AWS ECR

ECR - Amazon Elastic Container Registry

Amazon Elastic Container Registry (ECR) is a fully-managed Docker container registry that makes it easy for developers to store, manage, and deploy Docker container images.

Access control

Use pre defined policy AmazonEC2ContainerRegistryPowerUser rule for developer.

it's allow almost except delete repository

also highly recommend use IAM Groups

create group, > add user to group what you just made, > and assign policy to group

AWS IAM

Image upload via AWS CLI

# format 
$(aws2 ecr get-login --no-include-email --region ${AWS_REGION})

# e.g
$(aws2 ecr get-login --no-include-email --region us-east-1)

Build

# format 
docker build -t ${IMAGE_NAME}:${TAG} -t ${IMAGE_NAME}:${TAG} .

# e.g
docker build -t some-image:latest -t some-image:1.0.0 .

Tagging

# foramt
docker tag ${IMAGE_NAME}:${TAG} ${AWS_ACCOUNT_ID}.dkr.ecr.${AWS_REGION}.amazonaws.com/some-image:${TAG}
or
docker tag ${ECR_URI}:${TAG}

# e.g 
docker tag some-image:latest 1234567790123.dkr.ecr.us-east-1.amazonaws.com/some-image:latest

Upload

# format
docker push ${AWS_ACCOUNT_ID}.dkr.ecr.${AWS_REGION}.amazonaws.com/some-image:${TAG}
or
docker push ${ECR_URI}:${TAG}
 
   
docker push 1234567890123.dkr.ecr.ap-northeast-2.amazonaws.com/some-image:latest

PreviousAWS System Manager (parameter store)NextAWS Lambda (serverless)

Last updated 4 years ago

Was this helpful?

ECR - Amazon Elastic Container Registry

Access control

Image upload via AWS CLI

AWS CLI login

Build

Tagging

Upload

ECR - Amazon Elastic Container Registry

Access control

Image upload via AWS CLI

AWS CLI login

Build

Tagging

Upload