add github actions runner for CI/CD deployments with Nomad (#71)

jobs/services/gh-actions-runner.hcl

@@ -0,0 +1,59 @@
+job "github-actions-runner" {
+  datacenters = ["aperture"]
+
+  type = "service"
+
+  meta {
+    version = "2.320.0"
+    sha256  = "93ac1b7ce743ee85b5d386f5c1787385ef07b3d7c728ff66ce0d3813d5f46900"
+  }
+
+  group "github-actions" {
+    count = 3
+
+    spread {
+      attribute = "${node.unique.id}"
+      weight    = 100
+    }
+
+    task "actions-runner" {
+      driver = "raw_exec"
+      # user   = "nomad"
+
+      config {
+        command = "/bin/bash"
+        args    = ["${NOMAD_TASK_DIR}/bootstrap.sh"]
+      }
+      template {
+        data        = <<EOF
+#!/bin/bash
+
+export RUNNER_ALLOW_RUNASROOT=1
+
+echo "Querying API for registration token..."
+
+reg_token=$(curl -L \
+  -X POST \
+  -H "Accept: application/vnd.github+json" \
+  -H "Authorization: Bearer {{ key "github/actions-runner/token" }}" \
+  -H "X-GitHub-Api-Version: 2022-11-28" \
+  https://api.github.com/orgs/redbrick/actions/runners/registration-token | jq -r '.token')
+
+echo "Configuring runner..."
+bash -c "${NOMAD_TASK_DIR}/config.sh --unattended --url https://github.com/redbrick --token ${reg_token} --name $(hostname) --labels aperture,deployment-runner --replace"
+
+echo "Running actions runner..."
+bash "${NOMAD_TASK_DIR}/run.sh"
+
+EOF
+        destination = "local/bootstrap.sh"
+      }
+      artifact {
+        source = "https://github.com/actions/runner/releases/download/v2.320.0/actions-runner-linux-x64-2.320.0.tar.gz"
+        options {
+          checksum = "sha256:93ac1b7ce743ee85b5d386f5c1787385ef07b3d7c728ff66ce0d3813d5f46900"
+        }
+      }
+    }
+  }
+}