Open TBBle opened 2 years ago
I would like to sponsor this task by contributing USD$1000 for someone to address this issue and get into the Docker Verified Publisher Program.
As a workaround, you can log out of Docker Hub in the CLI and the Image Access Management policy won't apply, then do your docker pull
and log back in. That's pretty awful though, and if your company has enforced Docker Hub authentication then this workaround isn't usable. (Which is probably part of why that enforce-authentication feature exists, along with supporting license compliance for corporate Docker Desktop users)
As a workaround, you can log out of Docker Hub in the CLI and the Image Access Management policy won't apply, then do your
docker pull
and log back in. That's pretty awful though, and if your company has enforced Docker Hub authentication then this workaround isn't usable. (Which is probably part of why that enforce-authentication feature exists, along with supporting license compliance for corporate Docker Desktop users)
We ended up turning it off all together but that is not the right long term approach. I feel this sponsorship would be beneficial to the community.
Bug Report Checklist
Description
User openapitools on Docker Hub is not a Verified Publisher, which means images in that account, e.g.
openapitools/openapi-generator-cli
, cannot be downloaded by users in organisations with Image Access Management enabled.openapi-generator version
v4.3.1
OpenAPI declaration file content or url
N/A
Generation Details
N/A
Steps to reproduce
docker pull openapitools/openapi-generator-cli:v4.3.1
Failure result:
Related issues/PRs
Nothing I saw.
Suggest a fix
I assume the fix is to join the Docker Verified Publisher program if that's possible for free, open-source projects.
Alongside that, I'm recommending that my employer disable Image Access Management, as I'm sure we'll hit this problem again with other open-source projects, and the whole thing is pretty awful from a UX perspective anyway.