Skip to content

雜記

Personal Knowledge Manage
001 TODO
001 TODO
- my-todo
- 28490作日誌寫入機制
- Code copy
- Code getway
- Code
- devops
- Test
- 報表下載
100 InBox
100 InBox
200 學習OB
200 學習OB
- obsidian
- Plugin
  Plugin
  - Homepage
  - Roam-Highlighter
  - TabCopy
  - admonition
  - buttons
  - QuickAdd
  - templater
300 閱讀筆記
300 閱讀筆記
400 devops
400 devops
- 000-MOC-devops
- 01 Concepts of Software Development
  01 Concepts of Software Development
  - Index
  - GraalVM
  - free-cloud-storage
  - okteto
  - skaffold
  - Java
    Java
    
    gradle
    
    maven
- 02 OS and Linux Basics
  02 OS and Linux Basics
  - windows
  - Network
    Network
    
    free-domain
    
    ngrok
  - Ssl
    Ssl
    
    Certificate
    Certificate
    
    curl (60) SSL certificate problem
    
    Openssl
    Openssl
    
    OpenSSL支援許多不同的加密演算法：
  - Windows
    Windows
    
    ➰windows 工具清單
    
    🔧scoop
    
    wsl
- 03 Containerization
  03 Containerization
- 04 CI CD Pipelines
  04 CI CD Pipelines
  - ArgoCD
  - drone
  - helm first
  - Github
    Github
    
    github
    
    Github-Action
    
    GitHub-packages
    
    gitpod
- 05 Cloud Provider
  05 Cloud Provider
  - GCP
  - GKE 升級
- 06 Kubernetes
  06 Kubernetes
  - kind k8s 研究一下
  - Kustomize
  - k8s
  - minikube
  - 本地開發 Kubernetes 應用程式流程
  - Basics
    Basics
    
    Kubernetes Tutorial: The Basics
  - Devops helm
    Devops helm
    
    Helm jenkins
    Helm jenkins
    
    Jenkins
    
    Change Log
    
    TODO
    
    Jenkins
    
    Terraform helm
    Terraform helm
    
    terraform-deploy-helm
    
    Helm
    Helm
    
    kubernetes-dashboard
    
    Charts
    Charts
    
    Metrics server
    Metrics server
    
    metrics-server
  - K8s ingress controller docker desktop
    K8s ingress controller docker desktop
    
    NGINX Ingress Controller
  - K8s ithelp
    K8s ithelp
    
    Day1
    Day1
    
    從異世界歸來的第一天 - Kubernetes 啟航
    
    Day10
    Day10
    
    從異世界歸來的第十天 - Kubernetes 三兄弟 - Pod 的生命週期 (四)
    
    Day11
    Day11
    
    從異世界歸來的第十一天 - Kubernetes Kubectl 指令與他的快樂夥伴
    
    Day12
    Day12
    
    從異世界歸來的第十二天 - Kubernetes Deployment Strategies - 常見的部署策略 (一)
    
    Day13
    Day13
    
    從異世界歸來的第十三天 - Kubernetes Deployment Strategies - Rolling Update & Recreate (二)
    
    Day14
    Day14
    
    從異世界歸來的第十四天 - Kubernetes Deployment Strategies - Blue/Green Deployment 藍綠部署 (三)
    
    Day15
    Day15
    
    Index
    
    Day16
    Day16
    
    Index
    
    Day17
    Day17
    
    Index
    
    Day18
    Day18
    
    Index
    
    Day19
    Day19
    
    從異世界歸來的第十九天 - Kubernetes Volume (四) - Secret
    
    Day2
    Day2
    
    從異世界歸來的第二天 - Kubernetes 是什麼？
    
    Day20
    Day20
    
    Index
    
    Day21
    Day21
    
    Index
    
    Day22
    Day22
    
    Index
    
    Day23
    Day23
    
    Index
    
    Day24
    Day24
    
    Index
    
    Day25
    Day25
    
    Index
    
    Day26
    Day26
    
    Index
    
    Day27
    Day27
    
    Index
    
    Day28
    Day28
    
    Index
    
    Day29
    Day29
    
    Index
    
    Day3
    Day3
    
    從異世界歸來的第三天 - Kubernetes 的組件
    
    Day30
    Day30
    
    從異世界歸來的第三十天 - Kubernetes 最終章 - 學習了 Kubernetes 的下一步呢？
    
    Day4
    Day4
    
    Day4 Kubernetes 本地集群安裝 (docker desktop for mac)
    
    Day5
    Day5
    
    Day5 Kubernetes Dashboard 你的 Kubernetes GUI 神器
    
    Day6
    Day6
    
    Day 6 Kubernetes 三兄弟 - Pod (一)
    
