distribution/docs/introduction.md

<!--[metadata]>
+++
title = "Understanding the Registry"
description = "Explains what the Registry is, basic use cases and requirements"
keywords = ["registry, on-prem, images, tags, repository, distribution, use cases, requirements"]
[menu.main]
parent="smn_registry"
weight=2
+++
<![end-metadata]-->

# Understanding the Registry

A registry is a storage and content delivery system, holding named Docker images, available in different tagged versions.

  > Example: the image `distribution/registry`, with tags `2.0` and `2.1`.

Users interact with a registry by using docker push and pull commands.

  > Example: `docker pull registry-1.docker.io/distribution/registry:2.1`.

Storage itself is delegated to drivers. The default storage driver is the local posix filesystem, which is suitable for development or small deployments. Additional cloud-based storage drivers like S3, Microsoft Azure, OpenStack Swift and Aliyun OSS are also supported. People looking into using other storage backends may do so by writing their own driver implementing the [Storage API](storage-drivers/index.md).

Since securing access to your hosted images is paramount, the Registry natively supports TLS and basic authentication.

The Registry GitHub repository includes additional information about advanced authentication and authorization methods. Only very large or public deployments are expected to extend the Registry in this way.

Finally, the Registry ships with a robust [notification system](notifications.md), calling webhooks in response to activity, and both extensive logging and reporting, mostly useful for large installations that want to collect metrics.

## Understanding image naming

Image names as used in typical docker commands reflect their origin:

 * `docker pull ubuntu` instructs docker to pull an image named `ubuntu` from the official Docker Hub. This is simply a shortcut for the longer `docker pull docker.io/library/ubuntu` command
 * `docker pull myregistrydomain:port/foo/bar` instructs docker to contact the registry located at `myregistrydomain:port` to find the image `foo/bar`

You can find out more about the various Docker commands dealing with images in the [official Docker engine documentation](/engine/reference/commandline/cli.md).

## Use cases

Running your own Registry is a great solution to integrate with and complement your CI/CD system. In a typical workflow, a commit to your source revision control system would trigger a build on your CI system, which would then push a new image to your Registry if the build is successful. A notification from the Registry would then trigger a deployment on a staging environment, or notify other systems that a new image is available.

It's also an essential component if you want to quickly deploy a new image over a large cluster of machines.

Finally, it's the best way to distribute images inside an isolated network.

## Requirements

You absolutely need to be familiar with Docker, specifically with regard to pushing and pulling images. You must understand the difference between the daemon and the cli, and at least grasp basic concepts about networking.

Also, while just starting a registry is fairly easy, operating it in a production environment requires operational skills, just like any other service. You are expected to be familiar with systems availability and scalability, logging and log processing, systems monitoring, and security 101. Strong understanding of http and overall network communications, plus familiarity with golang are certainly useful as well for advanced operations or hacking.

## Next

Dive into [deploying your registry](deploying.md)
Adding in the better sed Renaming to index.md;rereading of Hugo showed me my mistake; removing commented out/Markdown has no comment feature Updating with Olivier. Yay! It looks great Signed-off-by: Mary Anthony <mary@docker.com> 2015-06-16 13:00:24 +00:00			`<!--[metadata]>`
			`+++`
			`title = "Understanding the Registry"`
Documentation enhancements Making metadata: - more consistent - more specific (fixed copy pasting) - refine coverage Insecure information cleanup Removing no longer used files: - mkdocs is gone - the registry diagram is not used, and is a bit silly :) Minor fixes Fixing links Recipes: - harmonized code sections style to the rest of the docs - harmonized recipe "style" - listing new recipes Enhance deploying Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-08-26 18:08:13 +00:00			`description = "Explains what the Registry is, basic use cases and requirements"`
			`keywords = ["registry, on-prem, images, tags, repository, distribution, use cases, requirements"]`
Adding in the better sed Renaming to index.md;rereading of Hugo showed me my mistake; removing commented out/Markdown has no comment feature Updating with Olivier. Yay! It looks great Signed-off-by: Mary Anthony <mary@docker.com> 2015-06-16 13:00:24 +00:00			`[menu.main]`
			`parent="smn_registry"`
			`weight=2`
			`+++`
			`<![end-metadata]-->`
Separate introduction Use cases, generalities, image naming overview. Removed most of it from index, and some of it from other random pages. Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-05-22 09:15:45 +00:00
			`# Understanding the Registry`

