docker鏡像倉庫 harbor 筆記
阿新 • • 發佈:2018-04-05
docker harbor docker鏡像倉庫 鏡像倉庫 Harbor是VMware公司開源的企業級Docker Registry項目,項目地址: https://github.com/vmware/harbor
1、下載離線安裝包
2、安裝Docker
3、安裝docker-compose
4、自簽TLS證書
5、 Harbor安裝與配置
6、 Docker主機訪問Harbor
1、下載離線安裝包
2、安裝Docker
3、安裝docker-compose
4、自簽TLS證書
5、 Harbor安裝與配置
6、 Docker主機訪問Harbor
curl -L https://github.com/docker/compose/releases/download/1.21.0-rc1/docker-compose-`uname -s`-`uname -m` -o /usr/local/bin/docker-composechmod +x /usr/local/bin/docker-compose wget https://storage.googleapis.com/harbor-releases/release-1.4.0/harbor-offline-installer-v1.4.0.tgz tar xf harbor-offline-installer-v1.4.0.tgz
自簽TLS證書 https://github.com/vmware/harbor/blob/master/docs/configure_https.md
cd harbor/ mkdir ssl cd ssl openssl req -newkey rsa:4096 -nodes -sha256 -keyout ca.key -x509 -days 365 -out ca.crt Country Name (2 letter code) [XX]:CN State or Province Name (full name) []: Locality Name (eg, city) [Default City]: Organization Name (eg, company) [Default Company Ltd]: Organizational Unit Name (eg, section) []: Common Name (eg, your name or your server‘s hostname) []:hequan Email Address []:
openssl req -newkey rsa:4096 -nodes -sha256 -keyout reg.hequan.xyz.key -out reg.hequan.xyz.csr ----- Country Name (2 letter code) [XX]:CN State or Province Name (full name) []: Locality Name (eg, city) [Default City]: Organization Name (eg, company) [Default Company Ltd]: Organizational Unit Name (eg, section) []: Common Name (eg, your name or your server‘s hostname) []:reg.hequan.xyz Email Address []: Please enter the following ‘extra‘ attributes to be sent with your certificate request A challenge password []: An optional company name []:
openssl x509 -req -days 365 -in reg.hequan.xyz.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out reg.hequan.xyz.crt
vim harbor.cfg
hostname = reg.hequan.xyz
ui_url_protocol = https
ssl_cert = ./ssl/reg.hequan.xyz.crt
ssl_cert_key = ./ssl/reg.hequan.xyz.key
harbor_admin_password = 12345
./prepare
./install.sh
docker-compose ps
Name Command State Ports
-------------------------------------------------------------------------------------------------------------------------------------
harbor-adminserver /harbor/start.sh Up (healthy)
harbor-db /usr/local/bin/docker-entr ... Up (healthy) 3306/tcp
harbor-jobservice /harbor/start.sh Up (healthy)
harbor-log /bin/sh -c /usr/local/bin/ ... Up (healthy) 127.0.0.1:1514->10514/tcp
harbor-ui /harbor/start.sh Up (healthy)
nginx nginx -g daemon off; Up 0.0.0.0:443->443/tcp, 0.0.0.0:4443->4443/tcp, 0.0.0.0:80->80/tcp
registry /entrypoint.sh serve /etc/ ... Up (healthy) 5000/tcp
修改C:\Windows\System32\drivers\etc\hosts
192.168.1.112 reg.hequan.xyz
登錄 admin 12345
創建倉庫
創建用戶
項目-成員-新建成員
客戶端
mkdir /etc/docker/certs.d/reg.hequan.xyz -p
echo 192.168.1.112 reg.hequan.xyz >> /etc/hosts
scp [email protected]:/data/harbor/ssl/reg.hequan.xyz.crt /etc/docker/certs.d/reg.hequan.xyz
登錄
docker login reg.hequan.xyz
Username: hequan
Password:
Login Succeeded
或者 docker login reg.hequan.xyz -u hequan -p 12345
在項目中標記鏡像:
docker tag SOURCE_IMAGE[:TAG] reg.hequan.xyz/test/IMAGE[:TAG]
推送鏡像到當前項目:
docker push reg.hequan.xyz/test/IMAGE[:TAG]
docker tag centos reg.hequan.xyz/test/centos:v1
docker push reg.hequan.xyz/test/centos:v1
docker pull reg.hequan.xyz/test/centos:v1
docker鏡像倉庫 harbor 筆記