Question

Private docker registry

Posted October 19, 2018 9.1k views
Kubernetes

Hi there,

I just got access to the new kubernetes cluster feature. I was wondering about how to access a private docker registry?

Thanks,
M

Add a comment
teo2k
By:
teo2k
Add a comment

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

4 answers
terrarum October 21, 2018

I’ve done this with Gitlab as my Docker registry.

Create a secret of type docker-registry:

kubectl create secret docker-registry gitlab-registry --docker-email="EMAIL" --docker-username="USERNAME" --docker-server="https://registry.gitlab.com/" --docker-password="PASSWORD"

My deployment spec:

spec:
  replicas: 1
  selector:
    matchLabels:
      app: deploymentName
  template:
    metadata:
      labels:
        app: deploymentName
    spec:
      containers:
      - name: deploymentName
        image: registry.gitlab.com/group/repo:0.9.0
        ports:
        - containerPort: 8080
      imagePullSecrets:
      - name: gitlab-registry

Hope that helps!

Reply Report
  • klintmane April 15, 2019

    For security reasons I’d advise against manually passing the password when creating a secret as that will be forever stored in the shell history.

    Another option would be to first login into docker using the command below. That will create a config file with the credentials and then print out it’s location.

    docker login

    You can then create a secret (ex. regcred) from the config file instead.

    kubectl create secret generic regcred \
    --from-file=.dockerconfigjson=<path/to/.docker/config.json> \
    --type=kubernetes.io/dockerconfigjson

    Afterwards you can configure the image pull secrets on the pod:

    ...
spec:
  imagePullSecrets:
    - name: regcred
...
    Reply Report
smeijer November 1, 2018

The announcement blog did write:

We understand having your data close to your cluster is essential, so you’ll have the option to deploy a private container registry to your cluster with no configuration, and store the images on DigitalOcean Spaces.

So I understand that’s not really possible? I can’t find a setting anywhere.

Same for the “ingress controller”, where is it?

Reply Report
tjm October 20, 2018

I haven’t yet tried to use a private registry from within DO K8s, but have you followed the usual procedure as specified here? https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/

Reply Report
teo2k October 22, 2018

Thanks! That worked!

Reply Report
Submit an Answer

Related

Looking for something else?

Ask a new question Search for more help