Skip to content

Add vendor HTTP header to docker registry #12480

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
mfojtik wants to merge 1 commit into from
Closed

Add vendor HTTP header to docker registry #12480

mfojtik wants to merge 1 commit into from

Conversation

@mfojtik
Copy link
Contributor

@mfojtik mfojtik commented Jan 13, 2017

@miminar @mtrmac PTAL

@smarterclayton I can add a separate endpoint for the version information. We might also need to advertise the "public master API URL" for the Docker daemon, so it knows where to route the HTTP request to get the image signature from. I guess we can't just use the kubeconfig value and this will need to be a new option for the registry.

We also discussed with @legionus that it should not be that hard to add a completely new endpoint in the registry to serve the Image signatures. Basically, the Docker daemon will have to talk just to registry then. Registry will forward the request to OpenShift API and return the Image signature.

I'm open to both approaches (the registry serving signatures seems easier for Docker guys).

@pweil-
Copy link

pweil- commented Jan 13, 2017

Thought: could we convince upstream to allow middleware to extend the info endpoint and add all of our goodness there? This makes it non-divergent with the upstream and also allows docker info to be very useful

@mfojtik
Copy link
Contributor Author

mfojtik commented Jan 13, 2017
edited
Loading

+1 @pweil- I think that is better solution.

We should be able to fill the info endpoint with plugins, vendor string and other information that clients can consume and validate.

@mfojtik
Copy link
Contributor Author

mfojtik commented Jan 13, 2017

as learned, the info endpoint is just for docker engine, not registry :-) so ignore the last comment.

we should however add this info into /v2/ endpoint as a HTTP header (X-Registry-Capabilities?). I will look how we can do that.

@pweil-
Copy link

pweil- commented Jan 13, 2017

+1. too much time in the engine api lately :)

@smarterclayton
Copy link
Contributor

smarterclayton commented Jan 13, 2017

We could just do X-Registry-Supports-Certificate-...: 1

@mtrmac
Copy link
Contributor

mtrmac commented Jan 13, 2017

We might also need to advertise the "public master API URL" for the Docker daemon, so it knows where to route the HTTP request to get the image signature from.

Yes, this is really needed. AFAIK there is no guarantee that, and not even a structurally good reason to assume that, the registry hostname is also serving the API master.

@mfojtik mfojtik closed this Jan 17, 2017
@mtrmac
Copy link
Contributor

mtrmac commented Jan 17, 2017

Am I correct in guessing that this was closed because #12504 would replace it?

@mfojtik
Copy link
Contributor Author

mfojtik commented Jan 17, 2017

@mtrmac yes, unless something that will block it emerges.

@mtrmac mtrmac mentioned this pull request Jan 17, 2017
Merged
@mfojtik mfojtik deleted the registry-vendor branch September 5, 2018 21:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

needs-api-review

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@mfojtik @pweil- @smarterclayton @mtrmac