# Types of Logs in Minikube

Minikube provides several types of logs that are essential for monitoring, debugging, and analyzing Kubernetes cluster behavior:

## 1. **Minikube System Logs**
- **Location**: `~/.minikube/logs/`
- **Purpose**: Contains logs from the Minikube VM/container itself
- **Key files**: 
  - `lastStart.txt` - Latest startup logs
  - `audit.json` - API server audit logs (if enabled)

## 2. **Kubernetes Component Logs**
- **API Server Logs**: Authentication, authorization, and API request logs
- **etcd Logs**: Database operations and cluster state changes
- **kubelet Logs**: Node-level container management and pod lifecycle
- **kube-proxy Logs**: Network proxy and service discovery
- **Controller Manager Logs**: Resource controllers and reconciliation loops
- **Scheduler Logs**: Pod scheduling decisions and resource allocation

## 3. **Container Runtime Logs**
- **Docker/containerd Logs**: Container lifecycle events
- **Pod Container Logs**: Application stdout/stderr from running containers
- **Init Container Logs**: Initialization container outputs

## 4. **Application Logs**
- **Pod Logs**: Direct application output via `kubectl logs`
- **Service Logs**: Load balancer and ingress controller logs
- **Custom Application Logs**: Application-specific logging from your workloads

## Access Methods:
```bash
# Minikube logs
minikube logs

# Pod logs
kubectl logs <pod-name> -n <namespace>

# System component logs
kubectl logs -n kube-system <component-pod>

# Follow logs in real-time
kubectl logs -f <pod-name>
```

These logs are crucial for threat detection, performance monitoring, and security analysis in Kubernetes environments.


# How to Use Minikube

Minikube is a tool that runs a single-node Kubernetes cluster locally for development and testing purposes.

## Installation

### macOS
```bash
# Using Homebrew
brew install minikube

# Using curl
curl -LO https://storage.googleapis.com/minikube/releases/latest/minikube-darwin-amd64
sudo install minikube-darwin-amd64 /usr/local/bin/minikube
```

### Linux
```bash
curl -LO https://storage.googleapis.com/minikube/releases/latest/minikube-linux-amd64
sudo install minikube-linux-amd64 /usr/local/bin/minikube
```

### Windows
```bash
# Using Chocolatey
choco install minikube

# Using winget
winget install Kubernetes.minikube
```

## Basic Commands

### Starting and Stopping
```bash
# Start Minikube cluster
minikube start

# Start with specific driver (docker, virtualbox, hyperkit, etc.)
minikube start --driver=docker

# Start with specific Kubernetes version
minikube start --kubernetes-version=v1.28.0

# Start with custom resources
minikube start --memory=4096 --cpus=2

# Stop the cluster
minikube stop

# Delete the cluster
minikube delete
```

### Cluster Management
```bash
# Check cluster status
minikube status

# Get cluster info
minikube profile list

# Access Kubernetes dashboard
minikube dashboard

# Get cluster IP
minikube ip

# SSH into the Minikube node
minikube ssh
```

### Working with Services
```bash
# Expose a service and get URL
minikube service <service-name>

# List all services
minikube service list

# Get service URL
minikube service <service-name> --url

# Tunnel services (for LoadBalancer type)
minikube tunnel
```

### Addons Management
```bash
# List available addons
minikube addons list

# Enable an addon
minikube addons enable <addon-name>

# Common useful addons
minikube addons enable dashboard
minikube addons enable metrics-server
minikube addons enable ingress
minikube addons enable registry

# Disable an addon
minikube addons disable <addon-name>
```

### Docker Environment
```bash
# Configure shell to use Minikube's Docker daemon
eval $(minikube docker-env)

# Build images directly in Minikube
docker build -t my-app .

# Reset to host Docker daemon
eval $(minikube docker-env -u)
```

### Logs and Troubleshooting
```bash
# View Minikube logs
minikube logs

# View logs for specific component
minikube logs --component=kubelet

# Get events
kubectl get events --sort-by=.metadata.creationTimestamp

# Describe problematic resources
kubectl describe pod <pod-name>
```

## Common Workflows

### 1. Basic Application Deployment
```bash
# Start cluster
minikube start

# Create a deployment
kubectl create deployment hello-minikube --image=gcr.io/google-samples/hello-app:1.0

# Expose the deployment
kubectl expose deployment hello-minikube --type=NodePort --port=8080

# Access the service
minikube service hello-minikube
```

### 2. Development Workflow
```bash
# Use Minikube's Docker daemon
eval $(minikube docker-env)

# Build your application
docker build -t my-app:dev .

# Deploy using the local image
kubectl create deployment my-app --image=my-app:dev
kubectl set image deployment/my-app my-app=my-app:dev
```

