<div dir="ltr">Hi Jordi,<div><br></div><div>Thanks for your reply, Yes in my before mails, I setup opensuse vm in which i configure portus by rpm and it was working fine but I was facing same problem with docker login cli and in logs I found proxy as we have proxy in network and trouble shoot this problem , currently I deploy portus and other components in container on one physical machine as mentioned above.</div><div><br></div><div>Can you please once again look on my above docker container configuration and suggest me if is there any configuration problem ?</div><div><br></div><div>I am thinking that I am doing little mistake here which doesn't come in notice, we define below environment variables in registry container, is it correct ?</div><div><br></div><div><span style="font-size:12.8px"> -e REGISTRY_AUTH_TOKEN_ISSUER=<CONTAINER_IP></span><span style="font-size:12.8px"> \</span><br></div><div><div style="font-size:12.8px"><span style="white-space:pre-wrap"> </span>-e REGISTRY_AUTH_TOKEN_REALM="<a href="http://10.17.1.22:3000/v2/token" target="_blank">http://<PORTUS_IP:3000?/v2/token</a>" \</div><div style="font-size:12.8px"><span style="white-space:pre-wrap"> </span>-e REGISTRY_AUTH_TOKEN_SERVICE=">CONTAINER_IP<a href="http://10.17.1.22:5000/" target="_blank">:5000</a>>" \</div></div><div><br></div><div>Thanks</div><div><br></div><div> </div></div><div class="gmail_extra"><br><div class="gmail_quote">On Thu, Jan 28, 2016 at 11:03 PM, Jordi Massaguer Pla <span dir="ltr"><<a href="mailto:jmassaguerpla@suse.de" target="_blank">jmassaguerpla@suse.de</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div text="#000000" bgcolor="#FFFFFF">
<font size="-1">Hi Benjamin,<br>
<br>
for some reason I misunderstood you and I thought you were using
the RPMs. We'll try to reproduce your setup and tell you what is
missing.<br>
<br>
regards<span class="HOEnZb"><font color="#888888"><br>
<br>
jordi<br>
<br>
</font></span></font><div><div class="h5"><br>
<div>On 01/26/2016 10:26 PM, Benjamin
Fernandis wrote:<br>
</div>
<blockquote type="cite">
<div dir="ltr">Hi,
<div><br>
</div>
<div>To test it out of proxy, I setup portus, registry as
container on single physical machine which is out of proxy
configuration.</div>
<div><br>
</div>
<div>my docker file for registry :</div>
<div><br>
</div>
<div>
<div>docker run \</div>
<div><span style="white-space:pre-wrap"> </span>--name
registry \</div>
<div><span style="white-space:pre-wrap"> </span>-e
REGISTRY_LOG_LEVEL=debug \</div>
<div><span style="white-space:pre-wrap"> </span>--net=host
\</div>
<div><span style="white-space:pre-wrap"> </span>-e
SEARCH_BACKEND=sqlalchemy \</div>
<div><span style="white-space:pre-wrap"> </span>-e
REGISTRY_AUTH_TOKEN_ISSUER="10.17.1.22" \</div>
<div><span style="white-space:pre-wrap"> </span>-e
REGISTRY_AUTH_TOKEN_REALM="<a href="http://10.17.1.22:3000/v2/token" target="_blank">http://10.17.1.22:3000/v2/token</a>"
\</div>
<div><span style="white-space:pre-wrap"> </span>-e
