1.在arrch64环境下安装docker服务(略)

2.下载bitnami/harbor-portal基础镜像,并

// 下载bitnami官方压缩包
[root@test ~]# wget https://github.com/bitnami/containers/archive/main.tar.gz// 解压
[root@cd20 ~]# tar zxvf main.tar.gz // 将harbor-portal目录移动到我们的当前目录
[root@cd20 ~]# mv containers-main/bitnami/harbor-portal /home
[root@cd20 ~]# cd /home && mv harbor-portal harbor

3.解压缩,创建配置挂在卷的文件

//创建挂载卷
[root@cd20 ~]# cd /home/harbor
[root@cd20 ~]# mkdir chartmuseum core jobservice postgresql registry
[root@cd20 ~]# chown -R 1001:1001 ./postgresql && chown -R 1001:1001 ./jobservice
[root@cd20 ~]# chown -R 1001:1001 ./registry && chown -R 1001:1001 ./core

4.处理docker-compse.yml文件

version: '2'services:registry:image: docker.io/bitnami/harbor-registry:2privileged: trueenvironment:- REGISTRY_HTTP_SECRET=CHANGEMEvolumes:- /home/harbor/registry/data:/storage- ./config/registry/:/etc/registry/:roregistryctl:image: docker.io/bitnami/harbor-registryctl:2privileged: trueenvironment:- CORE_SECRET=CHANGEME- JOBSERVICE_SECRET=CHANGEME- REGISTRY_HTTP_SECRET=CHANGEMEvolumes:- /home/harbor/registry/data:/storage- ./config/registry/:/etc/registry/:ro- ./config/registryctl/config.yml:/etc/registryctl/config.yml:ropostgresql:image: docker.io/bitnami/postgresql:13container_name: harbor-dbprivileged: trueenvironment:- POSTGRESQL_PASSWORD=bitnami- POSTGRESQL_DATABASE=registryvolumes:- /home/harbor/postgresql:/bitnami/postgresqlcore:image: docker.io/bitnami/harbor-core:2container_name: harbor-coredepends_on:- registry- chartmuseumenvironment:- CORE_KEY=change-this-key- _REDIS_URL_CORE=redis://redis:6379/0- SYNC_REGISTRY=false- CHART_CACHE_DRIVER=redis- _REDIS_URL_REG=redis://redis:6379/1- PORT=8080- LOG_LEVEL=info- EXT_ENDPOINT=https://registry.com- DATABASE_TYPE=postgresql- REGISTRY_CONTROLLER_URL=http://registryctl:8080- POSTGRESQL_HOST=postgresql- POSTGRESQL_PORT=5432- POSTGRESQL_DATABASE=registry- POSTGRESQL_USERNAME=postgres- POSTGRESQL_PASSWORD=bitnami- POSTGRESQL_SSLMODE=disable- REGISTRY_URL=http://registry:5000- TOKEN_SERVICE_URL=http://core:8080/service/token- HARBOR_ADMIN_PASSWORD=Harbor12345- CORE_SECRET=CHANGEME- JOBSERVICE_SECRET=CHANGEME- ADMIRAL_URL=- WITH_NOTARY=False- WITH_CHARTMUSEUM=True- CHART_REPOSITORY_URL=http://chartmuseum:8080- CORE_URL=http://core:8080- JOBSERVICE_URL=http://jobservice:8080- REGISTRY_STORAGE_PROVIDER_NAME=filesystem- REGISTRY_CREDENTIAL_USERNAME=harbor_registry_user- REGISTRY_CREDENTIAL_PASSWORD=harbor_registry_password- READ_ONLY=false- RELOAD_KEY=volumes:- /home/harbor/core/data:/data- ./config/core/app.conf:/etc/core/app.conf:ro- ./config/core/private_key.pem:/etc/core/private_key.pem:roportal:image: docker.io/bitnami/harbor-portal:2container_name: harbor-portaldepends_on:- corejobservice:image: docker.io/bitnami/harbor-jobservice:2container_name: harbor-jobservicedepends_on:- redis- coreenvironment:- CORE_SECRET=CHANGEME- JOBSERVICE_SECRET=CHANGEME- CORE_URL=http://core:8080- REGISTRY_CONTROLLER_URL=http://registryctl:8080- REGISTRY_CREDENTIAL_USERNAME=harbor_registry_user- REGISTRY_CREDENTIAL_PASSWORD=harbor_registry_passwordvolumes:- /home/harbor/jobservice/log:/var/log/jobs- ./config/jobservice/config.yml:/etc/jobservice/config.yml:roredis:image: redis:latestenvironment:# ALLOW_EMPTY_PASSWORD is recommended only for development.- ALLOW_EMPTY_PASSWORD=yesharbor-nginx:image: docker.io/bitnami/nginx:1.23container_name: nginxvolumes:- ./config/proxy/nginx.conf:/opt/bitnami/nginx/conf/nginx.conf:ro- ./config/proxy/cert:/etc/certports:# - '80:8080'- '443:8443'depends_on:- postgresql- registry- core- portalchartmuseum:container_name: chartmuseumimage: docker.io/bitnami/chartmuseum:0environment:- CACHE=redis- CACHE_REDIS_ADDR=redis:6379- CACHE_REDIS_DB=1- DEPTH=1- PORT=8080- STORAGE=local- STORAGE_LOCAL_ROOTDIR=/bitnami/data- ALLOW_OVERWRITE=true- INDEX_LIMIT=0volumes:- /home/harbor/chartmuseum/data:/bitnami/data
#volumes:
#  registry_data:
#    driver: local
#  core_data:
#    driver: local
#  jobservice_data:
#    driver: local
#  postgresql_data:
#    driver: local
#  chartmuseum_data:
#    driver: local

