解決Jenkins自動部署Docker出現unix://localhost:80: Permission denied
阿新 • • 發佈:2018-12-20
jenkins使用docker-maven-plugin或者dockerfile-maven-plugin進行編譯時發現沒有許可權,具體錯誤內容如下:
[INFO] I/O exception (java.io.IOException) caught when processing request to {}->unix://localhost:80: Permission denied [INFO] Retrying request to {}->unix://localhost:80 [INFO] I/O exception (java.io.IOException) caught when processing request to {}->unix://localhost:80: Permission denied [INFO] Retrying request to {}->unix://localhost:80 [INFO] I/O exception (java.io.IOException) caught when processing request to {}->unix://localhost:80: Permission denied [INFO] Retrying request to {}->unix://localhost:80
給jenkins使用者組一個執行docker的許可權即可,修改/lib/systemd/system/docker.service檔案,增加啟動引數 -G jenkins
/lib/systemd/system/docker.service:
[Unit] Description=Docker Application Container Engine Documentation=https://docs.docker.com BindsTo=containerd.service After=network-online.target firewalld.service Wants=network-online.target [Service] Type=notify # the default is not to use systemd for cgroups because the delegate issues still # exists and systemd currently does not support the cgroup feature set required # for containers run by docker ExecStart=/usr/bin/dockerd -H unix:///var/run/docker.sock -H tcp://0.0.0.0:2375 -G jenkins ExecReload=/bin/kill -s HUP $MAINPID TimeoutSec=0 RestartSec=2 Restart=always # Note that StartLimit* options were moved from "Service" to "Unit" in systemd 229. # Both the old, and new location are accepted by systemd 229 and up, so using the old location # to make them work for either version of systemd. StartLimitBurst=3 # Note that StartLimitInterval was renamed to StartLimitIntervalSec in systemd 230. # Both the old, and new name are accepted by systemd 230 and up, so using the old name to make # this option work for either version of systemd. StartLimitInterval=60s # Having non-zero Limit*s causes performance problems due to accounting overhead # in the kernel. We recommend using cgroups to do container-local accounting. LimitNOFILE=infinity LimitNPROC=infinity LimitCORE=infinity # Comment TasksMax if your systemd version does not supports it. # Only systemd 226 and above support this option. TasksMax=infinity # set delegate yes so that systemd does not reset the cgroups of docker containers Delegate=yes # kill only the docker process, not all processes in the cgroup KillMode=process [Install] WantedBy=multi-user.target ~
重新啟動服務
$ systemctl daemon-reload
$ systemctl restart docker
再次編譯專案成功,上面的是Jenkins和Docker在同一服務的情況,所有還是存在一個問題,如果釋出到遠端的Docker上?