REGISTRY_AUTH_TOKEN_SERVICE="<a href="http://10.17.1.22:5000" target="_blank">10.17.1.22:5000</a>" \</div>
<div><span style="white-space:pre-wrap"> </span>-v
/etc/localtime:/etc/localtime:ro \</div>
<div><span style="white-space:pre-wrap"> </span>-v
`pwd`/data:/var/lib/registry \</div>
<div><span style="white-space:pre-wrap"> </span>
registry:2.1</div>
</div>
<div><br>
</div>
<div><br>
</div>
<div>docker file portus :</div>
<div><br>
</div>
<div>
<div>docker run \</div>
<div> -d --restart=always --name portus \</div>
<div> --net=host \</div>
<div> -e PORTUS_MACHINE_FQDN="hostname" \</div>
<div> -e PORTUS_KEY_PATH="key.pem" \</div>
<div> -e PORTUS_LDAP_ENABLED=true \</div>
<div> -e PORTUS_LDAP_HOSTNAME=<a href="http://ldap.example.com" target="_blank">ldap.example.com</a> \</div>
<div> -e PORTUS_LDAP_PORT=389 \</div>
<div> -e PORTUS_LDAP_METHOD=plain \</div>
<div> -e PORTUS_LDAP_BASE="xyz" \</div>
<div> -e PORTUS_LDAP_UID="xyz" \</div>
<div> -e PORTUS_LDAP_AUTHENTICATION_ENABLED=true \</div>
<div> -e PORTUS_LDAP_AUTHENTICATION_BIND_DN="xyz" \</div>
<div> -e PORTUS_LDAP_AUTHENTICATION_PASSWORD="xyz" \</div>
<div> -e PORTUS_PRODUCTION_HOST=10.17.1.22 \</div>
<div> -e PORTUS_PRODUCTION_DATABASE=portus \</div>
<div> -e PORTUS_PRODUCTION_USERNAME=portus \</div>
<div> -e PORTUS_PRODUCTION_PASSWORD=portuspassword \</div>
<div> -e PORTUS_GRAVATAR_ENABLED=true \</div>
<div> -e PORTUS_PASSWORD="portuspassword" \</div>
<div> -e PORTUS_SECRET_KEY_BASE="xyz" \</div>
<div> -e REGISTRY_USE_SSL=true \</div>
<div> -e PORTUS_CHECK_SSL_USAGE_ENABLED=false \</div>
<div> -e CATALOG_CRON="2.minutes" \</div>
<div> sshipway/portus:2.0.0</div>
</div>
<div><br>
</div>
<div><br>
</div>
<div><br>
</div>
<div>After running both reigstry and portus, I can do ldap login
by web page of portus and add registry.</div>
<div><br>
</div>
<div>
<div># curl -ik --user $user:$password <a href="http://10.17.1.22:3000/v2/token?account=$user%5C&service=10.17.1.22:5000" target="_blank"></a><a href="http://10.17.1.22:3000/v2/token?account=$user%5C&service=10.17.1.22:5000" target="_blank">http://10.17.1.22:3000/v2/token?account=$user\&service=10.17.1.22:5000</a></div>
<div>HTTP/1.1 200 OK</div>
<div>X-Frame-Options: SAMEORIGIN</div>
<div>X-XSS-Protection: 1; mode=block</div>
<div>X-Content-Type-Options: nosniff</div>
<div>Content-Type: application/json; charset=utf-8</div>
<div>ETag: W/"948072053b84e6aa8ca2d7e830bba73c"</div>
<div>Cache-Control: max-age=0, private, must-revalidate</div>
<div>Set-Cookie:
_portus_session=M2dxWkNmWFBzMmo1NGhzYTlpOEIzNWtLTVBPazl0RnRMVHdzMzhjWnZqVDZWZXdWMnVIWjlrYVFrQk5rZGFYMEVvRWRDR2hOMVFUaGltZHZOL05NY1E9PS0tekE4RDRZUTVPdnhZakhjbkZZS0I2UT09--8a3bd444275d60c9dd9a71ff5ef4310ad2fd2422;
path=/; HttpOnly</div>
<div>X-Request-Id: 3d602c82-5445-46f3-b8ba-6d187e060dd7</div>
<div>X-Runtime: 5.052285</div>
<div>Transfer-Encoding: chunked</div>
<div><br>
</div>
