Container Service

OverviewITS Container Service Team provides commonly-used container images within the openshift namespace of the integrated OpenShift registry. These images are primarily sourced from the Red Hat and Docker Hub image registries, but customers can request images from other public registries. More information about the placement and nomenclature of tags is available in Developing an Application - Container Image Suggestions.
OverviewAs outlined on the Container Service website, updating applications and application images is a customer responsibility. This starts with selecting an appropriate base image, regularly checking for image updates, rebuilding your application to utilize updated images, and regularly moving your base image forward to keep it current. Although no one suggestion will address all situations, some guidelines apply to most.
OverviewReview the OpenShift documentation on launching a debug pod from the CLI.
OverviewThe Container Service uses Red Hat's OpenShift to host containerized applications. The OpenShift command-line interface provides a quick command for creating working OpenShift applications based on existing Docker applications. This is: oc new-appFor more information, review OpenShift Documentation: The new-app Command.
OverviewDevelopers may wish to forward a port from a pod running in the OpenShift cluster to their local machine without the use of a route. This is useful in testing and debugging scenarios. For example, developers can connect a locally-running IDE to a non-production pod to set breakpoints on the application. Port forwarding makes ports temporarily available, and only to the client who has setup the forwarding session.
OverviewThe Container Service provides regular container image security vulnerability reports to all users who have admin permissions in Openshift projects. Reports contain a list of vulnerabilities for all images within your projects, the severity of each vulnerability, the version of the dependency which contains remediation, and a link to more information for each vulnerability. The reports are provided as zipped csv files.See the html sample report below for more details about the information provided.
General InformationRed Hat published a helpful 5 part blog series of best practices when dealing with private Git repositories.
OverviewThe OpenShift Container Platform can build container images from your source code, deploy them, and manage their lifecycle. OpenShift also provides an internal, integrated container image registry. This document provides instructions for authenticating to and interacting with this registry from docker or podman command line, as well as from external CI/CD processes, like Github Actions.RegistriesAWS cluster https://containers.aws.web.umich.eduOpenShift internal registry:
OverviewSecrets provide for storage and access of sensitive information. For more information, review Kubernetes documentation on secrets.
OverviewReview the OpenShift documentation for claiming and utilizing persistent storage.The Container Service provides storage for applications that need to store stateful information. Each OpenShift cluster provides access to two primary storage technologies.