feat: CI/CD pipeline setup complete - Ansible playbooks updated, secrets configured, workflow ready

deployment/gitea-runner/docker-compose.yml

@@ -0,0 +1,46 @@
+version: '3.8'
+
+services:
+  gitea-runner:
+    image: gitea/act_runner:latest
+    container_name: gitea-runner
+    restart: unless-stopped
+    volumes:
+      - ./data:/data
+      - /var/run/docker.sock:/var/run/docker.sock
+      - ./config.yaml:/config.yaml:ro
+    environment:
+      - GITEA_INSTANCE_URL=${GITEA_INSTANCE_URL}
+      - GITEA_RUNNER_REGISTRATION_TOKEN=${GITEA_RUNNER_REGISTRATION_TOKEN}
+      - GITEA_RUNNER_NAME=${GITEA_RUNNER_NAME:-dev-runner}
+      - GITEA_RUNNER_LABELS=${GITEA_RUNNER_LABELS:-ubuntu-latest:docker://node:16-bullseye,ubuntu-22.04:docker://node:16-bullseye}
+    networks:
+      - gitea-runner
+    depends_on:
+      - docker-dind
+
+  # Docker-in-Docker for isolated job execution
+  docker-dind:
+    image: docker:dind
+    container_name: gitea-runner-dind
+    restart: unless-stopped
+    privileged: true
+    environment:
+      - DOCKER_TLS_CERTDIR=/certs
+    volumes:
+      - docker-certs:/certs
+      - docker-data:/var/lib/docker
+    networks:
+      - gitea-runner
+    command: ["dockerd", "--host=unix:///var/run/docker.sock", "--host=tcp://0.0.0.0:2376", "--tlsverify"]
+
+networks:
+  gitea-runner:
+    name: gitea-runner
+    driver: bridge
+
+volumes:
+  docker-certs:
+    name: gitea-runner-certs
+  docker-data:
+    name: gitea-runner-docker-data