官网:https://docs.gitlab.com/omnibus/docker/

GitHub:https://github.com/sameersbn/docker-gitlab

安装

docker run

  1. $ sudo docker run --detach \
  2.     --hostname 10.100.68.163 \
  3.     --publish 13800:80 --publish 13822:22 \
  4.     --name gitlab_test \
  5.     --restart always \
  6.     gitlab/gitlab-ee:latest
  8. # 查看
  9. $ docker ps | grep gitlab_test
  11. # 开放端口
  12. $ firewall-cmd --add-port=13800/tcp --permanent
  14. # 更新防火墙规则
  15. $ firewall-cmd --reload
  17. # 持续输出日志
  18. $ docker logs -f gitlab_test

image.png

设置root密码

image.png

docker-gitlab

docker-compose.yml

wget https://raw.githubusercontent.com/sameersbn/docker-gitlab/master/docker-compose.yml

  1. version: '2.3'
  3. services:
  4.   redis:
  5.     restart: always
  6.     image: redis:5.0.9
  7.     command:
  8.     - --loglevel warning
  9.     volumes:
  10.     - redis-data:/var/lib/redis:Z
  12.   postgresql:
  13.     restart: always
  14.     image: sameersbn/postgresql:12-20200524
  15.     volumes:
  16.     - postgresql-data:/var/lib/postgresql:Z
  17.     environment:
  18.     - DB_USER=gitlab
  19.     - DB_PASS=password
  20.     - DB_NAME=gitlabhq_production
  21.     - DB_EXTENSION=pg_trgm,btree_gist
  23.   gitlab:
  24.     restart: always
  25.     image: sameersbn/gitlab:13.12.1
  26.     depends_on:
  27.     - redis
  28.     - postgresql
  29.     ports:
  30.     - "13800:80"
  31.     - "13822:22"
  32.     volumes:
  33.     - gitlab-data:/home/git/data:Z
  34.     healthcheck:
  35.       test: ["CMD", "/usr/local/sbin/healthcheck"]
  36.       interval: 5m
  37.       timeout: 10s
  38.       retries: 3
  39.       start_period: 5m
  40.     environment:
  41.     - DEBUG=false
  43.     - DB_ADAPTER=postgresql
  44.     - DB_HOST=postgresql
  45.     - DB_PORT=5432
  46.     - DB_USER=gitlab
  47.     - DB_PASS=password
  48.     - DB_NAME=gitlabhq_production
  50.     - REDIS_HOST=redis
  51.     - REDIS_PORT=6379
  53.     - TZ=Asia/Kolkata
  54.     - GITLAB_TIMEZONE=Kolkata
  56.     - GITLAB_HTTPS=false
  57.     - SSL_SELF_SIGNED=false
  59.     - GITLAB_HOST=10.100.68.163
  60.     - GITLAB_PORT=13800
  61.     - GITLAB_SSH_PORT=13822
  62.     - GITLAB_RELATIVE_URL_ROOT=
  63.     - GITLAB_SECRETS_DB_KEY_BASE=long-and-random-alphanumeric-string
  64.     - GITLAB_SECRETS_SECRET_KEY_BASE=long-and-random-alphanumeric-string
  65.     - GITLAB_SECRETS_OTP_KEY_BASE=long-and-random-alphanumeric-string
  67.     - GITLAB_ROOT_PASSWORD=123456789
  68.     - GITLAB_ROOT_EMAIL=996194720@qq.com
  70.     - GITLAB_NOTIFY_ON_BROKEN_BUILDS=true
  71.     - GITLAB_NOTIFY_PUSHER=false
  73.     - GITLAB_EMAIL=notifications@example.com
  74.     - GITLAB_EMAIL_REPLY_TO=noreply@example.com
  75.     - GITLAB_INCOMING_EMAIL_ADDRESS=reply@example.com
  77.         # 备份
  78.     - GITLAB_BACKUP_SCHEDULE=daily
  79.     - GITLAB_BACKUP_TIME=01:00
  80.     # 备份超时
  81.     - GITLAB_BACKUP_EXPIRY=604800
  83.     - SMTP_ENABLED=false
  84.     - SMTP_DOMAIN=www.example.com
  85.     - SMTP_HOST=smtp.gmail.com
  86.     - SMTP_PORT=587
  87.     - SMTP_USER=mailer@example.com
  88.     - SMTP_PASS=password
  89.     - SMTP_STARTTLS=true
  90.     - SMTP_AUTHENTICATION=login
  92.     - IMAP_ENABLED=false
