Skip to content

v1.11.7 — Generic registry auth (lscr.io, quay.io, gcr.io, …)

Choose a tag to compare

View all tags
@amayer1983 amayer1983 released this 30 Apr 19:14
· 63 commits to main since this release
v1.11.7
0f884d8

Fixed

Generic registry authentication

Image checks now use the standard Docker Registry V2 Bearer-token negotiation:

  1. anonymous HEAD on /v2/<repo>/manifests/<tag>
  2. on 401, parse the WWW-Authenticate header, fetch a token from the advertised realm
  3. retry with Authorization: Bearer <token>

This replaces the previous hardcoded list (Docker Hub + GHCR only) and adds automatic support for:

  • lscr.io (LinuxServer.io) — fixes #5
  • quay.io
  • gcr.io
  • registry.gitlab.com
  • any other spec-compliant private or public registry

Docker Hub & GHCR keep working unchanged. Authenticated pulls (Basic-Auth via ~/.docker/config.json) still work for private repos.

Misleading "Up to date" message

When the registry was unreachable or returned an authorization error, Docksentry previously logged → Up to date, which suggested the container was current. It now correctly logs → Check FAILED (registry unreachable / unauthorized) and skips the container instead of treating "unknown" as "ok".

Upgrade

docker pull amayer1983/docksentry:latest
docker compose up -d

Tested registries

Registry Result
Docker Hub (public)
Docker Hub (multi-arch)
GHCR direct
lscr.io ✅ (new)
quay.io ✅ (new)
Assets 2
Loading