<div>{"token":"eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6IllGVEM6MjNSUjpCRUJBOktSTDc6SkFKUjpTSFg0OkEzNks6TU5LSzpBWTVTOlpMWlg6UVBQVzpSMk02In0.eyJpc3MiOiJvcGVuc3RhY2sucGZyLmNvLm56Iiwic3ViIjoiIiwiYXVkIjoiMTAuMTcuMS4yMjo1MDAwIiwiaWF0IjoxNDUzODQzMzMzLCJuYmYiOjE0NTM4NDMzMjgsImV4cCI6MTQ1Mzg0MzYzMywianRpIjoiNlQ4Wk1vajQzeEh5aGlQcnNhWlNmdmVmYjNZQ285NFhzU3FGVXFxNTgxIn0.iG6iKw8BFogtXF50b0Zhy7LVFv1hetvQu1UCKPSLmAIbnkH3_F_-oHjJ7l6OeHvTyIxc_aa5EQ9CPIbDfW9xFmHS436FsLYlq64c8PqC6sgTAGVmDSzsUHReLG0H9cRHv7kVtbGJkR_4Bim4tjR3DWho2QyuaEQ8GzA6XnhRGfqe25SPMT48YAijDRs6R_X0jVMiJQBecLZ620tapGdmC9gm1qKAeinQbY2SmcYCyi6MV-VFbApWuY9Nzc71HRYW4I4AH1Gle9sG3p9ua82-7Bj6T0zykqbx8iJ5KvBhMnxz9lqtdO40m_sZiSpvepuxRO-VUy5M-Yi_8qb8rCKhhA"}</div>
<div><br>
</div>
</div>
<div><br>
</div>
<div>And when i tried , docker login <a href="http://10.17.1.22:5000" target="_blank">10.17.1.22:5000</a></div>
<div>Username: user</div>
<div>Password: </div>
<div>Email: email-id</div>
<div>Error response from daemon: no successful auth challenge
for <a href="http://10.17.1.22:5000/v2/" target="_blank">http://10.17.1.22:5000/v2/</a>
- errors: []</div>
<div><br>
</div>
<div><br>
</div>
<div>registry logs :</div>
<div><br>
</div>
<div>
<div><br>
</div>
<div><br>
</div>
<div><br>
</div>
<div>time="2016-01-27T10:20:03.057481195+13:00" level=debug
msg="authorizing request" http.request.host="<a href="http://10.17.1.22:5000" target="_blank">10.17.1.22:5000</a>"
<a href="http://http.request.id" target="_blank">http.request.id</a>=ce2dd545-d0bf-42da-a3b8-a5f143a842d0
http.request.method=GET http.request.remoteaddr="<a href="http://10.17.1.22:45211" target="_blank">10.17.1.22:45211</a>"
http.request.uri="/v2/"
http.request.useragent="docker/1.8.2-el7.centos go/go1.4.2
kernel/3.10.0-229.14.1.el7.x86_64 os/linux arch/amd64" <a href="http://instance.id" target="_blank">instance.id</a>=4bce4b2e-9bb0-4a36-911e-18f7729ee1a2
service=registry version=v2.1.1 </div>
<div><br>
</div>
<div>time="2016-01-27T10:20:03.057594847+13:00" level=info
msg="response completed" http.request.host="<a href="http://10.17.1.22:5000" target="_blank">10.17.1.22:5000</a>"
<a href="http://http.request.id" target="_blank">http.request.id</a>=ce2dd545-d0bf-42da-a3b8-a5f143a842d0
http.request.method=GET http.request.remoteaddr="<a href="http://10.17.1.22:45211" target="_blank">10.17.1.22:45211</a>"
http.request.uri="/v2/"
http.request.useragent="docker/1.8.2-el7.centos go/go1.4.2
kernel/3.10.0-229.14.1.el7.x86_64 os/linux arch/amd64"
http.response.contenttype="application/json; charset=utf-8"
http.response.duration=3.085575ms http.response.status=200
http.response.written=2 <a href="http://instance.id" target="_blank">instance.id</a>=4bce4b2e-9bb0-4a36-911e-18f7729ee1a2
service=registry version=v2.1.1 </div>
<div><br>
</div>
<div>10.17.1.22 - - [27/Jan/2016:10:20:03 +1300] "GET /v2/
HTTP/1.1" 200 2 "" "docker/1.8.2-el7.centos go/go1.4.2
kernel/3.10.0-229.14.1.el7.x86_64 os/linux arch/amd64"</div>
</div>
<div><br>
</div>
<div><br>
</div>
<div>please correct me if I am doing any configuration mistake.
