转载

docker registry v2 的认证服务器 - 草稿中

docker 公司开源了registry 后,并没有开源 认证服务 (他家有个产品叫 docker trust registry, 但是需要购买license 才可以用)

docker 公司发布了registry 的版本 v2 后,认证服务器的解决方案就需要各位自己定制了。

具体原理在这里:

https://github.com/docker/dist ... en.md

docker registry v2 的认证服务器 - 草稿中

Attempt to begin a push/pull operation with the registry.

If the registry requires authorization it will return a 401 Unauthorized HTTP response with information on how to authenticate.

The registry client makes a request to the authorization service for a Bearer token.

The authorization service returns an opaque Bearer token representing the client's authorized access.

The client retries the original request with the Bearer token embedded in the request's Authorization header.

The Registry authorizes the client by validating the Bearer token and the claim set embedded within it and begins the push/pull session as usual.

原文  http://dockone.io/article/1625
正文到此结束
Loading...