在jenkins网页设置下载插件kubernetes重启jenkins点击Clouds 点击New Cloud查看K8S集群地址kubectl cluster-info输出解密后的证书内容k8s_crt$(cat /etc/kubernetes/admin.conf | awk -F: /certificateauthority-data/{print $2} | tr -d )echo $k8s_crt | base64 -d创建jenkins账户[rootk8s-master ~]# kubectl create sa jenkins创建role角色cat role.txtkind: RoleapiVersion: rbac.authorization.k8s.io/v1metadata:namespace: defaultname: pod-reader-rolerules:- apiGroups:[]resources:[pods]verbs:[get,list,watch,create,update,delete][rootk8s-master ~]# kubectl apply -f role.txt添加bindroling绑定cat rolebinding.txtkind: RoleBindingapiVersion: rbac.authorization.k8s.io/v1metadata:namespace: defaultname: pod-reader-role-bindingsubjects:- kind: ServiceAccountname: jenkinsnamespace: defaultroleRef:kind: Rolename: pod-reader-roleapiGroup: rbac.authorization.k8s.io[rootk8s-master ~]# kubectl apply -f rolebinding.txt生成tokenkubectl -n default create token jenkins输出的内容复制点击连接测试左侧显示k8s集群版本创建目录vim /root/k8s/pod.ymlgit add pod.ymlgit commit -m podgit push origin masterscp .kube/config root192.168.11.100:/rootdocker exec -it -u root 085b46f26715 bashchown jenkins:jenkins /var/configmv /var/config /var/jenkins_home/.kube/ls -l /var/jenkins_home/.kube/config在宿主机直接安装cat EOF | tee /etc/yum.repos.d/kubernetes.repo[kubernetes]nameKubernetesbaseurlhttps://mirrors.aliyun.com/kubernetes-new/core/stable/v1.28/rpm/enabled1gpgcheck1gpgkeyhttps://mirrors.aliyun.com/kubernetes-new/core/stable/v1.28/rpm/repodata/repomd.xml.keyEOFyum install -y kubectl在docker安装k8scurl -LO https://dl.k8s.io/release/v1.28.15/bin/linux/amd64/kubectl chmod x kubectl mv kubectl /usr/local/bin/验证安装kubectl version --client创建的项目统一放在容器/var/jenkins_home/workspace/jenkins在主机上的放在/var/lib/jrnkind/eotkspsve/