feat(deploy): add center host docker compose stack for git, registry and s3 hosting

deploy/center/docker-compose.yml

@@ -0,0 +1,117 @@
+services:
+  # ==================== 反代 ====================
+  caddy:
+    image: caddy:2.11.2-alpine
+    container_name: juwan-caddy
+    restart: unless-stopped
+    ports:
+      - "80:80"
+      - "443:443"
+      - "443:443/udp"
+    volumes:
+      - ./caddy/Caddyfile:/etc/caddy/Caddyfile:ro
+      - caddy-data:/data
+      - caddy-config:/config
+    depends_on:
+      - gitea
+      - zot
+      - garage
+
+  # ==================== 容器仓库 ====================
+  zot:
+    image: ghcr.io/project-zot/zot:v2.1.16
+    container_name: juwan-zot
+    restart: unless-stopped
+    command: ["serve", "/etc/zot/config.json"]
+    volumes:
+      - ./zot/config.json:/etc/zot/config.json:ro
+      - ./zot/htpasswd:/etc/zot/htpasswd:ro
+      - zot-data:/var/lib/registry
+    expose:
+      - "5000"
+    healthcheck:
+      test: ["CMD-SHELL", "wget -qO- http://127.0.0.1:5000/v2/ >/dev/null || exit 1"]
+      interval: 30s
+      timeout: 5s
+      retries: 5
+      start_period: 20s
+
+  # ==================== S3 对象存储 ====================
+  garage:
+    image: dxflrs/garage:v2.3.0
+    container_name: juwan-garage
+    restart: unless-stopped
+    command: ["/garage", "server"]
+    volumes:
+      - ./garage/garage.toml:/etc/garage.toml:ro
+      - garage-meta:/var/lib/garage/meta
+      - garage-data:/var/lib/garage/data
+    expose:
+      - "3900"
+      - "3901"
+      - "3902"
+      - "3903"
+
+  # ==================== Git 服务 ====================
+  gitea:
+    image: docker.gitea.com/gitea:1.26.1
+    container_name: juwan-gitea
+    restart: unless-stopped
+    environment:
+      USER_UID: "1000"
+      USER_GID: "1000"
+      GITEA__database__DB_TYPE: sqlite3
+      GITEA__server__DOMAIN: ${GITEA_DOMAIN}
+      GITEA__server__ROOT_URL: https://${GITEA_DOMAIN}/
+      GITEA__server__PROTOCOL: http
+      GITEA__server__HTTP_PORT: "3000"
+      GITEA__server__DISABLE_SSH: "true"
+      GITEA__service__DISABLE_REGISTRATION: "true"
+      GITEA__security__INSTALL_LOCK: "true"
+      GITEA__actions__ENABLED: "true"
+    volumes:
+      - gitea-data:/data
+      - /etc/timezone:/etc/timezone:ro
+      - /etc/localtime:/etc/localtime:ro
+    expose:
+      - "3000"
+    healthcheck:
+      test: ["CMD-SHELL", "wget -qO- http://127.0.0.1:3000/api/healthz >/dev/null || exit 1"]
+      interval: 30s
+      timeout: 5s
+      retries: 5
+      start_period: 30s
+
+  # ==================== CI/CD 执行器 ====================
+  runner:
+    image: gitea/act_runner:0.6.1
+    container_name: juwan-runner
+    restart: unless-stopped
+    environment:
+      GITEA_INSTANCE_URL: http://gitea:3000
+      GITEA_RUNNER_REGISTRATION_TOKEN: ${RUNNER_TOKEN}
+      GITEA_RUNNER_NAME: juwan-center
+      GITEA_RUNNER_LABELS: ubuntu-latest:docker://docker.gitea.com/runner-images:ubuntu-latest-slim
+      CONFIG_FILE: /data/config.yaml
+    volumes:
+      - runner-data:/data
+      - /var/run/docker.sock:/var/run/docker.sock
+    depends_on:
+      gitea:
+        condition: service_healthy
+
+volumes:
+  caddy-data:
+    name: juwan-caddy-data
+  caddy-config:
+    name: juwan-caddy-config
+  zot-data:
+    name: juwan-zot-data
+  garage-meta:
+    name: juwan-garage-meta
+  garage-data:
+    name: juwan-garage-data
+  gitea-data:
+    name: juwan-gitea-data
+  runner-data:
+    name: juwan-runner-data