Building a full local docker registry

neurolibre / neurolibre-binderhub

developer resources for neurolibre.conp.ca

2 stars 4 forks source link

Building a full local docker registry #20

Open ltetrel opened 4 years ago

ltetrel commented 4 years ago

Now the docker registry is using our DNS provider as a reverse-proxy to provide a certificates. As an effect, when an image is being pushed/pulled it must pass through the DNS that will encrypt the data. Hence we rely on an external server for the docker images.

Ideally we want to keep all the communications inside the local network, without using a DNS. For that we need to let kubernetes/docker trust our self-signed certificate. For history about this, look #1

ltetrel commented 4 years ago

https://medium.com/@paraspatidar/add-self-signed-or-ca-root-certificate-in-kubernetes-pod-ca-root-certificate-store-cb7863cb3f87

ltetrel commented 4 years ago

somehow related to this issue : https://github.com/jupyterhub/binderhub/issues/1073