Closed lcnsir closed 3 years ago
this isn't really a registry question, the registry respects the same tokens as the rest of openshift. That said, i'm not aware of service account tokens expiring, so i'd suggest you create a service account, grant it the permissions it needs to access the images you want, and get its token.
Issues go stale after 90d of inactivity.
Mark the issue as fresh by commenting /remove-lifecycle stale
.
Stale issues rot after an additional 30d of inactivity and eventually close.
Exclude this issue from closing by commenting /lifecycle frozen
.
If this issue is safe to close now please do so with /close
.
/lifecycle stale
Stale issues rot after 30d of inactivity.
Mark the issue as fresh by commenting /remove-lifecycle rotten
.
Rotten issues close after an additional 30d of inactivity.
Exclude this issue from closing by commenting /lifecycle frozen
.
If this issue is safe to close now please do so with /close
.
/lifecycle rotten /remove-lifecycle stale
Rotten issues close after 30d of inactivity.
Reopen the issue by commenting /reopen
.
Mark the issue as fresh by commenting /remove-lifecycle rotten
.
Exclude this issue from closing again by commenting /lifecycle frozen
.
/close
@openshift-bot: Closing this issue.
OCP 4.3
I want to get a user/passowrd. or serviceaccount/token, that has a admin permisson for openshift internal registry
I have a use case that a user with password (will not be expired) can access the OCP image-registry
Tried cases: admin user with token (generated by OC and will be expired,)
this method can has a permission to list all images in the OCP registry but the password generated by
oc whoami -t
and this password will be expired.How could I get a user name and password/token, that will not expired, ? and has a admin permission to the OCP internal registry ? or some service account token with username
serviceaccount
in the default docker secret created by Openshift in namespaces