blumeops/ansible/roles/tailscale_ci_gateway/handlers/main.yml at fdf51531307a3c5b6cc6b7b09c835b7d5d733267 - eblume/blumeops - Forgejo: Beyond coding. We Forge.

eblume/blumeops

Erich Blume fdf5153130

Test CI / test (pull_request) Failing after 48s

Details

Containerize forgejo-runner with Tailscale gateway for tailnet access

Architecture:
- tailscale_ci_gateway role: Runs Tailscale container on tailnet-jobs network
- forgejo_runner role: Runs runner daemon in container on same network
- Job containers also use tailnet-jobs network

This allows the runner and jobs to reach forge.tail8d86e.ts.net via
the Tailscale gateway, avoiding hairpinning issues with localhost.

Changes:
- Add tailscale_ci_gateway role with launchd management
- Refactor forgejo_runner to use containerized daemon
- Runner registers with Tailscale URL instead of localhost
- Job containers run on tailnet-jobs network
- Update playbook role ordering (gateway before runner)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-01-24 11:28:35 -08:00

7 lines

304 B

YAML

Raw Blame History

 ---
 - name: Restart tailscale-ci-gateway
   listen: Restart tailscale-ci-gateway
   ansible.builtin.shell: |
     launchctl unload ~/Library/LaunchAgents/mcquack.tailscale-ci-gateway.plist 2>/dev/null || true
     launchctl load ~/Library/LaunchAgents/mcquack.tailscale-ci-gateway.plist
   changed_when: true