  93.     - IMAP_HOST=imap.gmail.com
  94.     - IMAP_PORT=993
  95.     - IMAP_USER=mailer@example.com
  96.     - IMAP_PASS=password
  97.     - IMAP_SSL=true
  98.     - IMAP_STARTTLS=false
  100.     - OAUTH_ENABLED=false
  101.     - OAUTH_AUTO_SIGN_IN_WITH_PROVIDER=
  102.     - OAUTH_ALLOW_SSO=
  103.     - OAUTH_BLOCK_AUTO_CREATED_USERS=true
  104.     - OAUTH_AUTO_LINK_LDAP_USER=false
  105.     - OAUTH_AUTO_LINK_SAML_USER=false
  106.     - OAUTH_EXTERNAL_PROVIDERS=
  108.     - OAUTH_CAS3_LABEL=cas3
  109.     - OAUTH_CAS3_SERVER=
  110.     - OAUTH_CAS3_DISABLE_SSL_VERIFICATION=false
  111.     - OAUTH_CAS3_LOGIN_URL=/cas/login
  112.     - OAUTH_CAS3_VALIDATE_URL=/cas/p3/serviceValidate
  113.     - OAUTH_CAS3_LOGOUT_URL=/cas/logout
  115.     - OAUTH_GOOGLE_API_KEY=
  116.     - OAUTH_GOOGLE_APP_SECRET=
  117.     - OAUTH_GOOGLE_RESTRICT_DOMAIN=
  119.     - OAUTH_FACEBOOK_API_KEY=
  120.     - OAUTH_FACEBOOK_APP_SECRET=
  122.     - OAUTH_TWITTER_API_KEY=
  123.     - OAUTH_TWITTER_APP_SECRET=
  125.     - OAUTH_GITHUB_API_KEY=
  126.     - OAUTH_GITHUB_APP_SECRET=
  127.     - OAUTH_GITHUB_URL=
  128.     - OAUTH_GITHUB_VERIFY_SSL=
  130.     - OAUTH_GITLAB_API_KEY=
  131.     - OAUTH_GITLAB_APP_SECRET=
  133.     - OAUTH_BITBUCKET_API_KEY=
  134.     - OAUTH_BITBUCKET_APP_SECRET=
  135.     - OAUTH_BITBUCKET_URL=
  137.     - OAUTH_SAML_ASSERTION_CONSUMER_SERVICE_URL=
  138.     - OAUTH_SAML_IDP_CERT_FINGERPRINT=
  139.     - OAUTH_SAML_IDP_SSO_TARGET_URL=
  140.     - OAUTH_SAML_ISSUER=
  141.     - OAUTH_SAML_LABEL="Our SAML Provider"
  142.     - OAUTH_SAML_NAME_IDENTIFIER_FORMAT=urn:oasis:names:tc:SAML:2.0:nameid-format:transient
  143.     - OAUTH_SAML_GROUPS_ATTRIBUTE=
  144.     - OAUTH_SAML_EXTERNAL_GROUPS=
  145.     - OAUTH_SAML_ATTRIBUTE_STATEMENTS_EMAIL=
  146.     - OAUTH_SAML_ATTRIBUTE_STATEMENTS_NAME=
  147.     - OAUTH_SAML_ATTRIBUTE_STATEMENTS_USERNAME=
  148.     - OAUTH_SAML_ATTRIBUTE_STATEMENTS_FIRST_NAME=
  149.     - OAUTH_SAML_ATTRIBUTE_STATEMENTS_LAST_NAME=
  151.     - OAUTH_CROWD_SERVER_URL=
  152.     - OAUTH_CROWD_APP_NAME=
  153.     - OAUTH_CROWD_APP_PASSWORD=
  155.     - OAUTH_AUTH0_CLIENT_ID=
  156.     - OAUTH_AUTH0_CLIENT_SECRET=
  157.     - OAUTH_AUTH0_DOMAIN=
  158.     - OAUTH_AUTH0_SCOPE=
  160.     - OAUTH_AZURE_API_KEY=
  161.     - OAUTH_AZURE_API_SECRET=
  162.     - OAUTH_AZURE_TENANT_ID=
  164. volumes:
  165.   redis-data:
  166.   postgresql-data:
  167.   gitlab-data:

启动

  1. $ vi docker-compose.yml
  3. $ docker-compose up -d
  5. $ docker ps
  7. $ docker logs -f di-got_gitlab_1

image.png
image.png
image.png

设置GITLAB_BACKUP_EXPIRY

自动备份

  1. $ vi ./docker-compose.yml
  3. # ...
  4. - GITLAB_BACKUP_SCHEDULE=daily
  5. - GITLAB_BACKUP_TIME=01:00
  6. - GITLAB_BACKUP_EXPIRY=604800
  7. #...
  9. # 更新配置
  10. $ docker-compose up -d

image.png

手动备份

  1. $ docker-compose run --rm gitlab app:rake gitlab:backup:create

image.png
image.png

Warning解释: 敏感信息也已经备份成功

恢复

  1. # 恢复可用的备份
  2. $ docker-compose run --rm gitlab app:rake gitlab:backup:restore
  4. # 指定恢复备份
  5. $ docker-compose run --rm gitlab app:rake gitlab:backup:restore BACKUP=1515629493_2020_12_06_13.10.0

image.png
恢复文件需要使用恢复文件的全称(包括 .tar 结尾)
image.png