5.配置bitnami-nginx的https

worker_processes auto;
error_log         "/opt/bitnami/nginx/logs/error.log";
pid               "/opt/bitnami/nginx/tmp/nginx.pid";events {worker_connections 1024;use epoll;multi_accept on;
}http {tcp_nodelay on;# this is necessary for us to be able to disable request buffering in all casesproxy_http_version 1.1;upstream core {server core:8080;}upstream portal {server portal:8080;}log_format timed_combined '$remote_addr - ''"$request" $status $body_bytes_sent ''"$http_referer" "$http_user_agent" ''$request_time $upstream_response_time $pipe';client_body_temp_path  "/opt/bitnami/nginx/tmp/client_body" 1 2;proxy_temp_path        "/opt/bitnami/nginx/tmp/proxy" 1 2;fastcgi_temp_path      "/opt/bitnami/nginx/tmp/fastcgi" 1 2;scgi_temp_path         "/opt/bitnami/nginx/tmp/scgi" 1 2;uwsgi_temp_path        "/opt/bitnami/nginx/tmp/uwsgi" 1 2;server {listen 8443 ssl;server_tokens off;# SSLssl_certificate /etc/cert/registry.com.crt;ssl_certificate_key /etc/cert/registry.com.key;# disable any limits to avoid HTTP 413 for large image uploadsclient_max_body_size 0;# costumized location config file can place to /opt/bitnami/nginx/conf with prefix harbor.http. and suffix .confinclude /opt/bitnami/conf/nginx/conf.d/harbor.http.*.conf;ssl_protocols TLSv1.2;ssl_ciphers '!aNULL:kECDH+AESGCM:ECDH+AESGCM:RSA+AESGCM:kECDH+AES:ECDH+AES:RSA+AES:';ssl_prefer_server_ciphers on;ssl_session_cache shared:SSL:10m;location / {proxy_pass http://portal/;proxy_set_header Host $host;proxy_set_header X-Real-IP $remote_addr;proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;# When setting up Harbor behind other proxy, such as an Nginx instance, remove the below line if the proxy already has similar settings.proxy_set_header X-Forwarded-Proto $scheme;proxy_buffering off;proxy_request_buffering off;}location /c/ {proxy_pass http://core/c/;proxy_set_header Host $host;proxy_set_header X-Real-IP $remote_addr;proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;# When setting up Harbor behind other proxy, such as an Nginx instance, remove the below line if the proxy already has similar settings.proxy_set_header X-Forwarded-Proto $scheme;proxy_buffering off;proxy_request_buffering off;}location /api/ {proxy_pass http://core/api/;proxy_set_header Host $host;proxy_set_header X-Real-IP $remote_addr;proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;# When setting up Harbor behind other proxy, such as an Nginx instance, remove the below line if the proxy already has similar settings.proxy_set_header X-Forwarded-Proto $scheme;proxy_buffering off;proxy_request_buffering off;}location /chartrepo/ {proxy_pass http://core/chartrepo/;proxy_set_header Host $host;proxy_set_header X-Real-IP $remote_addr;proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;# When setting up Harbor behind other proxy, such as an Nginx instance, remove the below line if the proxy already has similar settings.proxy_set_header X-Forwarded-Proto $scheme;proxy_buffering off;proxy_request_buffering off;}location /v1/ {return 404;}location /v2/ {proxy_pass http://core/v2/;proxy_set_header Host $http_host;proxy_set_header X-Real-IP $remote_addr;proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;# When setting up Harbor behind other proxy, such as an Nginx instance, remove the below line if the proxy already has similar settings.proxy_set_header X-Forwarded-Proto $scheme;proxy_buffering off;proxy_request_buffering off;}location /service/ {proxy_pass http://core/service/;proxy_set_header Host $host;proxy_set_header X-Real-IP $remote_addr;proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;# When setting up Harbor behind other proxy, such as an Nginx instance, remove the below line if the proxy already has similar settings.proxy_set_header X-Forwarded-Proto $scheme;proxy_buffering off;proxy_request_buffering off;}location /service/notifications {return 404;}}
}