### 3. Persistent Storage
```bash
# Create a PersistentVolume
kubectl apply -f pv.yaml

# Mount host directory
minikube mount /host/path:/minikube/path
```

## Configuration Options

### Resource Allocation
```bash
# Set memory and CPU
minikube config set memory 8192
minikube config set cpus 4

# View current config
minikube config view
```

### Multiple Profiles
```bash
# Create named profiles
minikube start -p dev-cluster
minikube start -p test-cluster

# Switch between profiles
minikube profile dev-cluster
minikube profile test-cluster

# List profiles
minikube profile list
```

## Best Practices

1. **Resource Management**: Allocate appropriate CPU/memory based on your workload
2. **Use Profiles**: Create separate profiles for different projects
3. **Enable Addons**: Use built-in addons instead of manual installations
4. **Docker Integration**: Use Minikube's Docker daemon for faster image builds
5. **Regular Cleanup**: Delete unused clusters to free up resources
6. **Version Pinning**: Use specific Kubernetes versions for consistency

## Troubleshooting Tips

- **Slow startup**: Increase memory allocation or use different driver
- **Image pull issues**: Use `minikube docker-env` and build locally
- **Service access**: Use `minikube tunnel` for LoadBalancer services
- **Storage issues**: Check available disk space and mount points
- **Network problems**: Restart cluster or check firewall settings


---------------

# How to Use kubectl

kubectl is the command-line interface for interacting with Kubernetes clusters. It allows you to deploy applications, inspect and manage cluster resources, and view logs.

## Installation

### macOS
```bash
# Using Homebrew
brew install kubectl

# Using curl
curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/darwin/amd64/kubectl"
chmod +x kubectl
sudo mv kubectl /usr/local/bin/
```

### Linux
```bash
curl -LO "https://dl.k8s.io/release/$(curl -L -s https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl"
chmod +x kubectl
sudo mv kubectl /usr/local/bin/
```

### Windows
```bash
# Using Chocolatey
choco install kubernetes-cli

# Using winget
winget install Kubernetes.kubectl
```

## Basic Commands Structure

```bash
kubectl [command] [TYPE] [NAME] [flags]
```

- **command**: Operation to perform (get, create, apply, delete, etc.)
- **TYPE**: Resource type (pod, service, deployment, etc.)
- **NAME**: Resource name (optional)
- **flags**: Additional options

## Essential Commands

### Cluster Information
```bash
# Get cluster info
kubectl cluster-info

# Get cluster nodes
kubectl get nodes

# Get node details
kubectl describe node <node-name>

# Check kubectl version
kubectl version

# Get current context
kubectl config current-context
```

### Context and Configuration
```bash
# List all contexts
kubectl config get-contexts

# Switch context
kubectl config use-context <context-name>

# Set default namespace
kubectl config set-context --current --namespace=<namespace>

# View kubeconfig
kubectl config view
```

## Working with Resources

### Pods
```bash
# List all pods
kubectl get pods

# List pods in specific namespace
kubectl get pods -n <namespace>

# List pods with more details
kubectl get pods -o wide

# Describe a pod
kubectl describe pod <pod-name>

# Get pod logs
kubectl logs <pod-name>

# Follow logs in real-time
kubectl logs -f <pod-name>

# Execute command in pod
kubectl exec -it <pod-name> -- /bin/bash

# Port forward to pod
kubectl port-forward <pod-name> 8080:80
```

### Deployments
```bash
# List deployments
kubectl get deployments

# Create deployment
kubectl create deployment <name> --image=<image>

# Scale deployment
kubectl scale deployment <name> --replicas=3

# Update deployment image
kubectl set image deployment/<name> <container>=<new-image>

# Rollout status
kubectl rollout status deployment/<name>

# Rollback deployment
kubectl rollout undo deployment/<name>

# Deployment history
kubectl rollout history deployment/<name>
```

### Services
```bash
# List services
kubectl get services

# Create service
kubectl expose deployment <name> --port=80 --target-port=8080

# Create service with type
kubectl expose deployment <name> --type=LoadBalancer --port=80

# Describe service
kubectl describe service <service-name>

# Get service endpoints
kubectl get endpoints <service-name>
```

### ConfigMaps and Secrets
```bash
# Create ConfigMap from literal
kubectl create configmap <name> --from-literal=key1=value1

# Create ConfigMap from file
kubectl create configmap <name> --from-file=<file-path>

# Create Secret
kubectl create secret generic <name> --from-literal=password=secret123

# List ConfigMaps
kubectl get configmaps

# List Secrets
kubectl get secrets

# Describe ConfigMap/Secret
kubectl describe configmap <name>
kubectl describe secret <name>
```

