在GCP上构建Docker镜像

Building Docker images from a Jupyter notebook and submitting them to Container Registry

If you’re using a Jupyter notebook in Kubeflow on Google Cloud Platform (GCP), you can submit Docker image builds to Cloud Build. Cloud Build builds the Docker image and pushes it to Google Container Registry.

Building a Docker image

Run the following command in a Jupyter notebook cell to activate the attached service account:

!gcloud auth activate-service-account --key-file=${GOOGLE_APPLICATION_CREDENTIALS}

Run the gcloud builds submit command to submit a build. The following example assumes that your Dockerfile is in the current directory:

!gcloud builds submit --tag gcr.io/myproject/myimage:tag .

A bit about authentication

Kubeflow assigns the jupyter-notebook service account to the Jupyter notebook Pods. The ${GOOGLE_APPLICATION_CREDENTIALS} environment variable is pre-configured in the notebook. Its value is a path that points to a JSON file containing a Kubernetes secret. The secret contains the credentials needed to authenticate as the notebook service account within the cluster. To see the value of the environment variable, enter the following command in a notebook cell:

!echo ${GOOGLE_APPLICATION_CREDENTIALS}

You should see a response similar to this:

/secrets/gcp-service-account-credentials/user-gcp-sa.json

Next steps


最后修改 11.03.2020: zh (ac26d048)