6.自行制作ssl文件

参考链接: Nginx配置ssl自签名证书_nginx 自签名证书_疯狂攻城师的博客-CSDN博客

需要注意,在上传配置cert文件夹时,需要重新指定文件夹的用户属组,否则nginx启动时会无法访问这个挂载的文件夹;

[root@test harbor]# cd config/proxy/
[root@test proxy]# ls
cert  cert-harbor.zip  nginx.conf
[root@test proxy]# chown -R 1001:1001 ./cert

7.配置bitnami-registry文件夹

//启动kubectl
[root@test harbor]#docker-compose up -d✔ Container harbor-db             Started                                                                                                                                                          2.1s ✔ Container harbor-core           Started                                                                                                                                                          4.0s ✔ Container harbor-portal         Started                                                                                                                                                          4.9s ✔ Container harbor-jobservice     Started                                                                                                                                                          5.2s ✔ Container nginx                 Started
...//添加存放路径
[root@test harbor]# docker exec -it harbor-registry-1 /bin/bash
I have no name!@f931a94004e2:/$ cd /storage/
I have no name!@f931a94004e2:/storage$ mkdir docker

8.访问地址(harbor的访问密码均配置在docker-compose.yml文件中,请自行查找):

https://127.0.0.1:443/account/sign-in

user/pwd:admin/Harbor12345

关于arrch64环境下bitnami/harbor-portal的安装部署相关推荐

  1. 【Rhapsody学习笔记(二)】Linux环境下的Rhapsody集成引擎安装部署

    Rhapsody的安装部署包括Rhapsody引擎的部署(服务端),以及Rhapsody IDE(客户端)的安装部署,其中,IDE可以安装在多台不同的windows客户机上,本文仅介绍CentOS7环 ...

  2. linux 下搭建portal服务器搭建,Linux环境下IBM WebSphere Portal v8.5独立服务器安装记录...

    本文用于说明在Linux环境下IBM WebSphere Portal v8.5独立服务器的安装记录: 环境说明: 硬件环境:Lenovo E440, i7, 12GB, 500GB: 虚拟设备:VM ...

