Expedia Uses Docker Trusted Registry to Help Them Revolutionize Travel


Founded originally as a division of Microsoft in 1996, Expedia the multi-billion dollar travel company headquartered in Washington state, is a parent company to brands including: Hotels.com, Hotwire.com, Trivago, Travelocity, Orbitz and many more. The company operates in over 60 countries and have a workforce of over 18,000 employees.


Four years ago Expedia decided that it was ready to embrace the cloud. As part of that journey they were looking for a way to help them adopt microservices applications rather than legacy monolithic applications they they had been running for years. As part of this initiative they needed tools that would help them to create and deploy these new distributed applications, as well as tools that would enable them to store and secure their applications, on-premises. Expedia needed a registry with the ability to integrate with their Active Directory server and provide granular access controls so they could control who has access to their repos. Lastly, they needed to simplify the management of their registry so that their AD security groups were the only ones who had access to create new repositories and assign read/write roles.


Today Expedia has over two hundred (200) dockerized applications running in production within Docker containers, hosted in AWS. They also host containers within their datacenter, and continue to deploy to both their datacenter as well as AWS with the help of Docker. The Docker tools that they are using today include: the Docker engine, Docker Trusted Registry and Docker Compose. In addition to the hundreds of Dockerized apps they have, they are also running over one-hundred and fifty (150)docker engines within AWS to run these containers. When it comes to their registry they have over 1,000 repos within Docker Trusted Registry, serving as their central place to store all of their images. Expedia is using DTR as the main source to push images to and then pull them from when they are ready to deploy to production. With DTR they can also integrate with their existing Active Directory server, which enables their AD Security team to easily create teams and organizations, and they assign role-based access controls to each of these groups. With Docker Compose, the Expedia teams can now easily deploy their multi-container applications into AWS. Other key benefits of using Docker Trusted Registry include: Cost savings, portability of containers across local laptops, on-premises and in AWS as well as Audit logging. Logs written with Docker Trusted Registry can be pushed out to third party tools like Splunk.

  • Having the right kinds of controls to make sure that changes to production are going through the right processes to make – and getting audited appropriately is important for us. So, the role-based access control is really good.

    Eric Westfall, Enterprise Software Architect, Indiana University
  • We realized that our vision and what we wanted to achieve long term in terms of the datacenter modernization and what was required in our architectural blueprint, that fit very well with what Docker was providing.

    Ajay Dankar, Senior Director Product Management, PayPal
  • Docker’s CaaS approach will enable us to drive transformation across the entire application life cycle from development to operations. A key feature for us is the end-to-end integration with Docker Content Trust to centrally administer and control our images so that only signed and validated content can be used or deployed into a production environment. With Docker, we will be able to ensure application portability, whether it is between dev and ops or between the datacenter and the cloud.

    Keith Fulton, Chief Technology Officer at ADP