da Agency

Docker SSO is Coming

The impending winter and holiday season hasn’t slowed us down here at Docker HQ. In fact, our engineers have been hard at work to put the finishing touches on one of our most requested features by our enterprise customers: Docker Single Sign-On (SSO).

With Docker SSO enabled, users can authenticate using their organization’s standard identity provider (IdP). This makes it easier for new users to quickly get started with Docker using their organization-provided email and existing password and also helps large organizations scale their use of Docker in a more manageable and secure way. To further simplify implementation, Docker works with a number of popular SAML IdPs including Google, Okta, Azure Active Directory, and more. Docker SSO is exclusive to Docker Business subscribers, and it is not included with the other Docker subscription tiers.

Now for the best part

We’re now welcoming a few of our current Docker Business customers to preview Docker SSO before it is generally available in January 2022. By giving some of our customers early access we hope to collect valuable feedback and data to ensure a seamless experience for all our users. 

If you currently have a Docker Business subscription and would like to preview Docker SSO for your organization, please let us know. We will contact you with instructions if you meet our eligibility criteria for early access. Not a Docker Business customer? Consider making the move today for access to Docker SSO and other premier features for management and security at scale.

We hope you are as excited about this upcoming Docker Business release as we are. Stay tuned for more.

DockerCon Live 2022  

Join us for DockerCon Live 2022 on Tuesday, May 10. DockerCon Live is a free, one day virtual event that is a unique experience for developers and development teams who are building the next generation of modern applications. If you want to learn about how to go from code to cloud fast and how to solve your development challenges, DockerCon Live 2022 offers engaging live content to help you build, share and run your applications. Register today at https://www.docker.com/dockercon/
The post Docker SSO is Coming appeared first on Docker Blog.
Quelle: https://blog.docker.com/feed/

da Agency

News from AWS re:Invent – Docker Official Images on Amazon ECR Public

We are happy to announce today that, in partnership with Amazon, Docker Official Images are now available on AWS ECR Public. This is especially exciting because Docker Official Images are some of the most popularly used images on Docker Hub, acting as a key and trusted starting point for base images for the entire container ecosystem. Having them available on ECR Public, in addition to Docker Hub, makes it easier for Amazon customers to use these images conveniently and securely, and gives developers the flexibility to download Docker Official Images from their choice of registry.

The images are available to browse in the ECR Public gallery at https://gallery.ecr.aws/docker right now. You can pull the images by simply switching from using docker pull ubuntu:16.04 to docker pull public.ecr.aws/docker/library/ubuntu:16.04. We automatically push images to ECR Public when they are updated on Docker Hub so you will get all the latest releases wherever you pull from.

Note that while pulls from ECR Public do work from outside AWS, they are rate limited if not authenticated with an Amazon account, and you should generally use the Docker Hub addresses if you are pulling from outside AWS. Please see the ECR Public quotas documentation for more about how limits work with ECR Public.

If you are an AWS customer, pulling Docker Official Images from ECR Public offers several advantages. ECR Public is replicated across all AWS regions, so pulls are local to the region you pull from. This helps ensure lower latency for requests and ensures that all your resources are in the same failure zone, which is the recommended architectural pattern.

In addition, Amazon announced today a pull-through cache from ECR Public into your private registry that can be used even in a VPC that is connected with AWS PrivateLink and does not have external network connectivity to the public internet. This means that a security isolated infrastructure can still easily access the secure Docker Official Images that you need, without having to enable general internet access.

Docker also now has the AWS Graviton Ready designation from Amazon, which reflects how much work has gone into making Docker’s trusted content and Docker Official Images work across the Arm64 architecture that Graviton uses. We know that many of you use Graviton in production, and many also use these same images on Apple Silicon laptops, or on your Raspberry Pi. We are happy to continue to support this growing ecosystem.

We will be continuing to work together with Amazon to roll out more features to make it easier for you to work with Docker and AWS together, so please give us feedback in our public roadmap if there are things we can do to make your experience easier.

