at least one file?} - HasConfigData{Artifact has additional
metadata config blob?} - - Artifact_NoBlobs[Specify artifactType,
set config and layers
to empty descriptors.] - Artifact_NoConfig[Specify artifactType,
set config to empty descriptor,
include file in layers, ] - Artifact_WithConfig[Specify artifactType,
specify config blob and mediaType,
include files in layers.] - - HasBlob -- No --> Artifact_NoBlobs - HasBlob -- Yes --> HasConfigData - HasConfigData -- Yes --> Artifact_WithConfig - HasConfigData -- No --> Artifact_NoConfig -``` - -### Harnessing Image Indexes - -One of the key advantages of OCI artifacts is their ability to utilize [Image Indexes][image-index], -allowing the bundling of various OCI artifacts. - -The Image Index is a higher-level construct in the OCI Image Specification that can point to -multiple Image Manifests, each suitable for a different platform or architecture or filtered by annotation. -It helps to group related artifacts together, providing a single entry-point for accessing any specific -artifact depending on the required condition. - -## Best Practices and Limitations - -While working with OCI artifacts, keep in mind that client tools and registries -are in the process of implementing v1.1 version of the OCI image and distribution specifications. - -- When clients or registries support the `artifactType` property, the `config.mediaType` -can be set to _application/vnd.oci.empty.v1+json_ if the artifact doesn't have a config. -blob as per the [empty descriptor guidance][empty-descriptor]. -- As a rule of thumb, keep the manifest size manageable by avoiding excessive annotations -and leveraging blobs for larger data chunks. - -## The Road Ahead - -The evolution of OCI artifacts is a journey in progress. While the current specification -does not permit an empty config blob, it's plausible that future updates might -make config and blobs optional eliminating the need for the empty blob. - -By understanding OCI artifacts and their role in representing -container images, developers and DevOps teams can ensure the smooth deployment -and execution of containerized applications. The open and standardized nature of -OCI artifacts promotes interoperability among different clouds and platforms, -enabling seamless container orchestration and scaling across cloud and -on-premises infrastructures. - -To learn more about the OCI Image Specification and Image Manifests, you can -refer to the official [OCI Image Specification GitHub repository]( -https://github.com/opencontainers/image-spec) and explore the detailed -specifications. - -[cas]: https://en.wikipedia.org/wiki/Content-addressable_storage -[oci-layout]: https://github.com/opencontainers/image-spec/blob/v1.1.0-rc4/image-layout.md -[descriptor]: https://github.com/opencontainers/image-spec/blob/v1.1.0-rc4/descriptor.md -[image-spec]: https://github.com/opencontainers/image-spec/blob/v1.1.0-rc4/spec.md -[image-manifest]: https://github.com/opencontainers/image-spec/blob/v1.1.0-rc4/manifest.md#image-manifest -[image-properties]: https://github.com/opencontainers/image-spec/blob/v1.1.0-rc4/manifest.md#image-manifest-property-descriptions -[empty-descriptor]: https://github.com/opencontainers/image-spec/blob/v1.1.0-rc4/manifest.md#guidance-for-an-empty-descriptor -[image-index]: https://github.com/opencontainers/image-spec/blob/v1.1.0-rc4/image-index.md#image-index-property-descriptions -[artifact-guidelines]: https://github.com/opencontainers/image-spec/blob/v1.1.0-rc4/manifest.md#guidelines-for-artifact-usage diff --git a/docs/concepts/reference.mdx b/docs/concepts/reference.mdx deleted file mode 100644 index b88934a8..00000000 --- a/docs/concepts/reference.mdx +++ /dev/null @@ -1,135 +0,0 @@ ---- -title: Reference -sidebar_position: 3 ---- - -# Understanding References in the Open Container Initiative (OCI) Standard - -One of the core concepts when dealing with container images or -[OCI artifacts](artifact.mdx) is the notion of a reference. -Let's dive deep into this concept, especially within the context of -the Open Container Initiative (OCI) standard. - -## Image or Artifact References: Breaking Down the Components - -An image reference is essentially the 'address' or 'identifier' you use to -pull or manage a specific container image or OCI artifact. - -There are primarily two contexts in which you'll encounter references: - -1. Interacting with a registry to pull or push images. -2. Interacting with a local OCI Layout store to manage local content. - -Let's take a look at the components of an reference in these 2 scenarios. - -### What a Reference Means in the Registry - -When you pull or push an artifact or image from a registry, you need to specify the reference. -This reference is a combination of three parts: - -1. **Registry**: This is akin to the home or the server where your images or artifacts are stored. -Think of it as the overarching domain. Examples include Docker Hub (docker.io), -GitHub Container Registry (ghcr.io), or your own private registry. -2. **Repository**: This is a segment of the reference, after the registry where a particular -application or