GitHub毕竟是公开的,而私有仓库又得花钱买。所以我们可以想办法搭建一个私有的,只自己公司使用的。GitLab是个不错的选择。在介绍它之前,先讲述一下命令行的Git服务器。

Gitlab 搭建

结合前面,新创建一台服务器,只配置好ip即可。
找一台服务器,先安装git

  1. [root@localhost ~]# yum install -y git

配置基本信息

  1. [root@localhost ~]# git config --global user.name "sxb"
  2. [root@localhost ~]# git config --global user.email "example@qq.com"

添加git用户,设置shell为/usr/bin/git-shell,目的是为了让git用户没有办法远程登陆。

  1. [root@localhost ~]# useradd -s /usr/bin/git-shell git
  2. [root@localhost ~]# cd /home/git

image.png
创建文件,更改所属组和权限,存放客户端机器上的公钥。

  1. [root@localhost git]# mkdir .ssh
  2. [root@localhost git]# touch .ssh/authorized_keys
  3. [root@localhost git]# chown -R git.git .ssh
  4. [root@localhost git]# chmod 600 .ssh/authorized_keys
  5. [root@localhost git]# ll /home/git/.ssh/authorized_keys
  6. -rw-------. 1 git git 0 8  22 08:52 /home/git/.ssh/authorized_keys
  7. [root@localhost git]#

image.png
创建Git仓库目录。

  1. [root@localhost git]# mkdir -p /data/gitpub
  2. [root@localhost git]# cd /data/gitpub
  3. [root@localhost gitpub]#

会创建一个裸仓库,裸仓库没有工作区,因为服务器上的Git仓库纯粹是为了共享,所以不让用户直接登录到服务器上去改工作区,并且服务器上的Git仓库通常都以.git结尾

  1. [root@localhost gitpub]# git init --bare sample.git
  2. 初始化空的 Git 版本库于 /data/gitpub/sample.git/
  3. [root@localhost gitpub]# chown -R git.git sample.git
  4. [root@localhost gitpub]# ll
  5. 总用量 0
  6. drwxr-xr-x. 7 git git 119 8  22 08:54 sample.git
  7. [root@localhost gitpub]#

image.png
以上操作是在Git服务器上操作,平时Git服务器是不需要开发人员登录修改代码的,# 它仅仅是充当着一个服务器的角色,就像GitHub一样,平时操作都是在我们自己的机器上操做的。

客户端操作
登录客户端,把客户端公钥放在git服务器/home/git/.ssh/authorized_keys 文件里

  1. [root@localhost ~]# ssh-keygen 
  2. Generating public/private rsa key pair.
  3. Enter file in which to save the key (/root/.ssh/id_rsa): 
  4. Created directory '/root/.ssh'.
  5. Enter passphrase (empty for no passphrase): 
  6. Enter same passphrase again: 
  7. Your identification has been saved in /root/.ssh/id_rsa.
  8. Your public key has been saved in /root/.ssh/id_rsa.pub.
  9. The key fingerprint is:
  10. SHA256:nzi45TT7eb4mQnTNF3ixUr/kixa8yCjTf5zmSJXVGXs root@localhost.localdomain
  11. The key's randomart image is:
  12. +---[RSA 2048]----+
  13. |             .oo |
  14. |            ..oo=|
  15. |           o...*E|
  16. |        . . +.* o|
  17. |       .S.   * o |
  18. |       .ooo.o + .|
  19. |      .+*oo+.+.. |
  20. |       =+++.==   |
  21. |      . oooB*o   |
  22. +----[SHA256]-----+
  23. [root@localhost ~]# cd .ssh/
  24. [root@localhost .ssh]# ls
  25. id_rsa  id_rsa.pub
  26. [root@localhost .ssh]# cat id_rsa.pub 
  27. ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCouRuWUB1k7Xd38qXfSJHcvAFu2L3RUcDS1oeDnizi1V+JpRksbC0JTINjZOT0HNhHbnuCMzt+E6ZwLfHVA28pt2bdQyO0XhuUYyvicXrtyd7XNlD6gU7HttAyVG8aTrctj/hbbdVVksMDVIzwtzjQThogk9qGHyUk91gHouTTDuIQOLa63/TQUU81oCb9BeiPe0+mxL7sxuCBpyyy+D3R9jnvZoBSHprkmVsmaR52SsyRfLyy1Ta6we28+T3Y6ZfHqQHT7kn2ObvfM3jTDpCKi6te2dLBmw7XCfgn4XO7zuopqMEX1rXDeaOQtjfKt+hN5bhnwadDUY1peX2ULa4v root@localhost.localdomain
  28. [root@localhost .ssh]#

