registry: add missing http_secret (#331)

Reviewed-on: #331
Co-authored-by: Michael Grote <michael.grote@posteo.de>
Co-committed-by: Michael Grote <michael.grote@posteo.de>

docker-compose/registry/docker-compose.yml.j2

@@ -27,7 +27,7 @@ services:
       TZ: Europe/Berlin
       REGISTRY_AUTH: none
       REGISTRY_REDIS_ADDR: oci-registry-redis:6379
-      REGISTRY_REDIS_PASSWORD: "{{ lookup('viczem.keepass.keepass', 'oci-registry-redis-pw', 'password') }}"
+      REGISTRY_REDIS_PASSWORD: "{{ lookup('viczem.keepass.keepass', 'registry/oci-registry-redis-pw', 'password') }}"
       REGISTRY_STORAGE_DELETE_ENABLED: true
       REGISTRY_CATALOG_MAXENTRIES: 100000 # https://github.com/Joxit/docker-registry-ui/issues/306
       # https://joxit.dev/docker-registry-ui/#using-cors
@@ -36,6 +36,7 @@ services:
       REGISTRY_HTTP_HEADERS_Access-Control-Allow-Credentials: '[true]'
       REGISTRY_HTTP_HEADERS_Access-Control-Allow-Headers: '[Authorization,Accept,Cache-Control]'
       REGISTRY_HTTP_HEADERS_Access-Control-Expose-Headers: '[Docker-Content-Digest]'
+      REGISTRY_HTTP_SECRET: "{{ lookup('viczem.keepass.keepass', 'registry/oci-registry-http_secret', 'password') }}"
     labels:
       traefik.http.routers.registry.rule: Host(`registry.mgrote.net`)
       traefik.enable: true
@@ -70,7 +71,7 @@ services:
     security_opt:
       - no-new-privileges=true
     environment:
-      REDIS_PASSWORD: "{{ lookup('viczem.keepass.keepass', 'oci-registry-redis-pw', 'password') }}"
+      REDIS_PASSWORD: "{{ lookup('viczem.keepass.keepass', 'registry/oci-registry-redis-pw', 'password') }}"
       MAXMEMORY POLICY: allkeys-lru
     healthcheck:
       test: ["CMD", "redis-cli", "ping"]