当前位置: 代码网 > 服务器>服务器>云虚拟主机 > docker仓库登录及配置insecure-registries的方法

docker仓库登录及配置insecure-registries的方法

2024年05月22日 云虚拟主机 我要评论
1. 配置/etc/docker/daemon.json# cat /etc/docker/daemon.json{ "registry-mirrors": ["https://0nth4654.m

1. 配置/etc/docker/daemon.json

# cat /etc/docker/daemon.json
{
  "registry-mirrors": ["https://0nth4654.mirror.aliyuncs.com"],
  "insecure-registries": ["harbor.domain.io"]
}

2. 配置systemd启动文件

和方法1配置会有冲突,不可同时配置

[0 root@vps harbor]# cat /usr/lib/systemd/system/docker.service
[unit]
description=docker application container engine
documentation=https://docs.docker.com
after=network-online.target firewalld.service containerd.service
wants=network-online.target
requires=docker.socket containerd.service

[service]
type=notify
# the default is not to use systemd for cgroups because the delegate issues still
# exists and systemd currently does not support the cgroup feature set required
# for containers run by docker
execstart=/usr/bin/dockerd -h fd:// --containerd=/run/containerd/containerd.sock --insecure-registry harbor.domain.io
execreload=/bin/kill -s hup $mainpid
timeoutsec=0
restartsec=2
restart=always

docker client insecure-registries配置

  • docker客户端如果配置中添加了insecure-registary配置,就不需要在docker 客户端配置上对应证书
  • 如果不配置就需要在/etc/docker/certs.d/目录中添加对应证书才能正常登录
[0 root@vps harbor.domain.io]# docker login harbor.domain.io
username: admin
password:
error response from daemon: get https://harbor.domain.io/v2/: x509: certificate signed by unknown authority
[1 root@vps harbor.domain.io]# cp /data/secret/certs/harbor.domain.io.crt .
[0 root@vps harbor.domain.io]# docker login harbor.domain.io
username: admin
password:
warning! your password will be stored unencrypted in /root/.docker/config.json.
configure a credential helper to remove this warning. see
https://docs.docker.com/engine/reference/commandline/login/#credentials-store
login succeeded
[0 root@vps ~]# cat /root/.docker/config.json
{
	"auths": {
		"harbor.domain.io": {
			"auth": "ywrtaw46cm9vdc4xmjm0"
		}
	}
[0 root@vps harbor.domain.io]# systemctl status docker
● docker.service - docker application container engine
   loaded: loaded (/usr/lib/systemd/system/docker.service; enabled; vendor preset: disabled)
   active: active (running) since wed 2021-04-21 15:06:49 cst; 9min ago
     docs: https://docs.docker.com
 main pid: 32439 (dockerd)
    tasks: 39
   memory: 63.4m
   cgroup: /system.slice/docker.service
           ├─  920 /usr/bin/docker-proxy -proto tcp -host-ip 0.0.0.0 -host-port 443 -container-ip 172.18.0.10 -container-port 8443
           ├─  932 /usr/bin/docker-proxy -proto tcp -host-ip 0.0.0.0 -host-port 80 -container-ip 172.18.0.10 -container-port 8080
           ├─32439 /usr/bin/dockerd -h fd:// --containerd=/run/containerd/containerd.sock
           └─32646 /usr/bin/docker-proxy -proto tcp -host-ip 127.0.0.1 -host-port 1514 -container-ip 172.18.0.2 -container-port 10514
...

到此这篇关于docker仓库登录 配置insecure-registries的文章就介绍到这了,更多相关docker仓库登录内容请搜索代码网以前的文章或继续浏览下面的相关文章希望大家以后多多支持代码网!

(0)

相关文章:

版权声明:本文内容由互联网用户贡献,该文观点仅代表作者本人。本站仅提供信息存储服务,不拥有所有权,不承担相关法律责任。 如发现本站有涉嫌抄袭侵权/违法违规的内容, 请发送邮件至 2386932994@qq.com 举报,一经查实将立刻删除。

发表评论

验证码:
最近更新的文章
推荐阅读
大家感兴趣的文章
Copyright © 2017-2025  代码网 保留所有权利. 粤ICP备2024248653号
站长QQ:2386932994 | 联系邮箱:2386932994@qq.com