X-Git-Url: https://gerrit.akraino.org/r/gitweb?a=blobdiff_plain;f=ansible%2Froles%2Fregistry%2Ftemplates%2Fmain%2Fdocker-registry.yml;fp=ansible%2Froles%2Fregistry%2Ftemplates%2Fmain%2Fdocker-registry.yml;h=e81d44e28bd477a4d741f9fc54a0d1c3f7b789db;hb=2ed671c54dad28dd81763928b28cd17d5c76df66;hp=0000000000000000000000000000000000000000;hpb=2c8d12e674aa66af96cd6d2d750f061092db95df;p=ta%2Fcaas-registry.git

diff --git a/ansible/roles/registry/templates/main/docker-registry.yml b/ansible/roles/registry/templates/main/docker-registry.yml
new file mode 100644
index 0000000..e81d44e
--- /dev/null
+++ b/ansible/roles/registry/templates/main/docker-registry.yml
@@ -0,0 +1,71 @@
+{#
+Copyright 2019 Nokia
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+#}
+---
+apiVersion: apps/v1beta2
+kind: DaemonSet
+metadata:
+  name: registry
+  namespace: kube-system
+spec:
+  selector:
+    matchLabels:
+      name: registry
+  template:
+    metadata:
+      annotations:
+        danm.k8s.io/interfaces: |
+          [
+            {
+              "network":"flannel"
+            }
+          ]
+      labels:
+        name: registry
+    spec:
+      dnsPolicy: ClusterFirst
+      nodeSelector:
+        nodetype: caas_master
+      securityContext:
+        runAsUser: {{ caas.uid.dockerreg }}
+      containers:
+        - name: registry
+          image: {{ container_image_names | select('search', '/registry:') | list | last }}
+          env:
+            - name: INTERFACE_NAME
+              value: "{{ caas.internal_flannel_interface }}"
+            - name: REGISTRY_PORT
+              value: "{{ caas.registry_port }}"
+            - name: REGISTRY_CONFIG
+              value: /etc/docker-registry/docker-registry-main-config.yml
+          volumeMounts:
+            - name: config
+              mountPath: /etc/docker-registry/
+              readOnly: true
+            - name: store
+              mountPath: {{ caas.registry_directory }}
+            - name: ca
+              mountPath: /etc/ssl/certs/
+              readOnly: true
+      volumes:
+        - name: config
+          hostPath:
+            path: /etc/docker-registry/
+        - name: store
+          hostPath:
+            path: {{ caas.registry_directory }}
+        - name: ca
+          hostPath:
+            path: /etc/openssl/