docker_auth

Docker Registry 2 authentication server

Cristian Falcas

cristifalcas

6,965 downloads

5,834 latest version

4.3 quality score

Version information

  • 0.3.1 (latest)
  • 0.3.0
  • 0.2.1
  • 0.2.0
released Feb 21st 2017
This version is compatible with:
  • Puppet Enterprise 3.x
  • Puppet >=3.4.0 <5.0.0
  • RedHat
    ,
    CentOS
    ,
    OracleLinux
    ,
    Scientific
    ,
    Fedora

Start using this module

Documentation

cristifalcas/docker_auth — version 0.3.1 Feb 21st 2017

docker_auth

Build Status

Puppet module for installing, configuring and managing a docker 2.0 authorization server (specifically cesanta implementation)

Support

This module is currently only for RedHat clones 7.x:

In order to print the yaml config file, we are using some lib files from puppet-elasticsearch module.

Usage:

      include docker_auth

Install distribution and docker_auth (on machine distribution-01.company.net):

If you want to start the server from a container (manage_as => 'container'), you will need to create the folder where $config_file will be written, outside of this module:

      file { '/etc/docker_auth/': ensure => 'directory', }
      class { '::docker_distribution':
        manage_as                    => 'container',
        container_image              => 'docker.io/registry:2.6.0',
        http_tls                     => true,
        storage_delete               => true,
        auth_type                    => 'token',
        auth_token_realm             => "https://${::fqdn}:5002/auth",
        auth_token_issuer            => 'Auth Service',
        auth_token_rootcertbundle    => "/var/lib/puppet/ssl/certs/${::fqdn}.pem",
      }

      class { '::docker_auth':
        manage_as       => 'container',
        container_image => 'docker.io/cesanta/docker_auth:1.2',
        server_addr     => ':5002',
      }

Use the above for a local docker distribution proxy (works only with distribution version 2.6 and up):

      class { '::docker_distribution':
        manage_as                    => 'container',
        container_image              => 'docker.io/registry:2.6.0',
        http_tls                     => true,
        storage_delete               => true,
        proxy_remoteurl              => 'https://distribution-01.company.net',
      }