  3. mysql8.0卸载出现问题,Windows环境下MySQL 8.0 的安装、配置与卸载

    软件版本 Windows:Windows10 MySQL:mysql-8.0.17-winx64.zip 安装步骤 1.配置环境变量 2.新建my.ini文件 文件位置:C:\Program File ...

  4. 安装mysql8.0配置环境_Windows环境下MySQL 8.0 的安装、配置与卸载

    软件版本 Windows:Windows10 MySQL:mysql-8.0.17-winx64.zip 安装步骤 1.配置环境变量 name:Path value:C:\Program Files\ ...

  5. python2.7安装教程win7_win7 64位环境下,为python2.7 安装pip

    第一步: 安装python并配置好环境变量 第二步: 下载setuptools源码setuptools-38.5.1.zip,地址:https://pypi.python.org/pypi/setup ...

  6. mysql8.0.13安装不_Windows环境下MySql8.0.13的安装及常见问题解决方案

    Windows环境下MySql8.0.13的安装及常见问题解决方案 目录 一.引文 二.下载地址 三.安装步骤 3.1.文件解压 3.2.新建并修改my.ini文件 3.3.配置环境变量 3.4.以管 ...

  7. linux环境下questasim 10.7的安装步骤

    linux环境:centos6.8系统 Questasim 10.7安装包 questasim_10.7_linux64.part2.rar_questasim_10.7_linux64-Linux文 ...

  8. 如何在word2016 和2021(ps:这两种环境下我都装了)安装Mathtype7.4 彻底解决安装Mathtype7.4之后粘贴显示:运行时错误‘53’,文件未找到:MathPage.WL

    需要安装文件放在了资源区 如何在word2016和2021(ps:这两种环境下我都装了)安装Mathtype7.4彻底解决安装Mathtype7.4之-数据集文档类资源-CSDN下载 2.文件 Mat ...

  9. 震惊,与gcc不得不说的故事:Linux虚拟机环境下,gcc的在线安装

    目录 Linux虚拟机环境下,gcc的在线安装 在线安装 yum在线安装指令 进入root账户 安装gcc 检查安装情况 最后 小白一枚,有问题请提一下,谢谢啦,多多包涵 在线安装 使用yum安装,注 ...

最新文章

  1. iOS安全之二次封装AFN并设置请求头/执行HTTPS加强安全
  2. 对话系统(四)- RNN
  3. app canvas渲染后图片黑色_H5 基于 canvas 实现电子签名并生成PDF文档
  4. 怎么使用php连接mysql_如何使用PHP连接MySQL
  5. echarts+php+mysql 绘图实例
  6. SQL Server2012版完全卸载
  7. Taylor Swift - Mean-pdf
  8. 微信机器人服务器成本,微信机器人案例汇总
  9. 厦门理工嵌入式开发LPC1768开发板教程
  10. linux取整个日志文件,高效日志分析 - 人人必学的awk
  11. 任正非:实事求是的科研方向与二十年的艰苦努力(新年推荐)
  12. 降甘油三脂 的中药/中成药
  13. 我只是还没有全力以赴
  14. 机器学习 | 变量选择
  15. 无间狱无服务器信息,无间狱打不动了,分享一些想法(不开99流),多图
  16. nginx signal 之 quit
  17. 临床医生公派赴美国密歇根大学医院访学交流
  18. Bug管理工具——BugFree
  19. ACM题目————数独
  20. 获得电脑特殊文件夹的办法,如:\AppData\Local\Temp

热门文章

  1. 微视频试水社交网站 渐趋移动互联应用
  2. 人事不干人事,这算个什么事?
  3. 小白笔记---坐标系、坐标参照系、坐标变换、投影变换
  4. Matlab概率论与数理统计实践-假设检验
  5. 昂首阔步 从BC编译器走向VC编译器
  6. 2023中国(深圳)国际氢能燃料电池技术及设备展览会
  7. AP最大功率一般为100mW/500mW
  8. 为什么苹果大战FBI,方向正确的却是一个逗比?
  9. 笔记本WIN10 网络和Internet WLAN选项消失
  10. python智慧树判断题_智慧树知到_大数据分析的python基础_判断题答案