docker-registry-frontend/apache-site.conf

<VirtualHost *:*>

  DocumentRoot /var/www/html
  ServerName localhost

  # Proxy all docker REST API registry
  # requests to the docker registry server.

  <IfModule ssl_module>
     SSLProxyEngine on
     # SSLProxyVerify none
     SSLProxyCheckPeerCN off
     SSLProxyCheckPeerName off
  </IfModule>
  ProxyPreserveHost On
  ProxyPass /v1/ ${DOCKER_REGISTRY_SCHEME}://${DOCKER_REGISTRY_HOST}:${DOCKER_REGISTRY_PORT}/v1/
  ProxyPassReverse /v1/ ${DOCKER_REGISTRY_SCHEME}://${DOCKER_REGISTRY_HOST}:${DOCKER_REGISTRY_PORT}/v1/

  # Enable Kerberos authentication if requested
  # NOTE: The module will be loaded or unloaded by the /root/start-apache.sh script.
  #       And the variables are also set by the script.

  <IfModule mod_auth_kerb.c>
    <Location "/">
      Options FollowSymLinks Indexes

      AuthType Kerberos
      AuthName "${AUTH_NAME}"
      KrbAuthRealms ${AUTH_KRB_REALMS}
      KrbServiceName ${AUTH_KRB_SERVICE_NAME}
      Krb5Keytab ${AUTH_KRB5_KEYTAB}
      KrbMethodNegotiate on
      KrbMethodK5Passwd on

      Require valid-user
    </Location>
  </IfModule>

  # Enable SSL encryption if requested
  # NOTE: The module will be loaded or unloaded by the /root/start-apache.sh script.

  <IfModule ssl_module>
    <IfDefine USE_SSL>
      ServerName localhost
      SSLEngine on
      SSLCertificateFile /etc/apache2/server.crt
      SSLCertificateKeyFile /etc/apache2/server.key
    </IfDefine>
  </IfModule>

  # Allow ping and users to run unauthenticated.
  <Location /v1/_ping>
    Satisfy any
    Allow from all
  </Location>

</VirtualHost>
Replaced NGINX with Apache for Kerberos auth. SSL is working. 2014-09-29 20:04:40 +08:00			`<VirtualHost :>`

			`DocumentRoot /var/www/html`
			`ServerName localhost`

			`# Proxy all docker REST API registry`
			`# requests to the docker registry server.`

Add SSLProxyEngine instruction to apache config file. 2014-11-15 09:04:56 +08:00			`<IfModule ssl_module>`
Add missing piece to Support SSL connection to Docker registry #8 These two options needed to be turned off in my case (see the pull request #8 for more information). http://httpd.apache.org/docs/trunk/mod/mod_ssl.html#sslproxycheckpeername http://httpd.apache.org/docs/trunk/mod/mod_ssl.html#sslproxycheckpeercn 2014-11-28 20:38:43 +08:00			`SSLProxyEngine on`
			`# SSLProxyVerify none`
			`SSLProxyCheckPeerCN off`
			`SSLProxyCheckPeerName off`
Add SSLProxyEngine instruction to apache config file. 2014-11-15 09:04:56 +08:00			`</IfModule>`
Replaced NGINX with Apache for Kerberos auth. SSL is working. 2014-09-29 20:04:40 +08:00			`ProxyPreserveHost On`
Support SSL-enabled docker registry. Users need to set ENV_DOCKER_REGISTRY_USE_SSL enable secure connection to Docker registry. 2014-11-15 03:27:19 +08:00			`ProxyPass /v1/ ${DOCKER_REGISTRY_SCHEME}://${DOCKER_REGISTRY_HOST}:${DOCKER_REGISTRY_PORT}/v1/`
			`ProxyPassReverse /v1/ ${DOCKER_REGISTRY_SCHEME}://${DOCKER_REGISTRY_HOST}:${DOCKER_REGISTRY_PORT}/v1/`
Replaced NGINX with Apache for Kerberos auth. SSL is working. 2014-09-29 20:04:40 +08:00
			`# Enable Kerberos authentication if requested`
			`# NOTE: The module will be loaded or unloaded by the /root/start-apache.sh script.`
			`# And the variables are also set by the script.`

			`<IfModule mod_auth_kerb.c>`
			`<Location "/">`
			`Options FollowSymLinks Indexes`

			`AuthType Kerberos`
			`AuthName "${AUTH_NAME}"`
			`KrbAuthRealms ${AUTH_KRB_REALMS}`
			`KrbServiceName ${AUTH_KRB_SERVICE_NAME}`
			`Krb5Keytab ${AUTH_KRB5_KEYTAB}`
			`KrbMethodNegotiate on`
			`KrbMethodK5Passwd on`

			`Require valid-user`
			`</Location>`
			`</IfModule>`

			`# Enable SSL encryption if requested`
			`# NOTE: The module will be loaded or unloaded by the /root/start-apache.sh script.`

			`<IfModule ssl_module>`
Add SSLProxyEngine instruction to apache config file. 2014-11-15 09:04:56 +08:00			`<IfDefine USE_SSL>`
			`ServerName localhost`
			`SSLEngine on`
			`SSLCertificateFile /etc/apache2/server.crt`
			`SSLCertificateKeyFile /etc/apache2/server.key`
			`</IfDefine>`
Replaced NGINX with Apache for Kerberos auth. SSL is working. 2014-09-29 20:04:40 +08:00			`</IfModule>`

Allow /v1/_ping run unauthenticated 2014-10-10 19:51:41 +08:00			`# Allow ping and users to run unauthenticated.`
			`<Location /v1/_ping>`
			`Satisfy any`
			`Allow from all`
			`</Location>`

Replaced NGINX with Apache for Kerberos auth. SSL is working. 2014-09-29 20:04:40 +08:00			`</VirtualHost>`