service's images are stored. -The repository doesn't necessarily follow a hierarchy within the registry, meaning `a/b/c` -and `a/b/c/d` are both valid and distinct repositories, with no implied hierarchy between them. -3. **Tag or Digest**: This is the last part indicating the version of the image or artifact -you want to pull or push. - -#### References by Tag - -- **Tag**: Tags are user-friendly references to specific image or artifact versions. -Common tags include `latest`, `v1.0`, -or any other description that makes sense for versioning or identiying and resolve to a digest. -These are typically human readable and easy to remember. - - - -:::caution -Tags are mutable. This means that the same tag can point to different digests over time. -::: - -#### References by Digest - -Reference by a digest is a unique, immutable identifier for a specific image or artifact. -Typically represented as a SHA256 hash of the image's content, the digest guarantees -you're pulling or referencing the exact version of the image and artifact and is **immutable**. - - - -:::note -The digest is the most precise way to reference an image. -However, it's not very user-friendly. -This is why tags are more commonly used. -A tag always resolves to a digest. -::: - -#### References by Tag and Digest - -Putting it all together, a reference includes a registry, a repository, and a tag or a digest in the context -of a **registry**. - -```mermaid -graph LR - A["Registry (e.g., docker.io)"] - B["Repository (e.g., library/nginx)"] - C["Tag (e.g., latest)"] - D["Digest (e.g., sha256:abc123...)"] - A --> B - B --> C - B --> D -``` - -### What a Reference Means in OCI Layout - -In the OCI Layout specification, a reference can be a tag or a digest. -The OCI Layout defines how image data should be stored on disk. -This layout facilitates image distribution, making it easier for tools to push and pull images. -The references in the OCI Layout help in uniquely identifying an image and its components. - -The layout directory contains a file called `index.json` that contains the references to the image's components. -The below `index.json` file contains a reference to a manifest file and it can be accessed as `v1` or the digest -`sha256:921f70dafac450afd63cc4210b2086cb4290ef7d51249eb79c4777e731b87746`. - -```json -{ - "schemaVersion": 2, - "manifests": [ - { - "mediaType": "application/vnd.oci.image.manifest.v1+json", - "digest": "sha256:921f70dafac450afd63cc4210b2086cb4290ef7d51249eb79c4777e731b87746", - "size": 555, - "annotations": { - "org.opencontainers.image.created": "2023-08-19T00:05:47Z", - "org.opencontainers.image.ref.name": "v1" - }, - "artifactType": "application/example" - } - ] -} -``` - -For a detailed understanding, refer to the [OCI Layout Specification][oci-layout-index]. - -### How OCI Uses Image References - -In the OCI standard, when a client (like docker) needs to pull an image, -it uses the combined image reference to precisely identify and retrieve the -right image or artifact from a registry. - -However, it's worth noting that certain implementations, such as docker, provide -defaults or shortcuts. For instance, if you were to use docker to pull an image -using the reference `nginx`, docker would automatically resolve this to -`docker.io/library/nginx:latest`. Here, `docker.io` is the default registry and -`library/nginx` is the repository with a 'library' prefix for official images and `latest` is the -default tag. - -### Conclusion - -Understanding the components of an `reference` is vital when working with containers or OCI artifacts. -These references ensure that clients are addressing the desired version of the image or artifact. -Having a solid grasp of foundational concepts like image references becomes even more essential -as you start to use image and artifacts across your cloud native environments. - -[oci-layout-index]: https://github.com/opencontainers/image-spec/blob/v1.1.0-rc4/image-layout.md#indexjson-file \ No newline at end of file diff --git a/docs/concepts/reference_by_digest.dot b/docs/concepts/reference_by_digest.dot deleted file mode 100644 index 455747ac..00000000 --- a/docs/concepts/reference_by_digest.dot +++ /dev/null @@ -1,25 +0,0 @@ -# To generate the image used, run the following command -# dot -Tpng -o static/img/concepts/reference/by_digest.png docs/concepts/reference_by_digest.dot -digraph G { - graph [ - dpi=600 - fontname = "Helvetica,Arial,sans-serif" - ] - node [shape=record style="rounded,filled" fontname="Arial"] - edge [] - subgraph cluster1 - { - color="#ebf8fe" - style="rounded,filled" - ref:f0 -> registry - ref:f1 -> repository - ref:f2 -> digest - ref [label="
| Manifest |
| OCI Artifact |
| Signature |
| ... |
| subject : descriptor |
| SBOM |
| ... |
| subject : descriptor |
| Signature |
| ... |
| subject : descriptor |
| Manifest |
| schema : string |
| artifactType : string |
| config : descriptor |
| annotations : map[string]string |
| subject : descriptor |
| Index |
| manifests : [ ]descriptor |
| Blobs |
| config blob |
| layer blobs |
| ... |
-
-## Introduction
-
-Registries are evolving as generic artifact stores.