DockerCon Live 2022  

Join us for DockerCon Live 2022 on Tuesday, May 10. DockerCon Live is a free, one day virtual event that is a unique experience for developers and development teams who are building the next generation of modern applications. If you want to learn about how to go from code to cloud fast and how to solve your development challenges, DockerCon Live 2022 offers engaging live content to help you build, share and run your applications. Register today at https://www.docker.com/dockercon/
The post News from AWS re:Invent – Docker Official Images on Amazon ECR Public appeared first on Docker Blog.
Quelle: https://blog.docker.com/feed/

da Agency

Docker Captain Take 5 – Nicolas De Loof

Docker Captains are select members of the community that are both experts in their field and are passionate about sharing their Docker knowledge with others. “Docker Captains Take 5” is a regular blog series where we get a closer look at our Captains and ask them the same broad set of questions ranging from what their best Docker tip is to whether they prefer cats or dogs (personally, we like whales and turtles over here). Today, we’re interviewing Nicolas De Loof who has been a Docker Captain since 2015, then has been hired by Docker in 2019 and came back as a Docker Captain one month ago. He is a Software Engineer at Doctolib and is based in Rennes, France.

How/when did you first discover Docker?

10 years ago (oh man!) while I was employed by CloudBees, which was building a Platform as a Service before it became “the Jenkins Company”. DotCloud was one of our competitors, and when they created Docker, I saw obvious matches with our own infrastructure (based on LXC) but also significant differences. Digging into details I learned a lot, and started sharing my knowledge, first as a speaker for conferences, then on Youtube.

What is your favorite Docker command?

docker compose, because I built it as a Docker employee (before leaving and becoming a Docker Captain again). Or

docker rm -f $(docker ps -aq)

Which basically means “cleanup everything”. I like the ability to run a complex stack and throw it away in a single command, then recreate it cleanly. I use this on a daily basis

What is your top tip for working with Docker that others may not know?

Take a few minutes to understand the distinction between a “bind mount” and a “volume”. Then check in the docs/APIs and see how many times those words are used in a wrong way

What’s the coolest Docker demo you have done/seen ?

I demo-ed docker swarm fail-over by shutting down a raspberry-Pi cluster using an electric drill. Was fun, hopefully no fire alarm. People on the first row in the conference room were a bit surprised.

What have you worked on in the past six months that you’re particularly proud of?

We fully re-implemented the legacy docker-compose python tool into a plain Golang extension to the docker CLI. Doing so, Compose is now a first-class citizen in the Docker ecosystem.

What do you anticipate will be Docker’s biggest announcement this year?

A complete redesign of the image distribution workflow. Today DockerHub is sort of a black box for most of us. We push or pull, but never use the web UI or use specific APIs. With vulnerability scanning, verified publishers program, Docker is opening this to third-party integrations and more traceability on the “supply chain”. I expect a lot more to happen in this area.

What are some personal goals for the next year with respect to the Docker community?

Keep maintaining Docker Compose in my spare time to ensure this keeps being one of the most beloved developer tools.

What talk would you most love to see at DockerCon 2022?

I’d like to hear more about how others do CI in Kubernetes. I personally don’t think Kube is a good match for this, but as the de facto infrastructure standard it’s used everywhere. But then one needs to find a way to run `docker build` inside a Kubernetes pod, and please don’t tell me about “docker in docker”…

Looking to the distant future, what is the technology that you’re most excited about and that you think holds a lot of promise?

I’ve seen many system engineers investing in eBPF. This allows the extension of Linux kernel in a secure way, and opens amazing opportunities for security and extensibility.

Rapid fire questions…

What new skill have you mastered during the pandemic?

Gardening

Cats or Dogs?

Both. And Horses

Salty, sour or sweet?

Sour. Mostly IPA

Beach or mountains?

Any of those. Our always-connected lives deserve some healthy breaks

Your most often used emoji?

¯_(ツ)_/¯

Because the whole IT stack is built on top of mistakes made by others in the past that we learned how to live with, so we can make our own mistakes. So golang as an illustration.
The post Docker Captain Take 5 – Nicolas De Loof appeared first on Docker Blog.
Quelle: https://blog.docker.com/feed/