Let K8S access a private docker registry¶
(Note: it can be simpler to use a registry provided by your K8S host, e.g. Google’s Container Registry.)
https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/
Locally, “docker login” to your registry.
Optionally, edit ~/.docker/config.json to temporarily remove any information about registries other than the one you want to grant access to.
Run run “base64 -w0 <~/.docker/config.json” and save the output.
Define a secrets file like this, replacing the value of “.dockerconfigjson” with the output from the previous command:
apiVersion: v1 kind: Secret metadata: name: registry-secret namespace: "{{ .Release.Name }}" data: .dockerconfigjson: "xxxx==" type: kubernetes.io/dockerconfigjson
In your deployment, set “spec.template.spec.imagePullSecrets” to [“registry-secret”].