在jenkins网页设置下载插件:kubernetes
重启jenkins
点击Clouds 点击New Cloud
**查看****K8S集群地址:**kubectl cluster-info
输出解密后的证书内容:k8s_crt=(cat /etc/kubernetes/admin.conf \| awk -F: '/certificate
authority-data/{print 2}' | tr -d ' ')
echo $k8s_crt | base64 -d
创建jenkins账户:root@k8s-master \~# kubectl create sa jenkins
创建role角色:
cat role.txt
kind: Role
apiVersion: rbac.authorization.k8s.io/v1
metadata:
namespace: default
name: pod-reader-role
rules:
- apiGroups: ""
resources: "pods"
verbs: "get", "list", "watch","create","update","delete"
root@k8s-master \~# kubectl apply -f role.txt
添加bindroling绑定:
cat rolebinding.txt
kind: RoleBinding
apiVersion: rbac.authorization.k8s.io/v1
metadata:
namespace: default
name: pod-reader-role-binding
subjects:
- kind: ServiceAccount
name: jenkins
namespace: default
roleRef:
kind: Role
name: pod-reader-role
apiGroup: rbac.authorization.k8s.io
root@k8s-master \~# kubectl apply -f rolebinding.txt
生成token:kubectl -n default create token jenkins输出的内容复制
点击连接测试,左侧显示k8s集群版本
创建目录:vim /root/k8s/pod.yml
git add pod.yml
git commit -m "pod"
git push origin master
scp .kube/config root@192.168.11.100:/root
docker exec -it -u root 085b46f26715 bash
chown jenkins:jenkins /var/config
mv /var/config /var/jenkins_home/.kube/
ls -l /var/jenkins_home/.kube/config
在宿主机直接安装:
cat <<EOF | tee /etc/yum.repos.d/kubernetes.repo
kubernetes
name=Kubernetes
baseurl=https://mirrors.aliyun.com/kubernetes-new/core/stable/v1.28/rpm/
enabled=1
gpgcheck=1
gpgkey=https://mirrors.aliyun.com/kubernetes-new/core/stable/v1.28/rpm/repodata/repomd.xml.key
EOF
yum install -y kubectl
在docker安装k8s:curl -LO "https://dl.k8s.io/release/v1.28.15/bin/linux/amd64/kubectl" && chmod +x kubectl && mv kubectl /usr/local/bin/
验证安装:kubectl version --client
创建的项目统一放在容器:/var/jenkins_home/workspace/
jenkins在主机上的放在:/var/lib/jrnkind/eotkspsve/