---
apiVersion: apps/v1
kind: StatefulSet
metadata:
  name: runner
  labels:
    app: runner
spec:
  replicas: $NB_REPLICAS
  selector:
    matchLabels:
      app: runner
  template:
    metadata:
      labels:
        app: runner
    spec:
      securityContext:
        fsGroup: 1000
      containers:
        - name: runner
          image: "$IMAGERUNNER"
          securityContext:
            privileged: true
          env:
            - name: DOCKER_HOST
              value: tcp://localhost:2376
            - name: DOCKER_CERT_PATH
              value: /certs/client
            - name: DOCKER_TLS_VERIFY
              value: "1"
            - name: GITEA_INSTANCE_URL
              value: "https://$BASE_URL"
            - name: GITEA_RUNNER_LABELS
              value: "debian:docker:$BASE_URL/actions/debian:latest"
            - name: GITEA_RUNNER_REGISTRATION_TOKEN
              valueFrom:
                secretKeyRef:
                  name: runner
                  key: token
          volumeMounts:
            - name: data
              mountPath: /data/
  volumeClaimTemplates:
    - metadata:
        name: data
      spec:
        accessModes:
          - ReadWriteOnce
        storageClassName: nfs-csi
        resources:
          requests:
            storage: 10Mi