-To enable this goal, the ORAS project provides a way to
-push and pull OCI Artifacts to and from OCI Registries.
-
-Users seeking a generic registry client can benefit from the [ORAS CLI](./installation.mdx), while
-developers can build their own clients on top of one of the [ORAS client libraries](./client_libraries/overview.mdx).
-
-## What are OCI Registries?
-
-The [Open Container Initiative](https://opencontainers.org/) (OCI)
-defines the specifications and standards for container technologies.
-This includes the API for working with container registries, known
-formally as the [OCI Distribution Specification](https://github.com/opencontainers/distribution-spec/blob/main/spec.md).
-(a.k.a. the "distribution-spec").
-
-The distribution-spec was written based on an open-source registry server originally
-released by the company [Docker](http://docker.com/), which lives on
-GitHub at [distribution/distribution](https://github.com/distribution/distribution)
-(now a [CNCF](https://www.cncf.io/) project).
-
-There are now a number of other open-source and commercial distribution-spec
-implementations, a list of which can be found [here](https://github.com/opencontainers/oci-conformance/tree/main/distribution-spec).
-Registries that implement the distribution-spec are referred to herein as **OCI Registries**.
-
-## What are OCI Artifacts?
-
-For a long time (pretty much since the beginning), people have been using/abusing OCI Registries
-to store non-container things. For example, you could upload a video to Docker Hub
-by just stuffing the video file into a layer in a Docker image (don't do this).
-
-The [OCI Artifacts](https://github.com/opencontainers/artifacts) project is an attempt to
-define an opinionated way to leverage OCI Registries for arbitrary artifacts without masquerading
-them as container images.
-
-Specifically, [OCI Image Manifests](https://github.com/opencontainers/image-spec/blob/main/manifest.md)
-have a required field known as `config.mediaType`. According to the
-[guidelines](https://github.com/opencontainers/artifacts/blob/main/artifact-authors.md)
-provided by OCI Artifacts, this field provides the ability to differentiate between various types of artifacts.
-
-Artifacts stored in an OCI Registry using this method are referred to herein as **OCI Artifacts**.
-
-## How ORAS works
-
-ORAS works similarly to tools you may already be familiar with, such as `docker`. It allows you to
-push (upload) and pull (download) things to and from an OCI Registry, and also handles login (authentication)
-and token flow (authorization). What ORAS does differently is
-shift the focus from container images to other types of artifacts.
-
-ORAS is the de facto tool for working with OCI Artifacts. It treats media types as a critical
-piece of the puzzle. Container images are never assumed to be the artifact in question.
-
-By default, when pushing artifacts using ORAS, the `config.mediaType` field is set to unknown:
-
-```
-application/vnd.unknown.config.v1+json
-```
-
-Authors of new OCI Artifacts are thus encouraged to define their own media types specific to
-their artifact, which their custom client(s) know how to operate on.
-
-If you wish to start publishing OCI Artifacts right away, take a look at the [ORAS CLI](./installation.mdx).
-Developers who wish to provide their own user experience should use one of the
-[ORAS client libraries](./client_libraries/overview.mdx).
\ No newline at end of file
diff --git a/docs/installation.mdx b/docs/installation.mdx
deleted file mode 100644
index 67fe98c8..00000000
--- a/docs/installation.mdx
+++ /dev/null
@@ -1,128 +0,0 @@
----
-title: Installation
-sidebar_position: 15
----
-
-# Installation
-
-This guide demonstrates the installation steps of ORAS CLI on different platforms.