### Namespaces
```bash
# List namespaces
kubectl get namespaces

# Create namespace
kubectl create namespace <name>

# Delete namespace
kubectl delete namespace <name>

# Get resources in namespace
kubectl get all -n <namespace>
```

## Resource Management

### Applying Manifests
```bash
# Apply from file
kubectl apply -f <file.yaml>

# Apply from directory
kubectl apply -f <directory>/

# Apply from URL
kubectl apply -f https://example.com/manifest.yaml

# Dry run
kubectl apply -f <file.yaml> --dry-run=client

# Validate manifest
kubectl apply -f <file.yaml> --validate=true
```

### Creating Resources
```bash
# Create from file
kubectl create -f <file.yaml>

# Create deployment imperatively
kubectl create deployment nginx --image=nginx

# Create service imperatively
kubectl create service clusterip my-service --tcp=80:8080

# Generate YAML template
kubectl create deployment nginx --image=nginx --dry-run=client -o yaml
```

### Deleting Resources
```bash
# Delete by name
kubectl delete pod <pod-name>

# Delete from file
kubectl delete -f <file.yaml>

# Delete all pods in namespace
kubectl delete pods --all -n <namespace>

# Force delete
kubectl delete pod <pod-name> --force --grace-period=0
```

## Advanced Operations

### Resource Monitoring
```bash
# Watch resources
kubectl get pods -w

# Get resource usage
kubectl top nodes
kubectl top pods

# Get events
kubectl get events

# Sort events by timestamp
kubectl get events --sort-by=.metadata.creationTimestamp
```

### Troubleshooting
```bash
# Describe resource for debugging
kubectl describe <resource-type> <name>

# Get logs from previous container instance
kubectl logs <pod-name> --previous

# Get logs from specific container
kubectl logs <pod-name> -c <container-name>

# Debug pod with temporary container
kubectl debug <pod-name> -it --image=busybox

# Run temporary pod for debugging
kubectl run debug --image=busybox -it --rm -- /bin/sh
```

### Resource Editing
```bash
# Edit resource directly
kubectl edit <resource-type> <name>

# Patch resource
kubectl patch deployment <name> -p '{"spec":{"replicas":5}}'

# Label resources
kubectl label pods <pod-name> environment=production

# Annotate resources
kubectl annotate pods <pod-name> description="Web server pod"
```

## Output Formatting

```bash
# JSON output
kubectl get pods -o json

# YAML output
kubectl get pods -o yaml

# Wide output (more columns)
kubectl get pods -o wide

# Custom columns
kubectl get pods -o custom-columns=NAME:.metadata.name,STATUS:.status.phase

# JSONPath
kubectl get pods -o jsonpath='{.items[*].metadata.name}'

# Show labels
kubectl get pods --show-labels
```

## Useful Aliases and Shortcuts

```bash
# Common aliases
alias k=kubectl
alias kgp='kubectl get pods'
alias kgs='kubectl get services'
alias kgd='kubectl get deployments'
alias kdp='kubectl describe pod'
alias kds='kubectl describe service'
alias kdd='kubectl describe deployment'

# Short names for resources
kubectl get po    # pods
kubectl get svc   # services
kubectl get deploy # deployments
kubectl get rs    # replicasets
kubectl get ns    # namespaces
kubectl get cm    # configmaps
kubectl get ing   # ingress

```

## Common Troubleshooting Scenarios

### Pod Issues
```bash
# Pod stuck in Pending
kubectl describe pod <pod-name>
kubectl get events

# Pod CrashLoopBackOff
kubectl logs <pod-name>
kubectl logs <pod-name> --previous

# Pod not accessible
kubectl get svc
kubectl describe svc <service-name>
```


### Resource Issues
```bash
# Resource quota exceeded
kubectl describe quota -n <namespace>

# Node issues
kubectl get nodes
kubectl describe node <node-name>
```

-----------

¿Is it working for you? You can test it with:

```bash
kubectl run hello-world-pod \
  --image=hello-world \
  --restart=Never
```

```bash
kubectl logs hello-world-pod
```

```bash
kubectl delete pod hello-world-pod
```

# Gitea: Installation and Usage in Minikube with Helm

Gitea is a lightweight, self-hosted Git service that provides a GitHub-like interface for managing Git repositories. It's perfect for development environments and can be easily deployed on Minikube using Helm.

