Adding new docker pull secret

2020-04-11 21:50:50 +02:00 · 2020-04-11 21:50:50 +02:00 · d74a839bc5
parent 20b1a3a8f4
commit d74a839bc5
4 changed files with 35 additions and 49 deletions
--- a/k8s/README.md
+++ b/k8s/README.md
@ -90,6 +90,41 @@ Currently only for one user:
 kubectl apply -f datalab/rstudio.yaml
 ```
 ## Add private docker registry
 *Current state:* Registry of hub.moritzgraf.de:5000 is used.
 ```sh
 # create secret base64 encoded and put it in htpasswd helm chart
 USER='moritz'
 PASSWORD='xxx'
 docker run --entrypoint htpasswd --rm registry:2 -Bbn $USER $PASSWORD
 # 
 kubectl apply -f development/registry.secret.yaml
 ```
 ### creating docker-pull-secret
 Create credentials secret [according to docu](https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/#create-a-secret-by-providing-credentials-on-the-command-line):
 ```sh
 namespaces="datalab"
 for i in $( echo $namespaces ) ; do
  kubectl create secret docker-registry registry-haumdaucher-de \
    -n $i \
    --docker-server=registry.haumdaucher.de \
    --docker-username=moritz \
    --docker-password='xxx' \
    --docker-email=moritz@moritzgraf.de \
    --dry-run -o yaml > ./${i}/docker-pull.yaml.secret
 done
 # apply
 for i in $( echo $namespaces ) ; do
  kubectl apply -f ${i}/docker-pull.yaml.secret
 done
 ```
 ## auth
 Including:
@ -117,41 +152,6 @@ Migate
 Backup
 ## Add private docker registry
 *Current state:* Registry of hub.moritzgraf.de:5000 is used.
 ```sh
 # create secret base64 encoded
 USER="moritz"
 PASSWORD="password"
 docker run --entrypoint htpasswd --rm registry:2 -Bbn admin admin123 | base64
 # use the output and put it in development/registry.secret.yaml
 kubectl apply -f development/registry.yaml
 ```
 ### after
 Create credentials secret [according to docu](https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/#create-a-secret-by-providing-credentials-on-the-command-line):
 ```sh
 namespaces="datalab"
 for i in $( echo $namespaces ) ; do
  kubectl create secret docker-registry hub-moritzgraf-de \
    -n $i \
    --docker-server=hub.moritzgraf.de:5000 \
    --docker-username=moritz \
    --docker-password='xxx' \
    --docker-email=moritz@moritzgraf.de \
    --dry-run -o yaml > ./${i}/docker-pull.yaml.secret
 done
 # apply
 for i in $( echo $namespaces ) ; do
  kubectl apply -f ${i}/docker-pull.yaml.secret
 done
 ```
 ## Add mopbot & corona & corona-api
--- a/k8s/datalab/docker-pull.yaml.secret
+++ b/k8s/datalab/docker-pull.yaml.secret
--- a/k8s/development/registry.secret.yaml
+++ b/k8s/development/registry.secret.yaml
--- a/k8s/development/registry.yaml
+++ b/k8s/development/registry.yaml
@ -1,14 +0,0 @@
 ---  
 apiVersion: cert-manager.io/v1alpha2
 kind: Certificate
 metadata:
  name: registry
  namespace: development
 spec:
  secretName: registry-haumdaucher-de
  dnsNames:
  - registry.haumdaucher.de
  issuerRef:
    name: letsencrypt-prod
    kind: ClusterIssuer
    group: cert-manager.io