-
@girish I definitely have a use case for this despite not being a super-huge enterprise, which is why I'm trying to get it done. And I will - it's just a matter of time
I'm not against Harbor, etc. but I do need this to work which is why I'm on it
-
-
-
-
N niels referenced this topic on
-
Need Help: Has anyone enabled container registry in the cloudron gitlab, I'm getting error 500 when making changes to the gitlab.yml file.
registry: enabled: true host: registry.git.arsh.dev port: 5005 api_url: http://localhost:5000/ # internal address to the registry, will be used by GitLab to directly communicate with API key: config/registry.key path: shared/registry issuer: gitlab-issuer -
@arshsahzad said in Gitlab how to run container registry:
I'm getting error 500 when making changes to the gitlab.yml file
This most likely means there is an error in the yml syntax. What error do you see in the logs ? You will find more logs in /run/gitlab (via web terminal).
-
@arshsahzad Have you seen https://docs.cloudron.io/apps/docker-registry/#gitlab-integration already ?
-
Hi @girish, From the Docs:
1. Create a volume named registry-shared. 2. Attach volume name registry-shared to both GitLab and Docker Registry apps. Be sure to uncheck the Read Only checkbox. 3. Create folders containers and certs on the host filesystem inside the path that is assigned to the registry-shared volume. 4. Run the following commands inside the certs folder: openssl req -nodes -newkey rsa:2048 -keyout registry-auth.key -out registry-auth.csr -subj "/CN=gitlab-issuer" openssl x509 -in registry-auth.csr -out registry-auth.crt -req -signkey registry-auth.key -days 365000 chmod 777 registry-auth.key registry-auth.crt registry-auth.csr 5. Modify the permissions from root to cloudron inside the Docker Registry app for the created folders and files. chown -R cloudron:cloudron /media/registry-shared/ 6. Modify /app/data/config.yml of the Docker Registry app using the File manager by altering or adding the auth part to resemble the following: auth: token: realm: https://<GITLAB_HOST>/jwt/auth service: container_registry issuer: gitlab-issuer rootcertbundle: /media/registry-shared/certs/registry-auth.crt Change the 'rootdirectory' value inside the same config file to: /media/registry-shared/containers Save the file and restart the app. 7. Modify /app/data/gitlab.yml of the GitLab app by adding the following lines (some of them might already be there, so skip them): production: <<: *base registry: enabled: true host: <DOCKER_REGISTRY_HOST> port: 443 api_url: https://<DOCKER_REGISTRY_HOST> key: /media/registry-shared/certs/registry-auth.key path: /media/registry-shared/containers issuer: gitlab-issuer- I have created the directory in the host machine
/opt/registry-shared-
Created two other folders (containers & certs) in the registry-shared directory
-
Generated keys in certs folders using the following cmd
-
@arshsahzad said in Gitlab how to run container registry:
- Attach volume name registry-shared to both GitLab and Docker Registry apps. Be sure to uncheck the Read Only checkbox.
I'm not able to figure out, how to attach the bind mount to the running gitlab container and how to uncheck read only checkbox
/opt/registry-shared
Sorry I missed the most obvious place, I was looking all over.