Closed danzy closed 9 years ago
@jokeyrhyme @coaic @benbarclay @ashishtilara
AFAIK this isn't possible the way things are currently coded in Docker and the Registry.
Thanks for the response!
I just had a clarifying question though, what's the purpose of that index_endpoint
setting?
That's so you can have the registry communicate with a custom index, if you have one. When you issue push/pull commands, they would be against your index, and your index would be responsible for informing the Docker CLI/daemon about your registry, but that is all behind the scenes.
Thanks, @ncdc . In addition to needing to store private images on machines under our control (data sovereignty), it is also our desire to limit Docker transactions to a local mirror for performance reasons. We're experiencing poor docker pull
performance from Sydney, Australia, poor enough that the 3rd party build / host service we are using is timing out.
How should we go about configuring our local Docker clients to use the public registry for authentication, but download images only from our mirror (running docker-registry)? Is there a way to host private images on our own mirror only (protected by authentication), without paying for an otherwise unused subscription on the public registry?
@jokeyrhyme @danzy That kind of scenario is not supported (at all, or correctly, or in a simple way) by the current protocol.
This is one of the reason we are going with a V2.
Your voice and use cases are welcome since we are in the design phase.
All currently open discussions are there: https://github.com/docker/docker-registry/issues?q=is%3Aopen+is%3Aissue+label%3ANext-generation
If I run it as: docker run -p 5000:5000 -e GUNICORN_OPTS=[--preload] registry
How do I login? I"m being prompted for a password. I'm obviously not understanding something. I was not expecting to be asked for a password. I thought I needed to do my own authentication if I wanted to.
Thanks for your help.
Hi,
I've set up a docker registry (in AWS). The intention was to have authentication be verified by index.docker.io (my interpretation of the documentation means that I should set,
STANDALONE
= False, andINDEX_ENDPOINT
= https://index.docker.io to achieve this).However, when trying to login to my docker registry with my index.docker.io credentials, I receive an error response from daemon, but the actual error is blank:
Looking at the logs on the instance, the only error I can find is the fact that
/v1/users
doesn't exist (as it returns a 404).I've looked at other issues, and it appears that
/v1/users
doesn't get mounted unlessSTANDALONE
= true. But, setting that to true means it's acting as a standalone registry, and login details aren't verified against index.docker.io, as you can see here (after I changedSTANDALONE
to true and restarted):I'm using Elastic Beanstalk, which is designed to grab the latest
registry
image and run it, using a combination of environment variables and values inconfig.yml
to set it all up correctly.If it helps, here's the
common
snippet from myconfig.yml
:So, am I doing something wrong, or have I misinterpreted the documentation (and it's not possible to have logins verified by index.docker.io)? Any help would be greatly appreciated!
Thanks!