🏁 v1.13.2 Release

Merge pull request #29 from SimonRupar/main
Add support for S3 bucket data prefix
2026-02-23 08:23:48 +00:00 · 2021-09-30 19:59:16 -07:00 · 2021-09-30 12:38:05 -07:00 · 2021-09-30 20:20:14 +02:00 · 2021-09-26 23:50:41 -07:00 · 2021-09-26 23:48:24 -07:00
5 changed files with 45 additions and 5 deletions
--- a/Chart.yaml
+++ b/Chart.yaml
@@ -1,10 +1,10 @@
 apiVersion: v1
 description: A Helm chart for Docker Registry
 name: docker-registry
-version: 1.10.1
+version: 1.13.2
 appVersion: 2.7.1
 home: https://hub.docker.com/_/registry/
-icon: https://hub.docker.com/public/images/logos/mini-logo.svg
+icon: https://helm.twun.io/docker-registry.png
 maintainers:
 - email: devin@canterberry.cc
  name: Devin Canterberry
--- a/README.md
+++ b/README.md
@@ -64,6 +64,7 @@ their default values.
 | `secrets.htpasswd`          | Htpasswd authentication                                                                    | `nil`           |
 | `secrets.s3.accessKey`      | Access Key for S3 configuration                                                            | `nil`           |
 | `secrets.s3.secretKey`      | Secret Key for S3 configuration                                                            | `nil`           |
+| `secrets.s3.secretRef`      | The ref for an external secret containing the accessKey and secretKey keys                 | `""`            |
 | `secrets.swift.username`    | Username for Swift configuration                                                           | `nil`           |
 | `secrets.swift.password`    | Password for Swift configuration                                                           | `nil`           |
 | `haSharedSecret`            | Shared secret for Registry                                                                 | `nil`           |
@@ -71,10 +72,16 @@ their default values.
 | `s3.region`                 | S3 region                                                                                  | `nil`           |
 | `s3.regionEndpoint`         | S3 region endpoint                                                                         | `nil`           |
 | `s3.bucket`                 | S3 bucket name                                                                             | `nil`           |
+| `s3.rootdirectory`          | S3 prefix that is applied to allow you to segment data                                     | `nil`           |
 | `s3.encrypt`                | Store images in encrypted format                                                           | `nil`           |
 | `s3.secure`                 | Use HTTPS                                                                                  | `nil`           |
 | `swift.authurl`             | Swift authurl                                                                              | `nil`           |
 | `swift.container`           | Swift container                                                                            | `nil`           |
+| `proxy.enabled`             | If true, registry will function as a proxy/mirror                                          | `false`         |
+| `proxy.remoteurl`           | Remote registry URL to proxy requests to                                                   | `https://registry-1.docker.io`            |
+| `proxy.username`            | Remote registry login username                                                             | `nil`           |
+| `proxy.password`            | Remote registry login password                                                             | `nil`           |
+| `proxy.secretRef`           | The ref for an external secret containing the proxyUsername and proxyPassword keys         | `""`            |
 | `nodeSelector`              | node labels for pod assignment                                                             | `{}`            |
 | `affinity`                  | affinity settings                                                                          | `{}`            |
 | `tolerations`               | pod tolerations                                                                            | `[]`            |
--- a/templates/deployment.yaml
+++ b/templates/deployment.yaml
@@ -110,16 +110,16 @@ spec:
                  name: {{ template "docker-registry.fullname" . }}-secret
                  key: azureContainer
 {{- else if eq .Values.storage "s3" }}
-            {{- if and .Values.secrets.s3.secretKey .Values.secrets.s3.accessKey }}
+            {{- if or (and .Values.secrets.s3.secretKey .Values.secrets.s3.accessKey) .Values.secrets.s3.secretRef }}
            - name: REGISTRY_STORAGE_S3_ACCESSKEY
              valueFrom:
                secretKeyRef:
-                  name: {{ template "docker-registry.fullname" . }}-secret
+                  name: {{ if .Values.secrets.s3.secretRef }}{{ .Values.secrets.s3.secretRef }}{{ else }}{{ template "docker-registry.fullname" . }}-secret{{ end }}
                  key: s3AccessKey
            - name: REGISTRY_STORAGE_S3_SECRETKEY
              valueFrom:
                secretKeyRef:
-                  name: {{ template "docker-registry.fullname" . }}-secret
+                  name: {{ if .Values.secrets.s3.secretRef }}{{ .Values.secrets.s3.secretRef }}{{ else }}{{ template "docker-registry.fullname" . }}-secret{{ end }}
                  key: s3SecretKey
            {{- end }}
            - name: REGISTRY_STORAGE_S3_REGION
@@ -130,6 +130,10 @@ spec:
          {{- end }}
            - name: REGISTRY_STORAGE_S3_BUCKET
              value: {{ required ".Values.s3.bucket is required" .Values.s3.bucket }}
+          {{- if .Values.s3.rootdirectory }}
+            - name: REGISTRY_STORAGE_S3_ROOTDIRECTORY
+              value: {{ .Values.s3.rootdirectory | quote }}
+          {{- end }}
          {{- if .Values.s3.encrypt }}
            - name: REGISTRY_STORAGE_S3_ENCRYPT
              value: {{ .Values.s3.encrypt | quote }}
@@ -154,6 +158,20 @@ spec:
            - name: REGISTRY_STORAGE_SWIFT_CONTAINER
              value: {{ required ".Values.swift.container is required" .Values.swift.container }}
 {{- end }}
+{{- if .Values.proxy.enabled }}
+            - name: REGISTRY_PROXY_REMOTEURL
+              value: {{ required ".Values.proxy.remoteurl is required" .Values.proxy.remoteurl }}
+            - name: REGISTRY_PROXY_USERNAME
+              valueFrom:
+                secretKeyRef:
+                  name: {{ if .Values.proxy.secretRef }}{{ .Values.proxy.secretRef }}{{ else }}{{ template "docker-registry.fullname" . }}-secret{{ end }}
+                  key: proxyUsername
+            - name: REGISTRY_PROXY_PASSWORD
+              valueFrom:
+                secretKeyRef:
+                  name: {{ if .Values.proxy.secretRef }}{{ .Values.proxy.secretRef }}{{ else }}{{ template "docker-registry.fullname" . }}-secret{{ end }}
+                  key: proxyPassword
+{{- end }}
 {{- if .Values.persistence.deleteEnabled }}
            - name: REGISTRY_STORAGE_DELETE_ENABLED
              value: "true"
--- a/templates/secret.yaml
+++ b/templates/secret.yaml
@@ -35,3 +35,5 @@ data:
  swiftPassword: {{ .Values.secrets.swift.password | b64enc | quote }}
    {{- end }}
  {{- end }}
+  proxyUsername: {{ .Values.proxy.username | default "" | b64enc | quote }}
+  proxyPassword: {{ .Values.proxy.password | default "" | b64enc | quote }}
--- a/values.yaml
+++ b/values.yaml
@@ -76,7 +76,9 @@ secrets:
 #     accountKey: ""
 #     container: ""
 # Secrets for S3 access and secret keys
+# Use a secretRef with keys (accessKey, secretKey) for secrets stored outside the chart
 #   s3:
+#     secretRef: ""
 #     accessKey: ""
 #     secretKey: ""
 # Secrets for Swift username and password
@@ -89,6 +91,7 @@ secrets:
 #  region: us-east-1
 #  regionEndpoint: s3.us-east-1.amazonaws.com
 #  bucket: my-bucket
+#  rootdirectory: /object/prefix
 #  encrypt: false
 #  secure: true

