nexus3配置
项目地址
https://github.com/sonatype/docker-nexus3
# 创建网络local
docker create network local
# 创建docker-compose.yml
mkdir -p /mnt/pve/local-data/docker/nexus3
nano /mnt/pve/local-data/docker/nexus3/docker-compose.yml
services:
# nexus3 8081
nexus3:
image: sonatype/nexus3:latest
container_name: nexus3
hostname: nexus3
networks:
- local
ports:
- 8081:8081
environment:
- TZ=Asia/Shanghai
- LANG=en_US.UTF-8
- NEXUS_SECRETS_KEY_FILE=/nexus-secret/nexus.secret.file.json
volumes:
- /mnt/pve/local-data/docker/nexus3/nexus-data:/nexus-data
- /mnt/pve/local-data/docker/nexus3/nexus-secret:/nexus-secret
restart: always
networks:
local:
external: true
# 创建密钥文件
openssl rand -base64 64 > /mnt/pve/local-data/docker/nexus3/nexus-secret/nexus.secret.file.json
nano /mnt/pve/local-data/docker/nexus3/nexus-secret/nexus.secret.file.json
{
"active": "admin",
"keys": [
{
"id": "admin",
"key": "XXXXXXXX"
}
]
}
# 修改目录和文件权限
chown -R 200:200 /mnt/pve/local-data/docker/nexus3/nexus-secret:/nexus-secret
chmod 644 /mnt/pve/local-data/docker/nexus3/nexus-secret/nexus.secret.file.json
# nexus3部署
cd /mnt/pve/local-data/docker/nexus3
docker-compose up -d
# 初始化密码
cat /mnt/pve/local-data/docker/nexus3/nexus-data/admin.password
Blob Stores
Region
Select an AWS Region
cn-north-1
Bucket
S3 Bucket Name (must be between 3 and 63 characters long containing only lower-case characters, numbers, periods, and dashes)
nexus3
Prefix
S3 Path prefix
maven-proxy maven-public maven-releases maven-snapshot
Authentication (Optional)
Access Key ID
admin
Secret Access Key
minio默认密码
Advanced Connection Settings (Optional)
Endpoint URL
A custom endpoint URL for third party object stores using the S3 API
http://storage.5210125.xyz:9001
Signature Version
S3SignerType
Use path-style access
Setting this flag will result in path-style access being used for all requests
true
Repositories
| Name | Type | Format | Blob Store | Remote storage |
|---|---|---|---|---|
| maven-proxy-aliyun | proxy | maven2 | maven-proxy | https://maven.aliyun.com/repository/public |
| maven-proxy-apache | proxy | maven2 | maven-proxy | https://repo.maven.apache.org/maven2 |
| maven-proxy-jeecg | proxy | maven2 | maven-proxy | https://maven.jeecg.com/nexus/content/repositories/jeecg |
| maven-public | group | maven2 | maven-public | |
| maven-releases-datacenter | hosted | maven2 | maven-releases | |
| maven-releases-t2 | hosted | maven2 | maven-releases | |
| maven-snapshots-datacenter | hosted | maven2 | maven-snapshot | |
| maven-snapshots-t2 | hosted | maven2 | maven-snapshot |
maven-proxy-aliyun
maven-public
maven-releases-datacenter
maven-snapshots-datacenter
LDAP
Name:
ldap
LDAP server address:
The LDAP server usually listens on port 389 (Idap:/) or port 636 (Idaps:/)
ldap office.5210125.xyz 389
Search base DN:
LDAP location to be added to the connection URL (e.g. "dc=example,dc=com")
dc=ldap,dc=goauthentik,dc=io
Authentication method:
Simple Authentication
Username or DN:
This must be a fully qualified username if simple authentication is used
cn=admin,ou=users,dc=ldap,dc=goauthentik,dc=io
Configuration template:
Select a template
User relative DN:
The relative DN where user objects are found (e.g. ou=people). This value will have the Search base DN value appended to form the full User search
base DN
ou=users
Object class:
LDAP class for user objects (e.g. inetOrgPerson)
user
User ID attribute:
sAMAccountName
Real name attribute:
cn
Email attribute:
mail
Map LDAP groups aS roles:
true
Group type:
Dynamic Groups
Group member of attribute:
Set this to the attribute used to store the attribute which holds groups DN in the user object
mmemberOf
Realms
Anonymous Access
Email Server Configuration
EnableEmailServer
true Enabled
Host
mailcow.5210125.xyz
Port
465
Username
admin@5210125.xyz
Password
默认邮箱密码
From Address
admin@5210125.xyz
SSL/TLS options
EnableSSL/TLS encryptionupon connection
Tasks
Type
Repair - Recalculate blob store storage
重新计算blob存储区存储
Enable Admin - Execute script
# 修改配置文件
nano /mnt/pve/local-data/docker/nexus3/nexus-data/etc/nexus.properties
# 添加如下内容
nexus.scripts.allowCreation=true