Hide Forgot
Document URL: https://docs.openshift.com/container-platform/3.3/install_config/registry/securing_and_exposing_registry.html#access-insecure-registry-by-exposing-route Section Number and Name: Use the above url Describe the issue: Exposing a Non-Secure Registry - A few things need to be changed here in the documentation Issue 1 Check the health of the registry in your web browser: http://registry.example.com/healthz does not return any results. It is just a blank page. just HTTP 200/OK So asking to check in browser is misleading. Instead ask for curl -v http://registry.example.com/healthz and expect a HTTP 200/OK is good enough Issue 2: - OPTIONS='--selinux-enabled --insecure-registry=172.30.0.0/16 --insecure-registry registry.ose-node.openshift.com:443' The above should be added on the client box from which you are trying to login. If you are reading the previous section, you may confuse and add this to master and all nodes. so be clear. Just say add it to the client. BTW, adding another statement that docker should be running on the client box. Issue 3: --insecure-registry registry.ose-node.openshift.com:443 should be --insecure-registry registry.ose-node.openshift.com:80. When you expose insecure registry you are not using https. Suggestions for improvement: Additional information:
Work in progress: https://github.com/openshift/openshift-docs/pull/3098
Issue 4: Use the same hostname for the docker-registry on step3: OPTIONS='--selinux-enabled --insecure-registry=172.30.0.0/16 --insecure-registry registry.example.com:80' docker login -e user -u f83j5h6 -p Ju1PeM47R0B92Lk3AZp-bWJSck2F7aGCiZ66aFGZrs2 registry.example.com:80 And when logging in to the non-secured and exposed registry, the port also should be 80.
Thank you. These updates are complete. Please let me know if I missed anything. https://github.com/openshift/openshift-docs/pull/3098
IMO, It's better to use the same host name of the route for docker-registry for the whole doc. EX:registry.example.com:80.
Updated. Thank you! https://github.com/openshift/openshift-docs/pull/3098 http://file.rdu.redhat.com/~ahardin/10242016/exposing-route/install_config/registry/securing_and_exposing_registry.html
*** Bug 1390471 has been marked as a duplicate of this bug. ***
Check the doc, will verify this issue.
Commits pushed to master at https://github.com/openshift/openshift-docs https://github.com/openshift/openshift-docs/commit/cac53d0fe5cd9f3d0e5a4ef786d26f55d3493546 Bug 1387371, added clarification to the Exposing a Non-Secure Registry section https://github.com/openshift/openshift-docs/commit/c18681e54b0a46ce8e9189fd1da0bc6e18307ef9 Merge pull request #3098 from ahardin-rh/exposing-route Bug 1387371, added clarification to the Exposing a Non-Secure Registry section
Content is now published: https://access.redhat.com/documentation/en/openshift-container-platform/3.3/single/installation-and-configuration/#access-insecure-registry-by-exposing-route