forked from philips-labs/terraform-aws-github-runner
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
feat: Add ubuntu-jammy example image based on existing ubuntu-focal (p…
…hilips-labs#2102) * feat: Add ubuntu-jammy example image based on existing ubuntu-focal * chore: update ImageOS tag Co-authored-by: Niek Palm <npalm@users.noreply.github.com> * chore: Increase runner version for Ubuntu jammy Co-authored-by: Niek Palm <npalm@users.noreply.github.com> * chore: Use latest runner version in example * Update images/ubuntu-jammy/github_agent.ubuntu.pkr.hcl Co-authored-by: Niek Palm <npalm@users.noreply.github.com> Co-authored-by: Niek Palm <npalm@users.noreply.github.com>
- Loading branch information
1 parent
76be94b
commit 486ae91
Showing
1 changed file
with
185 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,185 @@ | ||
packer { | ||
required_plugins { | ||
amazon = { | ||
version = ">= 0.0.2" | ||
source = "github.com/hashicorp/amazon" | ||
} | ||
} | ||
} | ||
|
||
variable "runner_version" { | ||
description = "The version (no v prefix) of the runner software to install https://github.com/actions/runner/releases" | ||
type = string | ||
default = "2.294.0" | ||
} | ||
|
||
variable "region" { | ||
description = "The region to build the image in" | ||
type = string | ||
default = "eu-west-1" | ||
} | ||
|
||
variable "security_group_id" { | ||
description = "The ID of the security group Packer will associate with the builder to enable access" | ||
type = string | ||
default = null | ||
} | ||
|
||
variable "subnet_id" { | ||
description = "If using VPC, the ID of the subnet, such as subnet-12345def, where Packer will launch the EC2 instance. This field is required if you are using an non-default VPC" | ||
type = string | ||
default = null | ||
} | ||
|
||
variable "associate_public_ip_address" { | ||
description = "If using a non-default VPC, there is no public IP address assigned to the EC2 instance. If you specified a public subnet, you probably want to set this to true. Otherwise the EC2 instance won't have access to the internet" | ||
type = string | ||
default = null | ||
} | ||
|
||
variable "instance_type" { | ||
description = "The instance type Packer will use for the builder" | ||
type = string | ||
default = "t3.medium" | ||
} | ||
|
||
variable "root_volume_size_gb" { | ||
type = number | ||
default = 8 | ||
} | ||
|
||
variable "ebs_delete_on_termination" { | ||
description = "Indicates whether the EBS volume is deleted on instance termination." | ||
type = bool | ||
default = true | ||
} | ||
|
||
variable "global_tags" { | ||
description = "Tags to apply to everything" | ||
type = map(string) | ||
default = {} | ||
} | ||
|
||
variable "ami_tags" { | ||
description = "Tags to apply to the AMI" | ||
type = map(string) | ||
default = {} | ||
} | ||
|
||
variable "snapshot_tags" { | ||
description = "Tags to apply to the snapshot" | ||
type = map(string) | ||
default = {} | ||
} | ||
|
||
variable "custom_shell_commands" { | ||
description = "Additional commands to run on the EC2 instance, to customize the instance, like installing packages" | ||
type = list(string) | ||
default = [] | ||
} | ||
|
||
source "amazon-ebs" "githubrunner" { | ||
ami_name = "github-runner-ubuntu-jammy-amd64-${formatdate("YYYYMMDDhhmm", timestamp())}" | ||
instance_type = var.instance_type | ||
region = var.region | ||
security_group_id = var.security_group_id | ||
subnet_id = var.subnet_id | ||
