Adding new docker pull secret
This commit is contained in:
Moritz Graf
parent
20b1a3a8f4
commit
d74a839bc5
|
|
@ -90,6 +90,41 @@ Currently only for one user:
|
|||
kubectl apply -f datalab/rstudio.yaml
|
||||
```
|
||||
|
||||
|
||||
## Add private docker registry
|
||||
|
||||
*Current state:* Registry of hub.moritzgraf.de:5000 is used.
|
||||
|
||||
```sh
|
||||
# create secret base64 encoded and put it in htpasswd helm chart
|
||||
USER='moritz'
|
||||
PASSWORD='xxx'
|
||||
docker run --entrypoint htpasswd --rm registry:2 -Bbn $USER $PASSWORD
|
||||
#
|
||||
kubectl apply -f development/registry.secret.yaml
|
||||
```
|
||||
|
||||
### creating docker-pull-secret
|
||||
|
||||
Create credentials secret [according to docu](https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/#create-a-secret-by-providing-credentials-on-the-command-line):
|
||||
|
||||
```sh
|
||||
namespaces="datalab"
|
||||
for i in $( echo $namespaces ) ; do
|
||||
kubectl create secret docker-registry registry-haumdaucher-de \
|
||||
-n $i \
|
||||
--docker-server=registry.haumdaucher.de \
|
||||
--docker-username=moritz \
|
||||
--docker-password='xxx' \
|
||||
--docker-email=moritz@moritzgraf.de \
|
||||
--dry-run -o yaml > ./${i}/docker-pull.yaml.secret
|
||||
done
|
||||
# apply
|
||||
for i in $( echo $namespaces ) ; do
|
||||
kubectl apply -f ${i}/docker-pull.yaml.secret
|
||||
done
|
||||
```
|
||||
|
||||
## auth
|
||||
|
||||
Including:
|
||||
|
|
@ -117,41 +152,6 @@ Migate
|
|||
|
||||
Backup
|
||||
|
||||
## Add private docker registry
|
||||
|
||||
*Current state:* Registry of hub.moritzgraf.de:5000 is used.
|
||||
|
||||
```sh
|
||||
# create secret base64 encoded
|
||||
USER="moritz"
|
||||
PASSWORD="password"
|
||||
docker run --entrypoint htpasswd --rm registry:2 -Bbn admin admin123 | base64
|
||||
# use the output and put it in development/registry.secret.yaml
|
||||
kubectl apply -f development/registry.yaml
|
||||
|
||||
```
|
||||
|
||||
|
||||
### after
|
||||
|
||||
Create credentials secret [according to docu](https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/#create-a-secret-by-providing-credentials-on-the-command-line):
|
||||
|
||||
```sh
|
||||
namespaces="datalab"
|
||||
for i in $( echo $namespaces ) ; do
|
||||
kubectl create secret docker-registry hub-moritzgraf-de \
|
||||
-n $i \
|
||||
--docker-server=hub.moritzgraf.de:5000 \
|
||||
--docker-username=moritz \
|
||||
--docker-password='xxx' \
|
||||
--docker-email=moritz@moritzgraf.de \
|
||||
--dry-run -o yaml > ./${i}/docker-pull.yaml.secret
|
||||
done
|
||||
# apply
|
||||
for i in $( echo $namespaces ) ; do
|
||||
kubectl apply -f ${i}/docker-pull.yaml.secret
|
||||
done
|
||||
```
|
||||
|
||||
## Add mopbot & corona & corona-api
|
||||
|
||||
|
|
|
|||
Binary file not shown.
Binary file not shown.
|
|
@ -1,14 +0,0 @@
|
|||
---
|
||||
apiVersion: cert-manager.io/v1alpha2
|
||||
kind: Certificate
|
||||
metadata:
|
||||
name: registry
|
||||
namespace: development
|
||||
spec:
|
||||
secretName: registry-haumdaucher-de
|
||||
dnsNames:
|
||||
- registry.haumdaucher.de
|
||||
issuerRef:
|
||||
name: letsencrypt-prod
|
||||
kind: ClusterIssuer
|
||||
group: cert-manager.io
|
||||
Loading…
Reference in New Issue