ -91,6 +91,8 @@ $(DIRS):
export SUFFIX=$(SUFFIX) && \
export GIT_COMMIT=$(GIT_COMMIT) && \
export GIT_BRANCH=$(GIT_BRANCH) && \
export VAULT_ADDR=https://vault.query.consul:8200
export VAULT_TOKEN=$$(vault write -field=token auth/approle/login role_id=$$VAULT_ROLEID) && \
/usr/bin/packer init . && \
/usr/bin/packer build . )

12
builds/docker.pkr.hcl
View File

@ -21,6 +21,18 @@ build {
destination = "/"
}
# manage deploying incus client certficates
# this isnt super-secure, as the key ends up baked into the docker image
provisioner "shell" {
inline = [
"if [ ${var.include_incus_client_certs} = true ]; then",
" mkdir -p /root/.config/incus",
" echo '${replace(local.incus_crt, "'", "'\\''")}' > /root/.config/incus/client.crt",
" echo '${replace(local.incus_key, "'", "'\\''")}' > /root/.config/incus/client.key",
"fi"
]
}
# post-file-copy scripts
provisioner "shell" {
inline = var.scripts_post_file_copy

2
images/almalinux/8.10/actionsdind/variables.auto.pkrvars.hcl
View File

@ -1,4 +1,6 @@
# almalinux/8.10/actionsdind
deploy_files_from_common = true
include_incus_client_certs = true
docker_source = "git.query.consul/unkin/almalinux8-base:latest"
packages = [
"bash",

2
images/almalinux/9.5/actionsdind/variables.auto.pkrvars.hcl
View File

@ -1,4 +1,6 @@
# almalinux/9.5/actionsdind
deploy_files_from_common = true
include_incus_client_certs = true
docker_source = "git.query.consul/unkin/almalinux9-base:latest"
packages = [
"bash",

2
library/locals.pkr.hcl
View File

@ -7,4 +7,6 @@ locals {
incus_base_name = "${var.os_name}${var.os_version_major}/${var.os_image}"
incus_output_image = "${local.incus_base_name}/${var.suffix}"
is_master = "${var.git_branch}" == "master"
incus_key = vault("kv/data/service/packer/builder/docker-incus-client", "private_key")
incus_crt = vault("kv/data/service/packer/builder/docker-incus-client", "public_key")
}

5
library/variables.pkr.hcl
View File

@ -121,3 +121,8 @@ variable "git_branch" {
type = string
default = env("GIT_BRANCH")
}
variable "include_incus_client_certs" {
type = bool
default = false
}