Struct docker_api::models::RegistryServiceConfig

source · 
pub struct RegistryServiceConfig {
    pub allow_nondistributable_artifacts_cid_rs: Option<Vec<String, Global>>,
    pub allow_nondistributable_artifacts_hostnames: Option<Vec<String, Global>>,
    pub index_configs: Option<HashMap<String, IndexInfo, RandomState>>,
    pub insecure_registry_cid_rs: Option<Vec<String, Global>>,
    pub mirrors: Option<Vec<String, Global>>,
}
Expand description

RegistryServiceConfig stores daemon registry services configuration.

Fields§

§allow_nondistributable_artifacts_cid_rs: Option<Vec<String, Global>>

List of IP ranges to which nondistributable artifacts can be pushed, using the CIDR syntax RFC 4632.

Some images (for example, Windows base images) contain artifacts whose distribution is restricted by license. When these images are pushed to a registry, restricted artifacts are not included.

This configuration override this behavior, and enables the daemon to push nondistributable artifacts to all registries whose resolved IP address is within the subnet described by the CIDR syntax.

This option is useful when pushing images containing nondistributable artifacts to a registry on an air-gapped network so hosts on that network can pull the images without connecting to another server.

Warning: Nondistributable artifacts typically have restrictions on how and where they can be distributed and shared. Only use this feature to push artifacts to private registries and ensure that you are in compliance with any terms that cover redistributing nondistributable artifacts.

§allow_nondistributable_artifacts_hostnames: Option<Vec<String, Global>>

List of registry hostnames to which nondistributable artifacts can be pushed, using the format <hostname>[:<port>] or <IP address>[:<port>].

Some images (for example, Windows base images) contain artifacts whose distribution is restricted by license. When these images are pushed to a registry, restricted artifacts are not included.

This configuration override this behavior for the specified registries.

This option is useful when pushing images containing nondistributable artifacts to a registry on an air-gapped network so hosts on that network can pull the images without connecting to another server.

Warning: Nondistributable artifacts typically have restrictions on how and where they can be distributed and shared. Only use this feature to push artifacts to private registries and ensure that you are in compliance with any terms that cover redistributing nondistributable artifacts.

§index_configs: Option<HashMap<String, IndexInfo, RandomState>>§insecure_registry_cid_rs: Option<Vec<String, Global>>

List of IP ranges of insecure registries, using the CIDR syntax (RFC 4632). Insecure registries accept un-encrypted (HTTP) and/or untrusted (HTTPS with certificates from unknown CAs) communication.

By default, local registries (127.0.0.0/8) are configured as insecure. All other registries are secure. Communicating with an insecure registry is not possible if the daemon assumes that registry is secure.

This configuration override this behavior, insecure communication with registries whose resolved IP address is within the subnet described by the CIDR syntax.

Registries can also be marked insecure by hostname. Those registries are listed under IndexConfigs and have their Secure field set to false.

Warning: Using this option can be useful when running a local registry, but introduces security vulnerabilities. This option should therefore ONLY be used for testing purposes. For increased security, users should add their CA to their system’s list of trusted CAs instead of enabling this option.

§mirrors: Option<Vec<String, Global>>

List of registry URLs that act as a mirror for the official (docker.io) registry.

Trait Implementations§

Returns a copy of the value. Read more
Performs copy-assignment from source. Read more
Formats the value using the given formatter. Read more
Deserialize this value from the given Serde deserializer. Read more
This method tests for self and other values to be equal, and is used by ==. Read more
This method tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason. Read more
Serialize this value into the given Serde serializer. Read more

Auto Trait Implementations§

Blanket Implementations§

Gets the TypeId of self. Read more
Immutably borrows from an owned value. Read more
Mutably borrows from an owned value. Read more

Returns the argument unchanged.

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Instruments this type with the current Span, returning an Instrumented wrapper. Read more

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

The resulting type after obtaining ownership.
Creates owned data from borrowed data, usually by cloning. Read more
Uses borrowed data to replace owned data, usually by cloning. Read more
The type returned in the event of a conversion error.
Performs the conversion.
The type returned in the event of a conversion error.
Performs the conversion.
Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more