registry should generate certs #27

proppy · 2014-11-03T20:20:37Z

Since 1.3.1 docker rejects pulls from insecure location unless they are whitelisted with a new --insecure-registry flag.

We should make sure users can run google/docker-registry on localhost:5000, without having them to pass extra flag to their daemon.

For that we need to:

include https://github.com/SvenDowideit/generate_cert in the docker image
generate the certs in ttps://github.com/GoogleCloudPlatform/docker-registry/blob/master/run.sh
update the README instructions to run the image with -v /etc/docker/certs.d

The text was updated successfully, but these errors were encountered:

proppy · 2014-11-03T20:39:07Z

We also need to run a nginx container in front either as a separate container (good) or in the same image (bad).

proppy · 2014-11-03T20:44:58Z

one trick we could use is having the docker registry entry point output its own usage.

$(docker run docker-registry) would run:

docker run -v ... nginx
docker run -v ... docker-registry

proppy · 2014-11-03T20:50:14Z

tiborvass · 2014-11-06T19:01:06Z

@proppy precisely what I did, i have a working example.

proppy · 2014-11-06T19:01:58Z

@tiborvass do you plan to push this upstream in docker/docker-registry?

tiborvass · 2014-11-06T19:02:27Z

proppy · 2014-11-06T19:05:04Z

@tiborvass I was planning to work on this today, care to collaborate on this? I'm happy to either do the review or take over your working example.

Provide feedback