Examples

AWS ECR Example ‐ Existing Secret

Create a secret that contains the registry AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY

apiVersion: v1
kind: Secret
metadata:
  name: global-secret
data:
  REGISTRY_USERNAME: dmFsdWUtMg0KDQo=
  REGISTRY_PASSWORD: dmFsdWUtMg0KDQo=

Make use of k8s-registry-auth chart to create a secret that is going to be used from our resources

helm upgrade --install k8s-registry-auth oci://registry-1.docker.io/vaggeliskls/k8s-registry-auth  --set registry=123456789123.dkr.ecr.region.amazonaws.com --set awsEcr.enabled=true --set secretConfigName=global-secret

That helm chart will create by default a secret called registry-auth-credentials. That secret will be updated every 8 hours.

Deploy your resources using the previously created secret. That secret will make the image that the pod uses to be authenticated. Pod example:

apiVersion: v1
kind: Pod
metadata:
  name: my-app
spec:
  containers:
  - name: my-app
    image: 123456789123.dkr.ecr.region.amazonaws.com/image:test
  imagePullSecrets:
  - name: registry-auth-credentials

AWS ECR Example ‐ Static Credentials

Docker Example ‐ Existing Secret

Docker Example ‐ Static Credentials

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Examples

AWS ECR Example ‐ Existing Secret

AWS ECR Example ‐ Static Credentials

Docker Example ‐ Existing Secret

Docker Example ‐ Static Credentials

Uh oh!

Clone this wiki locally