Add forgejo-runner (ct)

ct/forgejo-runner.sh

@@ -0,0 +1,85 @@
+#!/usr/bin/env bash
+source <(curl -fsSL https://raw.githubusercontent.com/community-scripts/ProxmoxVE/main/misc/build.func)
+
+# Copyright (c) 2021-2026 community-scripts ORG
+# Author: Simon Friedrich (lengschder97)
+# License: MIT | https://github.com/community-scripts/ProxmoxVE/raw/main/LICENSE
+# Source: https://forgejo.org/
+
+APP="Forgejo-Runner"
+var_tags="${var_tags:-ci}"
+var_cpu="${var_cpu:-2}"
+var_ram="${var_ram:-2048}"
+var_disk="${var_disk:-8}"
+var_os="${var_os:-debian}"
+var_version="${var_version:-13}"
+var_arm64="${var_arm64:-no}"
+
+var_unprivileged="${var_unprivileged:-1}"
+var_nesting="${var_nesting:-1}"
+var_keyctl="${var_keyctl:-1}"
+
+# App-specific variables (not in build.func whitelist)
+# Export so they survive lxc-attach into the container
+export var_forgejo_instance="${var_forgejo_instance:-}"
+export var_forgejo_runner_token="${var_forgejo_runner_token:-}"
+export var_runner_labels="${var_runner_labels:-}"
+
+header_info "$APP"
+variables
+color
+catch_errors
+
+function update_script() {
+  header_info
+  check_container_storage
+  check_container_resources
+
+  if [[ ! -f /usr/local/bin/forgejo-runner ]]; then
+    msg_error "No ${APP} installation found!"
+    exit 1
+  fi
+
+  RELEASE=$(curl -fsSL https://data.forgejo.org/api/v1/repos/forgejo/runner/releases/latest | grep -oP '"tag_name":\s*"\K[^"]+' | sed 's/^v//')
+  if [[ "${RELEASE}" == "$(cat ~/.forgejo-runner 2>/dev/null)" ]]; then
+    msg_ok "No update required. ${APP} is already at v${RELEASE}"
+    exit
+  fi
+
+  msg_info "Stopping Services"
+  systemctl stop forgejo-runner
+  msg_ok "Stopped Services"
+
+  msg_info "Updating Forgejo Runner to v${RELEASE}"
+  curl -fsSL "https://code.forgejo.org/forgejo/runner/releases/download/v${RELEASE}/forgejo-runner-${RELEASE}-linux-amd64" -o /usr/local/bin/forgejo-runner
+  chmod +x /usr/local/bin/forgejo-runner
+  echo "${RELEASE}" >~/.forgejo-runner
+  msg_ok "Updated Forgejo Runner"
+
+  msg_info "Starting Services"
+  systemctl start forgejo-runner
+  msg_ok "Started Services"
+  msg_ok "Updated successfully!"
+  exit
+}
+
+# Fail early if running unattended without required values
+# mode is only set when the user explicitly passes it (automating);
+# bare "bash -c $(curl ...)" leaves mode empty and shows the whiptail menu
+if [[ -n "${mode:-}" ]]; then
+  if [[ -z "${var_forgejo_instance:-}" ]]; then
+    msg_error "var_forgejo_instance is required for unattended installs."
+    exit 1
+  fi
+  if [[ -z "${var_forgejo_runner_token:-}" ]]; then
+    msg_error "var_forgejo_runner_token is required for unattended installs."
+    exit 1
+  fi
+fi
+
+start
+build_container
+description
+
+msg_ok "Completed successfully!\n"
+echo -e "${CREATING}${GN}${APP} setup has been successfully initialized!${CL}"

ct/headers/forgejo-runner

@@ -0,0 +1,6 @@
+    ______                        _             ____                             
+   / ____/___  _________ ____    (_)___        / __ \__  ______  ____  ___  _____
+  / /_  / __ \/ ___/ __ `/ _ \  / / __ \______/ /_/ / / / / __ \/ __ \/ _ \/ ___/
+ / __/ / /_/ / /  / /_/ /  __/ / / /_/ /_____/ _, _/ /_/ / / / / / / /  __/ /    
+/_/    \____/_/   \__, /\___/_/ /\____/     /_/ |_|\__,_/_/ /_/_/ /_/\___/_/     
+                 /____/    /___/                                                 

ct/headers/postiz

@@ -1,6 +0,0 @@
-    ____             __  _    
-   / __ \____  _____/ /_(_)___
-  / /_/ / __ \/ ___/ __/ /_  /
- / ____/ /_/ (__  ) /_/ / / /_
-/_/    \____/____/\__/_/ /___/
-                              