## What is Gitea?

Gitea is a community-managed lightweight code hosting solution written in Go. It provides:
- **Git repository hosting** with web interface
- **Issue tracking** and project management
- **Pull requests** and code review
- **Organizations** and team management
- **CI/CD integration** capabilities
- **Lightweight** resource usage compared to GitLab

## Prerequisites

### Install Helm
```bash
# macOS
brew install helm

# Linux
curl https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 | bash

# Windows (using Chocolatey)
choco install kubernetes-helm
```

### Verify Helm Installation
```bash
helm version
```

## Installing Gitea in Minikube

### Step 1: Start Minikube
```bash
# Start Minikube with sufficient resources
minikube start --memory=4096 --cpus=2

# Verify cluster is running
kubectl get nodes
```

### Step 2: Create Namespace
```bash
# Create dedicated namespace for Gitea
kubectl create namespace gitea

# Verify namespace creation
kubectl get namespaces
```

### Step 3: Add Gitea Helm Repository
```bash
# Add the Gitea Helm chart repository
helm repo add gitea-charts https://dl.gitea.io/charts/

# Update Helm repositories
helm repo update

# Verify repository is added
helm repo list
```

### Step 4: Install Gitea with Helm
```bash
# Install Gitea with custom configuration
helm install gitea gitea-charts/gitea \
  --namespace gitea \
  --set service.http.type=NodePort \
  --set service.http.nodePort=30080 \
  --set gitea.admin.username=admin \
  --set gitea.admin.password=admin123 \
  --set gitea.admin.email=admin@example.com
```

### Step 5: Verify Installation
```bash
# Check deployment status
kubectl get pods -n gitea

# Check services
kubectl get services -n gitea

# Check Helm release
helm list -n gitea


## Accessing Gitea

### Method 1: Using Minikube Service
```bash
# Get service URL
minikube service gitea-http -n gitea

# Or get the URL without opening browser
minikube service gitea-http -n gitea --url
```

### Method 2: Using NodePort
```bash
# Get Minikube IP
minikube ip

# Access Gitea at: http://<minikube-ip>:30080
```

### Method 3: Port Forwarding
```bash
# Forward local port to Gitea service
kubectl port-forward service/gitea-http 3000:3000 -n gitea

# Access at: http://localhost:3000
```

## Initial Setup and Configuration

### First Login
1. Access Gitea web interface
2. Complete initial setup if prompted
3. Login with admin credentials:
   - **Username**: admin
   - **Password**: admin123
   - **Email**: admin@example.com

### Basic Configuration
```bash
# Get Gitea pod name
kubectl get pods -n gitea

# Access Gitea container for advanced configuration
kubectl exec -it <gitea-pod-name> -n gitea -- /bin/bash


```

## Using Gitea

### Creating Repositories

#### Via Web Interface
1. Login to Gitea
2. Click "+" → "New Repository"
3. Fill repository details
4. Choose visibility (public/private)
5. Initialize with README if needed

#### Via Git Commands
```bash
# Clone repository
git clone http://<minikube-ip>:30080/<username>/<repo-name>.git

# Add remote to existing repository
git remote add origin http://<minikube-ip>:30080/<username>/<repo-name>.git

# Push existing repository
git push -u origin main
```

### Managing Users and Organizations

#### Creating Users
1. Admin Panel → User Accounts
2. Create New User Account
3. Set username, email, password
4. Assign permissions

#### Creating Organizations
1. Click "+" → "New Organization"
2. Set organization name and details
3. Add members and set permissions

### Repository Management

#### Repository Settings
- **Collaborators**: Add users with different permission levels
- **Webhooks**: Configure CI/CD integrations
- **Branches**: Set default branch and protection rules
- **Issues**: Enable/disable issue tracking
- **Wiki**: Enable repository wiki

#### Branch Protection
```bash
# Via web interface:
# Repository → Settings → Branches → Add Rule
# - Branch name pattern
# - Require pull request reviews
# - Dismiss stale reviews
# - Require status checks
```

-------


# Gitea Actions Runner: Configuration and Usage (Optional)

Gitea Actions Runners are components that execute CI/CD jobs defined in your repositories. Similar to GitHub Actions, they allow you to automate builds, tests, deployments, and other tasks.

## What is a Gitea Actions Runner?

A Gitea Actions Runner is a service that:
- **Executes workflows** defined in `.gitea/workflows/` files
- **Processes CI/CD jobs** automatically
- **Supports multiple languages** and tools
- **Integrates** with the Gitea Actions system
- **Can run** in Docker containers or directly on the host

## Prerequisites

### Enable Gitea Actions
First, you need to ensure that Gitea Actions is enabled in your installation:

```bash
# Access the Gitea pod
kubectl exec -it <gitea-pod-name> -n gitea -- /bin/bash

