安装habor、gitlab、traefik、CI/CD

 

 

https://github.com/goharbor/harbor/blob/master/docs/installation_guide.md

 

https://docs.gitlab.com/ee/user/project/clusters/index.html

 

https://docs.traefik.io/user-guide/kubernetes/ (参考:https://blog.51cto.com/wangzhijian/2125520?cid=719029)

 https://github.com/certbot/certbot

创建ssl

https://blog.51cto.com/devingeng/2154041 (参考:https://www.cnblogs.com/tv151579/p/8268356.html)

https://www.jianshu.com/p/71ce5e6eb6a7

openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout ./tls.key -out ./tls.crt -subj "/CN=kubernetes-dashboard.kube"

kubectl create serviceaccount --namespace kube-system tiller
kubectl create clusterrolebinding tiller-cluster-rule --clusterrole=cluster-admin --serviceaccount=kube-system:tiller
kubectl patch deploy --namespace kube-system tiller-deploy -p '{"spec":{"template":{"spec":{"serviceAccount":"tiller"}}}}'

helm 安装

 

CI/CD:https://blog.csdn.net/ygqygq2/article/details/85097857

 

helm upgrade --install gitlab --namespace=gitlab --timeout 600  . \
--set global.hosts.domain=git.kube \
--set global.time_zone="Asia/Shanghai" \
--set gitlab.gitaly.persistence.size=2Gi \
--set postgresql.persistence.size=2Gi \
--set minio.persistence.size=5Gi \
--set redis.persistence.size=1Gi \
--set nginx-ingress.enabled=false \
--set prometheus.install=false \
--set certmanager.install=false \
--set certmanager-issuer.email=renjun0106@126.com \
--set gitlab.gitlab-runner.rbac.clusterWideAccess=true \
--set gitlab.gitlab-runner.rbac.create=true \
--set gitlab.gitlab-runner.runners.privileged=true

 

  

posted @ 2019-03-28 17:30  jun5h  阅读(264)  评论(0编辑  收藏  举报