把密钥写入服务端的/home/git/.ssh/authorized_keys 文件里
image.png

  1. [root@localhost gitpub]# vim /home/git/.ssh/authorized_keys
  2. ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCouRuWUB1k7Xd38qXfSJHcvAFu2L3RUcDS1oeDnizi1V+JpRk
  3. sbC0JTINjZOT0HNhHbnuCMzt+E6ZwLfHVA28pt2bdQyO0XhuUYyvicXrtyd7XNlD6gU7HttAyVG8aTrctj/hbbd
  4. VVksMDVIzwtzjQThogk9qGHyUk91gHouTTDuIQOLa63/TQUU81oCb9BeiPe0+mxL7sxuCBpyyy+D3R9jnvZoBSH
  5. prkmVsmaR52SsyRfLyy1Ta6we28+T3Y6ZfHqQHT7kn2ObvfM3jTDpCKi6te2dLBmw7XCfgn4XO7zuopqMEX1rXD
  6. eaOQtjfKt+hN5bhnwadDUY1peX2ULa4v root@localhost.localdomain

关掉两个服务器的防火墙

  1. [root@localhost ~]# systemctl stop firewalld
  2. [root@localhost ~]# 
  3. [root@localhost ~]# yum install -y git
  5. [root@localhost ~]# mkdir /new
  6. [root@localhost ~]# cd /new/
  7. [root@localhost new]# git clone git@192.168.100.10:/data/gitpub/sample.git
  8. 正克隆到 'sample'...
  9. The authenticity of host '192.168.100.10 (192.168.100.10)' can't be established.
  10. ECDSA key fingerprint is SHA256:PoS04pLRADTAzlcD7K46lYlE1znMlQ7H/1bjrap+Cos.
  11. ECDSA key fingerprint is MD5:78:fb:28:ce:c9:f0:1f:69:7a:67:a8:e4:ca:f0:6e:26.
  12. Are you sure you want to continue connecting (yes/no)? yes
  13. Warning: Permanently added '192.168.100.10' (ECDSA) to the list of known hosts.
  14. warning: 您似乎克隆了一个空版本库。
  15. [root@localhost new]# ls
  16. sample
  17. [root@localhost new]# 
  18. 此时就可以在当前目录下生成一个sample的目录,这个就是我们克隆的远程仓库了。
  19. 进入到这里面,可以开发一些代码,然后push到远程,比如git push origin master。
  20. [root@localhost new]# cd sample/
  21. [root@localhost sample]# ll -a
  22. 总用量 0
  23. drwxr-xr-x. 3 root root  18 8月  22 09:18 .
  24. drwxr-xr-x. 3 root root  20 8月  22 09:18 ..
  25. drwxr-xr-x. 7 root root 119 8月  22 09:18 .git
  26. [root@localhost sample]#