    Day7
    Day7
    
    Index
    
    Day8
    Day8
    
    Index
    
    Day9
    Day9
    
    Index
  - K8s jenkins
    K8s jenkins
    
    jenkins
  - K8s learning
    K8s learning
    
    00.install
    00.install
    
    使用部署工具安装 Kubernetes
    
    01.dashboard
    01.dashboard
    
    部署 Dashboard UI
    
    03.pod
    03.pod
    
    command
    
    04.deployment
    04.deployment
    
    deployment
    
    05.service
    05.service
    
    service
    
    06.ingress
    06.ingress
    
    ingress : service的統一往關入口
    
    07.pv pvc
    07.pv pvc
    
    Index
    
    08 collect
    08 collect
    
    test
    
    99.k8s all in one
    99.k8s all in one
    
    All-in-One Installation of Kubernetes and KubeSphere on Linux
    
    Linux
    Linux
    
    02 ingress
    02 ingress
    
    Index
    
    03 dashboard
    03 dashboard
    
    dashboard
    
    04 jenkins
    04 jenkins
    
    jenkins
  - K8s mysql
    K8s mysql
    
    fila mysql 權限
  - K8s paas
    K8s paas
    
    k8s_PaaS
    
    01.Docker（已熟悉的可以从第二章开始）
    
    02.企业部署实战 K8S
    
    03.k8s集群
    
    04.dashboard插件及k8s实战交付
    
    05.K8S结合CI&CD持续交付和集中管理配置
    
    06.在K8S中集成Apollo配置中心
    
    07.Promtheus监控k8s企业级应用
    
    08.spinaker部署与应用
    
    Features
    
    原理及源码解析
    原理及源码解析
    
    Index
    
    Docker基础
    
    Kubernetes yaml文件
    
    Kubernetes基本概念
    
    Kubernetes相关生态
    
    Kubernetes调度机制
  - Minikube
    Minikube
    
    install Minikube in windows sub linux ubuntu-20.04LTS
  - Out network
    Out network
    
    k8s中引入外部服务
- 07 Monitoring and Observability
  07 Monitoring and Observability
  - Fluent-Bit
  - istio
  - kiaki
  - 監控
- 08 Infrastructure as Code
  08 Infrastructure as Code
  - pulumi
  - terraform
- 09 Scripting Language
  09 Scripting Language
  - go
- 10 Version Control
  10 Version Control
  - gitea
600 developer
600 developer
- DEVPOS-導航地圖
- 23种设计模式
- Elasticsearch
- JMM
- JUC
- JVM
- docker-run-command
- go-lang
- intellij
- k8s
- learn-powershell01
- mongodb
- mysql
- rabbitmq
- redis
- smtp
- travis-ci
- Automatic
  Automatic
  - automatic-導航地圖
  - chromeDrive
- Big data
  Big data
  - 大數據
  - 數據傳輸序列化
  - Kafka
    Kafka
    
    kafka-01
  - Storm
    Storm
    
    storm-01
  - Ai
    Ai
    
    tensorflow-01
  - Hadoop
    Hadoop
    
    hadoop-01
  - Netty
    Netty
    
    netty-01
    
    netty-02
    
    netty-ByteBuf
    
    netty-Channel
    
    netty-ChannelPipeline
    
    netty-EventLoopGroup
    
    netty-Future
    
    netty-Reactor
    
    netty-http下載器
    
    netty-自旋鎖
  - Redis
    Redis
    
    redis-01-install
  - Scala
    Scala
    
    scala-01
  - Zookpeeper
    Zookpeeper
    
    zookpeeeper-01
- Blog
  Blog
  - Hexo blog
    Hexo blog
    
    命令
    
    使用github建立Blog
    
    簡介
  - Vuepress blog
    Vuepress blog
    
    安裝vuepress-blog
- Database
  Database
  - sql-like-index
  - Database.tools
    Database.tools
    
    ER_Studio
  - Mysql
    Mysql
    
    mysql-index
    
    mysql8-免安裝
    
    大数据分页优化
    
    尚硅谷
    尚硅谷
    
    尚硅谷MySQL入门到高级宋红康版 0112170108
    尚硅谷MySQL入门到高级宋红康版 0112170108
    
    Index
  - Oracle
    Oracle
    
    oracle-db-link
    
    oracle-plsql
    
    oracle-record
- Docker
  Docker
  - docker-導航地圖
  - 簡介
  - docker-mysql
  - docker-tomcat
  - docker-windows
  - docker
  - yum-aliyun
  - Dockerfile
    Dockerfile
    
