Skip to main content

Terms

This topic describes terms related to container images to help you use Container Registry.

container image

A container image is a standard form of an application package. You can use a Dockerfile to package an application and the environments on which the application depends to a container image, push the container image to an image repository, pull the container image in a test or production environment, and then start containers.

Container Registry instance

If you want to create your private images, you must first create a Container Registry instance and then create an image repository on the instance. You must log on to the Container Registry instance before you can manage images in the container repository. After you modify an image, you can push the image to the image repository again. Alternatively, you can use the image build feature to generate an image in your data center and then push the image to the image repository.

Dockerfile

A Dockerfile is a text document that is used to build an image. The Dockerfile contains the instructions and descriptions that are required to build an image. Tools such as Docker can automatically build container images by reading the instructions in a Dockerfile.

OCI standard

The Open Container Initiative (OCI) standard contains the following specifications: the Runtime Specification (runtime-spec) and the Image Specification (image-spec). The OCI Image Specification unifies the container image format that is used by various container tools. As a result, standard container images can be used in various container software and environments.

RAM-based access control

Resource Access Management (RAM) is an identity and access control service. Multiple RAM users can be created within an account. RAM users can represent employees, systems, and applications of an enterprise.

RAM user

A RAM user is a physical identity that has a fixed ID and credential information. A RAM user can represent a person or an application. You can grant different image permissions to different RAM users. For more information.

OSS

Object Storage Service (OSS) is a secure, cost-effective, and highly reliable storage service that allows you to store large volumes of unstructured data. OSS supports RESTful API operations that are independent of the OSS console. You can store and access data from all applications anytime and anywhere.

OSS Bucket

A bucket is a container that is used to store objects in OSS. All objects are stored in buckets. You can configure various attributes for a bucket, including the region, access control list (ACL), and storage class. You can create buckets of different storage classes to store your data. Container Registry Enterprise Edition can host container images in OSS buckets. You can create custom OSS buckets. For more information.