Suggest me pls to resolve this.<br>
</div>
<div><br>
</div>
<div>I am not using docker registry with ssl. I configured
--insecure-registry in docker config. </div>
<div><br>
</div>
<div>10.17.1.22 is IP of physical machine which is on centos 7
where I deployed portus and registry container.</div>
<div><br>
</div>
<div>Regards</div>
<div>Ben</div>
</div>
<div class="gmail_extra"><br>
<div class="gmail_quote">On Mon, Jan 25, 2016 at 10:44 PM, Jordi
Massaguer Pla <span dir="ltr"><<a href="mailto:jmassaguerpla@suse.de" target="_blank">jmassaguerpla@suse.de</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div bgcolor="#FFFFFF" text="#000000"> <font size="-1">I am
bit confused... the log you are sending us states<br>
<br>
</font><small>http.response.status=200<br>
<br>
I don't see any error on the authentication nor in the
certificates ...<br>
<br>
May it be a problem because of the proxy you have? Can
you try without the proxy? Like running docker where you
have the registry or Portus installed? If that were the
problem, we can narrow it and try to reproduce it.<br>
<br>
This is how it works: docker tries to login to the
registry and this forwards/delegates the authentication
to Portus, which in its turn, uses ldap for that.<br>
<br>
thanks<br>
</small>
<div>
<div><br>
<br>
<br>
<div>On 01/24/2016 10:59 PM, Benjamin Fernandis wrote:<br>
</div>
<blockquote type="cite">
<div dir="ltr">Hi,
<div><br>
</div>
<div>I added <span style="white-space:pre-wrap"> </span>-e
REGISTRY_AUTH_TOKEN_SERVICE="<a href="http://192.168.1.20:5000" target="_blank">192.168.1.20:5000</a>" as
suggested above. And enabled debug mode with
stout log massages as suggested. </div>
<div><br>
</div>
<div>Now i can see below logs,</div>
<div><br>
</div>
<div>
<div>time="2016-01-25T09:50:15.967721182+13:00"
level=debug msg="filesystem.List(\"/\")" <a href="http://instance.id" target="_blank">instance.id</a>=92f79a6e-4330-422b-9833-03bd9201b3a6
service=registry trace.duration=125.467µs
trace.file="/go/src/<a href="http://github.com/docker/distribution/registry/storage/driver/base/base.go" target="_blank">github.com/docker/distribution/registry/storage/driver/base/base.go</a>"
trace.func="<a href="http://github.com/docker/distribution/registry/storage/driver/base.%28*Base%29.List" target="_blank">github.com/docker/distribution/registry/storage/driver/base.(*Base).List</a>"
<a href="http://trace.id" target="_blank">trace.id</a>=474f03d6-233f-4a6a-97d8-307fc389b594
trace.line=123 version=v2.1.1 </div>
<div><br>
</div>
<div>time="2016-01-25T09:50:25.806341211+13:00"
level=debug msg="authorizing request"
http.request.host="<a href="http://192.168.1.20:5000" target="_blank">192.168.1.20:5000</a>" <a href="http://http.request.id" target="_blank">http.request.id</a>=6b96abae-ecca-4891-ab53-18f9d5babe4a
http.request.method=GET
http.request.remoteaddr="<a href="http://192.168.1.30:21734" target="_blank">192.168.1.30:21734</a>"
http.request.uri="/v2/"
http.request.useragent="docker/1.9.1-fc23
go/go1.5.1 git-commit/110aed2-dirty
kernel/4.3.3-300.fc23.x86_64 os/linux
arch/amd64" <a href="http://instance.id" target="_blank">instance.id</a>=92f79a6e-4330-422b-9833-03bd9201b3a6
service=registry version=v2.1.1 </div>
<div><br>
</div>
<div>time="2016-01-25T09:50:25.806495043+13:00"
level=info msg="response completed"
http.request.host="<a href="http://192.168.1.20:5000" target="_blank">192.168.1.20:5000</a>" <a href="http://http.request.id" target="_blank">http.request.id</a>=6b96abae-ecca-4891-ab53-18f9d5babe4a
