From 58c33360b01748f4900dd00dc57c3aec89a98e27 Mon Sep 17 00:00:00 2001 From: Roberto Gandolfo Hashioka Date: Tue, 3 Dec 2013 16:39:23 -0800 Subject: [PATCH] - Updated the doc with the current implementation status --- docs/sources/api/registry_index_spec.rst | 5 ----- 1 file changed, 5 deletions(-) diff --git a/docs/sources/api/registry_index_spec.rst b/docs/sources/api/registry_index_spec.rst index 78b61c816a..58b205672c 100644 --- a/docs/sources/api/registry_index_spec.rst +++ b/docs/sources/api/registry_index_spec.rst @@ -37,7 +37,6 @@ We expect that there will be only one instance of the index, run and managed by - It delegates authentication and authorization to the Index Auth service using tokens - It supports different storage backends (S3, cloud files, local FS) - It doesn’t have a local database -- It will be open-sourced at some point We expect that there will be multiple registries out there. To help to grasp the context, here are some examples of registries: @@ -46,10 +45,6 @@ We expect that there will be multiple registries out there. To help to grasp the - **vendor registry**: such a registry is provided by a software vendor, who wants to distribute docker images. It would be operated and managed by the vendor. Only users authorized by the vendor would be able to get write access. Some images would be public (accessible for anyone), others private (accessible only for authorized users). Authentication and authorization would be delegated to the Index. The goal of vendor registries is to let someone do “docker pull basho/riak1.3” and automatically push from the vendor registry (instead of a sponsor registry); i.e. get all the convenience of a sponsor registry, while retaining control on the asset distribution. - **private registry**: such a registry is located behind a firewall, or protected by an additional security layer (HTTP authorization, SSL client-side certificates, IP address authorization...). The registry is operated by a private entity, outside of dotCloud’s control. It can optionally delegate additional authorization to the Index, but it is not mandatory. -.. note:: - - Mirror registries and private registries which do not use the Index don’t even need to run the registry code. They can be implemented by any kind of transport implementing HTTP GET and PUT. Read-only registries can be powered by a simple static HTTP server. - .. note:: The latter implies that while HTTP is the protocol of choice for a registry, multiple schemes are possible (and in some cases, trivial):