Based on Jess Frazelle's Private Docker Repo setup.
Single stack which runs a private docker registry, including:
- registry private registry
- docker_auth for advanced authentication configuration
- clair for vulnerability scanning
- reg server (registry UI)
- nginx to proxy all services via a single port (avoiding port pollution on host)
- Edit .env file with domain config
- Edit docker_auth/auth_config.yml users and ACL (Update server IP for reg UI calls). Reference
- Run
make
to generate self signed ssl certs for services- Optional: Use your own existing cert and key (ssl/cert.pem, ssl/key.pem)
docker compose up -d
- (Optional) Use something like NginxProxyManager or certbot to terminate public SSL and proxy to stack
- r.example.com -> SERVER_IP:$PROXY_PORT
You can know access your registry via your configured domain and authentication credentials.