deterralba · August 20, 2017 17:40
diff --git a/docker_private_registry_error.sh b/docker_private_registry_error.sh
 # I set up a private registry with let's encrypt certificats with the following command:

 $ docker run -p 443:5000 -p 5001:5001 --name registry -d --restart=always \
    -e REGISTRY_HTTP_ADDR=0.0.0.0:5000 \
    -e REGISTRY_HTTP_HOST=https://registry.mydomain.com \
    -e REGISTRY_HTTP_TLS_LETSENCRYPT_CACHEFILE=/etc/docker/registry/letsencrypt.json \
    -e [email protected] \
    -e REGISTRY_STORAGE [...] \
    -e REGISTRY_AUTH [...] \
    registry:2
    
 # Then I got the strangest error when I tried to push an image (with multiple retrying... before it almost worked)
 $ docker pull alpine
 $ docker tag alpine registry.mydomaine.com/alpine
 $ docker push registry.mydomaine.com/alpine
 The push refers to a repository [registry.mydomain.com/alpine]
 5bef742407: Pushing [==================================================>]  3.966MB/3.966MB
 read tcp 10.0.2.17:55298->69.100.100.100:443: read: connection reset by peer

 # The error was due to an typo in the variable REGISTRY_HTTP_HOST (I had the wrong extension .fr)
 # CONCLUSION: if you use let's encrypt and get a read: connection reset by peer, double check your domain name!


 # ------------------------------------------------------------------------------------ #


 # BTW if you want to see the full docker run command with swift and basic auth (there are too few examples on the Interweb)
 # you should change the ** obviously
 $ docker run -p 443:5000 -p 5001:5001 --name registry -d --restart=always \
    -e REGISTRY_STORAGE=swift \
    -e REGISTRY_STORAGE_SWIFT_CONTAINER=docker-registry \
    -e REGISTRY_STORAGE_SWIFT_USERNAME=*** \
    -e REGISTRY_STORAGE_SWIFT_AUTHURL=https://***.net/v2.0/ \
    -e REGISTRY_STORAGE_SWIFT_TENANTID=*** \
    -e REGISTRY_STORAGE_SWIFT_PASSWORD=*** \
    -e REGISTRY_HTTP_ADDR=0.0.0.0:5000 \
    -e REGISTRY_HTTP_HOST=https://registry.mydomain.com \
    -e REGISTRY_HTTP_TLS_LETSENCRYPT_CACHEFILE=/etc/docker/registry/letsencrypt.json \
    -e REGISTRY_HTTP_TLS_LETSENCRYPT_EMAIL=*** \
    -v `pwd`/docker-registry-auth:/auth  \
    -e REGISTRY_AUTH=htpasswd \
    -e REGISTRY_AUTH_HTPASSWD_REALM="Registry Realm" \
    -e REGISTRY_AUTH_HTPASSWD_PATH="/auth/htpasswd" \
    -e REGISTRY_HEALTH_STORAGEDRIVER_ENABLED=false \
    -e REGISTRY_HTTP_DEBUG_ADDR=0.0.0.0:5001 \
    registry:2
	# I set up a private registry with let's encrypt certificats with the following command:

	$ docker run -p 443:5000 -p 5001:5001 --name registry -d --restart=always \
	-e REGISTRY_HTTP_ADDR=0.0.0.0:5000 \
	-e REGISTRY_HTTP_HOST=https://registry.mydomain.com \
	-e REGISTRY_HTTP_TLS_LETSENCRYPT_CACHEFILE=/etc/docker/registry/letsencrypt.json \
	-e [email protected] \
	-e REGISTRY_STORAGE [...] \
	-e REGISTRY_AUTH [...] \
	registry:2

	# Then I got the strangest error when I tried to push an image (with multiple retrying... before it almost worked)
	$ docker pull alpine
	$ docker tag alpine registry.mydomaine.com/alpine
	$ docker push registry.mydomaine.com/alpine
	The push refers to a repository [registry.mydomain.com/alpine]
	5bef742407: Pushing [==================================================>] 3.966MB/3.966MB
	read tcp 10.0.2.17:55298->69.100.100.100:443: read: connection reset by peer

	# The error was due to an typo in the variable REGISTRY_HTTP_HOST (I had the wrong extension .fr)
	# CONCLUSION: if you use let's encrypt and get a read: connection reset by peer, double check your domain name!


	# ------------------------------------------------------------------------------------ #


	# BTW if you want to see the full docker run command with swift and basic auth (there are too few examples on the Interweb)
	# you should change the ** obviously
	$ docker run -p 443:5000 -p 5001:5001 --name registry -d --restart=always \
	-e REGISTRY_STORAGE=swift \
	-e REGISTRY_STORAGE_SWIFT_CONTAINER=docker-registry \
	-e REGISTRY_STORAGE_SWIFT_USERNAME=*** \
	-e REGISTRY_STORAGE_SWIFT_AUTHURL=https://***.net/v2.0/ \
	-e REGISTRY_STORAGE_SWIFT_TENANTID=*** \
	-e REGISTRY_STORAGE_SWIFT_PASSWORD=*** \
	-e REGISTRY_HTTP_ADDR=0.0.0.0:5000 \
	-e REGISTRY_HTTP_HOST=https://registry.mydomain.com \
	-e REGISTRY_HTTP_TLS_LETSENCRYPT_CACHEFILE=/etc/docker/registry/letsencrypt.json \
	-e REGISTRY_HTTP_TLS_LETSENCRYPT_EMAIL=*** \
	-v `pwd`/docker-registry-auth:/auth \
	-e REGISTRY_AUTH=htpasswd \
	-e REGISTRY_AUTH_HTPASSWD_REALM="Registry Realm" \
	-e REGISTRY_AUTH_HTPASSWD_PATH="/auth/htpasswd" \
	-e REGISTRY_HEALTH_STORAGEDRIVER_ENABLED=false \
	-e REGISTRY_HTTP_DEBUG_ADDR=0.0.0.0:5001 \
	registry:2