Ubuntu 18.04 上㮠GitLab CI 㧠Docker イメージをビルドã—㦠GCP ã® Container Registry ã«ç™»éŒ²ã™ã‚‹ã¾ã§
環境
ã•ãらVPS ã« Ubuntu 18.04 ã‚’OSカスタムインストールã—ã¦ã„ã¦ã€GitLab CE をインストールã—ã¾ã™ã€‚GitLab CI Runner ã‚‚åŒãƒ›ã‚¹ãƒˆã§å‹•ã‹ã—ã¾ã™ã€‚ CI 㧠Docker イメージをビルドã—ã¦ã€Google Cloud Platform (GCP) ã® Container Registry ã«ãƒ—ッシュã—ã¾ã™ã€‚
GitLab ã®ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«
下記ã®ãƒšãƒ¼ã‚¸ã®é€šã‚Šã§ã™ã€‚EEã¨CEã®å·®ã¯ãƒ©ã‚¤ã‚»ãƒ³ã‚¹ã‚’é©ç”¨ã™ã‚‹ã‹ã©ã†ã‹ã§å¤‰ã‚ã‚Šã¾ã™ãŒã€çµ¶å¯¾ã«CEã®ã¾ã¾ã¨ã„ã†ãªã‚‰ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã‚¹ã‚¯ãƒªãƒ—トã®URLを変ãˆã‚‹ã¨ãã¡ã‚‰ã§ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã•ã‚Œã¾ã™ã€‚
GitLab CI 機能ã®è¨å®š
Docker CE をインストール
å˜ã« apt ã‹ã‚‰ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã‚‚ã§ãã¾ã™ãŒã€ãƒãƒ¼ã‚¸ãƒ§ãƒ³ãŒå¤ã„ã¨åµŒã‚Šã‚„ã™ã„ã®ã§æœ€æ–°ã® Docker CE をインストールã—ã¾ã™ã€‚
GitLab Runner ã®ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«
ã“ã¡ã‚‰ã¯ã€Dockerã¸ã®ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã§ã¯ãªãã€ãƒªãƒã‚¸ãƒˆãƒªã‹ã‚‰ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã—ã¾ã—ãŸã€‚GitLab Runner ã¯ã»ã¼ CI Runner ã®ã‚³ãƒžãƒ³ãƒ‰ç®¡ç†ãƒ„ールã§ã€å®Ÿéš›ã‚¸ãƒ§ãƒ–処ç†ã™ã‚‹ Runner (ãªã„ã— Executor) ã¯æ¬¡ã§ã‚¤ãƒ³ã‚¹ãƒˆãƒ¼ãƒ«ã¨ã„ã†èªè˜ã§ã™ã€‚
実際㮠GitLab Runner(Executor) ã¨ã—ã¦å‹•ä½œã™ã‚‹Dockerコンテナを登録
下記㮠Building Docker images with GitLab CI/CD ページ内㮠Use docker-in-docker executor* を実行ã—ã¾ã™ã€‚ https://docs.gitlab.com/ee/ci/docker/using_docker_build.html#use-docker-in-docker-executor
å„リãƒã‚¸ãƒˆãƒªã® CI è¨å®š
GCP ã«ã‚¹ãƒˆãƒ¬ãƒ¼ã‚¸ç®¡ç†è€…権é™ã‚’æŒã¤ã‚µãƒ¼ãƒ“スアカウントを作æˆã—ã€JSONã‚ーファイルをå–å¾—ã—ã¾ã™ã€‚ https://cloud.google.com/container-registry/docs/advanced-authentication#json_key_file
Settings -> CI / CD -> Variables
GCLOUD_PROJECT_ID- GCP ã®ãƒ—ãƒã‚¸ã‚§ã‚¯ãƒˆIDGCLOUD_SERVICE_KEY- JSONã‚ーファイルã®ä¸èº«ã‚’貼り付ã‘ã‚‹
.gitlab-ci.yml
下記ã®ã‚ˆã†ã«è¨ç½®ã™ã‚‹ã€‚例ã§ã¯ gcr.io/<GCP project ID>/<repository group name>/<repository name> ã§ã‚¤ãƒ¡ãƒ¼ã‚¸ãŒ push ã•ã‚Œã¾ã™ã€‚
