我设置了一个 Bitbucket 管道,如下所示(之前关于构建和推送 docker 映像的步骤被省略但有效):
- step:
name: Deploy to EC2
script:
- |
ssh -i ${EC2_KEY_PEM} ${EC2_USER}@${EC2_HOST} <<'EOF'
docker ps -q | grep -q . && docker stop $(docker ps -q)
echo ${DOCKER_PASSWORD} | docker login --username ${DOCKER_USERNAME} --password-stdin
docker pull ${DOCKER_REPO}/${IMAGE_NAME}:${IMAGE_VERSION}
docker run -d --name my_container_name ${DOCKER_REPO}/${IMAGE_NAME}:${IMAGE_VERSION}
EOF
services:
- docker
其中
${EC2_KEY_PEM}.pem我的 Bitbucket 管道因以下错误而不断失败:
<1s
+ ssh -i ${EC2_KEY_PEM} ${EC2_USER}@${EC2_HOST} <<'EOF'
docker ps -q | grep -q . && docker stop $(docker ps -q)
echo ${DOCKER_PASSWORD} | docker login --username ${DOCKER_USERNAME} --password-stdin
docker pull ${DOCKER_REPO}/${IMAGE_NAME}:${IMAGE_VERSION}
docker run -d --name my_container_name ${DOCKER_REPO}/${IMAGE_NAME}:${IMAGE_VERSION}
EOF
Warning: Identity file @ not accessible: No such file or directory.
usage: ssh [-46AaCfGgKkMNnqsTtVvXxYy] [-B bind_interface]
[-b bind_address] [-c cipher_spec] [-D [bind_address:]port]
[-E log_file] [-e escape_char] [-F configfile] [-I pkcs11]
[-i identity_file] [-J [user@]host[:port]] [-L address]
[-l login_name] [-m mac_spec] [-O ctl_cmd] [-o option] [-p port]
[-Q query_option] [-R address] [-S ctl_path] [-W host:port]
[-w local_tun[:remote_tun]] destination [command]
(我尝试过用
<<EOF<<'EOF'我还尝试了以下方法来定义私有 ssh 密钥,如下所示:
- echo ${EC2_KEY_BASE64} | base64 -d > ec2-key.pem
- chmod 600 ec2-key.pem
- |
ssh -i ec2-key.pem ${EC2_USER}@${EC2_HOST} <<'EOF'
其中
${EC2_KEY_BASE64}.pembase64问题在于
${EC2_KEY_BASE64}bitbucket-pipelines.ymldeployment: Production事实并非如此。换句话说,命令
echo ${EC2_KEY_BASE64} | base64 -d > ec2-key.pemec2-key.pem要点:
deploymentProductionProductionbitbucket-pipelines.yml