    Dockerfile-01
    
    docker-ssh
  - Docker compose
    Docker compose
    
    docker-compose-01
    
    docker-compouse-02
    
    docker-redis
- Frontend
  Frontend
  - Angular
    Angular
    
    angular-01
    
    angular-02
  - Fe tools
    Fe tools
    
    前端工具-glup-livereload
  - Google
    Google
    
    Google-Analytics
    
    chrome-devtools-panels
    
    chrome.plugin開發
  - Jquery
    Jquery
    
    jquery驗證與檔案上傳
  - Js plugin
    Js plugin
    
    好用的js插件
  - Nodejs
    Nodejs
    
    nodeApp
  - Vue
    Vue
    
    開發Vue使用brower的module
- Gradle
  Gradle
  - gradle-build
  - gradle
- Home data
  Home data
  - tplink-C2100
- Java
  Java
  - 3 party
    3 party
    
    easyExcel阿里
    
    java-log4j2
    
    java-maven01
  - Application server
    Application server
    
    Weblogic
    Weblogic
    
    weblogic-12c-install
    
    weblogic-ejb
    
    weblogic.intellij
    
    weblogic-jdbc
    
    weblogic-spring-jpa
  - Black technology
    Black technology
    
    AbstractProcessor
    
    ServiceLoader
    
    javaagent
  - Java base
    Java base
    
    泛型方法
    
    簡介
    
    java-輔助類
  - Java io
    Java io
    
    bio-nio-aio
    
    java-socket
  - Java security
    Java security
    
    java-security
  - Java8
    Java8
    
    java8-Spliterator
    
    java8-collect
    
    java8-FunctionalInterface（Lambda）
    
    java8-函數式編程01
    
    java8-stream
    
    java8
  - Spring
    Spring
    
    DispatcherServlet
    
    ServletContainerInitializer
    
    multipleApplicationContext
    
    spring-note
    
    springfox.swagger2
    
    Springboot
    Springboot
    
    spring-data-jpa
    
    springboot-elasticsearch
    
    Thymeleaf
    Thymeleaf
    
    spring-thymeleaf-01
- Kafka
  Kafka
  - kafka
- Linux
  Linux
  - centos7-command
- Operation maintenance
  Operation maintenance
  - Zabbix
    Zabbix
    
    zabbix3.4 GCP
    
    zabbix
    
    zabbix自訂key使用powershell
- Principle
  Principle
- Spring
  Spring
- Tools
  Tools
  - 000-MOC-tools
  - VMware-Workstation-Pro-REST-API
  - browerHotReload
  - 把eclipse的plugin抽取出來
  - 前端性能监控
  - 簡介
  - github
  - 快速學習一門新技術
  - Bilibili download
    Bilibili download
    
    bilibili-download
  - Chrome
    Chrome
    
    000-MOC-chrome-plugin
    
    OhMyMock
    
    Roam-Highlighter
    
    Chrome-擷取網頁標題
  - Free resource
    Free resource
    
    免費設定網站資源
  - Git
    Git
    
    git-command
    
    git-patch-cherry-pick
    
    git-rebase
    
    git-upstream
    
    github-sshkey
  - Mobile
    Mobile
    
    抓包工具（Fiddler Classic）
    
    Genymotion(android模擬器)
  - Nginx notepad color
    Nginx notepad color
    
    nginx-notepad-彩色
  - Obsidian
    Obsidian
    
    obsidian-知識網地圖
    
    Johnny-OB-037
    
    obsidian-美化提示方塊
    
    Obsidian 建立按鈕
    
    obsidian-data-classification
    
    obsidian-外掛
  - Security
    Security
    
    密碼學-MOC
    
    自建CA搭建HTTPS及域名配置
    
    HTTP強制安全傳輸技術(Strict-Transport-Security)
    
    證書（Certificate）
    
    JCA-JCE
    
    Openssl 命令
    
    密碼學-檔案擴展名
  - Vscode
    Vscode
    
    RestClient-Postman
    
    vmware
    
    vscode-滑鼠滾輪變更字體大小
  - Windows
    Windows
    
    000-MOC-wondows
    
    THE PACKAGE MANAGER FOR WINDOWS
    
    install-multiple-Ubuntu-WSL2
    
    install-wslg
    
    win-cmd
    
    windows-命令
    
    windows-netcat
    
    wsl

部署 Dashboard UI ¶

默认情况下不会部署 Dashboard。可以通过以下命令部署：

kubectl apply -f https://raw.githubusercontent.com/kubernetes/dashboard/v2.2.0/aio/deploy/recommended.yaml