@@ -97,6 +100,16 @@ secrets:
 #  authurl: http://swift.example.com/
 #  container: my-container

+# https://docs.docker.com/registry/recipes/mirror/
+proxy:
+  enabled: false
+  remoteurl: https://registry-1.docker.io
+  username: ""
+  password: ""
+  # the ref for a secret stored outside of this chart
+  # Keys: proxyUsername, proxyPassword
+  secretRef: ""
+
 configData:
  version: 0.1
  log:
Author	SHA1	Message	Date
Devin Canterberry	b321438d4e	🏁 v1.13.2 Release	2021-09-30 19:59:16 -07:00
Devin Canterberry	84535c1d96	Merge pull request #29 from SimonRupar/main Add support for S3 bucket data prefix	2021-09-30 12:38:05 -07:00
SimonRupar	7076faea33	Add support for S3 bucket to prefix all data	2021-09-30 20:20:14 +02:00
Devin Canterberry	dfcd91722c	🏁 v1.13.1 Release	2021-09-26 23:50:41 -07:00
Devin Canterberry	932a31b2fa	Merge pull request #25 from pavankumar-go/patch-1 Add keys proxyUsername and proxyPassword with empty string to docker-registry-secret if values are not set	2021-09-26 23:48:24 -07:00
pavankumar-go	88528289cf	uses default function instead of if-else condition	2021-09-27 11:30:06 +05:30
Devin Canterberry	35c1365b5c	🐞 Replace broken icon URL with a pattern under the control of this chart repo	2021-09-03 16:16:36 -07:00
Devin Canterberry	a713a3d91c	🏁 Increment chart version for v1.13.0 release	2021-09-03 15:47:40 -07:00
Devin Canterberry	9697305e39	Merge pull request #23 from joaosa/main Add support for having external s3 secrets	2021-09-03 15:27:28 -07:00
Pavan Kumar	d412af5f95	Add keys proxyUsername and proxyPassword with empty string Setting up docker-registry proxy with no password & username created the secret to be created without `proxyUsername` and `proxyPassword` fields, causing pod to fail if `proxy.enabled = true` with error ``` error: "couldn't find key proxyUsername in Secret <namespace>/docker-registry-secret" ```	2021-08-26 18:44:03 +05:30
Joao Andrade	45daca1981	Add support for external s3 secrets	2021-08-09 12:13:07 +01:00
Devin Canterberry	47c07072ff	🏁 Increment version for v1.12.0 release	2021-08-07 18:03:44 -07:00
Devin Canterberry	a599059936	Merge pull request #20 from joaosa/main Add support for having external proxy secrets	2021-08-04 06:50:32 -07:00
Joao Andrade	5a68bb595a	Add support for external proxy secrets	2021-08-04 11:13:58 +01:00
Devin Canterberry	e6bf1b7833	v1.11.0 Release	2021-06-11 21:40:25 -07:00
Devin Canterberry	c3dd512501	Merge pull request #18 from jrhorner1/main Add support for registry proxy/mirror	2021-06-11 19:32:22 -07:00
Jesse Horner	51c6e55ddb	add support for registry proxy	2021-06-11 12:07:48 -04:00