Open weatherhog opened 7 months ago
The ACR plugin currently has a bad authentication mechanism, requiring a long-lived admin token (or a short lived bearer token) to be created and configured in Backstage. There is https://github.com/janus-idp/backstage-plugins/issues/1038 for a mitigation.
@marians are you okay with closing this? or is this still needed?
I would like to keep this.
We have a Quay specific plugin in Backstage currently. As we move away from Quay we need an integration that gives us visibility into ACR per component.
Azure Container Registry is our main registry now, with
gsoci
as the public one andgsociprivate
as the private one.We want to expose registry content in the context of a single component entity, like we did for Quay, but for ACR.
Red Hat publishes this plugin: https://janus-idp.io/plugins/acr/
Our priority is
gsoci
, as most components produce public images.gsociprivate
should also be exposed with lower priority.Some apps are using multiple container images, and some use images unrelated to the deployment name. We have not found a solution for this yet, and this topic is out of scope for this issue.