associate_public_ip_address = var.associate_public_ip_address | ||
|
||
source_ami_filter { | ||
filters = { | ||
name = "*/ubuntu-jammy-22.04-amd64-server-*" | ||
root-device-type = "ebs" | ||
virtualization-type = "hvm" | ||
} | ||
most_recent = true | ||
owners = ["099720109477"] | ||
} | ||
ssh_username = "ubuntu" | ||
tags = merge( | ||
var.global_tags, | ||
var.ami_tags, | ||
{ | ||
OS_Version = "ubuntu-jammy" | ||
Release = "Latest" | ||
Base_AMI_Name = "{{ .SourceAMIName }}" | ||
}) | ||
snapshot_tags = merge( | ||
var.global_tags, | ||
var.snapshot_tags, | ||
) | ||
|
||
launch_block_device_mappings { | ||
device_name = "/dev/sda1" | ||
volume_size = "${var.root_volume_size_gb}" | ||
volume_type = "gp3" | ||
delete_on_termination = "${var.ebs_delete_on_termination}" | ||
} | ||
} | ||
|
||
build { | ||
name = "githubactions-runner" | ||
sources = [ | ||
"source.amazon-ebs.githubrunner" | ||
] | ||
provisioner "shell" { | ||
environment_vars = [ | ||
"DEBIAN_FRONTEND=noninteractive" | ||
] | ||
inline = concat([ | ||
"sudo apt-get -y update", | ||
"sudo apt-get -y install ca-certificates curl gnupg lsb-release", | ||
"sudo curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /usr/share/keyrings/docker-archive-keyring.gpg", | ||
"echo deb [arch=$(dpkg --print-architecture) signed-by=/usr/share/keyrings/docker-archive-keyring.gpg] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable | sudo tee /etc/apt/sources.list.d/docker.list > /dev/null", | ||
"sudo apt-get -y update", | ||
"sudo apt-get -y install docker-ce docker-ce-cli containerd.io jq git unzip", | ||
"sudo systemctl enable containerd.service", | ||
"sudo service docker start", | ||
"sudo usermod -a -G docker ubuntu", | ||
"sudo curl -f https://s3.amazonaws.com/amazoncloudwatch-agent/ubuntu/amd64/latest/amazon-cloudwatch-agent.deb -o amazon-cloudwatch-agent.deb", | ||
"sudo dpkg -i amazon-cloudwatch-agent.deb", | ||
"sudo systemctl restart amazon-cloudwatch-agent", | ||
"sudo curl -f https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip -o awscliv2.zip", | ||
"unzip awscliv2.zip", | ||
"sudo ./aws/install", | ||
], var.custom_shell_commands) | ||
} | ||
|
||
provisioner "file" { | ||
content = templatefile("../install-runner.sh", { | ||
install_runner = templatefile("../../modules/runners/templates/install-runner.sh", { | ||
ARM_PATCH = "" | ||
S3_LOCATION_RUNNER_DISTRIBUTION = "" | ||
RUNNER_ARCHITECTURE = "x64" | ||
}) | ||
}) | ||
destination = "/tmp/install-runner.sh" | ||
} | ||
|
||
provisioner "shell" { | ||
environment_vars = [ | ||
"RUNNER_TARBALL_URL=https://github.com/actions/runner/releases/download/v${var.runner_version}/actions-runner-linux-x64-${var.runner_version}.tar.gz" | ||
] | ||
inline = [ | ||
"sudo chmod +x /tmp/install-runner.sh", | ||
"echo ubuntu | tee -a /tmp/install-user.txt", | ||
"sudo RUNNER_ARCHITECTURE=x64 RUNNER_TARBALL_URL=$RUNNER_TARBALL_URL /tmp/install-runner.sh", | ||
"echo ImageOS=ubuntu22 | tee -a /opt/actions-runner/.env" | ||
] | ||
} | ||
|
||
provisioner "file" { | ||
content = templatefile("../start-runner.sh", { | ||
start_runner = templatefile("../../modules/runners/templates/start-runner.sh", {}) | ||
}) | ||
destination = "/tmp/start-runner.sh" | ||
} | ||
|
||
provisioner "shell" { | ||
inline = [ | ||
"sudo mv /tmp/start-runner.sh /var/lib/cloud/scripts/per-boot/start-runner.sh", | ||
"sudo chmod +x /var/lib/cloud/scripts/per-boot/start-runner.sh", | ||
] | ||
} | ||
|
||
} |