执行下面的命令,启动registry镜像,以及Nginx代理镜像docker run -d --name registry -v /root/my_registry:/tmp/registry -p 5000:5000 registry
docker run -d --hostname dokk.co --name nginx --link registry:registry -p 443:443 larrycai/nginx-auth-proxy$ sudo cat ca.pem >> /etc/ssl/certs/ca-certificates.crt
$ sudo /etc/init.d/docker restart在修改/etc/ssl/certs/ca-certificates.crt文件时,会因为该文件是只读的而不能修改,后来通过查询资料,发现在CoreOS中该文件是链接到
https://coreos.com/blog/new-filesystem-btrfs-cloud-config//usr/share/ca-certificates/ca-certificates.crt文件,而/usr整个路径被挂载到只读分区上,详细情况可查询(),可以通过下面方法解决上面问题
localhost ~ # cp /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/ca-certificates.crt.bak
localhost ~ # mv /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/ca-certificates.crt.ln
localhost ~ # cp /etc/ssl/certs/ca-certificates.crt.bak /etc/ssl/certs/ca-certificates.crt
localhost ~ # cat ca.pem >> /etc/ssl/certs/ca-certificates.crt
基本认证测试:
localhost ~ # curl -i -k https://larrycai:passwdpasswdpasswd@dokk.co
HTTP/1.1 200 OK
Server: nginx/1.6.2
Date: Tue, 09 Jun 2015 14:27:33 GMT
Content-Type: application/json
Content-Length: 28
Connection: keep-alive
Expires: -1
Pragma: no-cache
Cache-Control: no-cache
"\"docker-registry server\""l
镜像上传测试:
登录localhost ~ # docker login -u larrycai -p passwd -e "test@gmail.com" dokk.co
WARNING: login credentials saved in /root/.dockercfg.
Login Succeeded
上传
介绍文档参考:http://cloud.51cto.com/art/201412/458680_all.htmdockerhub参考:https://registry.hub.docker.com/u/larrycai/nginx-auth-proxy/
git参考:https://github.com/Eric-aihua/nginx-auth-proxy
原文地址:http://blog.csdn.net/eric_sunah/article/details/46432763
