在Ubuntu服务器上,我正在运行jenkins docker容器 . 出于测试目的,在我的项目的jenkins文件中,我必须 run a postgres server . 我正在尝试在我的步骤中构建一个容器postegres docker .
但是,我不能这样做,我得到许可错误:
尝试在unix上连接到Docker守护程序套接字时获得权限被拒绝:///var/run/docker.sock:获取http://%2Fvar%2Frun%2Fdocker.sock/v1.26/containers/json?过滤器=%7B%22name%22%3A%7B%22vpx_postgres%22%3Atrue%7D%7D:拨打unix /var/run/docker.sock:connect:权限被拒绝
这里我的jenkins文件如下 . “数据库创建”阶段令人心惊 .
def message = "";
def author = "";
def getLastCommitMessage = {
message = sh(returnStdout: true, script: 'git log -1 --pretty=%B').trim()
}
def getGitAuthor = {
def commit = sh(returnStdout: true, script: 'git rev-parse HEAD')
author = sh(returnStdout: true, script: "git --no-pager show -s --format='%an' ${commit}").trim()
}
pipeline {
agent {
docker { image 'starefossen/ruby-node' }
}
stages {
stage('Database creation') {
steps {
sh 'docker ps -f name=project_postgres -q | xargs --no-run-if-empty docker container stop'
sh 'docker container ls -a -fname=project_postgres -q | xargs -r docker container rm'
sh 'docker pull postgres'
sh 'docker run --name project_postgres -e POSTGRES_PASSWORD=secret -e POSTGRES_USER=postgres -p 5432:5432 -d postgres'
}
}
stage('Test') {
steps {
script {
getLastCommitMessage()
getGitAuthor()
}
sh 'RAILS_ENV=test bundle install --jobs 3'
sh 'RAILS_ENV=test yarn install'
sh 'RAILS_ENV=test bundle exec rails db:migrate'
sh 'RAILS_ENV=test bundle exec rspec -f documentation'
}
}
}
post {
failure {
rocketSend channel: 'project-x-ci', emoji: ':x:', message: "Build failed - Commit : '${message}' by ${author}", rawMessage: true
}
}
}
也许问题来自詹金斯码头 Worker ?这里的docker-compose.yml:
version: '2'
services:
jenkins-server:
build: ./
ports:
- 8080:8080
- 50000:50000
volumes:
- /home/xero/jenkins/jenkins_home:/var/jenkins_home
- /var/run/docker.sock:/var/run/docker.sock
- /usr/bin/docker:/usr/bin/docker
environment:
JENKINS_USER: jenkins
JENKINS_URL: "http://10.0.1.66:8080/"
DOCKER_SOCKET: /var/run/docker.sock
DOCKER_GROUP: dockerhost
DOCKER_HOST: unix:///var/run/docker.sock
restart: always
dns:
- 10.0.1.1
Dockerfile:
FROM jenkinsci/jenkins:latest
USER root
COPY ["entrypoint.sh", "/"]
RUN apt-get update && \
apt-get install sudo && \
chmod 755 /entrypoint.sh
ENTRYPOINT ["/bin/bash","-c","./entrypoint.sh"]
我的entrypoint.sh:
#!/bin/bash
if [ -S ${DOCKER_SOCKET} ]; then
DOCKER_GID=$(stat -c '%g' ${DOCKER_SOCKET})
groupadd -for -g ${DOCKER_GID} ${DOCKER_GROUP}
usermod -aG ${DOCKER_GROUP} ${JENKINS_USER}
fi
exec sudo -E -H -u jenkins bash -c /usr/local/bin/jenkins.sh
IMPORTANT :
HOST(ubuntu) -> JENKINS(docker) -> POSTGRES(docker)
在我的jenkins docker容器中,docker可用,我没有问题 . 问题是当我在jenkinsfile中使用jenkins构建项目时 .
所以JENKINS容器,不能创建其他容器(这里是POSTGRES容器)
1 回答
找出用于运行
jenkins
并将该用户添加到docker
组的用户 .这应该处理权限问题 .
您可以使用
sudo usermod -aG docker <jenkins-user-name>
将用户添加到docker组 .this is needed的原因信息: