Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow Rancher to provisioning registries.yaml with auth key values instead of username and password #13116

Open
gaktive opened this issue Jan 15, 2025 · 0 comments · Fixed by #13153
Open

Allow Rancher to provisioning registries.yaml with auth key values instead of username and password #13116

gaktive opened this issue Jan 15, 2025 · 0 comments · Fixed by #13153
Assignees
@nwmac
Labels
area/clusterprovisioningv2 JIRA kind/enhancement QA/dev-automation Issues that engineers have written automation around so QA doesn't have look at this
Milestone
v2.11.0

Comments

@gaktive
Copy link
Member

gaktive commented Jan 15, 2025

Internal reference: SURE-6308

Paraphrasing @nwmac,

When creating an RKE2 Cluster, in the 'Cluster Configuration' section at the bottom, we have the 'Registries' tab. Within this, you can enable registry configuration and as part of this, choose to create a username and password - a k8s secret (of type HTTP Basic Auth) will be created and the secret name used.

This request is about allowing the user to create a k8s secret of type rke.cattle.io/auth-config (this is not well documented) with the secret's auth key set to the base64 encoded concatenated username and password (see: https://github.com/rancher/rancher/blob/main/pkg/apis/rke.cattle.io/v1/registries.go#L32).

I'd suggest in the UI, we add a 2nd type of secret in the dropdown box 'Create an RKE Auth Config Secret (base64 encoded)' - this would take the username and password and on secret creation, create a different type of secret with the username and password concatenated by a colon and base64 encoded.

I would suggest that the base64 encoded secret option is the default.

Image
@gaktive gaktive added this to the v2.11.0 milestone Jan 15, 2025
@github-actions github-actions bot added the QA/dev-automation Issues that engineers have written automation around so QA doesn't have look at this label Jan 15, 2025
@nwmac nwmac self-assigned this Jan 20, 2025
@nwmac nwmac mentioned this issue Jan 20, 2025
Merged
6 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@nwmac nwmac

Labels
area/clusterprovisioningv2 JIRA kind/enhancement QA/dev-automation Issues that engineers have written automation around so QA doesn't have look at this
Projects
None yet
Milestone
v2.11.0
Development

Successfully merging a pull request may close this issue.

Add support for creation of registry secret using RKE auth config type nwmac/dashboard
2 participants
@nwmac @gaktive