devteam/sharenet
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Improve security further #6
Some checks are pending
CI/CD Pipeline (Fully Isolated DinD) / Run Tests (DinD) (push) Waiting to run
Details
CI/CD Pipeline (Fully Isolated DinD) / Build and Push Docker Images (DinD) (push) Blocked by required conditions
Details
CI/CD Pipeline (Fully Isolated DinD) / Deploy to Production (push) Blocked by required conditions
Details

Browse source
This commit is contained in:
continuist 2025-08-24 14:52:50 -04:00
parent 5616dffac5
commit c87e60bd46
1 changed files with 2 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
Docker_Registry_Install_Guide.md
View file

@ -100,7 +100,7 @@ sudo chown -R root:root /etc/registry/certs
sudo chmod 750 /etc/registry/certs/private sudo chmod 750 /etc/registry/certs/private
sudo chmod 755 /etc/registry/certs/{clients,ca,requests} sudo chmod 755 /etc/registry/certs/{clients,ca,requests}
# Create registry data directory (systemd-managed) # Create registry data directory
sudo mkdir -p /var/lib/registry sudo mkdir -p /var/lib/registry
sudo chown CI_SERVICE_USER:CI_SERVICE_USER /var/lib/registry sudo chown CI_SERVICE_USER:CI_SERVICE_USER /var/lib/registry
sudo chmod 750 /var/lib/registry sudo chmod 750 /var/lib/registry
@ -233,6 +233,7 @@ http {
proxy_set_header X-Forwarded-Proto https; proxy_set_header X-Forwarded-Proto https;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
limit_except GET HEAD { return 403; } limit_except GET HEAD { return 403; }
add_header Docker-Distribution-Api-Version "registry/2.0" always;
} }
} }