部署docker-registry+ui shell 域名证书-用户认证

#部署docker-registry+ui shell

docker registry 配置域名证书, 用户密码认证, 轻量UI
ansible部署docker-registry+ui https://www.cnblogs.com/elvi/p/13394492.html

#!/bin/bash
#run.docker-registry.sh
#部署docker registry +ui
# By Elvin

#目录
data_dir=/data/docker/docker-registry
mkdir -p $data_dir
cd $data_dir

#域名证书(使用我的证书为例)
domain_name=hub.elvin.vip
download_url=http://files.elvin.vip/docker
if [  ! -e ${domain_name}_private.key -o  ! -e ${domain_name}_private.key ];then
curl -so hub.elvin.vip_private.key    ${download_url}/${domain_name}_private.key
curl -so hub.elvin.vip_full_chain.pem ${download_url}/${domain_name}_full_chain.pem
fi

#创建密码文件,用户admin 密码 docker
docker run --rm alivv/htpasswd admin docker >htpasswd

#创建网络 registry-net
if [ $(docker network ls |grep registry-ui-net |wc -l) -ne 1 ];then
    docker network create --subnet 10.20.20.0/24 --gateway 10.20.20.1 registry-net
fi

#registry-srv
docker rm -f registry-srv &>/dev/null
docker run -dit --name registry-srv \
--privileged=true --restart=always \
--net registry-net -p 443:443 \
--memory 512M \
-v $data_dir:/var/lib/registry \
-v /etc/localtime:/etc/localtime:ro \
-e REGISTRY_AUTH=htpasswd \
-e "REGISTRY_AUTH_HTPASSWD_REALM=Registry Realm" \
-e REGISTRY_AUTH_HTPASSWD_PATH=/var/lib/registry/htpasswd \
-e REGISTRY_HTTP_ADDR=0.0.0.0:443 \
-e REGISTRY_STORAGE_DELETE_ENABLED=true \
-e REGISTRY_HTTP_TLS_KEY=/var/lib/registry/hub.elvin.vip_private.key \
-e REGISTRY_HTTP_TLS_CERTIFICATE=/var/lib/registry/hub.elvin.vip_full_chain.pem \
registry

#registry-ui
docker rm -f registry-ui  &>/dev/null
docker run -d --name registry-ui \
--restart=always \
--memory 64M \
--net registry-net -p 80:80 \
-v /etc/localtime:/etc/localtime:ro \
-e REGISTRY_URL=https://registry-srv:443 \
-e PULL_URL=${domain_name} \
-e DELETE_IMAGES=true \
-e REGISTRY_TITLE="Docker registry" \
joxit/docker-registry-ui:1.3-static

#docker pull images

#下载images
docker pull alpine
docker pull alpine:3.12

#docker tag 添加仓库前缀地址
docker tag  alpine  hub.elvin.vip/demo/alpine
docker tag  alpine:3.12  hub.elvin.vip/demo/alpine:3.12

#登录
docker login hub.elvin.vip

#images push
docker push hub.elvin.vip/demo/alpine
docker push hub.elvin.vip/demo/alpine:3.12

#浏览器登录查看

#remove demo
docker rm -f registry-srv 
docker rm -f registry-ui 
docker network rm registry-ui-net

registry非本机,设置hosts解析 ip hub.elvin.vip
Docker Registry UI 当前最新版1.5, 界面有改动,显示pull hash值
github https://github.com/Joxit/docker-registry-ui

posted @ 2020-07-28 23:20 blog-elvin-vip 阅读(783) 评论(0) 编辑收藏举报

会员力量，点亮园子希望

刷新页面返回顶部

Elvin笔记分享 | Elvin's notes to share

Linux运维工程师, 专注于DevOps和Kubernets, 已在腾讯云、阿里云、AWS运行k8s生产环境
Linux Operation Engineer, Focusing on DevOps and Kubernets, K8s production env has been running in Tencent Cloud, Alibaba Cloud and AWS.

部署docker-registry+ui shell 域名证书-用户认证

#部署docker-registry+ui shell

#docker pull images

#浏览器登录查看

公告

Elvin笔记分享 | Elvin's notes to share

Linux运维工程师, 专注于DevOps和Kubernets, 已在腾讯云、阿里云、AWS运行k8s生产环境 Linux Operation Engineer, Focusing on DevOps and Kubernets, K8s production env has been running in Tencent Cloud, Alibaba Cloud and AWS.

部署docker-registry+ui shell 域名证书-用户认证

#部署docker-registry+ui shell

#docker pull images

#浏览器登录查看

公告

Linux运维工程师, 专注于DevOps和Kubernets, 已在腾讯云、阿里云、AWS运行k8s生产环境
Linux Operation Engineer, Focusing on DevOps and Kubernets, K8s production env has been running in Tencent Cloud, Alibaba Cloud and AWS.