Page MenuHomeVyOS Platform
Create Task
Maniphest T4959

Add container registry authentication config for containers
Closed, ResolvedPublicFEATURE REQUEST
Actions

Description

Containers images sometime comes from a private repository.
Sometime even with multiple login to download image from different registry.

Add container image private/private:latest

Typically, the command "podman login" is used to add credentials for private image repositories.
But I propose the implementation of auth.json file which will be generated each time there's a commit.

This gives the ability to specify up to per image credentials.
For example, with local registry from the documentation:

{
	"auths": {
		"my-registry.local/foo/bar/image": {
			"auth": "…base64..."
		},
		"my-registry. Local/foo": {
			"auth": "…base64..."
		},
		"my-registry. Local": {
			"auth": "…base64..."
		},
	}
}

And the configuration option would be

set container registry <name> username <username>
set container registry <name> encrypted-password <encrypted-password>
set container registry <name> plaintext-password <plaintext-password>

Details

Difficulty level
Normal (likely a few hours)
Version
-
Why the issue appeared?
Will be filled on close
Is it a breaking change?
Perfectly compatible
Issue type
Improvement (missing useful functionality)

Related Objects
Search...

Event Timeline

Zen3515 created this task.Jan 26 2023, 11:45 AM
Zen3515 updated the task description. (Show Details)Jan 26 2023, 11:50 AM
pasik added a subscriber: pasik.Jan 26 2023, 12:37 PM
Zen3515 renamed this task from Add a way to pull private registry for containers to Container registry authentication.Jan 27 2023, 10:15 AM
Zen3515 renamed this task from Container registry authentication to Add container registry authentication config for containers.
Viacheslav changed the task status from Open to In progress.Jan 30 2023, 2:07 PM
Viacheslav assigned this task to Zen3515.
c-po mentioned this in T5079: xml: schema extension to support defaultValues on tagNodes.Mar 10 2023, 7:27 PM
c-po changed the status of subtask T5079: xml: schema extension to support defaultValues on tagNodes from Open to In progress.
c-po changed the task status from In progress to Needs testing.Mar 10 2023, 8:19 PM
c-po triaged this task as Normal priority.
c-po added a project: VyOS 1.3 Equuleus (1.3.3).
c-po changed Difficulty level from Unknown (require assessment) to Normal (likely a few hours).
c-po changed Is it a breaking change? from Unspecified (possibly destroys the router) to Perfectly compatible.
c-po moved this task from Need Triage to Finished on the VyOS 1.4 Sagitta board.
c-po closed subtask T5079: xml: schema extension to support defaultValues on tagNodes as Resolved.Mar 27 2023, 10:26 AM
c-po moved this task from Need Triage to In Progress on the VyOS 1.3 Equuleus (1.3.3) board.Apr 1 2023, 1:46 PM
c-po moved this task from In Progress to Backport Candidates on the VyOS 1.3 Equuleus (1.3.3) board.
c-po added a subscriber: c-po.Apr 1 2023, 2:14 PM

PR for VyOS 1.3 https://github.com/vyos/vyos-1x/pull/1928

syncer closed this task as Resolved.Jul 12 2023, 3:26 PM
syncer moved this task from Backport Candidates to Finished on the VyOS 1.3 Equuleus (1.3.3) board.