Everything required to create a vagrant machine running your own private docker registry! It is running registry and nginx docker containers inside vagrant machine.
- VirtualBox
- Vagrant (1.9.5+)
- Docker
$ git clone git@github.com:mayurs142/vagrant-docker-registry.git
$ cd vagrant-docker-registry
$ vagrant upThere are a couple of certificates generated and kept in registry/files and registry/nginx directories. Below are the steps to generate them:
# Generate a new root key
$ openssl genrsa -out rootCA.key 2048
# Generate a root certificate (enter anything at the prompts)
$ openssl req -x509 -new -nodes -key rootCA.key -days 10000 -out rootCA.crt
# Generate a key for your docker-registry server
$ openssl genrsa -out docker-registry.key 2048
# Make a certificate signing request
# for "Common Name" make sure to type in the domain your server, in this case its docker-registry.local
# do not enter a challenge password
$ openssl req -new -key docker-registry.key -out docker-registry.local.csr
# Sign the certficate
$ openssl x509 -req -in docker-registry.local.csr -CA rootCA.crt -CAkey rootCA.key -CAcreateserial -out docker-registry.crt -days 10000Add rootCA.crt into trusted certificate authority of any client machine that connects to this Docker registry! Steps are as follows:
- Copy certificates into client's machine
# For CentOS clients
$ sudo cp rootCA.crt /etc/pki/ca-trust/source/anchors/
$ sudo update-ca-trust extract
# For Ubuntu clients
$ sudo cp rootCA.crt /usr/local/share/ca-certificates/
$ sudo update-ca-certificates- Make hosts entry into client's /etc/hosts file
# Run with root user
$ echo "10.1.1.30 docker-registry.local" >> /etc/hosts- Login to registry Default credentials are admin/admin in registry.passwd file
$ docker login -u admin -p admin https://docker-registry.local