k8s部署minio

1 添加bitnami仓库

1
$ helm repo add bitnami https://charts.bitnami.com/bitnami

2 下载指定版本minio

1
2
$ helm pull bitnami/minio --version=11.10.20
$ tar -zxf minio-11.10.20.tgz

3 修改minio配置

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
global:
# 如果k8s没有设置默认sc,这里需要指定
  storageClass: ""
# 服务名
fullnameOverride: "minio"

# minio 部署模式 (`standalone` or `distributed`)
mode: distributed

# minio 认证账户,web登陆账户
auth:
  rootUser: admin
  # 密码至少6位,设置断了可能报错
  rootPassword: "minio123"

# 创建的默认桶
defaultBuckets: "newland"

# distributed 模式下,服务部署数量,必须大于4个
statefulset:
  # 副本
  replicaCount: 4

# 容器端口 api 端口和 console 端口
containerPorts:
  api: 9000
  console: 9001

# svc 定义
service:
  type: ClusterIP
  ports:
    api: 9000
    console: 9001
    
# console 端口 ingress 定义,web访问 Minio
ingress:
  enabled: false
  ingressClassName: "nginx"
  hostname: minio.newland.com
  path: /
  pathType: ImplementationSpecific
  servicePort: minio-console
  
# api 接口 ingress 定义,代码访问 MInio
apiIngress:
  enabled: true
  ingressClassName: "nginx"
  hostname: minio-api.newland.com
  path: /
  pathType: ImplementationSpecific
  servicePort: minio-api
  
# pvc 定义
persistence:
  enabled: true
  mountPath: /data
  accessModes:
    - ReadWriteOnce
  size: 200Gi

4 安装

1
helm install minio ../minio -n newland

5 登录并设置密钥、bucket

6 测试代码

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
public class FileUploader {
    public static void main(String[] args) throws NoSuchAlgorithmException, IOException, InvalidKeyException {
        try {
            MinioClient minioClient = MinioClient.builder()
                    .httpClient(getUnsafeOkHttpsClient())
                    .credentials("jGtLBvw6HhnW9Nsc", "BzDmbL3ZCPERFHPxB5jOnf0w7l48DqOu")
                    .endpoint("192.168.100.100", 31582, false)
                    .build();

            // 检查存储桶是否已经存在
            boolean isExist = minioClient.bucketExists(BucketExistsArgs.builder().bucket("test").build());
            if (isExist) {
                System.out.println("Bucket already exists.");
            } else {
                // 创建一个名为asiatrip的存储桶,用于存储照片的zip文件。
                minioClient.makeBucket(MakeBucketArgs.builder().bucket("test").build());
            }
            FileInputStream fis = new FileInputStream("./pom.xml");
            // 使用putObject上传一个文件到存储桶中。
            minioClient.putObject(PutObjectArgs.builder()
                    .bucket("test")
                    .object("pom.xml")
                    .stream(fis, fis.available(), -1)
                    .build());
            System.out.println("pom.xml is successfully uploaded as pom.xml to `test` bucket.");
        } catch (MinioException e) {
            System.out.println("Error occurred: " + e);
        } catch (KeyManagementException e) {
            throw new RuntimeException(e);
        }
    }

    public static OkHttpClient getUnsafeOkHttpsClient() throws KeyManagementException {
        try {
            final TrustManager[] trustAllCerts = new TrustManager[]{
                    new X509TrustManager() {
                        @Override
                        public void checkClientTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException {

                        }

                        @Override
                        public void checkServerTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException {

                        }

                        @Override
                        public X509Certificate[] getAcceptedIssuers() {
                            return new X509Certificate[]{};
                        }
                    }
            };


            final SSLContext sslContext = SSLContext.getInstance("SSL");
            sslContext.init(null, trustAllCerts, new SecureRandom());
            final SSLSocketFactory sslSocketFactory = sslContext.getSocketFactory();
            OkHttpClient.Builder builder = new OkHttpClient.Builder();
            builder.sslSocketFactory(sslSocketFactory,new X509TrustManager() {
                @Override
                public void checkClientTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException {

                }

                @Override
                public void checkServerTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException {

                }

                @Override
                public X509Certificate[] getAcceptedIssuers() {
                    return new X509Certificate[]{};
                }
            });


            builder.hostnameVerifier(new HostnameVerifier() {
                @Override
                public boolean verify(String s, SSLSession sslSession) {
                    return true;
                }
            });
            return builder.build();

        } catch (NoSuchAlgorithmException e) {
            e.printStackTrace();
        }
        return null;
    }
}

7 查看结果

服务器 > k8s
#k8s #minio
k8s部署minio
https://leellun.github.io/2023/01/04/k8s/服务部署/2023-01-04-k8s部署minio/
作者
leellun
发布于
2023年1月4日
许可协议