# devops流程

**Repository Path**: lijhgod/docker-private-warehouse

## Basic Information

- **Project Name**: devops流程
- **Description**: No description available
- **Primary Language**: Unknown
- **License**: MulanPSL-2.0
- **Default Branch**: master
- **Homepage**: None
- **GVP Project**: No

## Statistics

- **Stars**: 1
- **Forks**: 0
- **Created**: 2021-12-12
- **Last Updated**: 2021-12-31

## Categories & Tags

**Categories**: Uncategorized

**Tags**: None

## README

### devops 整个流程

# docker私有仓库


# 

添加
vim /usr/lib/systemd/system/docker.service

ExecStart=/usr/bin/dockerd  **--insecure-registry=172.17.0.3:5000 -H tcp://0.0.0.0:2376**  -H fd:// --containerd=/run/containerd/containerd.sock

systemctl daemon-reload

systemctl enable docker --now

docker pull hub.c.163.com/library/registry:latest

docker run -d --name registry -p 5000:5000 --restart=always -v /myreg:/var/lib/registry hub.c.163.com/library/registry


# 安装gitlab并配置
docker pull beginor/gitlab-ce （中文版）(注：使用 https://hub.docker.com/r/beginor/gitlab-ce)
 
mkdir -p /data/gitlab/etc /data/gitlab/log /data/gitlab/data  (创建目录)

chmod 777 /data/gitlab/etc /data/gitlab/log /data/gitlab/data 

docker run -dit --name=gitlab --restart=always -p 8443:443 -p 80:80 -p 222:22 -v /data/gitlab/etc:/etc/gitlab -v /data/gitlab/log:/var/log/gitlab -v /data/gitlab/data:/var/opt/gitlab --privileged=true beginor/gitlab-ce

# jenkins 安装
docker pull jenkins/jenkins:2.249.1-lts-centos7 (注：使用最新jenkins/jenkins镜像，这个可能有漏洞)


mkdir /jenkins; chown 1000.1000 /jenkins

docker run -dit -p 8081:8080 -p 50000:50000 --name jenkins --privileged=true --restart=always -v /jenkins:/var/jenkins_home jenkins/jenkins:2.249.1-lts-centos7

vim /jenkins/hudson.model.UpdateCenter.xml

https://mirrors.tuna.tsinghua.edu.cn/jenkins (清华镜像源)

# jenkins 安装docker（编译镜像）

# jenkins 安全设置 与gitlab联动

# 关闭jenkins的跨站点伪造请求
-Dhudson.security.csrf.GlobalCrumbIssuerConfiguration.DISABLE_CSRF_PROTECTION=true


# 创建kubeconfig文件 （见k8s集群操作）

# 下载匹配的kubectl
wget https://storage.googleapis.com/kubernetes-release/release/v1.21.1/bin/linux/amd64/kubectl

docker cp kubectl jenkins:/

docker cp kc1 jenkins:/