Differences

This shows you the differences between two versions of the page.

--- инструмент_gitlab [2025/10/05 15:07]
val [Подключение через API]
+++ инструмент_gitlab [2025/12/26 15:11] (current)
val [Пример CI с использованием контейнеров]
@@ Line 35: / Line 35: @@
   * [[Технология Docker]]
   * [[Технология Docker#docker-compose]]
+  * [[#Включение TLS]]
 <code>
 # cat docker-compose.yml
 </code><code>
-version: '3.6'
 services:
-  web:
+  gitlab:
-    image: 'gitlab/gitlab-ce:latest'
+#    image: 'gitlab/gitlab-ce:latest'
-#    image: 'gitlab/gitlab-ce:16.7.4-ce.0'
+    image: 'gitlab/gitlab-ce:18.6.2-ce.0'
 #    userns_mode: 'host'
+#    privileged: true
     restart: always
     hostname: 'server.corpX.un'
@@ Line 56: / Line 57: @@
         registry_external_url 'https://server.corpX.un:5000'
         gitlab_rails['registry_port'] = "5050"
-        registry['registry_http_addr'] = "server.corpX.un:5050"
+        registry['registry_http_addr'] = "0.0.0.0:5050"
     ports:
       - '443:443'
@@ Line 63: / Line 64: @@
     volumes:
       - '/etc/gitlab:/etc/gitlab'
-      - '/srv/gitlab/logs:/var/log/gitlab'
+      - vol1:/var/opt/gitlab
-      - '/srv/gitlab/data:/var/opt/gitlab'
     shm_size: '256m'
-    logging:
+volumes:
-      driver: "json-file"
+  vol1:
-      options:
-        max-size: "2048m"
 </code><code>
 # docker-compose up -d
@@ Line 76: / Line 74: @@
 ### docker-compose stop
-### rm -r /srv/gitlab/ /etc/gitlab/
 </code>
 ==== Установка через Ansible Role ====
@@ Line 90: / Line 87: @@
 ==== Подключение через API ====
-=== К проекту ===
+=== проект ===
   * Токен доступа: Settings -> Access Tokens ([[https://docs.gitlab.com/ee/user/project/settings/project_access_tokens.html|Project access tokens]]), в примере достаточно role: Reporter, Scopes: api
@@ Line 113: / Line 110: @@
 </code>
-=== К REST API интерфейсу ===
+=== REST API интерфейс ===
+  * Search or go to... -> Profile -> Personal access tokens -> Add new token -> api -> Create token
+== Добавление пользователя ==
 <code>
-GITLAB_URL="https://server.corp13.un:4443"
+kube1:~/gitlab# cat adduser.sh
-PRIVATE_TOKEN="NNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNNN"
+</code><code>
+GITLAB_URL="https://gitlab.corpX.un"
+PRIVATE_TOKEN="NNNNNNNNNNNN"
-USER_EMAIL="student@corp13.un"
+USER_EMAIL="user1@corpX.un"
 USER_PASSWORD="Pa\$\$w0rd"
-USER_USERNAME="student"
+USER_USERNAME="user1"
 USER_NAME="Your Name"
@@ Line 126: / Line 130: @@
      --header "Content-Type: application/json" \
      --request POST \
-     --data "{ \"email\": \"$USER_EMAIL\", \"password\": \"$USER_PASSWORD\", \"username\": \"$USER_USERNAME\", \"name\": \"$USER_NAME\" }" \
+     --data "{ \"email\": \"$USER_EMAIL\", \"password\": \"$USER_PASSWORD\", \"username\": \"$USER_USERNAME\", \"name\": \"$USER_NAME\", \"admin\": true }" \
      "$GITLAB_URL/api/v4/users" -k
 </code>
@@ Line 242: / Line 246: @@
   * [[Установка и настройка OpenLDAP]]
   * [[Хранение учетных записей UNIX в LDAP]] !!! с атрибутом почты и паролем
+  * [[Решение FreeIPA]]
 <code>
@@ Line 254: / Line 259: @@
     host: 'server.corpX.un'
 #    host: 'server2.corpX.un'
+#    host: '192.168.X.10'
     port: 389
 #    uid: 'uid'
@@ Line 259: / Line 265: @@
 #    bind_dn: 'cn=admin,dc=corpX,dc=un'
 #    password: 'secret'
+#    bind_dn: 'uid=admin,cn=users,cn=accounts,dc=corpX,dc=un'
+#    password: 'strongpassword'
     bind_dn: 'cn=Administrator,cn=Users,dc=corpX,dc=un'
     password: 'Pa$$w0rd'
@@ Line 435: / Line 443: @@
   * [[https://stackoverflow.com/questions/52169219/get-branch-name-in-gitlab-ci|Get Branch name in gitlab ci]]
+<code>
+Settings -> CI/CD -> Variables -> Add variable -> Masked and hidden ... ANS_V_SEC
+снять Protect variable
+  ИЛИ
+Settings -> Repository -> Protected Branches - Add Protected Branch -> test
+</code>
 <code>
 Administrator@Ra-master ~/openvpn1 (test)
@@ Line 631: / Line 646: @@
   * [[https://akyriako.medium.com/build-golang-docker-images-with-gitlab-ci-pipelines-2117f8505350|Build Golang Docker images with GitLab CI Pipelines]]
   * [[https://blog.callr.tech/building-docker-images-with-gitlab-ci-best-practices/|Best practices for building docker images with GitLab CI]]
+  * [[https://habr.com/ru/articles/764568/|Настройка CI/CD для Gitlab-репозитория: схемы и гайд по шагам (на примере Spring Boot-приложения)]]
   * [[https://stackoverflow.com/questions/63693061/how-to-run-a-script-from-file-in-another-project-using-include-in-gitlab-ci|How to run a script from file in another project using include in GitLab CI?]]
@@ Line 652: / Line 669: @@
 #variables:
 #  DOCKER_TLS_CERTDIR: ""
+#  KANIKO_REGISTRY_MIRROR: "mirror.gcr.io"
 #services:
@@ Line 803: / Line 821: @@
 gitlab_rails['omniauth_providers'] = [
   {
-    name: "openid_connect", # do not change this parameter
+    name: "openid_connect",
-    label: "Keycloak", # optional label for login button, defaults to "Openid Connect"
+    label: "Keycloak",
     args: {
       name: "openid_connect",
       scope: ["openid", "profile", "email"],
       response_type: "code",
-#     issuer:  "https://keycloak.example.com/realms/myrealm",
       issuer:  "https://keycloak.corpX.un/realms/corpX",
       client_auth_method: "query",
@@ Line 816: / Line 833: @@
       pkce: true,
       client_options: {
-#        identifier: "<YOUR CLIENT ID>",
         identifier: "any-client",
-#        secret: "<YOUR CLIENT SECRET>",
         secret: "anystring",
-#        redirect_uri: "https://gitlab.example.com/users/auth/openid_connect/callback"
+#        redirect_uri: "https://gitlab.corpX.un/users/auth/openid_connect/callback"
-        redirect_uri: "https://gate.corpX.un/users/auth/openid_connect/callback"
+#        redirect_uri: "https://gate.corpX.un/users/auth/openid_connect/callback"
       }
     }

Методические материалы Лохтурова Вячеслава

User Tools

Site Tools

Differences

Page Tools