DEVHIDE
Login Or Sign up

Fluxcd ImageRepository authentication with AWS Elastic Container Registry Not working

555 Views Asked by At

Fluxcd ImageRepository authentication with AWS Elastic Container Registry Not working on ARM64 graviton node.

After debugging I found that the image used in the init container to get cred credentials is not supporting Arm64 instances.

image name:-bitnami/kubectl

doc link:-https://fluxcd.io/docs/guides/image-update/

amazon-web-services kubernetes arm64 gitops fluxcd
Original Q&A
1

There are 1 best solutions below

3
On

There are some workarounds, provided on the fluxcd documentation portal:

AWS Elastic Container Registry

The solution proposed is to create a cronjob that runs every 6 hours which would re-create the docker-registry secret using a new token.

JSON key

A Json key doesn’t expire, so we don’t need a cronjob, we just need to create the secret and reference it in the ImagePolicy. First, create a json key file by following this documentation. Grant the service account the role of Container Registry Service Agent so that it can access GCR and download the json file.

Static Credentials

Instead of creating the Secret directly into your Kubernetes cluster, encrypt it using Mozilla SOPS or Sealed Secrets, then commit and push the encypted file to git.

This Secret should be in the same Namespace as your flux ImageRepository object. Update the ImageRepository.spec.secretRef to point to it.

Related Questions in AMAZON-WEB-SERVICES

Related Questions in KUBERNETES

Related Questions in ARM64

Related Questions in GITOPS

Related Questions in FLUXCD

Trending Questions

Popular # Hahtags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Popular Questions

Copyright © 2021 Jogjafile Inc.