http.request.method=GET
http.request.remoteaddr="<a href="http://192.168.1.30:21734" target="_blank">192.168.1.30:21734</a>"
http.request.uri="/v2/"
http.request.useragent="docker/1.9.1-fc23
go/go1.5.1 git-commit/110aed2-dirty
kernel/4.3.3-300.fc23.x86_64 os/linux
arch/amd64"
http.response.contenttype="application/json;
charset=utf-8"
http.response.duration=4.930233ms
http.response.status=200
http.response.written=2 <a href="http://instance.id" target="_blank">instance.id</a>=92f79a6e-4330-422b-9833-03bd9201b3a6
service=registry version=v2.1.1 </div>
<div><br>
</div>
<div>192.168.1.30 -- [25/Jan/2016:09:50:25
+1300] "GET /v2/ HTTP/1.1" 200 2 ""
"docker/1.9.1-fc23 go/go1.5.1
git-commit/110aed2-dirty
kernel/4.3.3-300.fc23.x86_64 os/linux
arch/amd64"<br>
</div>
<div><br>
</div>
<div>time="2016-01-25T09:50:25.967676129+13:00"
level=debug msg="filesystem.List(\"/\")" <a href="http://instance.id" target="_blank">instance.id</a>=92f79a6e-4330-422b-9833-03bd9201b3a6
service=registry trace.duration=110.255µs
trace.file="/go/src/<a href="http://github.com/docker/distribution/registry/storage/driver/base/base.go" target="_blank">github.com/docker/distribution/registry/storage/driver/base/base.go</a>"
trace.func="<a href="http://github.com/docker/distribution/registry/storage/driver/base.%28*Base%29.List" target="_blank">github.com/docker/distribution/registry/storage/driver/base.(*Base).List</a>"
<a href="http://trace.id" target="_blank">trace.id</a>=9e90391a-ff1d-4122-a73e-188388ebd28b
trace.line=123 version=v2.1.1 </div>
</div>
<div><br>
</div>
<div><br>
</div>
<div>we have proxy in network and its IP
192.168.1.30.</div>
<div><br>
</div>
<div>I am not using ssl certificate here and i set
insecure-registry in configuration.</div>
<div><br>
</div>
<div>I enabled ldap in portus and i can do ldap
authentication for portus interface access.</div>
<div><br>
</div>
<div>Here, my confusion is that, when i do docker
login <a href="http://192.168.1.20:5000" target="_blank">192.168.1.20:5000</a> , is it
goes to portus for ldap authentication check for
entering username /passwd and email id in docker
login command ? or </div>
<div><br>
</div>
<div>Here i haven't configure any nginx or any
other setup.</div>
<div><br>
</div>
<div>Please let me know if i m missing anything
here.</div>
<div><br>
</div>
<div>my docker registry command,</div>
<div><br>
</div>
<div><span style="color:rgb(80,0,80);font-size:12.8px">docker
run \</span><br style="color:rgb(80,0,80);font-size:12.8px">
<span style="color:rgb(80,0,80);font-size:12.8px">-d
--restart=always --name registry \</span><br style="color:rgb(80,0,80);font-size:12.8px">
<span style="color:rgb(80,0,80);font-size:12.8px">-e
REGISTRY_LOG_LEVEL=debug \</span><br style="color:rgb(80,0,80);font-size:12.8px">
<span style="color:rgb(80,0,80);font-size:12.8px">-p
5000:5000 \</span><br style="color:rgb(80,0,80);font-size:12.8px">
<span style="color:rgb(80,0,80);font-size:12.8px">-e
SEARCH_BACKEND=sqlalchemy \</span><br style="color:rgb(80,0,80);font-size:12.8px">
<span style="color:rgb(80,0,80);font-size:12.8px">-e
REGISTRY_AUTH_TOKEN_REALM="</span><a href="http://192.168.1.20:3000/v2/token" rel="noreferrer" style="font-size:12.8px" target="_blank"></a><a href="http://192.168.1.20:3000/v2/token" target="_blank">http://192.168.1.20:3000/v2/token</a><span style="color:rgb(80,0,80);font-size:12.8px">"
\</span><br style="color:rgb(80,0,80);font-size:12.8px">
