1.预先配置nexus docker仓库
1)hosted私库配置
2)proxy代理仓库配置
3)docker仓库组合
4)配置Realms
2:配置nexus https及docker
一键配置脚本
#!/bin/bash
#参数配置
NEXUS_HOME=/usr/local/nexus-3.16.1-02/
NEXUS_DOMAIN=192.168.101.202
NEXUS_IP_ADDRESS=192.168.101.202
PASSWD=Nexus123
#生成keystore
cd $NEXUS_HOME/etc/ssl/
keytool -genkeypair -keystore nexus.jks -storepass ${PASSWD} -keypass ${PASSWD} -alias nexus -keyalg RSA -keysize 2048 -validity 5000 -dname "CN=${NEXUS_DOMAIN}, OU=Nexus, O=Nexus, L=Beijing, ST=Beijing, C=CN" -ext "SAN=IP:${NEXUS_IP_ADDRESS}" -ext "BC=ca:true"
#生成ca证书
keytool -export -alias nexus -keystore nexus.jks -file nexus.cer -storepass ${PASSWD}
#修改nexus配置https
sed -i "s/^nexus-args=.*/nexus-args=\${jetty.etc}\/jetty.xml,\${jetty.etc}\/jetty-http.xml,\${jetty.etc}\/jetty-requestlog.xml,\${jetty.etc}\/jetty-https.xml,\${jetty.etc}\/jetty-http-redirect-to-https.xml/" $NEXUS_HOME/etc/nexus-default.properties
sed -i "s/<Set name=\"KeyStorePath\">.*\.jks<\/Set>$/<Set name=\"KeyStorePath\"><Property name=\"ssl.etc\"\/>\/nexus.jks<\/Set>/g" $NEXUS_HOME/etc/jetty/jetty-https.xml
sed -i "s/<Set name=\"TrustStorePath\">.*\.jks<\/Set>$/<Set name=\"T