Home >Operation and Maintenance >Linux Operation and Maintenance >How to build an efficient Docker image warehouse on a Linux server?
How to build an efficient Docker image warehouse on a Linux server?
With the development and popularity of containerization technology, Docker has become one of the most popular containerization solutions. When using Docker to build and manage large-scale applications, an efficient Docker image warehouse is very important. Not only does it speed up the deployment and scaling process, it also improves developer productivity. In this article, we will introduce how to establish an efficient Docker image warehouse on a Linux server and provide corresponding code examples.
First, we need to install Docker and Docker Registry on the Linux server. Docker can be installed through the official installation script. Please refer to Docker's official documentation for the specific process. After installing Docker, we can use the following command to install Docker Registry:
$ docker run -d -p 5000:5000 --restart=always --name registry registry:2
This command will start a Docker Registry container on the server and map the 5000 port in the container to the server's 5000 port.
After installing Docker Registry, we need to do some configuration to make it more efficient. First, we need to modify the Docker configuration file to allow insecure image transfers. Edit the /etc/docker/daemon.json
file and add the following content:
{ "insecure-registries" : ["your-registry-url:5000"] }
where your-registry-url
is the URL of your mirror warehouse (for example : my-registry.com).
Next, we need to reload Docker’s configuration file for the changes to take effect:
$ systemctl daemon-reload $ systemctl restart docker
Now, we can Create a Docker image and upload it to our image warehouse. First, we need to build a Docker image. Here is a sample Dockerfile:
FROM ubuntu:latest RUN apt-get update && apt-get install -y python3 COPY app.py /app.py CMD ["python3", "/app.py"]
Create a file called app.py
in the same directory and add some code. After that, use the following command to build the image:
$ docker build -t your-registry-url:5000/my-image:1.0 .
Replace your-registry-url
with the URL of your registry.
After the build is completed, we can use the following command to upload the image to the mirror warehouse:
$ docker push your-registry-url:5000/my-image:1.0
This will push the built image to our mirror warehouse.
When we need to deploy our application on other servers, we can pull the required image from the mirror warehouse. The following is the command to pull the image:
$ docker pull your-registry-url:5000/my-image:1.0
This will pull the corresponding version of the image from the image warehouse.
In order to protect the security of our applications and data, we can use access control to restrict access to our private image repository. The following is an example of using Basic Authentication to control access:
First, we need to create a password file to store usernames and passwords. Use the following command to create a password file:
$ docker run --rm --entrypoint htpasswd registry:2 -Bbn your-username your-password > auth/htpasswd
where your-username
and your-password
are the username and password you defined.
Next, we need to modify the startup command of Docker Registry to specify the use of access control configuration. Start the Docker Registry container using the following command:
$ docker run -d -p 5000:5000 --restart=always --name registry -v /path/to/auth:/auth -e "REGISTRY_AUTH=htpasswd" -e "REGISTRY_AUTH_HTPASSWD_REALM=Registry Realm" -e "REGISTRY_AUTH_HTPASSWD_PATH=/auth/htpasswd" registry:2
Among them, replace /path/to/auth
with the path to your stored password file.
Now, your private mirror repository has been set up with basic authentication, and only authorized users can access it.
Summary
In this article, we introduced how to establish an efficient Docker image warehouse on a Linux server. We first installed and configured Docker and Docker Registry, and then demonstrated how to use the image warehouse through examples of building and uploading images. Finally, we covered how to use basic authentication to secure a registry.
By establishing an efficient Docker image warehouse, we can better manage and deploy large-scale applications and improve development and operation and maintenance efficiency. I hope this article is helpful to you and can be used in practical applications.
The above is the detailed content of How to build an efficient Docker image warehouse on a Linux server?. For more information, please follow other related articles on the PHP Chinese website!