harbor

harbor 安装部署

1.下载Harbor的Docker Compose文件

export HARBOR_VERSION=2.5.6

wget https://github.com/goharbor/harbor/releases/download/v${HARBOR_VERSION}/harbor-offline-installer-v${HARBOR_VERSION}.tgz

tar xvf harbor-offline-installer-v${HARBOR_VERSION}.tgz

cd harbor

2.修改配置

cp harbor.yml.tmpl harbor.yml

# vim harbor.yml
hostname: {自己服务器的ip 内网外网都可以}

# htp related config
http:
# port for htp, default is 80. If htps enabled, this port will redirect to htps port
port: {自定义端口}

# https related config
#https:
  # https port for harbor, default is 443
#  port: 443
  # The path of cert and key files for nginx
#  certificate: /your/certificate/path
#  private_key: /your/private/key/path

3.开始安装

# 下载镜像，生成配置文件（可选）
# bash prepare
# 通过上面的命令生成的配置文件就可以通过 docker-compose up -d 启动服务
# 开始安装，包含了生成配置、下载镜像、和启动服务
bash install.sh

4.安装完成后会在当前目录自动生成docker-compose.yml文件

# 查看
docker-compose ps

# 再次安装，就可以执行以下命令
docker-compose up -d

# 或者执行下面这句
docker-compose up -f docker-compose.yml -d

# 停止
docker-compose down

5.访问：http://ip:port 账号/密码：admin/Harbor12345

---

推送和拉取镜像常用操作

1.先登录harbor

# docker login ip:prot -u xxx -p xxx

docker login 192.168.182.110:80 -u admin
Harbor12345

2.登录成功，然后进行tag

# docker tag image_id(本地需要push的镜像) ip:port/项目名/保存的镜像名(例如：xxx:version1)
docker tag goharbor/harbor-exporter:v2.5.6 local-168-182-110:80/library/goharbor/harbor-exporter:v2.5.6

3.推送

# docker push ip:port/项目名/保存的镜像名(例如：xxx:version1)
docker push local-168-182-110:80/library/goharbor/harbor-exporter:v2.5.6

4.拉取镜像

# docker pull ip:port/项目名/保存的镜像名(例如：xxx:version1)
docker pull local-168-182-110:80/library/goharbor/harbor-exporter:v2.5.6

---

harbor 常见问题

跟登陆相关,具体解决啥问题,忘了😂

openssl req -x509 -new -nodes -sha512 -days 3650 -subj "/C=CN/ST=Beijing/L=Beijing/O=example/OU=Personal/CN=harbor.blackmail.com:8443" -key ca.key -out ca.crt

openssl genrsa -out harbor.blackmail.com:8443.key 4096

openssl req -sha512 -new -subj "/C=CN/ST=Beijing/L=Beijing/O=example/OU=Personal/CN=harbor.blackmail.com:8443" -key harbor.blackmail.com:8443.key -out harbor.blackmail.com:8443.csr

openssl x509 -req -sha512 -days 3650 -extfile v3.ext -CA ca.crt -CAkey ca.key -CAcreateserial -in harbor.blackmail.com:8443.csr -out harbor.blackmail.com:8443.crt

openssl x509 -inform PEM -in harbor.blackmail.com:8443.crt -out harbor.blackmail.com:8443.cert


cp harbor.blackmail.com:8443.crt /etc/pki/ca-trust/source/anchors/harbor.blackmail.com:8443.crt 

cp harbor.blackmail.com:8443.cert /etc/docker/certs.d/harbor.blackmail.com:8443/
cp harbor.blackmail.com:8443.key /etc/docker/certs.d/harbor.blackmail.com:8443/
cp ca.crt /etc/docker/certs.d/harbor.blackmail.com:8443/