Image Security

Take me to Video Tutorial

In this section we will take a look at image security

Image

apiVersion: v1
kind: Pod
metadata:
  name: nginx-pod
spec:
  containers:
  - name: nginx
    image: nginx

Private Registry

To login to the registry
```
$ docker login private-registry.io
```
Run the application using the image available at the private registry
```
$ docker run private-registry.io/apps/internal-app
```

To pass the credentials to the docker untaged on the worker node for that we first create a secret object with credentials in it.

$ kubectl create secret docker-registry regcred \
  --docker-server=private-registry.io \ 
  --docker-username=registry-user \
  --docker-password=registry-password \
  --docker-email=registry-user@org.com

We then specify the secret inside our pod definition file under the imagePullSecret section

apiVersion: v1
kind: Pod
metadata:
  name: nginx-pod
spec:
  containers:
  - name: nginx
    image: private-registry.io/apps/internal-app
  imagePullSecrets:
  - name: regcred

prvr1

K8s Reference Docs

https://kubernetes.io/docs/concepts/containers/images/

Mayur BN

Explorer

23-Image-Security

Image Security

Image

Private Registry

K8s Reference Docs

Graph View

Table of Contents

Backlinks

Explorer

Recent Notes

Cilium Clustermesh Deployment on Helm or ArgoCD on AKS

01-Course-Introduction

02-Certification

04-ETCD-For-Beginners

12-Resource-Limits