ct/postiz.sh

@@ -1,83 +0,0 @@
-#!/usr/bin/env bash
-source <(curl -fsSL https://raw.githubusercontent.com/community-scripts/ProxmoxVE/main/misc/build.func)
-
-# Copyright (c) 2021-2026 community-scripts ORG
-# Author: MickLesk (CanbiZ)
-# License: MIT | https://github.com/community-scripts/ProxmoxVE/raw/main/LICENSE
-# Source: https://github.com/gitroomhq/postiz-app
-
-APP="Postiz"
-var_tags="${var_tags:-social-media;scheduling;automation}"
-var_cpu="${var_cpu:-4}"
-var_ram="${var_ram:-8192}"
-var_disk="${var_disk:-20}"
-var_os="${var_os:-debian}"
-var_version="${var_version:-13}"
-var_arm64="${var_arm64:-no}"
-var_unprivileged="${var_unprivileged:-1}"
-
-header_info "$APP"
-variables
-color
-catch_errors
-
-function update_script() {
-  header_info
-  check_container_storage
-  check_container_resources
-
-  if [[ ! -d /opt/postiz ]]; then
-    msg_error "No ${APP} Installation Found!"
-    exit
-  fi
-
-  if check_for_gh_release "postiz" "gitroomhq/postiz-app"; then
-    msg_info "Stopping Services"
-    systemctl stop postiz-orchestrator postiz-frontend postiz-backend
-    msg_ok "Stopped Services"
-
-    msg_info "Backing up Data"
-    cp /opt/postiz/.env /opt/postiz_env.bak
-    cp -r /opt/postiz/uploads /opt/postiz_uploads.bak 2>/dev/null || true
-    msg_ok "Backed up Data"
-
-    CLEAN_INSTALL=1 fetch_and_deploy_gh_release "postiz" "gitroomhq/postiz-app" "tarball"
-
-    msg_info "Building Application"
-    cd /opt/postiz
-    cp /opt/postiz_env.bak /opt/postiz/.env
-    set -a && source /opt/postiz/.env && set +a
-    export NODE_OPTIONS="--max-old-space-size=4096"
-    $STD pnpm install
-    $STD pnpm run build
-    unset NODE_OPTIONS
-    msg_ok "Built Application"
-
-    msg_info "Running Database Migrations"
-    cd /opt/postiz
-    $STD pnpm run prisma-db-push
-    msg_ok "Ran Database Migrations"
-
-    msg_info "Restoring Data"
-    mkdir -p /opt/postiz/uploads
-    cp -r /opt/postiz_uploads.bak/. /opt/postiz/uploads 2>/dev/null || true
-    rm -f /opt/postiz_env.bak
-    rm -rf /opt/postiz_uploads.bak
-    msg_ok "Restored Data"
-
-    msg_info "Starting Services"
-    systemctl start postiz-backend postiz-frontend postiz-orchestrator
-    msg_ok "Started Services"
-    msg_ok "Updated successfully!"
-  fi
-  exit
-}
-
-start
-build_container
-description
-
-msg_ok "Completed Successfully!\n"
-echo -e "${CREATING}${GN}${APP} setup has been successfully initialized!${CL}"
-echo -e "${INFO}${YW} Access it using the following URL:${CL}"
-echo -e "${TAB}${GATEWAY}${BGN}http://${IP}${CL}"