# Edit configuration (if necessary)
# The file is located at /data/gitea/conf/app.ini
# Add or verify:
# [actions]
# ENABLED = true
```

## Method 1: Runner in Kubernetes (Recommended)

### Step 1: Get the Registration Token

#### Option A: From the Web UI
```bash
1. Access your Gitea instance
2. Go to Site Administration → Actions → Runners
3. Copy the Registration Token -> Something like It3KwWlk6QoL9jhYqjLkD4gVbEbqM8QgomgNP4jF
```

#### Option B: From the command line
```bash
# Access the Gitea pod
kubectl exec -it <gitea-pod-name> -n gitea -- /bin/bash

# Generate registration token
gitea admin runner generate-token
```

### Step 2: Create the Runner Deployment
Create a `gitea-runner.yaml` file:

```yaml
apiVersion: apps/v1
kind: Deployment
metadata:
  name: gitea-runner
  namespace: gitea
  labels:
    app: gitea-runner
spec:
  replicas: 1
  selector:
    matchLabels:
      app: gitea-runner
  template:
    metadata:
      labels:
        app: gitea-runner
    spec:
      containers:
      - name: runner
        image: gitea/act_runner:latest
        env:
        - name: GITEA_INSTANCE_URL
          value: "http://gitea-http:3000"
        - name: GITEA_RUNNER_REGISTRATION_TOKEN
          value: "It3KwWlk6QoL9jhYqjLkD4gVbEbqM8QgomgNP4jF"
        - name: GITEA_RUNNER_NAME
          value: "k8s-runner"
        - name: GITEA_RUNNER_LABELS
          value: "ubuntu-latest,ubuntu-22.04,linux"
        volumeMounts:
        - name: docker-sock
          mountPath: /var/run/docker.sock
        - name: runner-data
          mountPath: /data
        securityContext:
          privileged: true
      volumes:
      - name: docker-sock
        hostPath:
          path: /var/run/docker.sock
      - name: runner-data
        emptyDir: {}
      restartPolicy: Always
```



### Step 3: Update and Deploy the Runner
```bash

# Apply the deployment
kubectl apply -f gitea-runner.yaml

# Verify the deployment
kubectl get pods -n gitea -l app=gitea-runner
kubectl logs -f deployment/gitea-runner -n gitea
```

## Method 2: Runner with Docker Compose

### Create docker-compose.yml
```yaml
version: '3.8'
services:
  gitea-runner:
    image: gitea/act_runner:latest
    container_name: gitea-runner
    environment:
      - GITEA_INSTANCE_URL=http://localhost:30080
      - GITEA_RUNNER_REGISTRATION_TOKEN=your-token-here
      - GITEA_RUNNER_NAME=docker-runner
      - GITEA_RUNNER_LABELS=ubuntu-latest,docker
    volumes:
      - /var/run/docker.sock:/var/run/docker.sock
      - ./runner-data:/data
    restart: unless-stopped
    privileged: true
```

### Run the Runner
```bash
# Start the runner
docker-compose up -d

# View logs
docker-compose logs -f gitea-runner

# Stop the runner
docker-compose down
```

## Method 3: Native Runner (Linux/macOS)

### Step 1: Download the Binary
```bash
# Linux AMD64
wget https://dl.gitea.io/act_runner/latest/act_runner-linux-amd64

# Linux ARM64
wget https://dl.gitea.io/act_runner/latest/act_runner-linux-arm64

# macOS AMD64
wget https://dl.gitea.io/act_runner/latest/act_runner-darwin-amd64

# macOS ARM64 (M1/M2)
wget https://dl.gitea.io/act_runner/latest/act_runner-darwin-arm64

# Make executable
chmod +x act_runner-*
sudo mv act_runner-* /usr/local/bin/act_runner
```

### Step 2: Register the Runner
```bash
# Register the runner
act_runner register \
  --instance http://localhost:30080 \
  --token YOUR_REGISTRATION_TOKEN \
  --name native-runner \
  --labels ubuntu-latest,native

# Verify configuration
cat .runner
```

### Step 3: Run the Runner
```bash
# Run in foreground
act_runner daemon

# Run as service (systemd)
sudo tee /etc/systemd/system/gitea-runner.service > /dev/null <<EOF
[Unit]
Description=Gitea Actions Runner
After=network.target

[Service]
Type=simple
User=runner
WorkingDirectory=/home/runner
ExecStart=/usr/local/bin/act_runner daemon
Restart=always
RestartSec=5

[Install]
WantedBy=multi-user.target
EOF

# Enable and start the service
sudo systemctl enable gitea-runner
sudo systemctl start gitea-runner
sudo systemctl status gitea-runner
```

## Workflow Configuration

### Directory Structure
```
your-repository/
├── .gitea/
│   └── workflows/
│       ├── ci.yml
│       ├── build.yml
│       └── deploy.yml
├── src/
└── README.md
```

### Basic Workflow Example
Create `.gitea/workflows/ci.yml`:

