需求:以yaml文件格式的方式來創建能夠拉取harbor鏡像的secret.
然后在pod中引用
-
docker login -u USERNAME -pPASSWORD HARBORSERVER #以這種方式先成功登陸到harbor倉庫 -
cat ~/.docker/config.json | base64 -w 0 #然后登陸信息會保存到如上的json格式文件里.我們通過base64編碼工具,將其再進行轉換 -
vim pull.image.secret.yaml apiVersion: v1 data: .dockerconfigjson: ewoJImF1dGhzIjogewoJCSIxMC4xMC4xMS40MDo4MCI6IHsKCQkJImF1dGgiOiAiY1dsaGIzbHBibWM2Um05ellXWmxjaTVqYjIweU1ERTQiCgkJfQoJfSwKCSJIdHRwSGVhZGVycyI6IHsKCQkiVXNlci1BZ2VudCI6ICJEb2NrZXItQ2xpZW50LzE5LjAzLjYgKGxpbnV4KSIKCX0KfQ== #如上這串字符是2輸出的字符串 kind: Secret metadata: name: 40harbor-secret namespace: duowei type: kubernetes.io/dockerconfigjson #必須為該type -
deployment引用的時候,在Deployment.spec.template.spec.imagePullSecrets,添加
imagePullSecrets: - name: 40harbor-secret