备忘如下:
docker run --name jms_all -d \
-v /data/jump/mysql:/var/lib/mysql \
-v /data/jump/jumpserver:/opt/jumpserver/data/media \
-p 80:80 -p 2222:2222 -e SECRET_KEY=$SECRET_KEY -e BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN jumpserver/jms_all:latest
Jumpserver 封装了一个 All in one Docker, 可以快速启动。该镜像集成了所需要的组件, 支持使用外置 Database 和 Redis
Tips: 不建议在生产中使用, 因为所有软件都打包到一个Docker中了, 不是Docker最佳实践
快速启动
$ if [ "$SECRET_KEY" = "" ]; then SECRET_KEY=cat /dev/urandom | tr -dc A-Za-z0-9 | head -c 50
; echo "SECRET_KEY=$SECRET_KEY" >> ~/.bashrc; echo $SECRET_KEY; else echo $SECRET_KEY; fi
$ if [ "$BOOTSTRAP_TOKEN" = "" ]; then BOOTSTRAP_TOKEN=cat /dev/urandom | tr -dc A-Za-z0-9 | head -c 16
; echo "BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN" >> ~/.bashrc; echo $BOOTSTRAP_TOKEN; else echo $BOOTSTRAP_TOKEN; fi
$ docker run --name jms_all -d -p 80:80 -p 2222:2222 -e SECRET_KEY=$SECRET_KEY -e BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN jumpserver/jms_all:1.4.8
$ if [ "$SECRET_KEY" = "" ]; then SECRET_KEY=LC_CTYPE=C tr -dc A-Za-z0-9 < /dev/urandom | head -c 50
; echo "SECRET_KEY=$SECRET_KEY" >> ~/.bash_profile; echo $SECRET_KEY; else echo $SECRET_KEY; fi
$ if [ "$BOOTSTRAP_TOKEN" = "" ]; then BOOTSTRAP_TOKEN=LC_CTYPE=C tr -dc A-Za-z0-9 < /dev/urandom | head -c 16
; echo "BOOTSTRAP_TOKEN=$BOOTSTRAP_TOKEN" >> ~/.bash_profile; echo $BOOTSTRAP_TOKEN; else echo $BOOTSTRAP_TOKEN; fi
访问
外置数据库要求
创建数据库
$ create database jumpserver default charset 'utf8';
$ grant all on jumpserver.* to 'jumpserver'@'%' identified by 'weakPassword';
额外环境变量
$ docker run --name jms_all -d
-v /opt/jumpserver:/opt/jumpserver/data/media
-p 80:80
-p 2222:2222
-e SECRET_KEY=xxxxxx
-e BOOTSTRAP_TOKEN=xxx
-e DB_HOST=192.168.x.x
-e DB_PORT=3306
-e DB_USER=root
-e DB_PASSWORD=xxx
-e DB_NAME=jumpserver
-e REDIS_HOST=192.168.x.x
-e REDIS_PORT=6379
-e REDIS_PASSWORD=xxx
jumpserver/jms_all:1.4.8
仓库地址