<span style="color:rgb(80,0,80);font-size:12.8px">-e
REGISTRY_AUTH_TOKEN_SERVICE="</span><a href="http://192.168.1.20:5000/" rel="noreferrer" style="font-size:12.8px" target="_blank">192.168.1.20:5000</a><span style="color:rgb(80,0,80);font-size:12.8px">"
\</span></div>
<div>-e REGISTRY_AUTH_TOKEN_SERVICE="<a href="http://192.168.1.20:5000" target="_blank">192.168.1.20:5000</a>" \<span style="color:rgb(80,0,80);font-size:12.8px"><br>
</span></div>
<div><span style="color:rgb(80,0,80);font-size:12.8px">-v
/home/test/data:/var/lib/regis</span><span style="color:rgb(80,0,80);font-size:12.8px">try
\</span><br style="color:rgb(80,0,80);font-size:12.8px">
<span style="color:rgb(80,0,80);font-size:12.8px">registry:2.1</span><br>
</div>
</div>
<div class="gmail_extra"><br>
<div class="gmail_quote">On Fri, Jan 22, 2016 at
10:04 PM, Jordi Massaguer Pla <span dir="ltr"><<a href="mailto:jmassaguerpla@suse.de" target="_blank"></a><a href="mailto:jmassaguerpla@suse.de" target="_blank">jmassaguerpla@suse.de</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div bgcolor="#FFFFFF" text="#000000"><span> <br>
<br>
<div>On 01/21/2016 09:41 PM, Benjamin
Fernandis wrote:<br>
</div>
<blockquote type="cite">
<div dir="ltr">Hi,
<div><br>
</div>
<div>I have docker registry on another
host and portus i opensuse vm.</div>
<div><br>
</div>
<div>currently I can do ldap
authentication to access portus web
interface and i can see global name
space and my own namespace, all
working in that.</div>
<div><br>
</div>
<div>but when i tried to do docker
login <docker_registry:5000>
not working. And i got <span style="font-size:12.8px">Error
response from daemon: no
successful auth challenge for </span><a href="http://192.168.1.20:5000/v2/" target="_blank"></a><a href="http://192.168.1.20:5000/v2/" target="_blank">http://192.168.1.20:5000/v2/</a><span style="font-size:12.8px"> -
errors: []</span></div>
<div><span style="font-size:12.8px"><br>
</span></div>
<div><span style="font-size:12.8px">portus
(opensuse vm ) - 192.168.1.10</span></div>
<div><span style="font-size:12.8px">docker
(registry container on different
host but it is accessible from
portus ) - <a href="http://192.168.1.20:5000" target="_blank">192.168.1.20:5000</a></span></div>
<div><span style="font-size:12.8px"><br>
</span></div>
<div><span style="font-size:12.8px">Do
i require to do any other
configuration for this or ?</span></div>
<div><span style="font-size:12.8px"><br>
</span></div>
</div>
</blockquote>
<br>
</span> Please try the following. On
192.168.1.20, stop registry as a daemon and
start it manually. If it is SUSE, you can do
that with<br>
<br>
sudo registry /etc/config.yml<br>
<br>
This will show you the log in the stdout.<br>
<br>
Then try again and look for a better
explanation of the error.<br>
<br>
You may want also to enable debug in
config.yml file.<br>
<br>
My guess is that you may have some ssl certs
issues. Communication between portus and the
registry is done using ssl certificates. You
can try running registry with and insecure
flag (see registry --help) to test if that
is the case. If so, you need to add portus
certificate in your system.<br>
<br>
In order to do that, you need to add your
certificate authority (*ca.crt) into
/etc/pki/trust/anchors/ and then run sudo
update-ca-certificates (assuming you are
running suse).<br>
<br>
I hope this helps.<br>
<br>
Otherwise, send us the output of the
registry command which may give us a clue.
