Last active
December 20, 2018 14:46
-
-
Save g1ibby/33fd2be8e4039d60b39b250363272237 to your computer and use it in GitHub Desktop.
Self host docker registry and decision problem docker mac os self sign certificates
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| #https://container-solutions.com/adding-self-signed-registry-certs-docker-mac/ | |
| #https://docs.docker.com/registry/insecure/#use-self-signed-certificates | |
| curl -sSL https://get.docker.com | sh | |
| usermod -aG docker ubuntu | |
| curl -L https://github.com/docker/compose/releases/download/1.23.2/docker-compose-`uname -s`-`uname -m` -o /usr/local/bin/docker-compose | |
| chmod +x /usr/local/bin/docker-compose | |
| mkdir registry | |
| curl -o ./registry/docker-compose.registry.yml https://gist.githubusercontent.com/hoticeking/94bb9588a12d32a021a0e1a91845479d/raw/cbfdb0eb8fa2355493c5e47163f88ad708056463/docker-compose.registry.yml | |
| cd ./registry | |
| mkdir -p certs | |
| openssl req \ | |
| -newkey rsa:4096 -nodes -sha256 -keyout certs/domain.key \ | |
| -x509 -days 365 -out certs/domain.crt | |
| mkdir auth | |
| docker run \ | |
| --entrypoint htpasswd \ | |
| registry:2 -Bbn _!!USERNAME!!_ _!!PASSWORD!!_ > auth/htpasswd | |
| docker container stop registry | |
| docker-compose -f docker-compose.registry.yml up -d | |
| curl -o /etc/systemd/system/docker-compose-registry.service https://gist.githubusercontent.com/hoticeking/70fd3173f46a43046db294f6b5b1b6e9/raw/4e2e05f32a9dd8f4aa7d5282ab1ea812b40c31b9/docker-compose-registry.service | |
| systemctl enable docker-compose-registry | |
| cat /home/ubuntu/registry/certs/domain.crt |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment