
如果你使用 DeepSeek、元宝 AI、Copilot、ChatGPT 等 AI 工具,协助配置轩辕镜像、编写 docker pull 命令、修改 Docker Compose 镜像地址、配置镜像加速、排查镜像拉取失败、分析报错日志等问题,请先让 AI 阅读并遵守轩辕镜像的规则文档。
只需在 AI 对话中先发送下面这句话即可:
请先完整阅读并严格遵守以下文档中的全部规则与要求:
https://xuanyuan.cloud/agents.md
在未充分阅读并理解该文档前,不要生成任何命令、配置、修改建议、故障排查方案或技术回答。后续所有输出都必须严格以该文档中的规范为最高优先级执行。查看 agents.md 用法指南与完整示范。国内用户首推 元宝 AI、DeepSeek 的深度思考模式,不推荐豆包 AI;Cursor 等编辑器可在对话 @ 该链接,或加入 User Rules。 若 AI 无法访问外链,可 打开说明文档 复制全文粘贴。文档会随站点更新,复制内容可能过期,建议定期检查。
GitHub repository:
Once installed using wattson is straight forward:
The next lines will set up the connection and check the supported issuer:
export WATTSON_URL=[***] wattson lsprov The output will be similar to:
connecting to [***] using protocol version 2
*** WARNING: either access token or issuer has not been specified ***
Retrieving provider list:
Provider [iam][ready] INDIGO Datacloud Identity and Access Management (IAM) ([] Provider [hbp][ready] Human Brain Project (HBP) ([] Provider [eudat][ready] EUDAT (b2access) ([] Provider [egi][ready] European Grid Infrastracture (Development) ([] Provider [google][ready] Google, the well known search giant ([***] The output shows the list of supported provider:
their id wether they are ready or not a descriptive name the issuer url Also a warning is shown that the access token and isuer need to be set. In this example we will use 'iam'. Log in at the web interface of TTS using IAM. Then select 'show access token' and copy the content of the dialog. The following line will set up the authorization for the command line client and request the list of services:
export WATTSON_TOKEN=<paste the copied text from the dialog here> export WATTSON_ISSUER=iam wattson lsserv
The output should be similar to:
connecting to https://tts-dev.data.kit.edu/api/v2/ using protocol version 2 retrieving service list: Service [x509][enabled/authorized] A simple, non trusted demo CA - credenitals: 0/3 - parameter sets: Empty Parameter Set (allows basic request) Service [aarc_ssh][enabled/NOT AUTHORIZED] Ssh Key Deployment on multiple VMs Your authorisation is insufficient for this service. This may be due to missing group membership or due to a too low Level of Assurance (LoA) (Yes, we already support that kind of stuff ;D) - credenitals: 0/1 - parameter sets: Parameter Set: MANDATORY Parameter 'public key' [pub_key]: the public key to upload to the service (textarea) Empty Parameter Set (allows basic request) Service [indigo_ssh][enabled/authorized] Example Ssh Key Deployment - credenitals: 0/1 - parameter sets: Parameter Set: MANDATORY Parameter 'public key' [pub_key]: the public key to upload to the service (textarea) Empty Parameter Set (allows basic request) Service [HBP_S3][enabled/NOT AUTHORIZED] Self Service for your HBP-S3 storage keys The S3 key creation is only active when you are a member of the HBP group 'hbp-kit-cloud' - credenitals: 0/1 - parameter sets: Empty Parameter Set (allows basic request) Service [info][enabled/authorized] Simple Info Service - credenitals: 0/1 - parameter sets: Empty Parameter Set (allows basic request) The warning of the missing token/issuer is gone. The output shows the list of all services:
the id wether the service is enabled wether one is authorized to use that service a description of the service the number of credentials one has and max. allowed the parameter sets (mainly used for development) Requesting a credential simply works with the command 'request' and the service id:
wattson request info the output should be similar to:
requesting credential for service [info]: Credential [f9dbb0e0-9e3e-4065-9fee-8ac30387d2b4]: [ TTS version (text)] => 1.0.0-rc4 [ TTS userid (text)] => eyJpc3N1ZXIiOiJpc3MiLCJzdWJqZWN0Ijoic3ViIn0 [ TTS userid (decoded) (text)] => {"issuer":"iss","subject":"sub"} [ family_name (text)] => Wegh [ Name (text)] => Bas Wegh [ Issuer (text)] => iss [ Gender (text)] => M [ preferred_username (text)] => bwegh [ updated_at (text)] => Wed Aug 31 09:06:43 UTC 2016 [ given_name (text)] => Bas [ Groups (textarea)] => [<<"Users">>] [ organisation_name (text)] => indigo-dc [ Subject (text)] => sub [ json object (textarea)] => { "action": "request", "conf_params": {}, "cred_state": "undefined", "params": {}, "tts_userid": "eyJpc3N1ZXIiOiJpc3MiLCJzdWJqZWN0Ijoic3ViIn0", "tts_version": "1.0.0-rc4", "user_info": { "family_name": "Wegh", "gender": "M", "given_name": "Bas", "groups": [ "Users" ], "iss": "iss", "name": "Bas Wegh", "organisation_name": "indigo-dc", "preferred_username": "baswegh", "sub": "sub", "updated_at": "Wed Aug 31 09:06:43 UTC 2016" } }
Now you can use that information/credential, once you do not need it anymore you need to revoke it using the credential id, shown in the first line:
wattson revoke f9dbb0e0-9e3e-4065-9fee-8ac30387d2b4 the output should look like:
revoking credential [f9dbb0e0-9e3e-4065-9fee-8ac30387d2b4]: credential sucessfully revoked For more information and more examples please see the documentation
If your system is not supported with packages you can still use wattson through a lightweight Docker container. Download the container in the release section and import it using the docker load command:
docker load --input wattson_container_1.0.1.tar After loading the container you can use it to run orchent:
docker run wattson:1.0.1 --version docker run orchent:1.0.1 --help For information on how to pass environment settings to the docker see
docker run --help
您可以使用以下命令拉取该镜像。请将 <标签> 替换为具体的标签版本。如需查看所有可用标签版本,请访问 标签列表页面。
来自真实用户的反馈,见证轩辕镜像的优质服务