attune-system/attune
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
f96861d417101fc80e26bb143bb3ec81d3a710cf
attune/docs/deployment/gitea-registry-and-helm.md
David Culbreth feb070c165
Some checks failed
CI / Rustfmt (push) Successful in 22s
Details
CI / Clippy (push) Successful in 1m55s
Details
CI / Cargo Audit & Deny (push) Successful in 42s
Details
CI / Web Blocking Checks (push) Successful in 1m24s
Details
CI / Tests (push) Successful in 8m21s
Details
CI / Web Advisory Checks (push) Successful in 1m12s
Details
Publish Images And Chart / Publish init-user (push) Failing after 1m0s
Details
Publish Images And Chart / Publish migrations (push) Failing after 23s
Details
Publish Images And Chart / Publish sensor (push) Failing after 19s
Details
Publish Images And Chart / Publish worker (push) Failing after 17s
Details
Publish Images And Chart / Publish api (push) Failing after 17s
Details
Publish Images And Chart / Publish executor (push) Failing after 17s
Details
Publish Images And Chart / Publish web (push) Failing after 1m33s
Details
Publish Images And Chart / Publish notifier (push) Failing after 54s
Details
CI / Security Blocking Checks (push) Successful in 10s
Details
CI / Security Advisory Checks (push) Successful in 1m25s
Details
Publish Images And Chart / Resolve Publish Metadata (push) Successful in 2s
Details
Publish Images And Chart / Publish init-packs (push) Failing after 27s
Details
Publish Images And Chart / Publish Helm Chart (push) Has been skipped
Details
[wip] helmchart
2026-03-16 08:31:19 -05:00

3.1 KiB
Raw Blame History

Gitea Registry And Helm Publishing

This repository now includes:

  • A Gitea Actions publish workflow at .gitea/workflows/publish.yml
  • OCI-published container images for the Kubernetes deployment path
  • A Helm chart at charts/attune

What Gets Published

The workflow publishes these images to the Gitea OCI registry:

  • attune-api
  • attune-executor
  • attune-worker
  • attune-sensor
  • attune-notifier
  • attune-web
  • attune-migrations
  • attune-init-user
  • attune-init-packs

The Helm chart is pushed as an OCI chart to:

  • oci://<registry>/<namespace>/helm/attune

Required Gitea Repository Configuration

Set these repository variables:

  • CONTAINER_REGISTRY_HOST: Registry hostname only, for example gitea.example.com
  • CONTAINER_REGISTRY_NAMESPACE: Optional override for the registry namespace. If omitted, the workflow uses the repository owner.

Set one of these authentication options:

  • Preferred: CONTAINER_REGISTRY_USERNAME and CONTAINER_REGISTRY_PASSWORD
  • Fallback: allow the workflow GITHUB_TOKEN or Gitea-provided token to push packages

Publish Behavior

The workflow runs on:

  • pushes to main
  • pushes to master
  • tags matching v*
  • manual dispatch

Tag behavior:

  • branch pushes publish edge and sha-<12-char-sha>
  • release tags like v0.3.0 publish 0.3.0, latest, and sha-<12-char-sha>

Chart packaging behavior:

  • branch pushes package the chart as 0.0.0-dev.<run_number>
  • release tags package the chart with the tag version, for example 0.3.0

Helm Install Flow

Log in to the registry:

helm registry login gitea.example.com --username <user>

Install the chart:

helm install attune oci://gitea.example.com/<namespace>/helm/attune \
  --version 0.3.0 \
  --set global.imageRegistry=gitea.example.com \
  --set global.imageNamespace=<namespace> \
  --set global.imageTag=0.3.0 \
  --set web.config.apiUrl=https://attune.example.com/api \
  --set web.config.wsUrl=wss://attune.example.com/ws

For a branch build:

helm install attune oci://gitea.example.com/<namespace>/helm/attune \
  --version 0.0.0-dev.<run_number> \
  --set global.imageRegistry=gitea.example.com \
  --set global.imageNamespace=<namespace> \
  --set global.imageTag=edge

Chart Expectations

The chart defaults to deploying:

  • PostgreSQL via TimescaleDB
  • RabbitMQ
  • Redis
  • Attune API, executor, worker, sensor, notifier, and web services
  • Migration, test-user bootstrap, and built-in pack bootstrap jobs

Important constraints:

  • The shared packs, runtime_envs, and artifacts claims default to ReadWriteMany
  • Your cluster storage class must support RWX for the default values to work as written
  • web.config.apiUrl and web.config.wsUrl must be browser-reachable URLs, not cluster-internal service DNS names
  • The default security and bootstrap values in charts/attune/values.yaml are placeholders and should be overridden

Suggested First Release Sequence

  1. Push the workflow and chart changes to main.
  2. Verify that the workflow publishes the edge images and dev chart package.
  3. Create a release tag such as v0.1.0.
  4. Install the chart using that exact image tag and chart version.
Reference in New Issue View Git Blame Copy Permalink