26 lines
1.5 KiB
Markdown
26 lines
1.5 KiB
Markdown
# Docker registry
|
|
|
|
```bash
|
|
openssl req -x509 -nodes -days 3650 -newkey rsa:4096 -keyout auth.key -out auth.crt -subj "/CN=omnibus-gitlab-issuer"
|
|
|
|
docker run --restart always --network kind --name minio -v minio:/data \
|
|
-e MINIO_ROOT_USER=minio -e MINIO_ROOT_PASSWORD=minio123 \
|
|
-d minio/minio server --console-address :9090 /data
|
|
|
|
docker run --rm --network kind -v $HOME/.mc:/root/.mc -it minio/mc alias set s3 http://minio:9000 minio minio123
|
|
docker run --rm --network kind -v $HOME/.mc:/root/.mc -it minio/mc mb s3/registry
|
|
docker run --rm --network kind -v $HOME/.mc:/root/.mc -it minio/mc admin user add s3 registry registry123
|
|
docker run --rm --network kind -v $HOME/.mc:/root/.mc -it minio/mc admin policy attach s3 readwrite --user registry
|
|
|
|
docker run --restart always --network kind --name registry -v $PWD:/cert \
|
|
-e REGISTRY_AUTH=token -e REGISTRY_AUTH_TOKEN_REALM=http://172.18.0.1:5001/auth \
|
|
-e REGISTRY_AUTH_TOKEN_SERVICE=docker -e REGISTRY_AUTH_TOKEN_ISSUER=omnibus-gitlab-issuer \
|
|
-e REGISTRY_AUTH_TOKEN_ROOTCERTBUNDLE=/cert/auth.crt \
|
|
-p 0.0.0.0:5000:5000 --tmpfs /var/lib/registry -d registry:2
|
|
|
|
docker run --restart always --network kind --name registry --tmpfs /var/lib/registry \
|
|
-e REGISTRY_STORAGE=s3 -e REGISTRY_STORAGE_S3_ACCESSKEY=registry -e REGISTRY_STORAGE_S3_SECRETKEY=registry123 \
|
|
-e REGISTRY_STORAGE_S3_REGION=us-east-1 -e REGISTRY_STORAGE_S3_REGIONENDPOINT=http://minio:9000 \
|
|
-e REGISTRY_STORAGE_S3_BUCKET=registry -e REGISTRY_STORAGE_REDIRECT_DISABLE=true \
|
|
-p 0.0.0.0:5000:5000 -d registry:2
|
|
``` |