```yaml
name: CI Pipeline
on:
  push:
    branches: [ main, develop ]
  pull_request:
    branches: [ main ]

jobs:
  test:
    runs-on: ubuntu-latest
    steps:
    - name: Checkout code
      uses: actions/checkout@v3
    
    - name: Setup Node.js
      uses: actions/setup-node@v3
      with:
        node-version: '18'
    
    - name: Install dependencies
      run: npm install
    
    - name: Run tests
      run: npm test
    
    - name: Build application
      run: npm run build

  docker-build:
    needs: test
    runs-on: ubuntu-latest
    steps:
    - name: Checkout code
      uses: actions/checkout@v3
    
    - name: Build Docker image
      run: |
        docker build -t my-app:${{ github.sha }} .
        docker tag my-app:${{ github.sha }} my-app:latest
```

### Workflow with Multiple Jobs
```yaml
name: Full Pipeline
on:
  push:
    branches: [ main ]

jobs:
  lint:
    runs-on: ubuntu-latest
    steps:
    - uses: actions/checkout@v3
    - name: Lint code
      run: |
        npm install
        npm run lint

  test:
    runs-on: ubuntu-latest
    strategy:
      matrix:
        node-version: [16, 18, 20]
    steps:
    - uses: actions/checkout@v3
    - name: Setup Node ${{ matrix.node-version }}
      uses: actions/setup-node@v3
      with:
        node-version: ${{ matrix.node-version }}
    - run: npm test

  security-scan:
    runs-on: ubuntu-latest
    steps:
    - uses: actions/checkout@v3
    - name: Security audit
      run: npm audit

  deploy:
    needs: [lint, test, security-scan]
    runs-on: ubuntu-latest
    if: github.ref == 'refs/heads/main'
    steps:
    - uses: actions/checkout@v3
    - name: Deploy to staging
      run: |
        echo "Deploying to staging environment"
        # Deployment commands here
```

## Runner Management

### Check Runner Status
```bash
# In Kubernetes
kubectl get pods -n gitea -l app=gitea-runner
kubectl logs -f deployment/gitea-runner -n gitea

# With Docker
docker ps | grep gitea-runner
docker logs gitea-runner

# Native service
sudo systemctl status gitea-runner
journalctl -u gitea-runner -f
```

### Scale Runners in Kubernetes
```bash
# Scale to multiple replicas
kubectl scale deployment gitea-runner --replicas=3 -n gitea

# Verify scaling
kubectl get pods -n gitea -l app=gitea-runner
```

### Configure Multiple Runners with Labels
```yaml
# Specialized runner for Docker builds
apiVersion: apps/v1
kind: Deployment
metadata:
  name: gitea-runner-docker
  namespace: gitea
spec:
  replicas: 1
  selector:
    matchLabels:
      app: gitea-runner-docker
  template:
    metadata:
      labels:
        app: gitea-runner-docker
    spec:
      containers:
      - name: runner
        image: gitea/act_runner:latest
        env:
        - name: GITEA_INSTANCE_URL
          value: "http://gitea-http:3000"
        - name: GITEA_RUNNER_REGISTRATION_TOKEN
          value: "YOUR_TOKEN"
        - name: GITEA_RUNNER_NAME
          value: "docker-builder"
        - name: GITEA_RUNNER_LABELS
          value: "docker,ubuntu-latest,builder"
```

## Troubleshooting

### Common Issues

#### Runner Not Connecting
```bash
# Check connectivity
kubectl exec -it <runner-pod> -n gitea -- wget -qO- http://gitea-http:3000

# Check logs
kubectl logs <runner-pod> -n gitea

# Check token
kubectl describe pod <runner-pod> -n gitea
```

#### Jobs Not Running
```bash
# Verify that the runner is registered
# In the web UI: Site Administration → Actions → Runners

# Check workflow vs runner labels
# The labels in runs-on must match GITEA_RUNNER_LABELS
```

#### Docker Permissions
```bash
# If using Docker-in-Docker, ensure privileges
# In the deployment, add:
securityContext:
  privileged: true
```

### Diagnostic Commands
```bash
# General status
kubectl get all -n gitea