install/forgejo-runner-install.sh

@@ -0,0 +1,115 @@
+#!/usr/bin/env bash
+# Copyright (c) 2021-2026 community-scripts ORG
+# Author: Simon Friedrich (lengschder97)
+# License: MIT | https://github.com/community-scripts/ProxmoxVE/raw/main/LICENSE
+# Source: https://forgejo.org/
+
+source /dev/stdin <<<"$FUNCTIONS_FILE_PATH"
+color
+verb_ip6
+catch_errors
+setting_up_container
+network_check
+update_os
+setup_yq
+
+# Get required configuration — skip prompts if already set (generated/unattended mode)
+if [[ -z "${var_forgejo_instance:-}" ]]; then
+  read -r -p "${TAB3}Forgejo Instance URL (e.g. https://codeberg.org): " var_forgejo_instance
+  var_forgejo_instance="${var_forgejo_instance:-https://codeberg.org}"
+fi
+
+if [[ -z "${var_forgejo_runner_uuid:-}" ]]; then
+  read -r -p "${TAB3}Forgejo Runner UUID: " var_forgejo_runner_uuid
+fi
+
+if [[ -z "${var_forgejo_runner_uuid:-}" ]]; then
+  msg_error "No runner UUID provided. Cannot continue."
+  exit 1
+fi
+
+if [[ -z "${var_forgejo_runner_token:-}" ]]; then
+  read -r -p "${TAB3}Forgejo Runner Token: " var_forgejo_runner_token
+fi
+
+if [[ -z "${var_forgejo_runner_token:-}" ]]; then
+  msg_error "No runner registration token provided. Cannot continue."
+  exit 1
+fi
+
+# Runner labels — default is always included; additional labels are appended
+DEFAULT_RUNNER_LABELS="linux-amd64:docker://node:22-bookworm"
+if [[ -z "${var_runner_labels:-}" ]]; then
+  read -r -p "${TAB3}Additional runner labels (comma-separated, or leave blank for default only): " var_runner_labels
+fi
+if [[ -n "${var_runner_labels:-}" ]]; then
+  RUNNER_LABELS="${DEFAULT_RUNNER_LABELS},${var_runner_labels}"
+else
+  RUNNER_LABELS="${DEFAULT_RUNNER_LABELS}"
+fi
+
+export FORGEJO_INSTANCE="$var_forgejo_instance"
+export FORGEJO_RUNNER_TOKEN="$var_forgejo_runner_token"
+export FORGEJO_RUNNER_UUID="$var_forgejo_runner_uuid"
+export RUNNER_LABELS
+
+msg_info "Installing dependencies"
+$STD apt install -y \
+  git \
+  podman podman-docker
+msg_ok "Installed dependencies"
+
+msg_info "Enabling Podman socket"
+systemctl enable --now podman.socket
+msg_ok "Enabled Podman socket"
+
+msg_info "Installing Forgejo Runner"
+RUNNER_VERSION=$(curl -fsSL https://data.forgejo.org/api/v1/repos/forgejo/runner/releases/latest | jq -r .name | sed 's/^v//')
+curl -fsSL "https://code.forgejo.org/forgejo/runner/releases/download/v${RUNNER_VERSION}/forgejo-runner-${RUNNER_VERSION}-linux-amd64" -o /usr/local/bin/forgejo-runner
+chmod +x /usr/local/bin/forgejo-runner
+echo "${RUNNER_VERSION}" >~/.forgejo-runner
+msg_ok "Installed Forgejo Runner"
+
+msg_info "Registering Forgejo Runner"
+export DOCKER_HOST="unix:///run/podman/podman.sock"
+
+msg_info "Generating Forgejo Runner Configuration"
+mkdir -p /etc/forgejo-runner
+CONFIG_FILE="/etc/forgejo-runner/config.yaml"
+forgejo-runner generate-config > $CONFIG_FILE
+yq -i '
+  .container.docker_host = strenv(DOCKER_HOST) |
+  .server.connections.forgejo.url = strenv(FORGEJO_INSTANCE) |
+  .server.connections.forgejo.uuid = strenv(FORGEJO_RUNNER_UUID) |
+  .server.connections.forgejo.token = strenv(FORGEJO_RUNNER_TOKEN) |
+  .server.connections.forgejo.labels = (strenv(RUNNER_LABELS) | split(",") | map(select(length > 0)))
+  ' $CONFIG_FILE
+msg_ok "Generated Forgejo Runner Configuration"
+
+
+msg_info "Creating Services"
+cat <<EOF >/etc/systemd/system/forgejo-runner.service
+[Unit]
+Description=Forgejo Runner
+Documentation=https://forgejo.org/docs/latest/admin/actions/
+After=podman.socket
+Requires=podman.socket
+
+[Service]
+User=root
+WorkingDirectory=/root
+Environment=DOCKER_HOST=unix:///run/podman/podman.sock
+ExecStart=/usr/local/bin/forgejo-runner daemon -c $CONFIG_FILE
+Restart=on-failure
+RestartSec=10
+TimeoutSec=0
+
+[Install]
+WantedBy=multi-user.target
+EOF
+systemctl enable -q --now forgejo-runner
+msg_ok "Created Services"
+
+motd_ssh
+customize
+cleanup_lxc

