How to pull an image from a private docker registry in Kubernetes cluster

Hakan Bayraktar
2 min readNov 2, 2023

--

Introduction

In this article, you will learn step by step how to create a Docker image for a custom Python application, push it to a private Docker Hub repository, and deploy it with Kubernetes

Python Application

Let’s start by creating a Python-based application. Here’s a simple example of a Flask application:

app.py

from flask import Flask

app = Flask(__name__)

@app.route('/')
def hello():
return "Hello World!"

if __name__ == '__main__':
app.run(host='0.0.0.0')

Python application dependencies

The libraries required for your Python application to work:

requirements.txt

Flask==2.1.1
Werkzeug==2.0.2

Building the Docker Image

Now, let’s use a Dockerfile to create a Docker image:

Dockerfile

FROM python:3.8
RUN mkdir /app
COPY app.py /app
COPY requirements.txt /app
WORKDIR /app
RUN pip install -r requirements.txt
CMD ["python", "app.py"]

You can build the Docker image and run it locally using the following commands:

docker build -t flask-app .
docker run -p 5000:5000 flask-app

Pushing to Docker Hub

To push the image to Docker Hub, follow these steps:

docker tag flask-app:latest your-dockerhub-username/flask-app:1.0
docker login
docker push your-dockerhub-username/flask-app:1.0

Deployment on Kubernetes

Now, let’s configure the necessary secrets to access the Docker Hub image when deploying on Kubernetes:

kubectl create secret docker-registry docker-cred \
--docker-server=https://index.docker.io/v1/ \
--docker-username=your-username \
--docker-password=your-password

Once the secrets are set up, proceed by applying the changes to the Deployment YAML file. We’ve added the imagePullSecrets field to the Deployment YAML file and set its value to the name of the secret docker-cred. Kubernetes will use this secret for authentication when pulling the private-registry/my-image image.

After setting up the secrets, you can proceed with deploying your application on Kubernetes using the provided Deployment and Service YAML files.

deployment.yaml

apiVersion: apps/v1
kind: Deployment
metadata:
labels:
app: flask
name: flask
spec:
replicas: 1
selector:
matchLabels:
app: flask
template:
metadata:
labels:
app: flask
spec:
containers:
- image: your-dockerhub-username/flask-app:1.0
imagePullPolicy: Always
name: flask
imagePullSecrets:
- name: docker-cred
---
apiVersion: v1
kind: Service
metadata:
name: my-service
spec:
type: NodePort
selector:
app: flask
ports:
- port: 80
targetPort: 5000
nodePort: 30007
kubectl apply -f deployment.yaml
kubectl get deploy
kubectl get po -o wide
kubectl get svc -o wide
kubectl get nodes -o wide

You have successfully created a Docker image for your Python application, pushed it to Docker Hub, and deployed it with Kubernetes. You can now access your application using a NodePort service. (http://server-ip:nodeport)

For example http://143.198.156.122:30007/

--

--