# Namespace events
kubectl get events -n gitea --sort-by=.metadata.creationTimestamp

# Detailed logs
kubectl logs -f deployment/gitea-runner -n gitea --previous

# Describe pod issues
kubectl describe pod <runner-pod> -n gitea
```



# Stern: Multi-Pod Log Tailing for Kubernetes

Stern is a lightweight CLI tool that tails logs from multiple Kubernetes pods and containers with color-coded, multiplexed output, automatically following new pods and removing deleted ones. It requires no in-cluster agent—just install the binary locally and run a single command to stream logs across namespaces.

## What is Stern?

Stern provides powerful log tailing capabilities for Kubernetes environments:

- **Regex-based pod selection**: Tails logs from one or more pods identified by a regular expression or Kubernetes resource (`<resource>/<name>`), so you don't have to specify exact pod IDs
- **Automatic pod following**: Automatically follows new pods and stops tailing deleted ones, ensuring continuous log streaming
- **Multi-container support**: Captures all containers by default (no extra flags needed), making multi-container pod logging effortless
- **Enhanced output formatting**: Prefixes each log line with namespace, pod, and container names (plus optional timestamps), aiding in quick identification
- **Color-coded output**: Color-codes output for rapid visual debugging, with themes customizable by flags like `--color`
- **Cross-namespace streaming**: Can tail logs across multiple namespaces simultaneously

## Prerequisites

### Kubernetes Cluster Access
```bash
# Ensure kubectl is configured and working
kubectl cluster-info

# Verify you have access to pods
kubectl get pods --all-namespaces
```

## Installation

### Method 1: Download Binary (Recommended)
Download a pre-built release for your OS from the GitHub Releases page:

```bash
# For Linux/macOS (replace <version> with latest version, e.g., 1.25.0)
curl -Lo stern \
  https://github.com/stern/stern/releases/download/v1.32.0/stern_1.32.0_darwin_amd64.tar.gz \
  && chmod +x stern && sudo mv stern /usr/local/bin/

# For macOS ARM64 (M1/M2)
curl -Lo stern \
  https://github.com/stern/stern/releases/download/v<version>/stern_darwin_arm64 \
  && chmod +x stern && sudo mv stern /usr/local/bin/

# Verify installation
stern --version
```

### Method 2: Build from Source
If you have Go installed:

```bash
go install github.com/stern/stern@latest

# Ensure $GOPATH/bin is in your PATH
export PATH=$PATH:$(go env GOPATH)/bin
```

### Method 3: Homebrew (macOS/Linux)
```bash
brew install stern
```

### Method 4: Krew Plugin (kubectl)
```bash
# Install krew if not already installed
kubectl krew install stern

# Use as kubectl plugin
kubectl stern <pod-query>
```

### Method 5: Package Managers

#### Ubuntu/Debian
```bash
# Add repository and install
curl -s https://api.github.com/repos/stern/stern/releases/latest \
  | grep "browser_download_url.*linux_amd64" \
  | cut -d '"' -f 4 \
  | wget -qi - -O stern
chmod +x stern
sudo mv stern /usr/local/bin/
```

#### CentOS/RHEL/Fedora
```bash
# Download and install
VERSION=$(curl -s https://api.github.com/repos/stern/stern/releases/latest | grep tag_name | cut -d '"' -f 4)
curl -Lo stern https://github.com/stern/stern/releases/download/${VERSION}/stern_linux_amd64
chmod +x stern
sudo mv stern /usr/local/bin/
```

## Basic Usage

### Simple Pod Tailing
```bash
# Tail logs from pods matching a pattern
stern <pod-query>

# Examples:
stern frontend                    # Match pods containing "frontend"
stern "^frontend"                 # Match pods starting with "frontend"
stern "frontend$"                 # Match pods ending with "frontend"
stern "frontend.*"                # Match pods starting with "frontend"
```

### Resource-based Tailing
```bash
# Tail logs from specific Kubernetes resources
stern deployment/frontend         # All pods in frontend deployment
stern service/api                 # All pods behind api service
stern statefulset/database        # All pods in database statefulset
stern daemonset/logging           # All pods in logging daemonset
```

### Namespace Operations
```bash
# Tail logs from specific namespace
stern frontend -n production

# Tail logs from multiple namespaces
stern frontend -n production,staging

# Tail logs from all namespaces
stern frontend --all-namespaces

# Exclude specific namespaces
stern frontend --all-namespaces --exclude-namespace kube-system,kube-public
```

## Advanced Usage

### Container Selection
```bash
# Tail logs from specific containers
stern frontend -c web             # Only "web" container
stern frontend -c "web|api"       # "web" or "api" containers
stern frontend --exclude-container sidecar  # Exclude sidecar containers

# Include init containers
stern frontend --include-init-containers
```

### Output Formatting
```bash
# Add timestamps
stern frontend --timestamps

# Custom output format
stern frontend --template "{{.Namespace}}/{{.PodName}}/{{.ContainerName}}: {{.Message}}"

# JSON output
stern frontend --output json

# Raw output (no prefixes)
stern frontend --output raw
```

### Time-based Filtering
```bash
# Show logs since specific time
stern frontend --since 1h         # Last hour
stern frontend --since 30m        # Last 30 minutes
stern frontend --since 2023-01-01T10:00:00Z  # Specific timestamp

