公有仓库和私有仓库:
速度:公有仓库走的公网,速度较慢;私有仓库走的是内网,即局域网;
安全性:公有仓库存放在公共硬盘上;私有仓库存在自己服务器硬盘上。
公有仓:
最权威的,但速度比较慢:
https://hub.docker.com/
首先登陆:
$ docker login -usmallsoup
Password:
WARNING! Your password will be stored unencrypted in /root/.docker/config.json.
Configure a credential helper to remove this warning. See
https://docs.docker.com/engine/reference/commandline/login/#credentials-store
Login Succeededdocker tag zookeeper:3.5 smallsoup/zookeeper:3.5
docker push smallsoup/zookeeper:3.5
私有仓:
用docker提供的registry在本地搭建私有仓:
docker pull registry:2.5.2
docker run -d -p 5000:5000 registry:2.5.2
docker tag zookeeper:3.5 localhost:5000/zookeeper:3.5
docker push zookeeper:3.5 localhost:5000/zookeeper:3.5因没有设置安全性,所以直接可以push上去。
由于是本地仓库,所以pull的速度很快。
[root@localhost micro-service]# docker pull localhost:5000/zookeeper:3.5
3.5: Pulling from zookeeper
Digest: sha256:3474ec46da9db9dc27a431f9645a2df9c91d5b969f591fe0ccd4c40f2bfd1579
Status: Image is up to date for localhost:5000/zookeeper:3.5但是这个私有仓不能满足我们的需求,生产线上万一该私有仓服务器故障,其他服务器也无法接管。再者,也没有页面可以便于管理。
业内出现的harbor,主要提供 Dcoker Registry 管理UI,可基于角色访问控制, AD/LDAP 集成,日志审核等功能,完全的支持中文,非常适用于生产环境。
harbor私有仓库搭建
github地址:
https://github.com/goharbor/harbor/releases
下载地址:
https://storage.googleapis.com/harbor-releases/harbor-offline-installer-v1.5.3.tgz
这个链接速度太慢,可以在这里下载:
http://harbor.orientsoft.cn/
以下使用的harbor版本是harbor-offline-installer-v1.5.0.tgz
首先解压:
tar -zxf harbor-offline-installer-v1.5.0.tgz[Step 4]: starting Harbor ...
Creating network "harbor_harbor" with the default driver
Creating harbor-log ... done
Creating harbor-adminserver ...
Creating redis ... error
Creating harbor-db ...
Creating registry ...
Creating harbor-adminserver ... done
ERROR: for redis Cannot create container for service redis: b'Conflict. The container name "/redis" is already in use
Creating harbor-db ... done
Creating registry ... done
Creating harbor-ui ... done
Creating nginx ... done
ERROR: for redis Cannot create container for service redis: b'Conflict. The container name "/redis" is already in use by container "c3813d66ccad284d3529227fabf3d5c19cb991237de8d3e72fc470ffd2cbfa99". You have to remove (or rename) that container to be able to reuse that name.'
ERROR: Encountered errors while bringing up the project.安装过程中报以上错误,是因为服务器上已经有了名为redis的容器名,和harbor将要安装的redis容器名重名,需要rename服务器上已有的redis容器名为micro-service-redis:
$ docker ps -a --filter name=redis
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
c3813d66ccad hub.c.163.com/public/redis:2.8.4 "/run.sh" 2 days ago Up 42 hours 0.0.0.0:6379->6379/tcp redis
$ docker rename redis micro-service-redis
$ docker ps -aq --filter name=redis
c3813d66ccad
$ docker ps -a --filter name=redis
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
c3813d66ccad hub.c.163.com/public/redis:2.8.4 "/run.sh" 2 days ago Up 42 hours 0.0.0.0:6379->6379/tcp micro-service-redis[Step 4]: starting Harbor ...
Creating network "harbor_harbor" with the default driver
Creating harbor-log ... done
Creating redis ... done
Creating harbor-db ... done
Creating harbor-adminserver ... done
Creating registry ... done
Creating harbor-ui ... done
Creating harbor-jobservice ...
Creating nginx ...
ERROR: for harbor-jobservice UnixHTTPConnectionPool(host='localhost', port=None): Read timed out. (read timeout=60)
ERROR: for nginx UnixHTTPConnectionPool(host='localhost', port=None): Read timed out. (read timeout=60)
ERROR: for jobservice UnixHTTPConnectionPool(host='localhost', port=None): Read timed out. (read timeout=60)
ERROR: for proxy UnixHTTPConnectionPool(host='localhost', port=None): Read timed out. (read timeout=60)
ERROR: An HTTP request took too long to complete. Retry with --verbose to obtain debug information.
If you encounter this issue regularly because of slow network conditions, consider setting COMPOSE_HTTP_TIMEOUT to a higher value (current value: 60).又报以上的错,可能是由于网络问题,导致失败,重新./install试试:
[Step 4]: starting Harbor ...
Creating network "harbor_harbor" with the default driver
Creating harbor-log ... done
Creating redis ... done
Creating harbor-db ... done
Creating harbor-adminserver ... done
Creating registry ... done
Creating harbor-ui ... done
Creating nginx ... done
Creating harbor-jobservice ... done
----Harbor has been installed and started successfully.----
Now you should be able to visit the admin portal at http://hub.smallsoup.com.