image: tilfin/gitlab-ci-to-gcr services: - docker:dind variables: DOCKER_DRIVER: overlay IMAGE_NAME: "$CI_PROJECT_PATH:latest" before_script: - echo $GCLOUD_SERVICE_KEY > ${HOME}/gcr-key.json - gcloud auth activate-service-account --key-file ${HOME}/gcr-key.json - docker login -u _json_key --password-stdin https://gcr.io < ${HOME}/gcr-key.json stages: - publish publish: stage: publish script: - docker build -t $IMAGE_NAME . - docker tag $IMAGE_NAME "gcr.io/$GCLOUD_PROJECT_ID/$IMAGE_NAME" - docker push "gcr.io/$GCLOUD_PROJECT_ID/$IMAGE_NAME" only: - master
dind㯠Docker IN Docker ã®ç•¥ã§ã™ã€‚overlayストレージ・ドライãƒã¯ Ubuntu 18.04 ã§ã‚ã‚Œã°åˆ©ç”¨ã§ãã¾ã™ã€‚Docker 入れåã§ã‚‚ストレージã¯é€éŽçš„ã«ãƒ›ã‚¹ãƒˆã«ã‚¢ã‚¯ã‚»ã‚¹ã™ã‚‹ã“ã¨ã§ã‚¹ãƒ”ードãŒä¸‹ãŒã‚‰ãªã„よã†ã«ã—ã¾ã™ã€‚
補足) tilfin/gitlab-ci-to-gcr
tilfin/gitlab-ci-to-gcr イメージã¯ã€ç§ãŒå…¬å¼ Docker Hub ã«ãƒ—ッシュã—ã¦ã‚‹ docker:stable ã« Google Cloud SDK 㨠gcloud コマンドをインストールã—ãŸã‚‚ã®ã§ã™ã€‚
https://hub.docker.com/r/tilfin/gitlab-ci-to-gcr/
FROM docker:stable
ARG CLOUD_SDK_VERSION=224.0.0
ENV CLOUD_SDK_VERSION=$CLOUD_SDK_VERSION
ENV PATH /google-cloud-sdk/bin:$PATH
RUN apk --no-cache add \
curl \
python \
py-crcmod \
bash \
libc6-compat \
openssh-client \
git \
gnupg \
&& curl -O https://dl.google.com/dl/cloudsdk/channels/rapid/downloads/google-cloud-sdk-${CLOUD_SDK_VERSION}-linux-x86_64.tar.gz && \
tar xzf google-cloud-sdk-${CLOUD_SDK_VERSION}-linux-x86_64.tar.gz && \
rm google-cloud-sdk-${CLOUD_SDK_VERSION}-linux-x86_64.tar.gz && \
ln -s /lib /lib64 && \
gcloud components install kubectl && \
gcloud config set core/disable_usage_reporting true && \
gcloud config set component_manager/disable_update_check true && \
gcloud config set metrics/environment github_docker_image && \
gcloud --version
VOLUME ["/root/.config"]
ç·æ‹¬
ã‚‚ã¨ã‚‚㨠Registry 機能自体も GitLab ã«ã‚りストレージã ã‘ GCP を利用ã™ã‚‹ã“ã¨ã‚‚ã§ãã¾ã™ã€‚ã—ã‹ã—ã€ãƒžãƒ«ãƒãƒ‰ãƒ¡ã‚¤ãƒ³ã§ã®é‹ç”¨ã§ã†ã¾ãã„ã‹ãªã„å ´åˆãŒã‚ã£ãŸã®ã¨ã€å¯ç”¨æ€§ã®é¢ã§ç›´æŽ¥ GCP ã® Registry ã‚’å‚ç…§ã™ã‚‹æ–¹ãŒã„ã„ãŸã‚ã€ã“ã®ã‚ˆã†ã«ã—ã¦ä½¿ã£ã¦ã„ã¾ã™ã€‚
