Jenkins: 如何GCR使用Docker

最新推荐文章于 2025-04-27 13:40:05 发布

小涵

最新推荐文章于 2025-04-27 13:40:05 发布

阅读量520

点赞数 1

CC 4.0 BY-SA版权

分类专栏： DevOps

本文链接：https://blog.youkuaiyun.com/ouyangtianhan/article/details/86574693

DevOps 专栏收录该内容

27 篇文章

订阅专栏

本文介绍了如何使用Jenkins配合Google Cloud Registry（GCR）自动化构建并推送Docker镜像。首先安装了Docker Pipeline、Google Container Registry Auth和Google OAuth插件。接着配置Google Cloud的用户凭证，并创建服务账户密钥。将下载的JSON文件作为凭证导入Jenkins。最后，利用Docker Pipeline插件编写Jenkinsfile，以gcr前缀引用凭证，并采用gc-proyect-id/image-name格式指定镜像名称。

摘要生成于 C知道，由 DeepSeek-R1 满血版支持，前往体验 >

I recently had to deal with the task of experimenting with automating the build and push of the Docker images, using Jenkins, to my company’s Google Cloud based container registry.

After hours of googling and reading plenty of articles here is the base solution I decided to apply.

The first thing I needed was make sure I had the following Jenkins’ plugins:

Docker pipeline
Google Container Registry Auth Plugin
Google OAuth Plugin

After that, I set up the Google Cloud credentials for the user we created to use with Jenkins. Then I created a service account key in the credentials page (API Manager > Credentials) in the Google Cloud console. It will download you a json file with the crendetials.

The next step I did was adding the credentials I just downloaded to our Jenkins container. I opened the form to add the credentials in Jenkins (Credentials > Global Credentials > Add Credentials), select ‘Google Service Account from private key’ as the crendentials’ kind, gave them a name and upload the json file.

After those three steps it’s now time to write the Jenkinsfile for our proyect with the help of the Docker Pipeline plugin.

The resulting Jenkinsfile was something like the following:

#!groovy 

def myImage 

pipeline { 
    agent any 
    stages { 

        stage('Checkout') {
            //Get the code from the repository
            ...
        }

        stage('Build project') {
            //Building the project here
            ...
        }

        stage('Create image') { 

            steps { 
                echo 'Creating image...' 
                script { 
                    myImage = docker.build('eu.gcr.io/foo-1234/bar') 
                } 
                echo 'Image created'
            } 
        } 

        stage('Push to registry') { 
            steps { 
                echo 'Pushing to registry...' 
                script { 
                    docker.withRegistry('https://eu.gcr.io', 'gcr:our-gc-credentials') { 
                        myImage.push('latest')
                    } 
                } 
                echo 'Image pushed' 
            } 
        } 
    } 
}

Note how the credentials are referenced with the gcr: prefix and the image’s name using the following notation: gc-proyect-id/image-name.