-
-## Homebrew
-
-Install `oras` using [Homebrew](https://brew.sh/):
-
-```bash
-brew install oras
-```
-
-## Snap
-
-Install `oras` using [Snap](https://snapcraft.io/store):
-
-```bash
-snap install oras
-```
-
-## Release artifacts
-
-Install ORAS from the latest [release artifacts](https://github.com/oras-project/oras/releases):
-
-### Linux
-
-If you want to install ORAS on an AMD64-based Linux machine, run the following command:
-
-```bash
-VERSION="1.1.0"
-curl -LO "https://github.com/oras-project/oras/releases/download/v${VERSION}/oras_${VERSION}_linux_amd64.tar.gz"
-mkdir -p oras-install/
-tar -zxf oras_${VERSION}_*.tar.gz -C oras-install/
-sudo mv oras-install/oras /usr/local/bin/
-rm -rf oras_${VERSION}_*.tar.gz oras-install/
-```
-:::note
-
-If you want to install ORAS on an ARM64-based Linux machine, you can download it from `https://github.com/oras-project/oras/releases/download/v1.1.0/oras_1.1.0_linux_arm64.tar.gz`.
-
-:::
-
-### macOS
-
-If you want to install ORAS on a Mac computer with Apple silicon, run the following command:
-
-```bash
-VERSION="1.1.0"
-curl -LO "https://github.com/oras-project/oras/releases/download/v${VERSION}/oras_${VERSION}_darwin_arm64.tar.gz"
-mkdir -p oras-install/
-tar -zxf oras_${VERSION}_*.tar.gz -C oras-install/
-sudo mv oras-install/oras /usr/local/bin/
-rm -rf oras_${VERSION}_*.tar.gz oras-install/
-```
-:::note
-
-If you want to install ORAS on an Intel-based Mac, you can download it from `https://github.com/oras-project/oras/releases/download/v1.1.0/oras_1.1.0_darwin_amd64.tar.gz`.
-
-:::
-
-### Windows
-
-- You can install ORAS CLI on Windows using [WinGet (Windows Package Manager)](https://github.com/microsoft/winget-pkgs):
-
-```bash
-winget install oras --version 1.1.0
-```
-
-- Alternatively, you can install ORAS CLI using `.exe` installer. Add `%USERPROFILE%\bin\` to your `PATH` environment variable so that `oras.exe` can be found.
-
-```cmd
-set VERSION="1.1.0"
-curl.exe -sLO "https://github.com/oras-project/oras/releases/download/v%VERSION%/oras_%VERSION%_windows_amd64.zip"
-tar.exe -xvzf oras_%VERSION%_windows_amd64.zip
-mkdir -p %USERPROFILE%\bin\
-copy oras.exe %USERPROFILE%\bin\
-set PATH=%USERPROFILE%\bin\;%PATH%
-```
-
-## Docker Image
-
-A public Docker image containing the CLI is available on [GitHub Container Registry](https://github.com/orgs/oras-project/packages/container/package/oras):
-
-```
-docker run -it --rm -v $(pwd):/workspace ghcr.io/oras-project/oras:v1.1.0 help
-```
-:::note
-
-The default WORKDIR in the image is `/workspace`.
-
-:::
-
-## Nix
-
-Nix is a tool that takes a unique approach to package management and system configuration.
-
-The Nix Packages collection ([Nixpkgs](https://github.com/NixOS/nixpkgs)) is a set of over 80 000 packages for the Nix package manager.
-
-oras also has a [Nix package](https://github.com/NixOS/nixpkgs/blob/master/pkgs/development/tools/oras/default.nix) available in the Nixpkgs repository.
-
-:::info
-
-You can install nix CLI from [here](https://nixos.org/download.html).
-
-:::
-
-You can install oras using the following command:
-
-```bash
-nix-env -iA nixpkgs.oras
-```
-
-## Verify
-
-```shell
-$ oras version
-Version: 1.1.0
-Go version: go1.21.0
-Git commit: 7079c468a06fb5815c99395eb4aaf46dd459d3fa
-Git tree state: clean
-```
-
-You can check out our [how-to guide](./how_to_guides/verifying_binaries.mdx) if you would like to verify ORAS CLI Binaries.
\ No newline at end of file
diff --git a/docs/quickstart.mdx b/docs/quickstart.mdx
deleted file mode 100644
index 099caa17..00000000
--- a/docs/quickstart.mdx
+++ /dev/null
@@ -1,125 +0,0 @@
----
-title: Quick Start
-sidebar_position: 14
----
-
-# Distributing OCI artifacts using ORAS
-
-To distribute OCI artifacts, we need to understand OCI registries.
-These registries store container images and other artifacts for easy access.
-Distributing OCI artifacts means pushing them to these registries so others can pull them for use.
