Home >Operation and Maintenance >Linux Operation and Maintenance >How to build an efficient Docker image warehouse on a Linux server?

How to build an efficient Docker image warehouse on a Linux server?

PHPz
PHPzOriginal
2023-07-29 17:13:261207browse

How to build an efficient Docker image warehouse on a Linux server?

With the development and popularity of containerization technology, Docker has become one of the most popular containerization solutions. When using Docker to build and manage large-scale applications, an efficient Docker image warehouse is very important. Not only does it speed up the deployment and scaling process, it also improves developer productivity. In this article, we will introduce how to establish an efficient Docker image warehouse on a Linux server and provide corresponding code examples.

  1. Install Docker and Docker Registry

First, we need to install Docker and Docker Registry on the Linux server. Docker can be installed through the official installation script. Please refer to Docker's official documentation for the specific process. After installing Docker, we can use the following command to install Docker Registry:

$ docker run -d -p 5000:5000 --restart=always --name registry registry:2

This command will start a Docker Registry container on the server and map the 5000 port in the container to the server's 5000 port.

  1. Configuring Docker Registry

After installing Docker Registry, we need to do some configuration to make it more efficient. First, we need to modify the Docker configuration file to allow insecure image transfers. Edit the /etc/docker/daemon.json file and add the following content:

{
  "insecure-registries" : ["your-registry-url:5000"]
}

where your-registry-url is the URL of your mirror warehouse (for example : my-registry.com).

Next, we need to reload Docker’s configuration file for the changes to take effect:

$ systemctl daemon-reload
$ systemctl restart docker
  1. Create and upload the image

Now, we can Create a Docker image and upload it to our image warehouse. First, we need to build a Docker image. Here is a sample Dockerfile:

FROM ubuntu:latest
RUN apt-get update && apt-get install -y python3
COPY app.py /app.py
CMD ["python3", "/app.py"]

Create a file called app.py in the same directory and add some code. After that, use the following command to build the image:

$ docker build -t your-registry-url:5000/my-image:1.0 .

Replace your-registry-url with the URL of your registry.

After the build is completed, we can use the following command to upload the image to the mirror warehouse:

$ docker push your-registry-url:5000/my-image:1.0

This will push the built image to our mirror warehouse.

  1. Pull the image from the mirror warehouse

When we need to deploy our application on other servers, we can pull the required image from the mirror warehouse. The following is the command to pull the image:

$ docker pull your-registry-url:5000/my-image:1.0

This will pull the corresponding version of the image from the image warehouse.

  1. Using a private image repository

In order to protect the security of our applications and data, we can use access control to restrict access to our private image repository. The following is an example of using Basic Authentication to control access:

First, we need to create a password file to store usernames and passwords. Use the following command to create a password file:

$ docker run --rm --entrypoint htpasswd registry:2 -Bbn your-username your-password > auth/htpasswd

where your-username and your-password are the username and password you defined.

Next, we need to modify the startup command of Docker Registry to specify the use of access control configuration. Start the Docker Registry container using the following command:

$ docker run -d -p 5000:5000 --restart=always --name registry 
             -v /path/to/auth:/auth 
             -e "REGISTRY_AUTH=htpasswd" 
             -e "REGISTRY_AUTH_HTPASSWD_REALM=Registry Realm" 
             -e "REGISTRY_AUTH_HTPASSWD_PATH=/auth/htpasswd" 
             registry:2

Among them, replace /path/to/auth with the path to your stored password file.

Now, your private mirror repository has been set up with basic authentication, and only authorized users can access it.

Summary

In this article, we introduced how to establish an efficient Docker image warehouse on a Linux server. We first installed and configured Docker and Docker Registry, and then demonstrated how to use the image warehouse through examples of building and uploading images. Finally, we covered how to use basic authentication to secure a registry.

By establishing an efficient Docker image warehouse, we can better manage and deploy large-scale applications and improve development and operation and maintenance efficiency. I hope this article is helpful to you and can be used in practical applications.

The above is the detailed content of How to build an efficient Docker image warehouse on a Linux server?. For more information, please follow other related articles on the PHP Chinese website!

Statement:
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn