Gitlab部署

    • 创建参数配置文件 

      1. core:
      2.   env:
      3.     OAUTH_ENABLED: false
      4.     OAUTH_AUTO_SIGN_IN_WITH_PROVIDER: "oauth2_generic"
      5.     OAUTH_ALLOW_SSO: "'oauth2_generic'"
      6.     OAUTH_BLOCK_AUTO_CREATED_USERS: false
      7.     OAUTH_GENERIC_API_KEY: "gitlabhq"
      8.     OAUTH_GENERIC_APP_SECRET: "gitlabhq"
      9.     # choerodon api 访问地址
      10.     OAUTH_GENERIC_SITE: "http://api.example.choerodon.io"
      11.     OAUTH_GENERIC_USER_INFO_URL: "/oauth/api/user"
      12.     OAUTH_GENERIC_AUTHORIZE_URL: "/oauth/oauth/authorize"
      13.     OAUTH_GENERIC_TOKEN_URL: "/oauth/oauth/token"
      14.     OAUTH_GENERIC_ROOT_PATH: "'userAuthentication','principal'"
      15.     OAUTH_GENERIC_USER_NICKNAME: "username"
      16.     OAUTH_GENERIC_USER_NAME: "username"
      17.     RACK_ATTACK_WHITELIST: 0.0.0.0/0
      18. redis:
      19.   internal:
      20.     password: password
      21. persistence:
      22.   enabled: true
      23.   persistentVolumeClaim:
      24.     core:
      25.       storageClass: nfs-provisioner
      26.     redis:
      27.       storageClass: nfs-provisioner
      28.     database:
      29.       storageClass: nfs-provisioner
      30. expose:
      31.   ingress:
      32.     host: "gitlab.example.choerodon.io"
      33. database:
      34.   internal:
      35.     password: "password"

    • 执行安装

    • 参数

    • 访问设置的Gitlab域名出现以下界面即部署成功

    • 执行更新

    • 在执行里面前请根据实际情况修改参数 web_server_redirect_uri

    • 编写参数配置文件 gitlab-client.yaml

      1. env:
      2.   MYSQL_HOST: c7n-mysql.c7n-system.svc
      3.   MYSQL_PASS: password
      4.   MYSQL_PORT: 3306
      5.   MYSQL_USER: root
      6.   SQL_SCRIPT: |
      7.     INSERT INTO hzero_platform.oauth_client (name,organization_id,resource_ids,secret,scope,authorized_grant_types,web_server_redirect_uri,access_token_validity,refresh_token_validity,additional_information,auto_approve,object_version_number,created_by,creation_date,last_updated_by,last_update_date,enabled_flag,time_zone)VALUES('gitlabhq',1,'default','gitlabhq','default','password,implicit,client_credentials,authorization_code,refresh_token','http://gitlab.example.choerodon.io',3600,3600,'{}','default',1,0,NOW(),0,NOW(),1,'GMT+8');

    执行完添加管理员用户关联步骤前请不要去Gitlab界面进行登录操作

    • 执行下面语句进行关联:

      1. helm upgrade --install gitlab-user-identities c7n/postgresql-client \
      2.     --set env.PG_HOST=gitlabhq-gitlab-database.c7n-system.svc \
      3.     --set env.PG_PORT=5432 \
      4.     --set env.PG_USER=gitlab \
      5.     --set env.PG_PASS=changeit \
      6.     --set env.PG_DBNAME=gitlabhq_production \
      7.     --set env.SQL_SCRIPT="\
      8.         INSERT INTO identities(extern_uid\, provider\, user_id\, created_at\, updated_at) \
      9.         VALUES ('2'\, 'oauth2_generic'\, 1\, NOW()\, NOW());" \
      10.     --version 0.1.0 \

    • 访问设置的Gitlab域名出现以下界面即更新成功