devteam/sharenet
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Require authentication for writes to the registry
Some checks are pending
CI/CD Pipeline / Test Backend (push) Waiting to run
Details
CI/CD Pipeline / Test Frontend (push) Waiting to run
Details
CI/CD Pipeline / Build and Push Docker Images (push) Blocked by required conditions
Details
CI/CD Pipeline / Deploy to Production (push) Blocked by required conditions
Details

Browse source
This commit is contained in:
continuist 2025-06-28 23:55:26 -04:00
parent 2a383d166f
commit 88b07e2930
2 changed files with 6 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
registry/docker-compose.yml
View file

@ -1,11 +1,8 @@
services:
registry:
image: registry:2
ports:
- "5000:5000"
volumes:
- /opt/APP_NAME/registry/config.yml:/etc/docker/registry/config.yml:ro
- /etc/registry/auth/auth.htpasswd:/etc/docker/registry/auth/auth.htpasswd:ro
- /etc/ssl/registry/registry.crt:/etc/docker/registry/ssl/registry.crt:ro
- /etc/ssl/registry/registry.key:/etc/docker/registry/ssl/registry.key:ro
- registry_data:/var/lib/registry

7
registry/nginx.conf
View file

@ -20,8 +20,13 @@ http {
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers HIGH:!aNULL:!MD5;
# Public access for all registry API requests (temporary for testing)
# Public read access for all GET requests to registry API
location /v2/ {
limit_except GET {
auth_basic "Registry Realm";
auth_basic_user_file /etc/nginx/auth/auth.htpasswd;
}
proxy_pass https://registry_api;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;