Add zot OCI image registry

zot-registry/README.md

@@ -0,0 +1,7 @@
+# zot
+
+OCI-native container image registry, simplified
+
+## Important step when deploying
+Make necessary adaptions to the config file which is provided as an example.
+Add it to the config volume as `config.yaml`.

zot-registry/config.yaml.example

@@ -0,0 +1,46 @@
+http:
+  accessControl:
+    adminPolicy:
+      actions:
+      - read
+      - create
+      - update
+      - delete
+      users:
+      - <admin>
+    repositories:
+      '**':
+        defaultPolicy:
+        - read
+  address: 0.0.0.0
+  auth:
+    openid:
+      providers:
+        oidc:
+          clientid: <client_id>
+          clientsecret: <client_secret>
+          issuer: https://git.jfreudenberger.de/
+          name: Forgejo
+          scopes:
+          - openid
+          - profile
+          - email
+          - groups
+  compat:
+  - docker2s2
+  externalUrl: https://zot.jfreudenberger.de
+  port: "5000"
+log:
+  level: info
+storage:
+  dedupe: true
+  gc: true
+  rootDirectory: /var/lib/registry
+extensions:
+  scrub:
+    enable: true
+    interval: 24h
+  search:
+    enable: true
+  ui:
+    enable: true

zot-registry/docker-compose.yaml

@@ -0,0 +1,23 @@
+version: '3'
+
+services:
+  zot:
+    image: ghcr.io/project-zot/zot:${zot_version:-latest}
+    restart: unless-stopped
+    environment:
+      - VIRTUAL_HOST=zot.jfreudenberger.de
+      - VIRTUAL_PORT=5000
+      - LETSENCRYPT_HOST=zot.jfreudenberger.de
+    volumes:
+      - registry-data:/var/lib/registry
+      - registry-config:/etc/zot
+    networks:
+      - webproxy
+
+volumes:
+  registry-data:
+
+networks:
+  webproxy:
+    external: true
+    name: webproxy