Feature request: Storing credentials for private registries in config file

target / portauthority

API that leverages Clair to scan Docker Registries and Kubernetes Clusters for vulnerabilities

Other

151 stars 21 forks source link

Feature request: Storing credentials for private registries in config file #21

Closed danmx closed 2 months ago

danmx commented 6 years ago

It would be great if PA could store credentials for private registries so we wouldn't have to send them every time we run a scan.

Similar to what K8 Crawler.

ErikThoreson commented 6 years ago

@danmx thanks for the feedback. internally we handle this by leveraging a client utility that runs as a k8s cronjob and calls the api on schedule. That utility allows env's to for those creds.

Would something like that be useful?

danmx commented 6 years ago

That would be useful but I want to use PortAuthority for on demand scans (request scan from a cli) or based on registry's events (e.g. image upload). For this either I'd have to create a proxy that would inject credentials or PA could already store them. If your utility can work as a http proxy that would probably solve my problem.