install/postiz-install.sh

@@ -1,251 +0,0 @@
-#!/usr/bin/env bash
-
-# Copyright (c) 2021-2026 community-scripts ORG
-# Author: MickLesk (CanbiZ)
-# License: MIT | https://github.com/community-scripts/ProxmoxVE/raw/main/LICENSE
-# Source: https://github.com/gitroomhq/postiz-app
-
-source /dev/stdin <<<"$FUNCTIONS_FILE_PATH"
-color
-verb_ip6
-catch_errors
-setting_up_container
-network_check
-update_os
-
-msg_info "Installing Dependencies"
-$STD apt install -y \
-  build-essential \
-  python3 \
-  redis-server \
-  nginx
-msg_ok "Installed Dependencies"
-
-PG_VERSION="17" setup_postgresql
-PG_DB_NAME="postiz" PG_DB_USER="postiz" setup_postgresql_db
-NODE_VERSION="24" setup_nodejs
-
-fetch_and_deploy_gh_release "temporal" "temporalio/cli" "prebuild" "latest" "/opt/temporal" "temporal_cli_*_linux_amd64.tar.gz"
-chmod +x /opt/temporal/temporal
-
-fetch_and_deploy_gh_release "postiz" "gitroomhq/postiz-app" "tarball"
-
-msg_info "Installing pnpm"
-PNPM_VERSION=$(sed -n 's/.*"packageManager":\s*"pnpm@\([^"]*\)".*/\1/p' /opt/postiz/package.json)
-$STD npm install -g "pnpm@${PNPM_VERSION}"
-msg_ok "Installed pnpm"
-
-msg_info "Configuring Application"
-JWT_SECRET=$(openssl rand -base64 32)
-mkdir -p /opt/postiz/uploads
-cat <<EOF >/opt/postiz/.env
-DATABASE_URL=postgresql://${PG_DB_USER}:${PG_DB_PASS}@localhost:5432/${PG_DB_NAME}
-REDIS_URL=redis://localhost:6379
-JWT_SECRET=${JWT_SECRET}
-MAIN_URL=http://${LOCAL_IP}
-FRONTEND_URL=http://${LOCAL_IP}
-NEXT_PUBLIC_BACKEND_URL=http://${LOCAL_IP}/api
-BACKEND_INTERNAL_URL=http://localhost:3000
-NOT_SECURED=true
-TEMPORAL_ADDRESS=localhost:7233
-IS_GENERAL=true
-STORAGE_PROVIDER=local
-UPLOAD_DIRECTORY=/opt/postiz/uploads
-NEXT_PUBLIC_UPLOAD_DIRECTORY=/uploads
-NX_ADD_PLUGINS=false
-EOF
-msg_ok "Configured Application"
-
-msg_info "Building Application"
-cd /opt/postiz
-set -a && source /opt/postiz/.env && set +a
-export NODE_OPTIONS="--max-old-space-size=4096"
-$STD pnpm install
-$STD pnpm run build
-unset NODE_OPTIONS
-msg_ok "Built Application"
-
-msg_info "Running Database Migrations"
-cd /opt/postiz
-set -a && source /opt/postiz/.env && set +a
-$STD pnpm run prisma-db-push
-msg_ok "Ran Database Migrations"
-
-msg_info "Creating Services"
-PNPM_BIN="$(command -v pnpm)"
-
-cat <<EOF >/etc/systemd/system/postiz-temporal.service
-[Unit]
-Description=Temporal Dev Server (Postiz)
-After=network.target
-
-[Service]
-Type=simple
-User=root
-ExecStart=/opt/temporal/temporal server start-dev --db-filename /opt/temporal/temporal.db --log-format json --log-level warn
-Restart=on-failure
-RestartSec=5
-
-[Install]
-WantedBy=multi-user.target
-EOF
-
-cat <<EOF >/etc/systemd/system/postiz-backend.service
-[Unit]
-Description=Postiz Backend
-After=network.target postgresql.service redis-server.service postiz-temporal.service
-Requires=postgresql.service redis-server.service
-
-[Service]
-Type=simple
-User=root
-WorkingDirectory=/opt/postiz
-EnvironmentFile=/opt/postiz/.env
-ExecStart=${PNPM_BIN} run start:prod:backend
-Environment=NODE_OPTIONS=--max-old-space-size=512
-Restart=on-failure
-RestartSec=5
-
-[Install]
-WantedBy=multi-user.target
-EOF
-
-cat <<EOF >/etc/systemd/system/postiz-frontend.service
-[Unit]
-Description=Postiz Frontend
-After=network.target postiz-backend.service
-
-[Service]
-Type=simple
-User=root
-WorkingDirectory=/opt/postiz
-EnvironmentFile=/opt/postiz/.env
-Environment=PORT=4200
-ExecStart=${PNPM_BIN} run start:prod:frontend
-Environment=NODE_OPTIONS=--max-old-space-size=512
-Restart=on-failure
-RestartSec=5
-
-[Install]
-WantedBy=multi-user.target
-EOF
-
-cat <<EOF >/etc/systemd/system/postiz-orchestrator.service
-[Unit]
