Container Registry overview

Available in Classic and VPC

NAVER Cloud Platform's Container Registry is a private docker container image repository based on the Docker Registry v2 specification that allows you to easily store, manage and deploy container images. Developers can simplify container development by reducing the need to build their own container registry and worry about infrastructure.

Container Registry features

Container Registry offers these key features:

• Manage docker container images: You can use integrated server of Container Registry with NAVER Cloud Platform, define registries (image repositories) in Container Registry using namespaces, and manage docker container image viewing, deletion and metadata through Container Registry's dashboard.
• Docker support and integration with container registry: Supports Docker Registry HTTP API V2 and integrate with NAVER Cloud Platform’s container registry using Docker CLI commands.
• Collaboration and access control with permission segmentation: You can set API task actions (Change, View) that users can perform on the Docker Container Registry, allowing them to share repositories with other users. You can also use Sub Accounts for controlling and monitoring permissions, and can specify different permissions for different users and roles, allowing for policy granularity.
  • Manager (change, view) permissions: Permissions to upload (Push)/download (Pull) Docker container images to the Container Registry and delete registry and container images.
  • View permissions: Container image download (Pull) permissions.
• Provide public/private endpoints: Provides public endpoints and private endpoints that can be safely used only within the internal network environment of the NAVER CLOUD Platform, and private endpoints enhance security by blocking user access through external networks.
• Enhance security with container vulnerability analysis: Analyze security vulnerabilities of container images registered in the Container Registry to identify them based on CVE schemes and remove vulnerabilities based on the scan results provided to enhance the security of containers
• Storing container images in the cloud: Save uploaded private docker container images in NAVER Cloud Platform’s Object Storage, allowing developers to focus on container development without worrying about infrastructure for image storage.

Container Registry user guide

Container Registry is available in Korea region and Singapore Regions. The services provided in each region are the same. Use this guide to get the most out of Container Registry.

• Container Registry overview: Learn about the service and find helpful resources and FAQs.
• Container Registry prerequisites: View requirements, support, and service limits.
• Container Registry quickstart: Follow a step-by-step guide through the entire process.
• Getting started: Learn how to manage subscriptions from the NAVER Cloud Platform Console.
• Using Container Registry: Learn about the available features in Container Registry and how to use them.
  • Check and manage information of Container Registry: Check Container Registry information, view registered images, and learn how to download (Pull)/upload (Push) images
  • Scanning docker container image security vulnerabilities: How to analyze container images for security vulnerabilities
• Container Registry glossary: Guidance on key terms and definitions that you must know for using Container Registry
• Container Registry release notes: See documentation updates.

Container Registry related resources

Beyond the user guide, these resources provide additional context and support for Container Registry. Whether you're considering Container Registry or need in-depth information for development, marketing, and other purposes, these resources can help:

• Learn more about Container Registry
  • Container Registry API guide: API guide for Container Registry developers
  • Pricing and features: View pricing details and key capabilities.
  • Latest announcements: Stay informed about service updates and news.
  • FAQs: Get answers to common Container Registry questions.
  • Contact Support: Get help if you can't find what you need in the user guide.
• Learn about integrated services
  • Object Storage user guide: Learn how to create and use Object Storage to store Docker container images.
  • Sub Account user guide: Manage team access for Container Registry.
  • Ncloud Kubernetes Service user guide: Learn how to use Container Registry in Kubernetes.

FAQs

Before you read the user guides, you can quickly resolve your queries by checking answers our FAQs. If you haven't found the answer to your question in the FAQs below, then search the user guide for what you'd like to know.

Q. How do I log in to Container Registry from CLI environment?

• If you select the registry that you want to log in to from the Container Registry menu in NAVER Cloud Platform Console, you can see the login command in the Access Commands section of the details.
• Use the authentication key for the ID and password to log in to the registry. To generate an authentication key, see Ncloud API . Use your Access Key ID as your username and your Secret Key as your password.
• When logging in to the registry with a sub account, the username is the sub account's API authentication key. If API Gateway Access is enabled for the sub account's Access Type, you can check and manage the API authorization key in > Services > Management & Governance > Sub Account menu of NAVER Cloud Platform Console, and on the [Access Key] tab of the details displayed after selecting the sub account.

Q. Can I grant permissions to sub-accounts for Container Registry?

• You can grant permissions to the registry from the Sub Account > Sub Accounts menu in the NAVER Cloud Platform console.
• There are manager (NCP_CONTAINER_REGISTRY_MANAGER) and viewer (NCP_CONTAINER_REGISTRY_VIEWER) permissions, where the manager has push and pull permissions on Docker container images, and the viewer has pull permissions only.
• In addition, the manager is granted permissions to create and delete registries, delete images, and edit metadata.

Q. Can I enter notes for images uploaded to Container Registry?

• You can enter notes on uploaded images in two forms, short Description and Full Description via Container Registry.
• For Short description, simple notes under 100 characters can be entered.
• The Full description supports markdown format, which allows richer description of metadata for the image.

Q. What is the pricing for Container Registry?

• There is no separate management fee for Container Registry, and you are billed for the usage of Object Storage associated with the registry. You are billed only for Object Storage data, API requests and network transfer based on your actual usage.

Q. Can I edit the contents of buckets in Object Storage that are linked to the Container Registry?

• Container Registry integrates with Object Storage to provide push and pull features for private Docker container images. Be cautious when editing or deleting the contents of an Object Storage bucket, this may compromise normal operations.

Q. What are private endpoints? (VPC)

• A private endpoint is a Container Registry endpoint that can only be used within NAVER Cloud Platform's VPC network. This ensures that all network traffic is restricted to NAVER Cloud Platform’s network for enhanced security.
• When accessing through the public endpoint, it is necessary to set up an environment for external internet usage. If configured with a NAT Gateway and a Public Subnet, additional resources such as a Public IP is needed, leading to possible extra charges.
• When accessing via a private endpoint, network charges may apply for communication with Object Storage buckets as it is considered private network traffic.

Q. What are private endpoints? (Classic)

• A private endpoint is a Container Registry endpoint that can only be used within NAVER Cloud Platform's VPC network. This ensures that all network traffic is restricted to NAVER Cloud Platform’s network for enhanced security.