# 端口 export
kubectl edit svc kubernetes-dashboard -n kubernetes-dashboard
# 修改 => Type : `NodePort`


# 檢查開放端口，使用外往連接
[root@master k8s]# kubectl get svc -A | grep kubernetes-dashboard
kubernetes-dashboard   dashboard-metrics-scraper   ClusterIP   10.96.144.115   <none>        8000/TCP                 45m
kubernetes-dashboard   kubernetes-dashboard        NodePort    10.96.243.112   <none>        443:30712/TCP            45m

kubernetes-dashboard

建立 role¶

因為 Kubernetes 預設就幫我們建立了 cluster-admin 這個 role, 所以我們就不用再自己另外建立, 直接使用即可

建立 dashboard-user.yaml 檔



kind: ClusterRoleBinding
apiVersion: rbac.authorization.k8s.io/v1
metadata:
  name: cluster-admin-binding
  annotations:
    rbac.authorization.kubernetes.io/autoupdate: "true"
roleRef:
  # 這邊我們並沒有特別建立這個 cluster role, 因為這是 Kubernetes 預設建立的
  kind: ClusterRole
  name: cluster-admin
  apiGroup: rbac.authorization.k8s.io
subjects:
- kind: ServiceAccount
  name: cluster-admin-tommy
  namespace: kube-system

kubectl create -f dashboard-user.yaml

取得 Server Account 的 token ¶

上面已經完成綁定, 接下來我們便要取得 service account 的 token 首先, 我們先來看看 service account


# 建立 service account
# 那我們就建立一個 service account, 名為 cluster-admin-tommy
[root@master k8s]# kubectl create sa cluster-admin-tommy -n kube-system
serviceaccount/cluster-admin-tommy created

# get token
[root@master k8s]# kubectl get sa cluster-admin-tommy -n kube-system -o=yaml
apiVersion: v1
kind: ServiceAccount
metadata:
  creationTimestamp: "2021-12-08T12:58:18Z"
  name: cluster-admin-tommy
  namespace: kube-system
  resourceVersion: "10482"
  uid: 207c0bd4-5f9b-4d13-b4df-b5b0c16d5835
secrets:
- name: cluster-admin-tommy-token-4rnb4
[root@master k8s]#


##################
[root@master k8s]# kubectl get secret cluster-admin-tommy-token-4rnb4 -o jsonpath={.data.token} -n kube-system | base64 -d

eyJhbGciOiJSUzI1NiIsImtpZCI6IjJrbXNINTBwemtVQmI4UDRFaWY4R3hMc0NHLTltSTZhNE5sWFpmWXp2eVkifQ.eyJpc3MiOiJrdWJlcm5ldGVzL3NlcnZpY2VhY2NvdW50Iiwia3ViZXJuZXRlcy5pby9zZXJ2aWNlYWNjb3VudC9uYW1lc3BhY2UiOiJrdWJlLXN5c3RlbSIsImt1YmVybmV0ZXMuaW8vc2VydmljZWFjY291bnQvc2VjcmV0Lm5hbWUiOiJjbHVzdGVyLWFkbWluLXRvbW15LXRva2VuLTRybmI0Iiwia3ViZXJuZXRlcy5pby9zZXJ2aWNlYWNjb3VudC9zZXJ2aWNlLWFjY291bnQubmFtZSI6ImNsdXN0ZXItYWRtaW4tdG9tbXkiLCJrdWJlcm5ldGVzLmlvL3NlcnZpY2VhY2NvdW50L3NlcnZpY2UtYWNjb3VudC51aWQiOiIyMDdjMGJkNC01ZjliLTRkMTMtYjRkZi1iNWIwYzE2ZDU4MzUiLCJzdWIiOiJzeXN0ZW06c2VydmljZWFjY291bnQ6a3ViZS1zeXN0ZW06Y2x1c3Rlci1hZG1pbi10b21teSJ9.Ub344dEjc8K270MrNlkNWlnj5XZrr2Rb8mbrt8-G-_2d3QPtx9FTCVtb7FoEDdxFuMMTzatmmiGiuOjX4m1u7HMgjHqNIBW3MOS777vysTJ6jlgHa0fQE0vu6XNfh5P_enCysQ0EUCeEQrGGBFvGvxdRg4IHaK4UPy7XKUxu6HHb6KWiCXroMIH5EV1ymAqUmoeBOQLRAmcOdsc4w4VOv91xQycMA5xIC6XUiMlSi6C8Nyvnam1Llyllr4iV2Ws8tzFoMnfU56dKE_JaAHMs59O_j-PpyDx-ToXf67whevY4GDufyBdjDKIuyZkXl4I7O1xqqJjQeJPkJLGbR1XH7w