Part of HTTP Toolkit: powerful tools for building, testing & debugging HTTP(S)
A tiny self-hostable Docker Registry facade - own your registry URL without running your own registry (there's more details about how this works in the blog post).
This is intended to help organizations publishing images mitigate the upcoming Dockerpocalypse by:
- Allowing immediate migration to a self-controlled registry URL now, while still using Docker Hub as the backend temporarily.
- Ensuring that organizations control their own image URLs, so they can migrate registries in future without risking the same issues.
To test this out locally, try this:
docker run \
-e'REGISTRY_HOST=registry.hub.docker.com' \
-p443:443 \
ghcr.io/httptoolkit/docker-registry-facade
and then pull from it, e.g. with:
docker pull localhost/httptoolkit/docker-registry-facade
Remember that when specifying a registry explicitly like this, non-namespaced images that work automatically with Docker Hub, like nginx and busybox, need to be referenced fully in the library namespace, e.g. docker pull localhost/library/busybox.
To configure this further, you can set the following environment variables:
REGISTRY_HOST(required): the hostname of the target registry, e.g.registry.hub.docker.comREGISTRY_ORG: the org on the target registry which should be supported. If specified, only images from this organization will be accessible. If not, this facade will be usable to pull all images from any organization.ADDRESS: the address that the container should listen on. This must be a Caddyfile address (the default is*, which implies HTTPS on port 443).CACHE_TIMEOUT: the redirects that this image serves come with cache headers to try & limit unnecessary requests. The default timeout is 1 day, but you can reduce it by specifying a number of seconds here.