<div>
<div><br>
<br>
<blockquote type="cite">
<div dir="ltr">
<div><span style="font-size:12.8px"><br>
</span></div>
</div>
<div class="gmail_extra"><br>
<div class="gmail_quote">On Thu, Jan
21, 2016 at 11:32 PM, Jordi
Massaguer Pla <span dir="ltr"><<a href="mailto:jmassaguerpla@suse.de" target="_blank"></a><a href="mailto:jmassaguerpla@suse.de" target="_blank">jmassaguerpla@suse.de</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div bgcolor="#FFFFFF" text="#000000"> <font size="-1">I guess you have
not run portusctl command.<br>
<br>
After installing the rpm,
you need to run<br>
<br>
"portusctl setup
--local-registry"<br>
<br>
I am assuming you have a
docker registry running on
your box (install it with
zypper install
docker-distribution-registry)<br>
<br>
Also, make sure you have
mariadb installed and
running.<br>
<br>
cheers<br>
</font>
<div>
<div><br>
<div>On 01/21/2016 03:12
AM, Benjamin Fernandis
wrote:<br>
</div>
<blockquote type="cite">
<div dir="ltr">i pass
below variable to
docker registry
container ,
<div><br>
</div>
<div>
<div>docker run \</div>
<div><span style="white-space:pre-wrap"> </span>-d
--restart=always
--name registry \</div>
<div><span style="white-space:pre-wrap"> </span>-e
REGISTRY_LOG_LEVEL=debug
\</div>
<div><span style="white-space:pre-wrap"> </span>-p
5000:5000 \</div>
<div><span style="white-space:pre-wrap"> </span>-e
SEARCH_BACKEND=sqlalchemy
\</div>
<div><span style="white-space:pre-wrap"> </span>-e
REGISTRY_AUTH_TOKEN_REALM="<a href="http://192.168.1.20:3000/v2/token" target="_blank">http://192.168.1.20:3000/v2/token</a>"
\</div>
<div><span style="white-space:pre-wrap"> </span>-e
REGISTRY_AUTH_TOKEN_SERVICE="<a href="http://192.168.1.20:5000" target="_blank">192.168.1.20:5000</a>"
\</div>
<div><span style="white-space:pre-wrap"> </span>-v
/home/test/data:/var/lib/registry
\</div>
<div><span style="white-space:pre-wrap"> </span>
registry:2.1</div>
</div>
<div><br>
</div>
<div>where
192.168.1.20 is IP
for docker registry.</div>
<div><br>
</div>
<div>but still i can
not do login by
docker login command
line. Do i require
to add anything in
portus ?</div>
</div>
<div class="gmail_extra"><br>
<div class="gmail_quote">On
Thu, Jan 21, 2016 at
2:04 PM, Benjamin
Fernandis <span dir="ltr"><<a href="mailto:benjo11111@gmail.com" target="_blank"></a><a href="mailto:benjo11111@gmail.com" target="_blank">benjo11111@gmail.com</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div dir="ltr">I
deployed portus
on oepnsuse. I
can not find
/etc/registry/cofig.yml
file in portus
machine.
<div><br>
</div>
<div>do i
require to add
above lines in
docker
registry
container or
in portus vm?</div>
<div><br>
</div>
</div>
<div>
<div>
<div class="gmail_extra"><br>
<div class="gmail_quote">On
Thu, Jan 21,
2016 at 2:00
PM, Aleksa
Sarai <span dir="ltr"><<a href="mailto:asarai@suse.de" target="_blank"></a><a href="mailto:asarai@suse.de" target="_blank">asarai@suse.de</a>></span>
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><span>On
01/21/2016
11:53 AM,
Benjamin
Fernandis
wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Hi Miquel,<br>
<br>
I deployed rpm
version on
opensuse and
it is working
fine.<br>
<br>
Can you please
guide me what
is require to
enable login
in docker<br>
command line.<br>
<br>
currently i
tested portus
integration
with docker
registry and
ldap<br>
authentication
to pourtus
from web
interface.<br>
<br>
trying to do
command line
docker login
and getting
below error.<br>
<br>
Error response
from daemon:
no successful
auth challenge
for<br>
<a href="http://192.168.1.20:5000/v2/" target="_blank"></a><a href="http://192.168.1.20:5000/v2/" target="_blank">http://192.168.1.20:5000/v2/</a>
- errors: []<br>
</blockquote>
<br>
</span> Are
you running
Portus using
docker-compose?
