Configuring the environment for deploying a standalone service

Create a Docker image in the project and install the required dependencies in the build script. Build the image.

Create a secret with a password for your container registry.

If you are using a registry created in Yandex Container Registry, get authenticated using the authorized key for the service account that has the required roles and is specified in the project settings:

1. If you do not have the Yandex Cloud CLI yet, install and initialize it.

2. Get authorized keys for your service account and save them to the key.json file:

   yc iam key create --service-account-name default-sa -o key.json
   

   Result:

   id: aje8a87g4eaj********
   service_account_id: aje3932acde3********
   created_at: "2019-05-31T16:56:47Z"
   key_algorithm: RSA_2048
   

3. Run the following command:

   cat key.json | docker login \
     --username json_key \
     --password-stdin \
     cr.yandex
   

   Where:

   • cat key.json: Command to write the contents of the key file to the output stream.
   • --password-stdin: Flag that enables reading the password from the input stream.

   Result:

   Login Succeeded
   

Upload the Docker image to the container registry. To do this, run this code in a cell:

#!:docker-publish <image_name>:<image_tag> cr.yandex/<image_path>:<tag>

• <image_name>: Name of the image in DataSphere.
• <image_tag>: Tag of the image in DataSphere.
• <image_path>: Path to the Container Registry image in cr.yandex/<registry_ID>/<image_name> format.
• <tag>: Image tag.

While uploading, enter the username and select the secret containing the password. When getting authorized in Container Registry, provide the json_key token type for the username and the secret for the password.

In the node creation form, specify the path to the image in this format: cr.yandex/<registry_address>:<tag>.