timoyuen/docker-registry.kubernetes.deployment.yaml

## docker-registry.kubernetes.deployment.yaml
apiVersion: extensions/v1beta1
kind: Deployment
metadata:
  name: internal-docker-registry
  labels:
    app: docker-registry
    type: development
spec:
  replicas: 1
  selector:
    matchLabels:
      app: docker-registry
  template:
    metadata:
      labels:
        app: docker-registry
        type: development
    spec:
      containers:
      - image: registry:latest
        name: docker-registry
        envFrom:
        - configMapRef:
            name: registry
        volumeMounts:
        - name: files
          mountPath: /etc/k8s
        - name: image-data
          mountPath: /var/lib/registry
        ports:
        - name: registry
          containerPort: 5000
          protocol: TCP
        imagePullPolicy: Always
      restartPolicy: Always
      volumes:
        - name: files
          configMap:
            name: registry
            items:
            - key: SSL_CERT
              path: cert.crt
            - key: SSL_KEY
              path: cert.key
            - key: HTPASSWD_FILE
              path: htpasswd
        - name: image-data
          emptyDir: {}
---
kind: Service
apiVersion: v1
metadata:
  name: docker-registry
spec:
  selector:
    app: docker-registry
  ports:
  - name: http
    protocol: TCP
    port: 80
    targetPort: 5000
---
apiVersion: v1
kind: ConfigMap
data:
  REGISTRY_STORAGE_FILESYSTEM_ROOTDIRECTORY: /var/lib/registry
  REGISTRY_HTTP_SECRET: ZTQxM9cwZDkxO3RkMDUzYjk4YjIyOWRmhjBlMWRhMjUK
  REGISTRY_HTTP_TLS_CERTIFICATE: /etc/k8s/cert.crt
  REGISTRY_HTTP_TLS_KEY: /etc/k8s/cert.key
  REGISTRY_AUTH: htpasswd
  REGISTRY_AUTH_HTPASSWD_PATH: /etc/k8s/htpasswd
  REGISTRY_AUTH_HTPASSWD_REALM: Private Registry
  HTPASSWD_FILE: |
    admin:$2y$05$WhNOueOUKw6LOHutP4zHRe3LXvZuSwTbsKEoHeT5sXIsKMb3zil2m
  SSL_CERT: |
    -----BEGIN CERTIFICATE-----
    MIIEljCCAn4CCQClQUPkNpHOgDANBgkqhkiG9w0BAQsFADANMQswCQYDVQQGEwJO
    ...
    68Oh4ukawvVIT5txAMqsBhsqv3i31VZw1g0=
    -----END CERTIFICATE-----
  SSL_KEY: |
    -----BEGIN PRIVATE KEY-----
    MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQCc4x2Y9UTaUp8z
    ...
    fbYl/1T88hd4yDi2w0Zahl8fPQeg
    -----END PRIVATE KEY-----
metadata:
  name: registry
---
	apiVersion: extensions/v1beta1
	kind: Deployment
	metadata:
	name: internal-docker-registry
	labels:
	app: docker-registry
	type: development
	spec:
	replicas: 1
	selector:
	matchLabels:
	app: docker-registry
	template:
	metadata:
	labels:
	app: docker-registry
	type: development
	spec:
	containers:
	- image: registry:latest
	name: docker-registry
	envFrom:
	- configMapRef:
	name: registry
	volumeMounts:
	- name: files
	mountPath: /etc/k8s
	- name: image-data
	mountPath: /var/lib/registry
	ports:
	- name: registry
	containerPort: 5000
	protocol: TCP
	imagePullPolicy: Always
	restartPolicy: Always
	volumes:
	- name: files
	configMap:
	name: registry
	items:
	- key: SSL_CERT
	path: cert.crt
	- key: SSL_KEY
	path: cert.key
	- key: HTPASSWD_FILE
	path: htpasswd
	- name: image-data
	emptyDir: {}
	---
	kind: Service
	apiVersion: v1
	metadata:
	name: docker-registry
	spec:
	selector:
	app: docker-registry
	ports:
	- name: http
	protocol: TCP
	port: 80
	targetPort: 5000
	---
	apiVersion: v1
	kind: ConfigMap
	data:
	REGISTRY_STORAGE_FILESYSTEM_ROOTDIRECTORY: /var/lib/registry
	REGISTRY_HTTP_SECRET: ZTQxM9cwZDkxO3RkMDUzYjk4YjIyOWRmhjBlMWRhMjUK
	REGISTRY_HTTP_TLS_CERTIFICATE: /etc/k8s/cert.crt
	REGISTRY_HTTP_TLS_KEY: /etc/k8s/cert.key
	REGISTRY_AUTH: htpasswd
	REGISTRY_AUTH_HTPASSWD_PATH: /etc/k8s/htpasswd
	REGISTRY_AUTH_HTPASSWD_REALM: Private Registry
	HTPASSWD_FILE: \|
	admin:$2y$05$WhNOueOUKw6LOHutP4zHRe3LXvZuSwTbsKEoHeT5sXIsKMb3zil2m
	SSL_CERT: \|
	-----BEGIN CERTIFICATE-----
	MIIEljCCAn4CCQClQUPkNpHOgDANBgkqhkiG9w0BAQsFADANMQswCQYDVQQGEwJO
	...
	68Oh4ukawvVIT5txAMqsBhsqv3i31VZw1g0=
	-----END CERTIFICATE-----
	SSL_KEY: \|
	-----BEGIN PRIVATE KEY-----
	MIIJQQIBADANBgkqhkiG9w0BAQEFAASCCSswggknAgEAAoICAQCc4x2Y9UTaUp8z
	...
	fbYl/1T88hd4yDi2w0Zahl8fPQeg
	-----END PRIVATE KEY-----
	metadata:
	name: registry
	---