Documentation work - move away insecure & self-signed - introduce native basic auth - move "down" nginx based authentication - overall shortening / smoothing of "deploying" documentation Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-06-12 08:10:03 +00:00			`A registry is a storage and content delivery system, holding named Docker images, available in different tagged versions.`
Separate introduction Use cases, generalities, image naming overview. Removed most of it from index, and some of it from other random pages. Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-05-22 09:15:45 +00:00
Documentation work - move away insecure & self-signed - introduce native basic auth - move "down" nginx based authentication - overall shortening / smoothing of "deploying" documentation Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-06-12 08:10:03 +00:00			> Example: the image `distribution/registry`, with tags `2.0` and `2.1`.
Separate introduction Use cases, generalities, image naming overview. Removed most of it from index, and some of it from other random pages. Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-05-22 09:15:45 +00:00
Documentation work - move away insecure & self-signed - introduce native basic auth - move "down" nginx based authentication - overall shortening / smoothing of "deploying" documentation Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-06-12 08:10:03 +00:00			`Users interact with a registry by using docker push and pull commands.`
Separate introduction Use cases, generalities, image naming overview. Removed most of it from index, and some of it from other random pages. Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-05-22 09:15:45 +00:00
Documentation work - move away insecure & self-signed - introduce native basic auth - move "down" nginx based authentication - overall shortening / smoothing of "deploying" documentation Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-06-12 08:10:03 +00:00			> Example: `docker pull registry-1.docker.io/distribution/registry:2.1`.
Separate introduction Use cases, generalities, image naming overview. Removed most of it from index, and some of it from other random pages. Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-05-22 09:15:45 +00:00
Make the index.html files the visible overview menu entry And move menu entry definition into a page that the user has no reason to navigate to Signed-off-by: Sven Dowideit <SvenDowideit@home.org.au> 2016-05-19 12:52:58 +00:00			`Storage itself is delegated to drivers. The default storage driver is the local posix filesystem, which is suitable for development or small deployments. Additional cloud-based storage drivers like S3, Microsoft Azure, OpenStack Swift and Aliyun OSS are also supported. People looking into using other storage backends may do so by writing their own driver implementing the [Storage API](storage-drivers/index.md).`
Separate introduction Use cases, generalities, image naming overview. Removed most of it from index, and some of it from other random pages. Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-05-22 09:15:45 +00:00
Documentation work - move away insecure & self-signed - introduce native basic auth - move "down" nginx based authentication - overall shortening / smoothing of "deploying" documentation Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-06-12 08:10:03 +00:00			`Since securing access to your hosted images is paramount, the Registry natively supports TLS and basic authentication.`

			`The Registry GitHub repository includes additional information about advanced authentication and authorization methods. Only very large or public deployments are expected to extend the Registry in this way.`

			`Finally, the Registry ships with a robust [notification system](notifications.md), calling webhooks in response to activity, and both extensive logging and reporting, mostly useful for large installations that want to collect metrics.`
Separate introduction Use cases, generalities, image naming overview. Removed most of it from index, and some of it from other random pages. Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-05-22 09:15:45 +00:00
			`## Understanding image naming`