# Show logs until specific time
stern frontend --until 2023-01-01T18:00:00Z

# Combine since and until
stern frontend --since 1h --until 30m
```

### Color and Theming
```bash
# Disable colors
stern frontend --color never

# Force colors
stern frontend --color always

# Auto colors (default)
stern frontend --color auto

# Different color themes
stern frontend --color=256        # 256-color mode
```

## Comprehensive Log Capture

### Capturing All Cluster Logs
To capture logs from all pods and containers across every namespace into a single file:

```bash
# Create logs directory
mkdir -p /Users/jorge/Documents/noise-machine/logs

# Capture all logs to file
stern . --all-namespaces > /Users/jorge/Documents/noise-machine/logs/all-kube-logs.txt

# Alternative with timestamps
stern . --all-namespaces --timestamps > /Users/jorge/Documents/noise-machine/logs/all-kube-logs-timestamped.txt

# Capture with specific time range
stern . --all-namespaces --since 1h --timestamps > /Users/jorge/Documents/noise-machine/logs/last-hour-logs.txt
```

### Real-time Monitoring
```bash
# View captured logs in real time
tail -f /Users/jorge/Documents/noise-machine/logs/all-kube-logs.txt

# View with colors and search
tail -f /Users/jorge/Documents/noise-machine/logs/all-kube-logs.txt | grep -E "(ERROR|WARN|FATAL)"

# Use less for better navigation
tail -f /Users/jorge/Documents/noise-machine/logs/all-kube-logs.txt | less +F
```

### Filtered Log Capture
```bash
# Capture only error logs
stern . --all-namespaces | grep -E "(ERROR|FATAL|Exception)" > /Users/jorge/Documents/noise-machine/logs/error-logs.txt

# Capture logs from specific namespaces
stern . -n production,staging --timestamps > /Users/jorge/Documents/noise-machine/logs/prod-staging-logs.txt

# Capture logs excluding system namespaces
stern . --all-namespaces --exclude-namespace kube-system,kube-public,kube-node-lease > /Users/jorge/Documents/noise-machine/logs/app-logs.txt
```

## Practical Examples

### Development Scenarios
```bash
# Monitor your application deployment
stern deployment/my-app -n development --timestamps

# Debug failing pods
stern ".*" -n development | grep -E "(ERROR|FATAL|panic|exception)"

# Monitor specific microservice
stern service/user-service --follow --timestamps

# Watch all containers in a pod
stern pod/my-app-pod-12345 --all-containers
```

### Production Monitoring
```bash
# Monitor critical services
stern "^(frontend|backend|database)" -n production --timestamps

# Monitor with error filtering
stern . -n production | grep -E "(ERROR|WARN|FATAL)" --color=always

# Monitor new deployments
stern deployment/new-feature -n production --since 10m

# Monitor across multiple environments
stern frontend -n production,staging --timestamps
```

### Troubleshooting Scenarios
```bash
# Debug pod startup issues
stern "^my-app" --include-init-containers --since 5m

# Monitor resource-specific issues
stern deployment/problematic-app --since 1h | grep -E "(OOM|memory|CPU)"

# Debug networking issues
stern . --all-namespaces | grep -E "(connection|timeout|refused|dns)"

# Monitor security events
stern . --all-namespaces | grep -E "(auth|login|permission|denied|unauthorized)"
```

## Integration with Other Tools


### Integration with grep and awk
```bash
# Extract specific information
stern . --all-namespaces | awk '/ERROR/ {print $1, $NF}'

# Count errors per pod
stern . --all-namespaces | grep ERROR | awk '{print $2}' | sort | uniq -c

# Monitor response times
stern frontend | grep "response_time" | awk '{print $3, $NF}'
```

### Integration with jq for JSON logs
```bash
# Parse JSON logs
stern frontend | grep "^{" | jq '.level, .message'

# Filter JSON logs by level
stern frontend | grep "^{" | jq 'select(.level == "error")'

# Extract specific fields
stern frontend | grep "^{" | jq -r '"\(.timestamp) \(.level): \(.message)"'
```

## Configuration and Customization

### Log Management
```bash
# Rotate log files
stern . --all-namespaces >> /var/log/k8s/cluster-$(date +%Y%m%d).log

# Compress old logs
find /var/log/k8s/ -name "cluster-*.log" -mtime +7 -exec gzip {} \;

# Clean up old logs
find /var/log/k8s/ -name "cluster-*.log.gz" -mtime +30 -delete
```


### Stop Stern Processes
```bash
# Find running stern processes
ps aux | grep stern

# Kill specific stern process
kill <stern-pid>

# Kill all stern processes
pkill stern
```

