Secure hosting of private Docker repositories in Google Cloud Platform
Friday, January 23, 2015
Last week, we kicked off our series to introduce container technologies, which are changing the way that people deploy and manage applications. Docker has emerged as a popular technology for application containerization, revolutionizing how applications are built, deployed and managed. Google Cloud Platform offers rich support for Docker containers through the fully managed Google Container Engine service powered by Kubernetes, container optimized VMs on Google Compute Engine, and Managed VMs for Google App Engine.
Today we are announcing the beta release of a new service: Google Container Registry for the secure hosting, sharing, and management of private container repositories.
The registry service provides three key benefits to Google Cloud Platform customers:
zulily, an online retailer that offers thousands of new and unique products each day, was an early adopter of the registry service. “Docker registry availability, security, performance, and durability become more and more critical as more of our Compute Engine applications are containerized with Docker. Private registries help, but they need valid certificates, authentication and firewalls, backups, and monitoring. Google's container registry provides us with a complete Docker registry that we integrate into our development and deployment workflow with little effort," said Steve Reed, Principal Engineer, Core Engineering at zulily.
During the Container Registry beta, there is no extra cost for using the registry service besides the Google Cloud Storage charges for storage and network resources consumed by your private images.
To get started, you will need a Google Cloud Platform project with billing enabled. If you don’t have one already, you can use the free trial to create one. You will also need to install Docker and Google Cloud SDK.
Go ahead, take a look at our documentation and start using the registry for managing your private Docker images. The registry service team looks forward to receiving your direct feedback.
-Posted by Pratul Dublish, Technical Program Manager
Today we are announcing the beta release of a new service: Google Container Registry for the secure hosting, sharing, and management of private container repositories.
The registry service provides three key benefits to Google Cloud Platform customers:
- Access control: The registry service hosts your private images in Google Cloud Storage under your Google Cloud Platform project. This ensures by default that your private images can only be accessed by members of your project, enabling them to securely push and pull images through the Google Cloud SDK command line. Container host VMs can then access secured images without additional effort.
- Server-side encryption: Your private images are automatically encrypted before they are written to disk.
- Fast and reliable deployment: Your private images are stored in Google Cloud Storage and cached in our datacenters, ready to be deployed to Google Container Engine clusters or Google Compute Engine container optimized VMs over Google Cloud Platform’s Andromeda based network fabric.
zulily, an online retailer that offers thousands of new and unique products each day, was an early adopter of the registry service. “Docker registry availability, security, performance, and durability become more and more critical as more of our Compute Engine applications are containerized with Docker. Private registries help, but they need valid certificates, authentication and firewalls, backups, and monitoring. Google's container registry provides us with a complete Docker registry that we integrate into our development and deployment workflow with little effort," said Steve Reed, Principal Engineer, Core Engineering at zulily.
During the Container Registry beta, there is no extra cost for using the registry service besides the Google Cloud Storage charges for storage and network resources consumed by your private images.
To get started, you will need a Google Cloud Platform project with billing enabled. If you don’t have one already, you can use the free trial to create one. You will also need to install Docker and Google Cloud SDK.
Go ahead, take a look at our documentation and start using the registry for managing your private Docker images. The registry service team looks forward to receiving your direct feedback.
-Posted by Pratul Dublish, Technical Program Manager
Follow