Harbor - 企业级 Docker 私有仓库
一、Docker Compose 安装
[root@localhost ~]# yum -y install epel-release [root@localhost ~]# yum -y install python-pip [root@localhost ~]# pip --version pip 8.1.2 from /usr/lib/python2.7/site-packages (python 2.7) [root@localhost ~]# pip install --upgrade pip
[root@localhost ~]# pip install docker-compose
编译中断。 error: command 'gcc' failed with exit status 1 ---------------------------------------- ERROR: Command errored out with exit status 1: /usr/bin/python2 -u -c 'import sys, setuptools, tokenize; sys.argv[0] = '"'"'/tmp/pip-install-SF_hPB/subprocess32/setup.py'"'"'; __file__='"'"'/tmp/pip-install-SF_hPB/subprocess32/setup.py'"'"';f=getattr(tokenize, '"'"'open'"'"', open)(__file__);code=f.read().replace('"'"'\r\n'"'"', '"'"'\n'"'"');f.close();exec(compile(code, __file__, '"'"'exec'"'"'))' install --record /tmp/pip-record-MXLYK7/install-record.txt --single-version-externally-managed --compile Check the logs for full command output.
解决办法
yum install python-devel yum install libevent-devel pip install gevent
[root@localhost ~]# docker-compose version docker-compose version 1.25.0, build b42d419 docker-py version: 4.1.0 CPython version: 2.7.5 OpenSSL version: OpenSSL 1.0.2k-fips 26 Jan 2017
[root@localhost ~]# docker --version Docker version 19.03.5, build 633a0ea
[root@localhost ~]# tar -zxf harbor-offline-installer-v1.2.0.tgz [root@localhost ~]# cd harbor [root@localhost harbor]# vi /etc/hosts 127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4 ::1 localhost localhost.localdomain localhost6 localhost6.localdomain6 192.168.1.225 docker.ljj.cn [root@localhost harbor]# vi harbor.cfg hostname = docker.ljj.cn ui_url_protocol = https db_password = root123 max_job_workers = 3 customize_crt = on ssl_cert = /data/cert/server.crt ssl_cert_key = /data/cert/server.key
[root@localhost harbor]# mkdir -p /data/cert [root@localhost harbor]# cd /data/cert/
[root@localhost cert]# openssl genrsa -des3 -out server.key 2048 Generating RSA private key, 2048 bit long modulus ................+++ ......................................................................+++ e is 65537 (0x10001) Enter pass phrase for server.key: Verifying - Enter pass phrase for server.key: #密码123456 [root@localhost cert]# openssl req -new -key server.key -out server.csr Enter pass phrase for server.key: #输入123456 You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank For some fields there will be a default value, If you enter '.', the field will be left blank. ----- Country Name (2 letter code) [XX]:CN State or Province Name (full name) []:SX Locality Name (eg, city) [Default City]:TY Organization Name (eg, company) [Default Company Ltd]:ZDC Organizational Unit Name (eg, section) []:ZDC Common Name (eg, your name or your server's hostname) []:docker.ljj.cn Email Address []:1350748936@qq.com Please enter the following 'extra' attributes to be sent with your certificate request A challenge password []: #直接回车 An optional company name []: #直接回车
[root@localhost cert]# cp server.key server.key.org [root@localhost cert]# openssl rsa -in server.key.org -out server.key Enter pass phrase for server.key.org: #退密码输入123456 writing RSA key
[root@localhost cert]# openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt#转换成不带密码的证书。
Signature ok
subject=/C=CN/ST=SX/L=TY/O=ZDC/OU=ZDC/CN=docker.ljj.cn/emailAddress=1350748936@qq.com
Getting Private key
安装harbor
[root@localhost ~]# cd harbor [root@localhost harbor]# ./install.sh