Page MenuHomeVyOS Platform
Create Task
Maniphest T4959

Add container registry authentication config for containers
Closed, ResolvedPublicFEATURE REQUEST
Actions

Description

Containers images sometime comes from a private repository.
Sometime even with multiple login to download image from different registry.

Add container image private/private:latest

Typically, the command "podman login" is used to add credentials for private image repositories.
But I propose the implementation of auth.json file which will be generated each time there's a commit.

This gives the ability to specify up to per image credentials.
For example, with local registry from the documentation:

{
	"auths": {
		"my-registry.local/foo/bar/image": {
			"auth": "…base64..."
		},
		"my-registry. Local/foo": {
			"auth": "…base64..."
		},
		"my-registry. Local": {
			"auth": "…base64..."
		},
	}
}

And the configuration option would be

set container registry <name> username <username>
set container registry <name> encrypted-password <encrypted-password>
set container registry <name> plaintext-password <plaintext-password>

Details

Version
-
Is it a breaking change?
Perfectly compatible

Related Objects
Search...

Event Timeline

Zen3515 created this task.Jan 26 2023, 11:45 AM
Zen3515 updated the task description. (Show Details)Jan 26 2023, 11:50 AM
pasik subscribed.Jan 26 2023, 12:37 PM
Zen3515 renamed this task from Add a way to pull private registry for containers to Container registry authentication.Jan 27 2023, 10:15 AM
Zen3515 renamed this task from Container registry authentication to Add container registry authentication config for containers.
Viacheslav changed the task status from Open to In progress.Jan 30 2023, 2:07 PM
Viacheslav assigned this task to Zen3515.
Restricted Repository Identity mentioned this in rVYOSONEX10ab68a018dd: Merge pull request #1790 from Zen3515/current-add-container-login.Feb 9 2023, 6:31 AM
Restricted Repository Identity mentioned this in rVYOSONEXc300df1e5a22: Revert "container: T4959: Add container registry authentication config for….
Zen3515 mentioned this in rVYOSONEXb17251334c57: container: T4959: Add container registry authentication config for containers.Feb 9 2023, 6:31 AM
c-po mentioned this in rVYOSONEXf234b602c4b0: Revert "container: T4959: Add container registry authentication config for….Feb 9 2023, 6:31 AM
c-po mentioned this in T5079: xml: schema extension to support defaultValues on tagNodes.Mar 10 2023, 7:27 PM
c-po changed the status of subtask T5079: xml: schema extension to support defaultValues on tagNodes from Open to In progress.
c-po mentioned this in rVYOSONEXfe82d86d3e87: container: T4959: add registry authentication option.Mar 10 2023, 8:17 PM
c-po changed the task status from In progress to Needs testing.Mar 10 2023, 8:19 PM
c-po triaged this task as Normal priority.
c-po added a project: VyOS 1.3 Equuleus (1.3.3).
c-po edited a custom field.
c-po changed Is it a breaking change? from Unspecified (possibly destroys the router) to Perfectly compatible.
c-po moved this task from Open to Finished on the VyOS 1.4 Sagitta board.
c-po closed subtask T5079: xml: schema extension to support defaultValues on tagNodes as Resolved.Mar 27 2023, 10:26 AM
c-po moved this task from Need Triage to In Progress on the VyOS 1.3 Equuleus (1.3.3) board.Apr 1 2023, 1:46 PM
c-po moved this task from In Progress to Backport Candidates on the VyOS 1.3 Equuleus (1.3.3) board.
c-po subscribed.Apr 1 2023, 2:14 PM

PR for VyOS 1.3 https://github.com/vyos/vyos-1x/pull/1928

c-po mentioned this in rVYOSONEXb53c25a7bcd0: container: T4959: bugfix credential validation on registries.Apr 1 2023, 4:57 PM
Restricted Repository Identity mentioned this in rVYOSONEX0b0f991a8646: Merge pull request #1928 from c-po/t4959-backport.Apr 5 2023, 3:52 PM
c-po mentioned this in rVYOSONEXdf58e083979a: container: T4959: add registry authentication option.Apr 5 2023, 3:52 PM
syncer closed this task as Resolved.Jul 12 2023, 3:26 PM
syncer moved this task from Backport Candidates to Finished on the VyOS 1.3 Equuleus (1.3.3) board.