If so, you
need
docker-compose
version 1.5.2
or later.<br>
<br>
Otherwise,
please make
sure that your
*daemon* can
access the IP
address of the
docker
registry given
in in
/etc/registry/config.yml<br>
in the "realm"
field:<br>
<br>
auth:<br>
token:<br>
realm: <a href="http://172.17.0.1:3000/v2/token" target="_blank"></a><a href="http://172.17.0.1:3000/v2/token" target="_blank">http://172.17.0.1:3000/v2/token</a><br>
service: <a href="http://172.17.0.1:5000" rel="noreferrer" target="_blank">172.17.0.1:5000</a><br>
<br>
And that the
"service" is
the same as
the one you
registered
when you first
started Portus
(this is more
likely to be
the cause).<span><font color="#888888"><br>
<br>
-- <br>
Aleksa Sarai<br>
Docker Core
Specialist<br>
SUSE Australia<br>
<a href="https://www.cyphar.com/" target="_blank"></a><a href="https://www.cyphar.com/" target="_blank">https://www.cyphar.com/</a></font></span>
<div>
<div><br>
_______________________________________________<br>
Containers
mailing list<br>
<a href="mailto:Containers@lists.suse.com" target="_blank"></a><a href="mailto:Containers@lists.suse.com" target="_blank">Containers@lists.suse.com</a><br>
<a href="http://lists.suse.com/mailman/listinfo/containers" target="_blank"></a><a href="http://lists.suse.com/mailman/listinfo/containers" target="_blank">http://lists.suse.com/mailman/listinfo/containers</a><br>
</div>
</div>
</blockquote>
</div>
<br>
</div>
</div>
</div>
</blockquote>
</div>
<br>
</div>
<br>
<fieldset></fieldset>
<br>
<pre>_______________________________________________
Containers mailing list
<a href="mailto:Containers@lists.suse.com" target="_blank">Containers@lists.suse.com</a>
<a href="http://lists.suse.com/mailman/listinfo/containers" target="_blank">http://lists.suse.com/mailman/listinfo/containers</a>
</pre>
</blockquote>
<br>
</div>
</div>
</div>
<br>
_______________________________________________<br>
Containers mailing list<br>
<a href="mailto:Containers@lists.suse.com" target="_blank">Containers@lists.suse.com</a><br>
<a href="http://lists.suse.com/mailman/listinfo/containers" rel="noreferrer" target="_blank">http://lists.suse.com/mailman/listinfo/containers</a><br>
<br>
</blockquote>
</div>
<br>
</div>
<br>
<fieldset></fieldset>
<br>
<pre>_______________________________________________
Containers mailing list
<a href="mailto:Containers@lists.suse.com" target="_blank">Containers@lists.suse.com</a>
<a href="http://lists.suse.com/mailman/listinfo/containers" target="_blank">http://lists.suse.com/mailman/listinfo/containers</a>
</pre>
</blockquote>
<br>
</div>
</div>
</div>
<br>
_______________________________________________<br>
Containers mailing list<br>
<a href="mailto:Containers@lists.suse.com" target="_blank">Containers@lists.suse.com</a><br>
<a href="http://lists.suse.com/mailman/listinfo/containers" rel="noreferrer" target="_blank">http://lists.suse.com/mailman/listinfo/containers</a><br>
<br>
</blockquote>
</div>
<br>
</div>
<br>
<fieldset></fieldset>
<br>
<pre>_______________________________________________
Containers mailing list
<a href="mailto:Containers@lists.suse.com" target="_blank">Containers@lists.suse.com</a>
<a href="http://lists.suse.com/mailman/listinfo/containers" target="_blank">http://lists.suse.com/mailman/listinfo/containers</a>
</pre>
</blockquote>
<br>
</div>
</div>
</div>
<br>
_______________________________________________<br>
Containers mailing list<br>
<a href="mailto:Containers@lists.suse.com" target="_blank">Containers@lists.suse.com</a><br>
<a href="http://lists.suse.com/mailman/listinfo/containers" rel="noreferrer" target="_blank">http://lists.suse.com/mailman/listinfo/containers</a><br>
<br>
</blockquote>
</div>
<br>
</div>
<br>
<fieldset></fieldset>
<br>
<pre>_______________________________________________
Containers mailing list
<a href="mailto:Containers@lists.suse.com" target="_blank">Containers@lists.suse.com</a>
<a href="http://lists.suse.com/mailman/listinfo/containers" target="_blank">http://lists.suse.com/mailman/listinfo/containers</a>
</pre>
</blockquote>
<br>
</div></div></div>
<br>_______________________________________________<br>
Containers mailing list<br>
<a href="mailto:Containers@lists.suse.com">Containers@lists.suse.com</a><br>
<a href="http://lists.suse.com/mailman/listinfo/containers" rel="noreferrer" target="_blank">http://lists.suse.com/mailman/listinfo/containers</a><br>
<br></blockquote></div><br></div>