Create the dockercfg secret in osbs
Signed-off-by: Clement Verna <cverna@tutanota.com>
This commit is contained in:
parent
ea0fda6584
commit
9247f406b5
3 changed files with 42 additions and 0 deletions
5
files/osbs/dockercfg-production-secret.j2
Normal file
5
files/osbs/dockercfg-production-secret.j2
Normal file
|
@ -0,0 +1,5 @@
|
|||
{"candidate-registry.fedoraproject.org":
|
||||
{"username": {{candidate_registry_osbs_prod_username}},
|
||||
"password": {{candidate_registry_osbs_prod_password}},
|
||||
}
|
||||
}
|
5
files/osbs/dockercfg-staging-secret.j2
Normal file
5
files/osbs/dockercfg-staging-secret.j2
Normal file
|
@ -0,0 +1,5 @@
|
|||
{"candidate-registry.stg.fedoraproject.org":
|
||||
{"username": {{candidate_registry_osbs_stg_username}},
|
||||
"password": {{candidate_registry_osbs_stg_password}},
|
||||
}
|
||||
}
|
|
@ -394,6 +394,38 @@
|
|||
when: env == "production"
|
||||
environment: "{{ osbs_environment }}"
|
||||
|
||||
- name: Add dockercfg secret to allow registry push
|
||||
hosts: osbs-masters-stg[0]:osbs-masters[0]
|
||||
tags:
|
||||
- osbs-dockercfg-secret
|
||||
user: root
|
||||
|
||||
vars_files:
|
||||
- /srv/web/infra/ansible/vars/global.yml
|
||||
- "/srv/private/ansible/vars.yml"
|
||||
- /srv/web/infra/ansible/vars/{{ ansible_distribution }}.yml
|
||||
pre_tasks:
|
||||
- name: Create the dockercfg secret file
|
||||
template:
|
||||
src: "{{ files }}/osbs/dockercfg-{{env}}-secret.j2"
|
||||
dest: "/tmp/.dockercfg"
|
||||
mode: 0400
|
||||
|
||||
roles:
|
||||
- role: osbs-secret
|
||||
osbs_secret_name: "v2-registry-dockercfg"
|
||||
osbs_secret_type: kubernetes.io/dockercfg
|
||||
osbs_secret_files:
|
||||
- source: "/tmp/.dockercfg"
|
||||
dest: .dockercfg
|
||||
|
||||
post_tasks:
|
||||
- name: Delete the temporary secret file
|
||||
file:
|
||||
state: absent
|
||||
path: "/tmp/.dockercfg"
|
||||
|
||||
|
||||
- name: Create worker namespace
|
||||
hosts: osbs-masters-stg[0]
|
||||
tags:
|
||||
|
|
Loading…
Add table
Add a link
Reference in a new issue