-
-We will be using [zot registry](https://zotregistry.dev/) in this guide.
-Zot registry is an OCI-native container registry for distributing container images and OCI artifacts.
-
-In order to follow the steps given, you would be required to install the ORAS CLI.
-You can follow the [installation guide](./installation.mdx) to do so.
-
-## Install zot registry
-
-We will be running zot using docker. However, you can refer to their [installation guide](https://zotregistry.dev/install-guides/install-guide-linux/) to find more ways to install the registry.
-
-**Prerequisites**
-- [Docker](https://www.docker.com/)
-
-```
-docker run -d -p 5000:5000 --name oras-quickstart ghcr.io/project-zot/zot-linux-amd64:latest
-```
-
-## Distribution of OCI artifacts
-
-Let's push an OCI artifact to the registry using the ORAS CLI.
-
-### Step 1: Create a sample file
-
-```
-echo "hello world" > artifact.txt
-```
-
-### Step 2: Push an artifact
-
-```bash
-oras push --plain-http localhost:5000/hello-artifact:v1 \
- --artifact-type application/vnd.acme.rocket.config \
- artifact.txt:text/plain
-```
-
-```
-Uploading a948904f2f0f artifact.txt
-Uploaded a948904f2f0f artifact.txt
-Pushed [registry] localhost:5000/hello-artifact:v1
-Digest: sha256:bcdd6799fed0fca0eaedfc1c642f3d1dd7b8e78b43986a89935d6fe217a09cee
-```
-
-After pushing the artifact, it can be seen in the zot user interface at [http://localhost:5000/](http://localhost:5000/)
-
-
-
-### Step 3: Pull the artifact
-
-Let's now pull the artifact we have pushed in the pervious step.
-
-```
-oras pull localhost:5000/hello-artifact:v1
-```
-
-```
-Downloading a948904f2f0f artifact.txt
-Downloaded a948904f2f0f artifact.txt
-Pulled [registry] localhost:5000/hello-artifact:v1
-Digest: sha256:19e1b5170646a1500a1ac56bad28675ab72dc49038e69ba56eb7556ec478859f
-```
-
-## Attach an artifact
-
-First, let's create another sample file to attach to the previously uploaded artifact.
-
-### Step 1: Create a sample file
-
-```
-echo "hello world" > hi.txt
-```
-
-### Step 2: Attach the file
-
-You can use the command below to attach `hi.txt` to the artifact we pushed above:
-
-```
-oras attach --artifact-type doc/example localhost:5000/hello-artifact:v1 hi.txt
-```
-
-```
-Exists a948904f2f0f hi.txt
-Attached to [registry] localhost:5000/hello-artifact@sha256:327db68f73d0ed53d528d927a6703c00739d7c1076e50762c3f6641b51b76fdc
-Digest: sha256:bcdd6799fed0fca0eaedfc1c642f3d1dd7b8e78b43986a89935d6fe217a09cee
-```
-
-### Step 3: View referrers
-
-```
-oras discover localhost:5000/hello-artifact:v1
-```
-
-```
-Discovered 1 artifact referencing v1
-Digest: sha256:327db68f73d0ed53d528d927a6703c00739d7c1076e50762c3f6641b51b76fdc
-
-Artifact Type Digest
-doc/example sha256:bcdd6799fed0fca0eaedfc1c642f3d1dd7b8e78b43986a89935d6fe217a09cee
-```
-
-**Note:** For settings up a registry with TLS follow [these steps](https://github.com/project-zot/zot/blob/main/examples/README.md#network).
-
-## Clean up
-
-Stop and remove the running quick start registry and the uploaded content.
-
-```
-docker rm $(docker stop oras-quickstart)
-```
-
-## Conclusion
-
-You can now successfully push OCI artifacts to your zot registry!
-
-As OCI registries are used to securely store and share container images, they greatly help with collaboration and code sharing. They enable teams to acquire and use images and artifacts through a standardized artifact interface. This is why it is considered to play a crucial role in maintaining consistency among teams.
\ No newline at end of file
diff --git a/docusaurus.config.js b/docusaurus.config.js
index 515b5f08..b7f6d7e5 100644
--- a/docusaurus.config.js
+++ b/docusaurus.config.js
@@ -53,6 +53,7 @@ const config = {
// Remove this to remove the "edit this page" links.
editUrl:
"https://github.com/oras-project/oras-www/tree/main/",
+ includeCurrentVersion: false,
},
blog: {
showReadingTime: true,