-Description=Postiz Orchestrator
-After=network.target postiz-temporal.service postiz-backend.service
-Requires=postiz-temporal.service
-
-[Service]
-Type=simple
-User=root
-WorkingDirectory=/opt/postiz
-EnvironmentFile=/opt/postiz/.env
-ExecStart=${PNPM_BIN} run start:prod:orchestrator
-Environment=NODE_OPTIONS=--max-old-space-size=384
-Restart=on-failure
-RestartSec=5
-
-[Install]
-WantedBy=multi-user.target
-EOF
-
-systemctl enable -q --now redis-server postiz-temporal postiz-backend postiz-frontend postiz-orchestrator
-msg_ok "Created Services"
-
-msg_info "Creating Helper Scripts"
-cat <<'EOF' >/usr/local/bin/postiz-rebuild
-#!/usr/bin/env bash
-echo "=== Postiz Rebuild ==="
-echo "Stopping services..."
-systemctl stop postiz-orchestrator postiz-frontend postiz-backend
-
-cd /opt/postiz
-set -a && source /opt/postiz/.env && set +a
-export NODE_OPTIONS="--max-old-space-size=4096"
-
-echo "Building application (this may take a while)..."
-pnpm run build
-BUILD_RC=$?
-unset NODE_OPTIONS
-
-if [[ $BUILD_RC -ne 0 ]]; then
-  echo "ERROR: Build failed! Check the output above."
-  echo "Starting services with previous build..."
-  systemctl start postiz-backend postiz-frontend postiz-orchestrator
-  exit 1
-fi
-
-echo "Running database migrations..."
-pnpm run prisma-db-push
-
-echo "Starting services..."
-systemctl start postiz-backend postiz-frontend postiz-orchestrator
-echo "=== Rebuild complete ==="
-EOF
-chmod +x /usr/local/bin/postiz-rebuild
-msg_ok "Created Helper Scripts"
-
-msg_info "Configuring Nginx"
-cat <<EOF >/etc/nginx/sites-available/postiz
-server {
-  listen 80 default_server;
-  server_name _;
-
-  client_max_body_size 100M;
-
-  gzip on;
-  gzip_types text/plain text/css application/json application/javascript text/xml application/xml application/xml+rss text/javascript;
-
-  location /api/ {
-    proxy_pass http://127.0.0.1:3000/;
-    proxy_http_version 1.1;
-    proxy_set_header Upgrade \$http_upgrade;
-    proxy_set_header Connection "upgrade";
-    proxy_set_header Host \$host;
-    proxy_set_header X-Real-IP \$remote_addr;
-    proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for;
-    proxy_set_header X-Forwarded-Proto \$scheme;
-    proxy_set_header Reload \$http_reload;
-    proxy_set_header Onboarding \$http_onboarding;
-    proxy_set_header Activate \$http_activate;
-    proxy_set_header Auth \$http_auth;
-    proxy_set_header Showorg \$http_showorg;
-    proxy_set_header Impersonate \$http_impersonate;
-    proxy_set_header Accept-Language \$http_accept_language;
-  }
-
-  location /uploads/ {
-    alias /opt/postiz/uploads/;
-  }
-
-  location / {
-    proxy_pass http://127.0.0.1:4200/;
-    proxy_http_version 1.1;
-    proxy_set_header Upgrade \$http_upgrade;
-    proxy_set_header Connection "upgrade";
-    proxy_set_header Host \$host;
-    proxy_set_header X-Real-IP \$remote_addr;
-    proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for;
-    proxy_set_header X-Forwarded-Proto \$scheme;
-    proxy_set_header Reload \$http_reload;
-    proxy_set_header Onboarding \$http_onboarding;
-    proxy_set_header Activate \$http_activate;
-    proxy_set_header Auth \$http_auth;
-    proxy_set_header Showorg \$http_showorg;
-    proxy_set_header Impersonate \$http_impersonate;
-    proxy_set_header Accept-Language \$http_accept_language;
-    proxy_set_header i18next \$http_i18next;
-  }
-}
-EOF
-ln -sf /etc/nginx/sites-available/postiz /etc/nginx/sites-enabled/postiz
-rm -f /etc/nginx/sites-enabled/default
-$STD nginx -t
-systemctl enable -q nginx
-systemctl reload -q nginx
-msg_ok "Configured Nginx"
-
-motd_ssh
-customize
-cleanup_lxc