harbor

harbor安装部署

hostnamectl set-hostname harbor
#1第一步安装docker
#2安装 Docker-Compose服务
#3部署docker-harbor 私有仓库
------------------------------------------------------------------------------------------------------------
#下载 docker-compose 安装包
curl -SL "https://github.com/docker/compose/releases/download/v2.26.1/docker-compose-$(uname -s)-$(uname -m)" -o /usr/local/bin/docker-compose

cd /usr/local/bin
chmod +x /usr/local/bin/docker-compose   #添加执行权限
docker-compose --version     #查看docker-compose版本

部署Harbor服务

wget https://github.com/goharbor/harbor/releases/download/v2.9.5/harbor-offline-installer-v2.9.5.tgz
tar -xzvf harbor-offline-installer-v2.9.5.tgz -C /usr/local/	#解压后有个nginx-1.21.1.tar.gz镜像包
cd /usr/local/harbor
cp harbor.yml.tmpl harbor.yml									#配置vim harbor.yml先配好
./prepare														#下面配置配完准备
#Unable to find image 'goharbor/prepare:v2.9.5' locally			#拉取不下来的情况下操作
docker  load -i  harbor.v2.9.5.tar.gz
#配置vim harbor.yml配置

配置vim harbor.yml

hostname: 192.168.16.165							#本机ip	
#http:port: 80										#https就把http注释
https:
	port: 443
certificate: /usr/local/harbor/server.crt
private_key: /usr/local/harbor/ca.key
#坑Harbor初始化密码，仅当第一次启动Harbor时有效。在启动Harhor之后失效。立马从UI上修改管理员密码
harbor_admin_password: Harbor12345					#账号密码admin/Harbor12345
data_volume: /data									#数据存放位置

安装证书

cd /usr/local/harbor/
openssl genrsa -des3 -out ca.key 2048 						#输入密码在次确认
openssl req -new -key ca.key -out server.csr				#会让输入私钥密码
（、CN 、BJ、BJ 、shanghai 、yangcheng、yang,414017224@qq.com 、回车、回车）
移动ca证书
mv ca.key ca.key.org
openssl rsa -in ca.key.org -out ca.key						#输入密码
openssl x509 -req -days 36500 -in server.csr -signkey ca.key -out server.crt
chmod -R 777 ca.key   && chmod -R 777 server.crt

./prepare														#再次prepare成功
./install.sh													#再执行install.sh安装成功

docker客户端登录harbor

#报错docker login问题：Error response from daemon: Get https://: http: server gave HTTP response to HTTPS client
 mkdir -p /etc/docker
/etc/docker/
#docker客户端需要配置		#https不需要配端口，http后面加端口
{
  "registry-mirrors": [
    "https://registry.docker-cn.com",
    "https://docker.mirrors.ustc.edu.cn",
    "https://hub-mirror.c.163.com",
    "https://mirror.baidubce.com",
    "https://cmruiz54.mirror.aliyuncs.com"
  ],
  "insecure-registries":["106.15.137.239"]
}
systemctl daemon-reload && systemctl restart docker
docker客户端登录
docker login 192.168.16.165 -u admin -p Harbor123456			#ipharbor地址一定要写
ll /root/.docker/config.json									#登录后登录密码在这里
echo "YWRtaW46SGFyYm9yMTIzNDU2" | base64 -d -					#admin:Harbor123456
docker logout

开机自启动

/usr/local/bin/docker-compose -f /usr/local/harbor/docker-compose.yml up -d			#开机自启动

重启操作

1如果以后修改了harbor.yml文件，那么先停止使用docker-compose down
再去修改harbor.yml文件，重新启动部署 ./install.sh
2正常启动harbor启动：docker-compose up -d 
未修改配置文件，重启Harbor命令：docker-compose start | stop | restart

harbor——web起不来

systemctl restart docker
docker-compose stop
docker-compose up -d

harbor日志

tail /var/log/harbor/core.log					#查看harbor日志
tail /var/log/harbor/redis.log					#查看harbor中redis日志
-----------------------------------------------------------------------------------------------------------
报错查看组件一直在starting状态中
#Up About a minute (health: starting) 
#[ERROR] [/common/utils/utils.go:106]: failed to connect to tcp://postgresql:5432, retry after 2 seconds #:dial tcp: lookup postgresql on 127.0.0.11:53: no such host
docker-compose stop
docker-compose up -d