			`Image names as used in typical docker commands reflect their origin:`

Documentation enhancements Making metadata: - more consistent - more specific (fixed copy pasting) - refine coverage Insecure information cleanup Removing no longer used files: - mkdocs is gone - the registry diagram is not used, and is a bit silly :) Minor fixes Fixing links Recipes: - harmonized code sections style to the rest of the docs - harmonized recipe "style" - listing new recipes Enhance deploying Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-08-26 18:08:13 +00:00			* `docker pull ubuntu` instructs docker to pull an image named `ubuntu` from the official Docker Hub. This is simply a shortcut for the longer `docker pull docker.io/library/ubuntu` command
Documentation work - move away insecure & self-signed - introduce native basic auth - move "down" nginx based authentication - overall shortening / smoothing of "deploying" documentation Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-06-12 08:10:03 +00:00			* `docker pull myregistrydomain:port/foo/bar` instructs docker to contact the registry located at `myregistrydomain:port` to find the image `foo/bar`
Separate introduction Use cases, generalities, image naming overview. Removed most of it from index, and some of it from other random pages. Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-05-22 09:15:45 +00:00
Make the index.html files the visible overview menu entry And move menu entry definition into a page that the user has no reason to navigate to Signed-off-by: Sven Dowideit <SvenDowideit@home.org.au> 2016-05-19 12:52:58 +00:00			`You can find out more about the various Docker commands dealing with images in the [official Docker engine documentation](/engine/reference/commandline/cli.md).`
Separate introduction Use cases, generalities, image naming overview. Removed most of it from index, and some of it from other random pages. Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-05-22 09:15:45 +00:00
			`## Use cases`

Fix a few typos in the docs Signed-off-by: Alex Chan <alex.chan@metaswitch.com> 2015-07-31 12:36:43 +00:00			`Running your own Registry is a great solution to integrate with and complement your CI/CD system. In a typical workflow, a commit to your source revision control system would trigger a build on your CI system, which would then push a new image to your Registry if the build is successful. A notification from the Registry would then trigger a deployment on a staging environment, or notify other systems that a new image is available.`
Separate introduction Use cases, generalities, image naming overview. Removed most of it from index, and some of it from other random pages. Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-05-22 09:15:45 +00:00
			`It's also an essential component if you want to quickly deploy a new image over a large cluster of machines.`

Documentation work - move away insecure & self-signed - introduce native basic auth - move "down" nginx based authentication - overall shortening / smoothing of "deploying" documentation Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-06-12 08:10:03 +00:00			`Finally, it's the best way to distribute images inside an isolated network.`
Separate introduction Use cases, generalities, image naming overview. Removed most of it from index, and some of it from other random pages. Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-05-22 09:15:45 +00:00
			`## Requirements`

			`You absolutely need to be familiar with Docker, specifically with regard to pushing and pulling images. You must understand the difference between the daemon and the cli, and at least grasp basic concepts about networking.`

Documentation work - move away insecure & self-signed - introduce native basic auth - move "down" nginx based authentication - overall shortening / smoothing of "deploying" documentation Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-06-12 08:10:03 +00:00			`Also, while just starting a registry is fairly easy, operating it in a production environment requires operational skills, just like any other service. You are expected to be familiar with systems availability and scalability, logging and log processing, systems monitoring, and security 101. Strong understanding of http and overall network communications, plus familiarity with golang are certainly useful as well for advanced operations or hacking.`
Adding in the better sed Renaming to index.md;rereading of Hugo showed me my mistake; removing commented out/Markdown has no comment feature Updating with Olivier. Yay! It looks great Signed-off-by: Mary Anthony <mary@docker.com> 2015-06-16 13:00:24 +00:00
Documentation work - move away insecure & self-signed - introduce native basic auth - move "down" nginx based authentication - overall shortening / smoothing of "deploying" documentation Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-06-12 08:10:03 +00:00			`## Next`
Separate introduction Use cases, generalities, image naming overview. Removed most of it from index, and some of it from other random pages. Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-05-22 09:15:45 +00:00
Documentation work - move away insecure & self-signed - introduce native basic auth - move "down" nginx based authentication - overall shortening / smoothing of "deploying" documentation Signed-off-by: Olivier Gambier <olivier@docker.com> 2015-06-12 08:10:03 +00:00			`Dive into [deploying your registry](deploying.md)`