Red Hat SummitChapter 3. Deploying the Red Hat Quay registry
To deploy the Red Hat Quay registry after installing the Operator, you must create an instance based on the QuayRegistry custom resource (CR), which can be done using the OpenShift Container Platform web console or the oc cli (command-line interface). For the registry to deploy successfully, you must have, or configure, an object storage provider.
The following sections provide you with the information necessary to configure managed or unmanaged object storage, and then deploy the Red Hat Quay registry.
The following procedures show you how to create a basic Red Hat Quay registry in all namespaces of the OpenShift Container Platform deployment. Depending on your needs, advanced configuration might be necessary. For example, you might need to configure SSL/TLS for your deployment or disable certain components. Advanced configuration practices are covered in later chapters of this guide.
Use the OpenShift Container Platform web console to create and deploy a basic Red Hat Quay registry instance.
Prerequisites
- You have installed the Red Hat Quay Operator.
- You have have administrative privileges to the cluster.
Procedure
-
On the OpenShift Container Platform web console, click Operators
Installed Operators Red Hat Quay. - On the Red Hat Quay dashboard, click Create instance.
On the Create QuayRegistry page, review the default settings of the
QuayRegistrycustom resource (CR). Here, you decide whether to to use managed or unmanaged object storage.If you are using the Multicloud Object Gateway or Red Hat OpenShift Data Foundation as your object storage, keep the following settings:
- kind: objectstorage managed: true- kind: objectstorage managed: trueCopy to Clipboard Copied! Toggle word wrap Toggle overflow If you are using a different storage provider, such as Google Cloud Platform, AWS S3, or Nutanix, set the
objectstoragecomponent as follows:- kind: objectstorage managed: false- kind: objectstorage managed: falseCopy to Clipboard Copied! Toggle word wrap Toggle overflow
- Click Create. You are redirected to the Quay Registry tab on the Operator page.
Click the name of the Red Hat Quay registry that you created, then click Events to view the status of creation. If you used managed storage and leveraged the Multicloud Object Gateway, the registry completes creation. If you are using Red Hat OpenShift Data Foundation or an unmanaged storage backend provider, complete the following steps:
- Click the Details page of the Red Hat Quay registry.
- Click the name of the Config Bundle Secret resource, for example, <example_registry_name_config-bundle-secret-12345>.
Click Actions
Edit Secret, and pass in the following information from your backend storage provider: Copy to Clipboard Copied! Toggle word wrap Toggle overflow NoteDepending on your storage provider, different information is required. For more information, see see Storage object configuration fields.
- Click Save, and then re-navigate to the Events page of the registry to ensure successful deployment.
3.2. Deploying the Red Hat Quay registry by using the CLI
Use the oc command-line interface (CLI) to create and deploy a basic Red Hat Quay registry instance.
The following config.yaml file includes automation configuration options. Collectively, these options streamline using the CLI with your registry, helping reduce dependency on the UI. Adding these fields to your config.yaml file is optional if you plan to use the UI, but recommended if you plan to use the CLI.
For more information, see Automation configuration options.
Prerequisites
- You have logged into OpenShift Container Platform using the CLI.
Procedure
Create a namespace, for example,
quay-enterprise, by entering the following command:oc new-project quay-enterprise
$ oc new-project quay-enterpriseCopy to Clipboard Copied! Toggle word wrap Toggle overflow Create the
QuayRegistrycustom resource (CR).If the
objectstoragecomponent is set tomanaged: true, complete the following steps:Create the
QuayRegistryCR by entering the following command:Copy to Clipboard Copied! Toggle word wrap Toggle overflow
If the
objectstoragecomponent is set tomanaged: false, complete the following steps:Create the
config.yamlfile for Red Hat Quay by entering the following command. You must include the information required for your backend storage provider. During this step, you can enable additional Red Hat Quay features. The following example is for a minimal configuration that includes the configuration options for automating early setup tasks:Copy to Clipboard Copied! Toggle word wrap Toggle overflow - 1
- Set this field to
trueif you plan to create the first user by using API. - 2
- Include this field and the username that you plan to leverage as a Red Hat Quay administrator.
- 3
- When set to
False, allows general browser-based access to the API. - 4
- When set to
False, relegates the creation of new users to only superusers.
Create a secret for the configuration by entering the following command:
oc create secret generic <quay_config_bundle_name> \ --from-file=config.yaml=</path/to/config.yaml> \ -n quay-enterprise \ --dry-run=client -o yaml | oc apply -f -
$ oc create secret generic <quay_config_bundle_name> \ --from-file=config.yaml=</path/to/config.yaml> \ -n quay-enterprise \ --dry-run=client -o yaml | oc apply -f -Copy to Clipboard Copied! Toggle word wrap Toggle overflow Create the
QuayRegistryCR by entering the following command:Copy to Clipboard Copied! Toggle word wrap Toggle overflow - 1
- Must be set to false when providing your own storage backend.
Verification
Check the status of your registry by entering the following command:
oc describe quayregistry <registry_name> -n quay-enterprise
$ oc describe quayregistry <registry_name> -n quay-enterpriseCopy to Clipboard Copied! Toggle word wrap Toggle overflow Example output
... Events: Type Reason Age From Message ---- ------ ---- ---- ------- Normal ComponentsCreationSuccess 23s (x2458 over 42h) quayregistry-controller All objects created/updated successfully
... Events: Type Reason Age From Message ---- ------ ---- ---- ------- Normal ComponentsCreationSuccess 23s (x2458 over 42h) quayregistry-controller All objects created/updated successfullyCopy to Clipboard Copied! Toggle word wrap Toggle overflow - Alternatively, you can check pod statuses for your registry deployment by entering the following command:
Enter the following command to view the deployed components:
oc get pods -n quay-enterprise
$ oc get pods -n quay-enterpriseCopy to Clipboard Copied! Toggle word wrap Toggle overflow Example output
Copy to Clipboard Copied! Toggle word wrap Toggle overflow
Additional resources
- For more information about how to track the progress of your Red Hat Quay deployment, see Monitoring and debugging the deployment process.
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}