https://github.com/goharbor/harbor/blob/master/docs/installation_guide.md
https://docs.gitlab.com/ee/user/project/clusters/index.html
https://docs.traefik.io/user-guide/kubernetes/ (参考:https://blog.51cto.com/wangzhijian/2125520?cid=719029)
https://github.com/certbot/certbot
创建ssl
https://blog.51cto.com/devingeng/2154041 (参考:https://www.cnblogs.com/tv151579/p/8268356.html)
https://www.jianshu.com/p/71ce5e6eb6a7
openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout ./tls.key -out ./tls.crt -subj "/CN=kubernetes-dashboard.kube"
kubectl create serviceaccount --namespace kube-system tiller kubectl create clusterrolebinding tiller-cluster-rule --clusterrole=cluster-admin --serviceaccount=kube-system:tiller kubectl patch deploy --namespace kube-system tiller-deploy -p '{"spec":{"template":{"spec":{"serviceAccount":"tiller"}}}}'
helm 安装
CI/CD:https://blog.csdn.net/ygqygq2/article/details/85097857
helm upgrade --install gitlab --namespace=gitlab --timeout 600 . \ --set global.hosts.domain=git.kube \ --set global.time_zone="Asia/Shanghai" \ --set gitlab.gitaly.persistence.size=2Gi \ --set postgresql.persistence.size=2Gi \ --set minio.persistence.size=5Gi \ --set redis.persistence.size=1Gi \ --set nginx-ingress.enabled=false \ --set prometheus.install=false \ --set certmanager.install=false \ --set certmanager-issuer.email=renjun0106@126.com \ --set gitlab.gitlab-runner.rbac.clusterWideAccess=true \ --set gitlab.gitlab-runner.rbac.create=true \ --set gitlab.gitlab-runner.runners.privileged=true