- Hands-On Kubernetes on Windows
- Piotr Tylenda
- 144字
- 2021-06-24 16:54:06
Enabling DCT for the client
In order to enforce DCT when using the Docker CLI for push, build, create, pull, and run, you have to set the DOCKER_CONTENT_TRUST environment variable to 1. By default, DCT is disabled for Docker client. Follow these steps:
- Set the DOCKER_CONTENT_TRUST environment variable in the current PowerShell session:
$env:DOCKER_CONTENT_TRUST=1
- Run a new container using the signed image that we just created:
docker run -d --rm docker.io/packtpubkubernetesonwindows/iis-demo:1.0.1
- You will notice that the container starts without any problem. Now, try creating a new container using the latest tag, which was not signed:
PS C:\src> docker run -d --rm docker.io/packtpubkubernetesonwindows/iis-demo:latest
C:\Program Files\Docker\Docker\Resources\bin\docker.exe: No valid trust data for latest.
See 'C:\Program Files\Docker\Docker\Resources\bin\docker.exe run --help'.
This short scenario shows how DCT can be used to ensure the integrity and source of the image that's used for container creation.
推薦閱讀
- Learning NServiceBus(Second Edition)
- 程序員面試算法寶典
- Working with Odoo
- Jenkins Continuous Integration Cookbook(Second Edition)
- IBM Cognos Business Intelligence 10.1 Dashboarding cookbook
- Getting Started with Python and Raspberry Pi
- Android嵌入式系統程序開發:基于Cortex-A8(第2版)
- Distributed Computing in Java 9
- C Primer Plus(第6版)中文版【最新修訂版】
- Beginning C# 7 Hands-On:The Core Language
- iOS Development with Xamarin Cookbook
- Visual C#(學習筆記)
- Mastering Magento Theme Design
- LibGDX Game Development By Example
- React Router Quick Start Guide