Techne

A practical knowledge base

User Tools

Site Tools

Trace:
self-hosted-container-registry-with-webui

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

self-hosted-container-registry-with-webui [2026-02-23 08:11:21] – created hyperrealself-hosted-container-registry-with-webui [2026-03-14 20:20:06] (current) – removed hyperreal
Line 1: Line 1:
-====== Self-hosted container registry with web UI ====== 
  
-Source: https://github.com/Joxit/docker-registry-ui 
- 
-===== Docker/Podman compose ===== 
- 
-<code yaml> 
-services: 
-  registry-ui: 
-    image: joxit/docker-registry-ui:main 
-    restart: always 
-    ports: 
-      - "127.0.0.1:4433:80" 
-    environment: 
-      - SINGLE_REGISTRY=true 
-      - REGISTRY_TITLE=hyperreal's Container Registry 
-      - DELETE_IMAGES=true 
-      - SHOW_CONTENT_DIGEST=true 
-      - NGINX_PROXY_PASS_URL=http://registry-server:5000 
-      - SHOW_CATALOG_NB_TAGS=true 
-      - CATALOG_MIN_BRANCHES=1 
-      - CATALOG_MAX_BRANCHES=1 
-      - TAGLIST_PAGE_SIZE=100 
-      - REGISTRY_SECURED=false 
-      - CATALOG_ELEMENTS_LIMIT=1000 
-    container_name: registry-ui 
- 
-  registry-server: 
-    image: registry:2.8.2 
-    restart: always 
-    environment: 
-      REGISTRY_HTTP_HEADERS_Access-Control-Allow-Origin: '[http://aux-remote.carp-wyvern.ts.net]' 
-      REGISTRY_HTTP_HEADERS_Access-Control-Allow-Methods: '[HEAD,GET,OPTIONS,DELETE]' 
-      REGISTRY_HTTP_HEADERS_Access-Control-Allow-Credentials: '[true]' 
-      REGISTRY_HTTP_HEADERS_Access-Control-Allow-Headers: '[Accept,Cache-Control]' 
-      REGISTRY_HTTP_HEADERS_Access-Control-Expose-Headers: '[Docker-Content-Digest]' 
-      REGISTRY_STORAGE_DELETE_ENABLED: 'true' 
-    volumes: 
-      - ./registry/data:/var/lib/registry 
-    container_name: registry-server 
-</code> 
- 
-===== Authorization and Authentication ===== 
- 
-For a public registry with authentication, the following headers are required: 
- 
-<code yaml> 
-environment: 
-  REGISTRY_HTTP_HEADERS_Access-Control-Allow-Headers: '[Authorization,Accept,Cache-Control]' 
-</code> 
- 
-For a private registry without authentication, the following headers are required: 
- 
-<code yaml> 
-environment: 
-  REGISTRY_HTTP_HEADERS_Access-Control-Allow-Headers: '[Accept,Cache-Control]' 
-</code> 
- 
-===== Caddy reverse proxy ===== 
- 
-==== Public registry ==== 
- 
-<code> 
-registry.hyperreal.coffee { 
-    reverse_proxy localhost:4433 
-} 
-</code> 
- 
-==== Private registry via Tailnet ==== 
- 
-<code> 
-aux-remote.carp-wyvern.ts.net { 
-    reverse_proxy localhost:4433 
-} 
-</code> 
- 
-Ensure the following is added to ''/etc/default/tailscaled'': 
- 
-<code> 
-TS_PERMIT_CERT_UID=caddy 
-</code> 
- 
-The above will ensure Caddy receives SSL certs from the Tailscale daemon. 
self-hosted-container-registry-with-webui.1771834281.txt.gz · Last modified: by hyperreal
Except where otherwise noted, content on this wiki is licensed under the following license: Public Domain
Public Domain