{"id":32890,"date":"2023-02-22T05:24:14","date_gmt":"2023-02-22T05:24:14","guid":{"rendered":"https:\/\/www.devopsschool.com\/blog\/?p=32890"},"modified":"2023-02-22T05:28:13","modified_gmt":"2023-02-22T05:28:13","slug":"how-to-configure-gitlab-chart-with-private-nexus-registry-for-images","status":"publish","type":"post","link":"https:\/\/www.devopsschool.com\/blog\/how-to-configure-gitlab-chart-with-private-nexus-registry-for-images\/","title":{"rendered":"How to configure gitlab chart with private nexus registry for images"},"content":{"rendered":"\n

To configure GitLab chart with a private Nexus registry for images, you will need to do the following:<\/p>\n\n\n\n

    \n
  1. Create a Kubernetes secret for your Nexus registry credentials:<\/strong><\/li>\n<\/ol>\n\n\n\n
    kubectl create secret docker-registry nexus-registry \\\n  --docker-server=<your-nexus-registry-url> \\\n  --docker-username=<your-nexus-registry-username> \\\n  --docker-password=<your-nexus-registry-password> \\\n  --docker-email=<your-email-address>\n<\/code><\/pre>\n\n\n\n
      \n
    1. Update the values.yaml<\/code> file for the GitLab chart to include the imagePullSecrets<\/code> field, which references the secret you just created:<\/strong><\/li>\n<\/ol>\n\n\n\n
      global:\n  imagePullSecrets:\n    - name: nexus-registry\n<\/code><\/pre>\n\n\n\n
        \n
      1. Update the values.yaml<\/code> file for the GitLab chart to include the registry<\/code> field, which specifies the URL of your Nexus registry:<\/strong><\/li>\n<\/ol>\n\n\n\n
        gitlab:\n  registry:\n    enabled: true\n    host: <your-nexus-registry-url>\n<\/code><\/pre>\n\n\n\n
          \n
        1. If you are using a self-signed certificate for your Nexus registry, you will need to add the certificate to the GitLab Runner’s trusted certificates. You can do this by adding the certificate as a Kubernetes secret and updating the values.yaml<\/code> file for the GitLab Runner chart to include the extraVolumes<\/code> and extraVolumeMounts<\/code> fields:<\/strong><\/li>\n<\/ol>\n\n\n\n
          gitlab-runner:\n  runners:\n    config: |\n      [[runners.kubernetes.volumes.hostPath]]\n      name = \"certs\"\n      hostPath = \"\/etc\/gitlab-runner\/certs\"\n      mountPath = \"\/etc\/gitlab-runner\/certs\"\n      readOnly = true\n    extraVolumes:\n      - name: certs\n        secret:\n          secretName: nexus-registry-certs\n    extraVolumeMounts:\n      - name: certs\n        mountPath: \"\/etc\/gitlab-runner\/certs\"\n        readOnly: true\n<\/code><\/pre>\n\n\n\n
            \n
          1. Create a Kubernetes secret for your Nexus registry certificate:<\/strong><\/li>\n<\/ol>\n\n\n\n
            kubectl create secret generic nexus-registry-certs \\\n  --from-file=<path-to-certificate-file>\n<\/code><\/pre>\n\n\n\n
              \n
            1. Install the GitLab chart and the GitLab Runner chart with the updated values.yaml<\/code> files:<\/li>\n<\/ol>\n\n\n\n
              helm install gitlab gitlab\/gitlab -f gitlab-values.yaml\nhelm install gitlab-runner gitlab\/gitlab-runner -f gitlab-runner-values.yaml\n<\/code><\/pre>\n\n\n\n
              After following these steps, GitLab and GitLab Runner will be configured to use your private Nexus registry for images.<\/p>\n","protected":false},"excerpt":{"rendered":"
              To configure GitLab chart with a private Nexus registry for images, you will need to do the following: kubectl create secret docker-registry nexus-registry \\ –docker-server=<your-nexus-registry-url> \\ –docker-username=<your-nexus-registry-username> \\ –docker-password=<your-nexus-registry-password> \\ –docker-email=<your-email-address> global: imagePullSecrets: – name: nexus-registry gitlab: registry: enabled: true host: <your-nexus-registry-url> gitlab-runner: runners: config: | [[runners.kubernetes.volumes.hostPath]] name = “certs” hostPath = “\/etc\/gitlab-runner\/certs” mountPath =…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_kad_post_transparent":"","_kad_post_title":"","_kad_post_layout":"","_kad_post_sidebar_id":"","_kad_post_content_style":"","_kad_post_vertical_padding":"","_kad_post_feature":"","_kad_post_feature_position":"","_kad_post_header":false,"_kad_post_footer":false,"_kad_post_classname":"","_joinchat":[],"footnotes":""},"categories":[2],"tags":[],"class_list":["post-32890","post","type-post","status-publish","format-standard","hentry","category-uncategorised"],"_links":{"self":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts\/32890","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/comments?post=32890"}],"version-history":[{"count":2,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts\/32890\/revisions"}],"predecessor-version":[{"id":32894,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts\/32890\/revisions\/32894"}],"wp:attachment":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/media?parent=32890"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/categories?post=32890"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/tags?post=32890"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}