个人中心
gpt4 book ai didi

authentication - Docker 推送到 artifactory 给出了 403

转载 作者:行者123 更新时间:2023-12-03 22:43:33 24 4
gpt4 key购买 nike

我正在尝试将 docker 镜像推送到 artifactory 上的本地 docker 仓库

docker push myNginxlb:2222/ubuntu

这得到一个 403- Access is forbidden 错误。以下是我在/etc/nginx/sites-enabled/artifactory下的反向代理配置

 upstream artifactory_lb {
                    server mNginxLb.mycompany.com:8081;
                    server mNginxLb.mycompany.com backup;
            }

            log_format upstreamlog '[$time_local] $remote_addr - $remote_user - $server_name  to: $upstream_addr: $request upstream_response_time $upstream_response_time msec $msec request_time $request_time';

            server {
                    listen 80;
                    listen 443 ssl;

                    ssl_certificate  /etc/nginx/ssl/my-certs/myCert.pem;
                    ssl_certificate_key /etc/nginx/ssl/my-certs/myserver.key;
                    client_max_body_size 2048M;
                    location / {
                            proxy_set_header Host $host:$server_port;
                            proxy_pass http://artifactory_lb;
                            proxy_read_timeout 90;
                    }
                    access_log /var/log/nginx/access.log upstreamlog;
                    location /basic_status {
                            stub_status on;
                            allow all;
                            }
            }

            # Server configuration

            server {
                listen 2222 ssl;

                server_name mNginxLb.mycompany.com;
                if ($http_x_forwarded_proto = '') {
                    set $http_x_forwarded_proto  $scheme;
                }

                rewrite ^/(v1|v2)/(.*) /api/docker/my_local_repo_key/$1/$2;
                client_max_body_size 0;
                chunked_transfer_encoding on;
                location / {
                proxy_read_timeout  900;
                proxy_pass_header   Server;
                proxy_cookie_path ~*^/.* /;
                proxy_pass         http://artifactory_lb;
                proxy_set_header   X-Artifactory-Override-Base-Url $http_x_forwarded_proto://$host;
                proxy_set_header    X-Forwarded-Port  $server_port;
                proxy_set_header    X-Forwarded-Proto $http_x_forwarded_proto;
                proxy_set_header    Host              $http_host;
                proxy_set_header    X-Forwarded-For   $proxy_add_x_forwarded_for;
                }
            }

访问日志显示以下http请求

"GET /v2/ HTTP/1.1" 404 465 "-" "docker/1.9.1 go/go1.4.2 git-commit/a34a1d5 kernel/3.13.0-24-generic os/linux arch/amd64"
 "GET /v2/ HTTP/1.1" 404 465 "-" "docker/1.9.1 go/go1.4.2 git-commit/a34a1d5 kernel/3.13.0-24-generic os/linux arch/amd64"
"GET /v1/_ping HTTP/1.1" 404 469 "-" "docker/1.9.1 go/go1.4.2 git-commit/a34a1d5 kernel/3.13.0-24-generic os/linux arch/amd64"
 "PUT /v1/repositories/ubuntu/ HTTP/1.1" 403 449 "-" "docker/1.9.1 go/go1.4.2 git-commit/a34a1d5 kernel/3.13.0-24-generic os/linux arch/amd64"

同样在 artifactory 中,我已经将 docker 本地仓库配置为使用 v2 api,我还缺少什么?

最佳答案

我通过将中间证书附加到上下文中的 ssl 证书来修复此问题

关于authentication - Docker 推送到 artifactory 给出了 403,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/34362607/

24 4 0
文章推荐: node.js - 如何使用Sequelize中的输出参数在SQL Server中执行存储过程?
文章推荐: memory-management - 如何解析段 :offset address in GDB
文章推荐: node.js - 在 sequelize 中插入关联数据不起作用?
文章推荐: actionscript-3 - AS3 TextField-将值设置为“”时不需要回车
行者123
个人简介

我是一名优秀的程序员,十分优秀!

滴滴打车优惠券免费领取
滴滴打车优惠券
Copyright 2021 - 2024 cfsdn All Rights Reserved 蜀ICP备2022000587号
广告合作:1813099741@qq.com 6ren.com