For more details, please visit https://github.com/vmware/harbor .成功了。
可以访问harbor部署服务器IP:docker-compose.yml中80映射到宿主机上的端口;
用户名是admin,密码是harbor.cfg中harbor_admin_password的值访问管理页面:
可以创建一个私有仓库micro-service:
在系统管理->用户管理中添加用户,然后点开上一步创建的项目-->>成员-->>新建成员,并设置权限。
项目管理员:有pull和push以及项目其他管理权限;
开发人员:有pull和push权限;
访客:只有pull权限。
将该项目的各个微服务image push到harbor的micro-service项目里:
$ docker images |grep -v "vmware"
REPOSITORY TAG IMAGE ID CREATED SIZE
api-gateway-zuul latest 8a814cf9bb65 23 hours ago 476MB
course-service latest 673d4501353e 23 hours ago 462MB
course-edge-service latest 854d5d8bddaa 23 hours ago 484MB
message-thrift-python-service latest 4317a76b387e 24 hours ago 926MB
user-edge-service latest ff07d54a02ba 25 hours ago 469MB
user-thrift-service latest 02dd6fd0f239 26 hours ago 456MB
python-base latest 81ad8926a9d9 26 hours ago 926MB
zookeeper 3.5 c41e1dcd86e4 2 weeks ago 128MB
smallsoup/zookeeper 3.5 c41e1dcd86e4 2 weeks ago 128MB
localhost:5000/zookeeper 3.5 c41e1dcd86e4 2 weeks ago 128MB
elasticsearch latest 5acf0e8da90b 2 weeks ago 486MB
registry 2.5.2 96ca477b7e56 3 weeks ago 37.8MB
registry 2 2e2f252f3c88 3 weeks ago 33.3MB
python 3.6 4f13b7f2138e 4 weeks ago 918MB
openjdk 8-jre 66bf39162ea7 4 weeks ago 443MB
mysql latest 6a834f03bd02 4 weeks ago 484MB
hub.c.163.com/public/redis 2.8.4 4888527e1254 2 years ago 190MB打标签:
docker tag openjdk:8-jre 192.168.1.103:80/micro-service/openjdk:8-jre$ docker images |grep -v "vmware" | grep open
openjdk 7-jre e4c851ec3393 4 weeks ago 329MB
192.168.1.103:80/micro-service/openjdk 8-jre 66bf39162ea7 4 weeks ago 443MB
openjdk 8-jre 66bf39162ea7 4 weeks ago 443MB$ docker push 192.168.1.103:80/micro-service/openjdk:8-jre
The push refers to repository [192.168.1.103:80/micro-service/openjdk]
Get https://192.168.1.103:80/v2/: http: server gave HTTP response to HTTPS clientpush报错。由于默认采用的是http协议,即harbor.cfg中的ui_url_protocol值。https的比较麻烦,需要生成证书等步骤,可以参考:
为Harbor设置Https
http://gapme.cn/2017/10/25/harbor-ui-https/
这里暂且用http的方式。
以上报错解决办法:
在”/etc/docker/“目录下,创建”daemon.json“文件。在文件中写入:
{
"insecure-registries": [
"hub.smallsoup.com:80",
"192.168.1.103:80"
]
}systemctl restart docker
docker重启后,./install或者docker-compose down;docker-compose up -d重启harbor即可。
将基础镜像和各个服务镜像push到库上:
题外话:
在安装过程中,将80端口映射到宿主机的8081端口,push的时候遇到很多问题(报错80端口连接拒绝,大概就是这个issue
https://github.com/goharbor/harbor/issues/192),查找了很多资料,还是放弃了,最后映射到宿主机80端口,push一切ok。
由于用域名的方式push得设置hosts以及端口转发,比较麻烦,以上采用了IP:PORT方式:
删除用域名打的标签:
docker rmi -f hub.smallsoup.com:80/micro-service/openjdk:8-jre原文发布时间为:2018-10-06
本文作者: 小碗汤
微信关注我们
转载内容版权归作者及来源网站所有!
低调大师中文资讯倾力打造互联网数据资讯、行业资源、电子商务、移动互联网、网络营销平台。持续更新报道IT业界、互联网、市场资讯、驱动更新,是最及时权威的产业资讯及硬件资讯报道平台。
为解决软件依赖安装时官方源访问速度慢的问题,腾讯云为一些软件搭建了缓存服务。您可以通过使用腾讯云软件源站来提升依赖包的安装速度。为了方便用户自由搭建服务架构,目前腾讯云软件源站支持公网访问和内网访问。
Spring框架(Spring Framework)是由Rod Johnson于2002年提出的开源Java企业级应用框架,旨在通过使用JavaBean替代传统EJB实现方式降低企业级编程开发的复杂性。该框架基于简单性、可测试性和松耦合性设计理念,提供核心容器、应用上下文、数据访问集成等模块,支持整合Hibernate、Struts等第三方框架,其适用范围不仅限于服务器端开发,绝大多数Java应用均可从中受益。
Rocky Linux(中文名:洛基)是由Gregory Kurtzer于2020年12月发起的企业级Linux发行版,作为CentOS稳定版停止维护后与RHEL(Red Hat Enterprise Linux)完全兼容的开源替代方案,由社区拥有并管理,支持x86_64、aarch64等架构。其通过重新编译RHEL源代码提供长期稳定性,采用模块化包装和SELinux安全架构,默认包含GNOME桌面环境及XFS文件系统,支持十年生命周期更新。
Sublime Text具有漂亮的用户界面和强大的功能,例如代码缩略图,Python的插件,代码段等。还可自定义键绑定,菜单和工具栏。Sublime Text 的主要功能包括:拼写检查,书签,完整的 Python API , Goto 功能,即时项目切换,多选择,多窗口等等。Sublime Text 是一个跨平台的编辑器,同时支持Windows、Linux、Mac OS X等操作系统。
扫码在手机上查看文章
扫描二维码,手机阅读更方便
有任何问题或合作意向欢迎联系我们
Email: 99873273@qq.com
QQ: 99873273