Servers or Helm Charts that are hosted on your own container registry can be deployed by connecting your registry to Ryvn. Ryvn supports Docker Hub, GitHub Container Registry, Harbor and Amazon Elastic Container Registry.

Prerequisites

Before you begin, ensure you have:

Connect Private Registry

1

Navigate to Settings

Go to the Settings tab in the Ryvn Dashboard and select the Private Registries tab.
2

Add Registry

Select AWS ECR or Generic OCI (Harbor, Github Container Registry, etc.)
3

Choose Registry

We support the following container registries:
  • Amazon Elastic Container Registry
  • Docker Hub
  • GitHub Container Registry
  • Harbor
4

Add Registry Details

  • Add registry name (eg: my-github-registry)
  • Add registry host (Github - ghcr.io, Docker - docker.io, Harbor - my-harbor.example.com)
5

Add Registry Credentials

For private registries, add your credentials through Settings in the Ryvn Dashboard.
  • Generic OCI (Docker Hub, Github, Harbor, etc.): Add username and password
    • For Harbor, this is typically a read-only robot account’s name and secret
    • For Github, this is typically github username and personal access token (access to read:packages scope)
  • AWS ECR: Configure AWS Role using cloudformation template
By default, your organization has access to Ryvn Registry. This is a multi-tenant registry backed by AWS ECR with isolated repositories for your organization.

Authenticating with Private Registry

Server

Once you have added your private registry, you can pick the registry during server creation (or edit this in service settings).
1

Open Dashboard

Open the Ryvn Dashboard and go to the Services tab
2

Start Creation

Click Create Service in the top-right corner
3

Choose Service Type

Select your service type:
TypeDescription
ServerLong-running service that handles HTTP/HTTPS traffic
WorkerLong-running service for background processing
JobShort-lived task that runs to completion
4

Select Registry

Choose Container Registry and select your registry from the dropdown
5

Select Image

Select your image from the dropdown
6

Create

Click Create

Helm Charts

Once you have connected private registry, Ryvn automatically creates image pull secrets in environments where your Helm Charts are deployed. To use these image pull secrets, you can:
  • Use the image pull secret reference: In values.yaml on Ryvn, you can get the image pull secret for a registry named my-registry as follows: 
    imagePullSecrets:
- name: '{{ index .ryvn.registrySecrets "my-registry" }}'
  • If your helm chart does not create a service account, you do not need to supply any image pull secret since Ryvn attaches the image pull secret to the default service account automatically. This is a Kubernetes feature, see Kubernetes Documentation

Troubleshooting

Image Pull Errors

If you encounter image pull errors, ensure that:
  • Your container registry is correctly connected and configured
  • The image tag exists and is pushed to the registry
  • The credentials used for the connected registry are not expired
latest tags are not supported for server as they make versioning and rollbacks unpredictable.