image.png

Gitlab的使用

  1. [root@localhost gitpub]# vim /etc/yum.repos.d/gitlab.repo
  2. [gitlab-ce]
  3. name=Gitlab CE Repository
  4. baseurl=https://mirrors.tuna.tsinghua.edu.cn/gitlab-ce/yum/el$releasever/
  5. gpgcheck=0
  6. enabled=1
  7. [root@localhost gitpub]# yum clean all
  8. 已加载插件:fastestmirror
  9. 正在清理软件源: base extras gitlab-ce updates
  10. Cleaning up list of fastest mirrors
  11. Other repos take up 9.6 M of disk space (use --verbose for details)
  12. [root@localhost gitpub]# yum repolist
  13. 已加载插件:fastestmirror
  14. Determining fastest mirrors
  15.  * base: mirrors.bfsu.edu.cn
  16.  * extras: mirrors.bfsu.edu.cn
  17.  * updates: mirrors.bfsu.edu.cn
  18. base                                                            | 3.6 kB  00:00:00     
  19. extras                                                          | 2.9 kB  00:00:00     
  20. gitlab-ce                                                       | 2.9 kB  00:00:00     
  21. updates                                                         | 2.9 kB  00:00:00     
  22. (1/5): base/7/x86_64/group_gz                                   | 153 kB  00:00:01     
  23. (2/5): extras/7/x86_64/primary_db                               | 242 kB  00:00:01     
  24. (3/5): updates/7/x86_64/primary_db                              | 9.6 MB  00:00:13     
  25. (4/5): gitlab-ce/7/primary_db                                   | 4.7 MB  00:00:16     
  26. (5/5): base/7/x86_64/primary_db                                 | 6.1 MB  00:00:22     
  27. 源标识                                源名称                                     状态
  28. base/7/x86_64                         CentOS-7 - Base                            10,072
  29. extras/7/x86_64                       CentOS-7 - Extras                             498
  30. gitlab-ce/7                           Gitlab CE Repository                          730
  31. updates/7/x86_64                      CentOS-7 - Updates                          2,579
  32. repolist: 13,879
  33. [root@localhost gitpub]# 
  34. [root@localhost gitpub]# yum install -y gitlab-ce
  35. 重新加载,过程很长,需要等一会。
  36. [root@localhost gitpub]# gitlab-ctl reconfigure
  37. 可以看到有很多的端口
  38. [root@localhost gitpub]# netstat -ntlp
  39. Active Internet connections (only servers)
  40. Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name    
  41. tcp        0      0 127.0.0.1:8082          0.0.0.0:*               LISTEN      4445/sidekiq 5.2.9  
  42. tcp        0      0 127.0.0.1:9236          0.0.0.0:*               LISTEN      1218/gitaly         
  43. tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      903/sshd            
  44. tcp        0      0 127.0.0.1:25            0.0.0.0:*               LISTEN      1061/master         
  45. tcp        0      0 0.0.0.0:8060            0.0.0.0:*               LISTEN      1189/nginx: master  
  46. tcp        0      0 127.0.0.1:9121          0.0.0.0:*               LISTEN      1193/redis_exporter 
  47. tcp        0      0 127.0.0.1:9090          0.0.0.0:*               LISTEN      1198/prometheus     
  48. tcp        0      0 127.0.0.1:9187          0.0.0.0:*               LISTEN      1202/postgres_expor 
  49. tcp        0      0 127.0.0.1:9093          0.0.0.0:*               LISTEN      1200/alertmanager   
  50. tcp        0      0 127.0.0.1:9100          0.0.0.0:*               LISTEN      1186/node_exporter  
  51. tcp        0      0 127.0.0.1:9229          0.0.0.0:*               LISTEN      1184/gitlab-workhor 
  52. tcp        0      0 127.0.0.1:8080          0.0.0.0:*               LISTEN      1190/puma 5.3.2 (un 
  53. tcp        0      0 127.0.0.1:9168          0.0.0.0:*               LISTEN      1195/ruby           
  54. tcp        0      0 0.0.0.0:80              0.0.0.0:*               LISTEN      1189/nginx: master  
  55. tcp6       0      0 :::22                   :::*                    LISTEN      903/sshd            
  56. tcp6       0      0 ::1:25                  :::*                    LISTEN      1061/master         
  57. tcp6       0      0 :::9094                 :::*                    LISTEN      1200/alertmanager   
  58. tcp6       0      0 ::1:9168                :::*                    LISTEN      1195/ruby           
  59. [root@localhost gitpub]#
  61. 查看浏览器默认密码
  62. Last login: Sun Aug 22 10:23:59 2021 from 192.168.100.1
  63. [root@localhost ~]# cat /etc/gitlab/initial_root_password
  64. # WARNING: This value is valid only in the following conditions
  65. #          1. If provided manually (either via `GITLAB_ROOT_PASSWORD` environment variable or via `gitlab_rails['initial_root_password']` setting in `gitlab.rb`, it was provided before database was seeded for the first time (usually, the first reconfigure run).
  66. #          2. Password hasn't been changed manually, either via UI or via command line.
  67. #
  68. #          If the password shown here doesn't work, you must reset the admin password following https://docs.gitlab.com/ee/security/reset_user_password.html#reset-your-root-password.
  70. Password: vLfF2uH7+Zz9L832/sC4chlfrwimw/ujUChNXD4MVm8=
  72. # NOTE: This file will be automatically deleted in the first reconfigure run after 24 hours.
  73. [root@localhost ~]#

在浏览器输入IP进行访问。 用户名 root 密码在/etc/gitlab/initial_root_password
image.png
image.png

备份

  1. [root@localhost ~]# gitlab-rake gitlab:backup:create
  2. 备份目录在/var/opt/gitlab/backups
  3. [root@localhost ~]# ls /var/opt/gitlab/backups/
  4. 1629600650_2021_08_22_14.1.3_gitlab_backup.tar
  5. [root@localhost ~]# 
  6. GitLab恢复,需要先停服务
  7. [root@localhost ~]# gitlab-ctl stop unicorn ; gitlab-ctl stop sidekiq 
  8. ok: down: sidekiq: 0s, normally up
  9. [root@localhost ~]# 
  10. 恢复备份,这里是一个编号,即备份文件的前缀
  11. [root@localhost ~]# gitlab-rake gitlab:backup:restore BACKUP=1629600650_2021_08_22_14.1.3
  13. 再启动服务
  14. [root@localhost ~]# gitlab-ctl start
  15. ok: run: alertmanager: (pid 1200) 3639s
  16. ok: run: gitaly: (pid 1176) 3639s
  17. ok: run: gitlab-exporter: (pid 1195) 3639s
  18. ok: run: gitlab-workhorse: (pid 1184) 3639s
  19. ok: run: logrotate: (pid 5588) 39s
  20. ok: run: nginx: (pid 1189) 3639s
  21. ok: run: node-exporter: (pid 1186) 3639s
  22. ok: run: postgres-exporter: (pid 1202) 3639s
  23. ok: run: postgresql: (pid 1181) 3639s
  24. ok: run: prometheus: (pid 1198) 3639s
  25. ok: run: puma: (pid 1190) 3639s
  26. ok: run: redis: (pid 1177) 3639s
  27. ok: run: redis-exporter: (pid 1193) 3639s
  28. ok: run: sidekiq: (pid 5619) 1s
  29. [root@localhost ~]#