docker镜像仓库 harbor 笔记

Posted

tags:

篇首语:本文由小常识网(cha138.com)小编为大家整理,主要介绍了docker镜像仓库 harbor 笔记相关的知识,希望对你有一定的参考价值。

Harbor是VMware公司开源的企业级Docker Registry项目,项目地址: https://github.com/vmware/harbor
1、下载离线安装包
2、安装Docker
3、安装docker-compose
4、自签TLS证书
5、 Harbor安装与配置
6、 Docker主机访问Harbor


curl -L https://github.com/docker/compose/releases/download/1.21.0-rc1/docker-compose-`uname -s`-`uname -m` -o /usr/local/bin/docker-composechmod +x /usr/local/bin/docker-compose

wget https://storage.googleapis.com/harbor-releases/release-1.4.0/harbor-offline-installer-v1.4.0.tgz

tar xf  harbor-offline-installer-v1.4.0.tgz
自签TLS证书                  https://github.com/vmware/harbor/blob/master/docs/configure_https.md
cd harbor/
mkdir ssl
cd ssl
openssl req     -newkey rsa:4096 -nodes -sha256 -keyout ca.key     -x509 -days 365 -out ca.crt

Country Name (2 letter code) [XX]:CN
State or Province Name (full name) []:
Locality Name (eg, city) [Default City]:
Organization Name (eg, company) [Default Company Ltd]:
Organizational Unit Name (eg, section) []:
Common Name (eg, your name or your server‘s hostname) []:hequan
Email Address []:
openssl req     -newkey rsa:4096 -nodes -sha256 -keyout reg.hequan.xyz.key     -out reg.hequan.xyz.csr

-----
Country Name (2 letter code) [XX]:CN
State or Province Name (full name) []:
Locality Name (eg, city) [Default City]:
Organization Name (eg, company) [Default Company Ltd]:
Organizational Unit Name (eg, section) []:
Common Name (eg, your name or your server‘s hostname) []:reg.hequan.xyz
Email Address []:

Please enter the following ‘extra‘ attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:
openssl x509 -req -days 365 -in reg.hequan.xyz.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out reg.hequan.xyz.crt

vim harbor.cfg
hostname = reg.hequan.xyz
ui_url_protocol = https
ssl_cert = ./ssl/reg.hequan.xyz.crt
ssl_cert_key = ./ssl/reg.hequan.xyz.key
harbor_admin_password = 12345

./prepare
./install.sh

docker-compose  ps

       Name                     Command                  State                                    Ports                              
-------------------------------------------------------------------------------------------------------------------------------------
harbor-adminserver   /harbor/start.sh                 Up (healthy)                                                                   
harbor-db            /usr/local/bin/docker-entr ...   Up (healthy)   3306/tcp                                                        
harbor-jobservice    /harbor/start.sh                 Up (healthy)                                                                   
harbor-log           /bin/sh -c /usr/local/bin/ ...   Up (healthy)   127.0.0.1:1514->10514/tcp                                       
harbor-ui            /harbor/start.sh                 Up (healthy)                                                                   
nginx                nginx -g daemon off;             Up             0.0.0.0:443->443/tcp, 0.0.0.0:4443->4443/tcp, 0.0.0.0:80->80/tcp
registry             /entrypoint.sh serve /etc/ ...   Up (healthy)   5000/tcp   
修改C:\Windows\System32\drivers\etc\hosts

192.168.1.112    reg.hequan.xyz

登录    admin    12345

创建仓库
创建用户
项目-成员-新建成员

客户端


mkdir /etc/docker/certs.d/reg.hequan.xyz  -p
echo 192.168.1.112    reg.hequan.xyz >> /etc/hosts

scp  [email protected]:/data/harbor/ssl/reg.hequan.xyz.crt  /etc/docker/certs.d/reg.hequan.xyz

登录
docker login reg.hequan.xyz
Username: hequan
Password:
Login Succeeded

或者  docker  login  reg.hequan.xyz   -u hequan  -p 12345

在项目中标记镜像:
docker tag SOURCE_IMAGE[:TAG] reg.hequan.xyz/test/IMAGE[:TAG]

推送镜像到当前项目:
docker push reg.hequan.xyz/test/IMAGE[:TAG]

docker tag centos reg.hequan.xyz/test/centos:v1
docker push reg.hequan.xyz/test/centos:v1

docker pull reg.hequan.xyz/test/centos:v1

以上是关于docker镜像仓库 harbor 笔记的主要内容,如果未能解决你的问题,请参考以下文章

Docker学习笔记 —— 镜像仓库制作(公有+私有+Harbor)

DOCKER 08:搭建本地镜像仓库 Harbor

离线手动部署docker镜像仓库——harbor仓库

Linux系统 Docker 镜像仓库Harbor

docker镜像仓库

离线手动部署docker镜像仓库——harbor仓库