docker pull registry

docker run --name MyRegistry -d -v /data/DockerRegistry:/var/lib/registry -p 5000:5000 registry

http://ip:5000/v2/

docker tag redis-master 192.168.0.100:5000/redis/redis-master:1.0

docker push 192.168.0.100:5000/redis/redis-master:1.0

The push refers to a repository [192.168.0.100:5000/redis/redis-master]

Get https://192.168.0.100:5000/v1/_ping: http: server gave HTTP response to HTTPS client

{ "insecure-registries":["192.168.0.110:5000"] }

service docker restart

[root@ahaii docker]# docker push 192.168.0.100:5000/redis/redis-master:1.0

The push refers to a repository [192.168.0.100:5000/redis/redis-master]

e5bc8ffdee47: Pushed

babc1e95c4f0: Pushed

ebc4b691c405: Pushed

6363afe92ed2: Pushed

78e49376f417: Pushed

b8aa150f5f16: Pushed

b51149973e6a: Pushed

1.0: digest: sha256:7c60ce71ba4026b2b35e78c86dfgddf7ae171bf1d2903a567b964ad9a07f26f9 size: 1786

docker pull registry:2

#mkdir certs

#openssl req -newkey rsa:4096 -nodes -sha256 -keyout certs/domain.key -x509 -days 99999 -out certs/domain.crt

Generating a 4096 bit RSA private key

..........................++

............................................................................................++

writing new private key to 'certs/domain.key'

-----

You are about to be asked to enter information that will be incorporated

into your certificate request.

What you are about to enter is what is called a Distinguished Name or a DN.

There are quite a few fields but you can leave some blank

For some fields there will be a default value,

If you enter '.', the field will be left blank.

-----

Country Name (2 letter code) [XX]:CN

State or Province Name (full name) []:beijing

Locality Name (eg, city) [Default City]:

Organization Name (eg, company) [Default Company Ltd]:docker

Organizational Unit Name (eg, section) []:

Common Name (eg, your name or your server's hostname) []:docker.damoin.com

Email Address []:ahaii@ahaii.com

#mkdir auth

#docker run --entrypoint htpasswd registry:2 -Bbn ahaii ahaii123 > auth/htpasswd

[root@ahaii DockerRegistry]# docker run -d -p 5000:5000 --restart=always --name registry \

> -v `pwd`/auth:/auth \

> -v /data/local/DockerRegistry:/var/lib/registry \

> -e "REGISTRY_AUTH=htpasswd" \

> -e "REGISTRY_AUTH_HTPASSWD_REALM=Registry Realm" \

> -e REGISTRY_AUTH_HTPASSWD_PATH=/auth/htpasswd \

> -v `pwd`/certs:/certs \

> -e REGISTRY_HTTP_TLS_CERTIFICATE=/certs/domain.crt \

> -e REGISTRY_HTTP_TLS_KEY=/certs/domain.key \

> registry:2

docker login docker.damoin.com:5000

Error response from daemon: Get https://docker.damoin.com:5000/v1/users/: x509: certificate signed by unknown authority

[root@ahaii DockerRegistry]# ls /etc/docker/certs.d/docker.damoin.com:5000/

ca.crt

然后继续登陆仓库，提示登陆成功:

[root@ahaii certs]# docker login docker.damoin.com:5000

Username: ahaii

Password:

Login Succeeded 

好，现在继续push镜像到仓库:

[root@ahaii DockerRegistry]# docker push docker.damoin.com:5000/redis/redis-master:1.0

The push refers to a repository [docker.damoin.com:5000/redis/redis-master]

e5bc8ffdee47: Pushed

babc1e95c4f0: Pushed

ebc4b691c405: Pushed

6363afe92ed2: Pushed

78e49376f417: Pushed

b8aa150f5f16: Pushed

b51149973e6a: Pushed

1.0: digest: sha256:7c60ce71ba4026b2b35df7c86118ddf7ae171bf1d2903a567b964ad9a07f26f9 size: 1786

OK，push成功，通过浏览器查看如下: