Skip to content

Docker stack providing a private registry with docker_auth, clair (vulnerability scanning) and nginx

License

Notifications You must be signed in to change notification settings

esurdam/private-registry-stack

Repository files navigation

private-registry-stack

Based on Jess Frazelle's Private Docker Repo setup.

Single stack which runs a private docker registry, including:

  • registry private registry
  • docker_auth for advanced authentication configuration
  • clair for vulnerability scanning
  • reg server (registry UI)
  • nginx to proxy all services via a single port (avoiding port pollution on host)

Usage

  1. Edit .env file with domain config
  2. Edit docker_auth/auth_config.yml users and ACL (Update server IP for reg UI calls). Reference
  3. Run make to generate self signed ssl certs for services
    • Optional: Use your own existing cert and key (ssl/cert.pem, ssl/key.pem)
  4. docker compose up -d
  5. (Optional) Use something like NginxProxyManager or certbot to terminate public SSL and proxy to stack
    • r.example.com -> SERVER_IP:$PROXY_PORT

You can know access your registry via your configured domain and authentication credentials.

About

Docker stack providing a private registry with docker_auth, clair (vulnerability scanning) and nginx

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published