|
|
@@ -1,20 +1,8 @@
|
|
|
-# 私有Docker Registry - K3s 部署清单
|
|
|
-# 等价转换原 docker-compose.yml 所有配置
|
|
|
-apiVersion: v1
|
|
|
-kind: Secret
|
|
|
-metadata:
|
|
|
- name: registry-auth
|
|
|
- namespace: default
|
|
|
-type: Opaque
|
|
|
-# 注意:这里仅为占位,实际需要用 htpasswd 生成账号密码后替换
|
|
|
-data:
|
|
|
- htpasswd: ""
|
|
|
----
|
|
|
apiVersion: v1
|
|
|
kind: PersistentVolumeClaim
|
|
|
metadata:
|
|
|
- name: registry-data
|
|
|
- namespace: default
|
|
|
+ name: registry-pvc
|
|
|
+ namespace: registry
|
|
|
spec:
|
|
|
accessModes:
|
|
|
- ReadWriteOnce
|
|
|
@@ -25,61 +13,55 @@ spec:
|
|
|
apiVersion: apps/v1
|
|
|
kind: Deployment
|
|
|
metadata:
|
|
|
- name: docker-registry
|
|
|
- namespace: default
|
|
|
+ name: registry
|
|
|
+ namespace: registry
|
|
|
spec:
|
|
|
replicas: 1
|
|
|
selector:
|
|
|
matchLabels:
|
|
|
- app: docker-registry
|
|
|
+ app: registry
|
|
|
template:
|
|
|
metadata:
|
|
|
labels:
|
|
|
- app: docker-registry
|
|
|
+ app: registry
|
|
|
spec:
|
|
|
containers:
|
|
|
- name: registry
|
|
|
image: registry.cn-hangzhou.aliyuncs.com/zhongpengqun/wanderer:amd64-linux-docker-registry-v2
|
|
|
ports:
|
|
|
- containerPort: 5000
|
|
|
- resources:
|
|
|
- limits:
|
|
|
- cpu: "0.5"
|
|
|
- memory: "256Mi"
|
|
|
- requests:
|
|
|
- cpu: "0.2"
|
|
|
- memory: "128Mi"
|
|
|
env:
|
|
|
- name: REGISTRY_AUTH
|
|
|
value: "htpasswd"
|
|
|
- name: REGISTRY_AUTH_HTPASSWD_REALM
|
|
|
- value: "Docker Registry"
|
|
|
+ value: "Registry Realm"
|
|
|
- name: REGISTRY_AUTH_HTPASSWD_PATH
|
|
|
value: "/auth/htpasswd"
|
|
|
+ - name: REGISTRY_STORAGE_FILESYSTEM_ROOTDIRECTORY
|
|
|
+ value: "/var/lib/registry"
|
|
|
volumeMounts:
|
|
|
- - name: registry-data
|
|
|
- mountPath: /var/lib/registry
|
|
|
- - name: registry-auth
|
|
|
+ - name: auth
|
|
|
mountPath: /auth
|
|
|
- readOnly: true
|
|
|
+ - name: data
|
|
|
+ mountPath: /var/lib/registry
|
|
|
volumes:
|
|
|
- - name: registry-data
|
|
|
- persistentVolumeClaim:
|
|
|
- claimName: registry-data
|
|
|
- - name: registry-auth
|
|
|
+ - name: auth
|
|
|
secret:
|
|
|
secretName: registry-auth
|
|
|
+ - name: data
|
|
|
+ persistentVolumeClaim:
|
|
|
+ claimName: registry-pvc
|
|
|
---
|
|
|
apiVersion: v1
|
|
|
kind: Service
|
|
|
metadata:
|
|
|
- name: docker-registry
|
|
|
- namespace: default
|
|
|
+ name: registry
|
|
|
+ namespace: registry
|
|
|
spec:
|
|
|
type: NodePort
|
|
|
+ selector:
|
|
|
+ app: registry
|
|
|
ports:
|
|
|
- port: 5000
|
|
|
- nodePort: 30009
|
|
|
targetPort: 5000
|
|
|
- selector:
|
|
|
- app: docker-registry
|
|
|
+ nodePort: 30500
|
zhong (钟鹏群)