玩容器必会，Harbor的配置与简单使用

[root@mx harbor]# docker-compose --version
Docker Compose version v2.0.1
[root@mx harbor]# docker --version
Docker version 20.10.9, build c2ea9bc
[root@mx harbor]#

# 配置域名信息
echo "192.168.1.1  docker.harbor.com" >> /etc/hosts
创建目录 添加密钥（密钥的harbor地址要和hosts地址相同），不使用https可略过下面的步骤
mkdir /etc/certs && cd  /etc/certs
openssl genrsa -out /etc/certs/ca.key 2048
openssl req -x509 -new -nodes -key /etc/certs/ca.key -subj "/CN=docker.harbor.com" -days 5000 -out /etc/certs/ca.crt

mkdir -p /opt/docker/harbor
wget https://github.com/goharbor/harbor/releases/download/v2.4.0/harbor-offline-installer-v2.4.0.tgz
tar -xf harbor-offline-installer-v2.4.0.tgz && mv harbor /opt/docker/harbor && cd /opt/docker/harbor

cp harbor.yml.tmpl harbor.yml
vim harbor.yml

# 输入服务器的地址
hostname: docker.harbor.com
# 下面是端口，根据自己的配置
http:
  # port for http, default is 80. If https enabled, this port will redirect to https port
  port: 8081
# 设置好harbor登录的密码，默认账户为admin
harbor_admin_password: 123456
# 如果需要https（建议启用）请配置好证书文件
https:
  # https port for harbor, default is 443
  port: 443
  # The path of cert and key files for nginx
  certificate: /etc/certs/ca.crt 
  private_key: /etc/certs/ca.key

# 准备环境
./prepare
# 安装
./install.sh

docker login docker.harbor.com

如果登录提示：Error response from daemon: Get  https://docker.harbor.com/v2/: x509: certificate signed by unknown authority
则有可能是有残留登录失败数据导致，需要编辑daemon.json ，指定你的登录地址

vi /etc/docker/daemon.json 
{
 "insecure-registries": ["docker.harbor.com"] 
}

[root@mx harbor]# docker login docker.harbor.com
Authenticating with existing credentials...
WARNING! Your password will be stored unencrypted in /root/.docker/config.json.
Configure a credential helper to remove this warning. See
https://docs.docker.com/engine/reference/commandline/login/#credentials-store
Login Succeeded
[root@mx harbor]#

docker tag mysql:5.7 docker.harbor.com/test/apache
docker push docker.harbor.com/test/apache