Docker Registry 简化版

Docker Registry

https://docs.docker.com/registry/

Registry是一个无状态,高度可伸缩的服务器端应用程序,允许您存储和分发Docker映像

为什么要使用Registry

  1. 严格控制图像存储的位置
  2. 完全拥有镜像和控制流水线管道
  3. 将图像存储和分发紧密集成到您的内部开发工作流程中

依赖

The Registry is compatible with Docker engine version 1.6.0 or higher.

启动

docker run -d -p 5000:5000 --restart=always --name local-registry registry:2
docker pull ubuntu
docker image tag ubuntu localhost:5000/myfirstimage
docker pull localhost:5000/myfirstimage
docker container stop registry && docker container rm -v registry

Configuring a registry

https://docs.docker.com/registry/configuration/
高级配置: 存储 日志 认证
高级使用配置推荐使用 阿里云镜像服务 或 Harbor

配置认证

# 1. 创建自签名证书
DOMAIN=registry.local
mkdir /opt/certs && cd /opt/certs
openssl req -newkey rsa:4096 -nodes -sha256 -keyout ca-${DOMAIN}.key \
  -x509 -subj "/CN=${DOMAIN}" -days 3650 -out ca-${DOMAIN}.crt

# 2. 启动registary
docker run -d \
  --restart=always \
  --name ${DOMAIN} \
  -v /opt/certs:/certs \
  -v /mnt/registry:/var/lib/registry \
  -e REGISTRY_HTTP_ADDR=0.0.0.0:443 \
  -e REGISTRY_HTTP_TLS_CERTIFICATE=/certs/ca-${DOMAIN}.crt \
  -e REGISTRY_HTTP_TLS_KEY=/certs/ca-${DOMAIN}.key \
  -p 443:443 \
  registry:2.7.1

# 3. 设置登录
mkdir -p  /etc/docker/certs.d/${DOMAIN}
cp /opt/certs/ca-${DOMAIN}.crt  /etc/docker/certs.d/${DOMAIN}/ca.crt
# 测试
$ docker pull ubuntu:18.04
$ docker tag ubuntu:18.04 registry.local/my-ubuntu
$ docker push registry.local/my-ubuntu
$ docker pull registry.local/my-ubuntu

docker registry 私有仓库 安装配置、查询、删除
https://www.cnblogs.com/elvi/p/8384675.html
https://blog.csdn.net/lxw1844912514/article/details/111055995

posted @ 2021-05-13 19:46  AlexG  阅读(87)  评论(0编辑  收藏  举报