f31cfb2ef9
Based on spec in openstack-helm repo, support-OCI-image-registry-with-authentication-turned-on.rst Each Helm chart can configure an OCI image registry and credentials to use. A Kubernetes secret is then created with these info. Service Accounts then specify an imagePullSecret specifying the Secret with creds for the registry. Then any pod using one of these ServiceAccounts may pull images from an authenticated container registry. Change-Id: Iebda4c7a861aa13db921328776b20c14ba346269 |
||
---|---|---|
.. | ||
_image.tpl | ||
_keystone_openrc_env_vars.tpl | ||
_keystone_secret_openrc.tpl | ||
_keystone_user_create_env_vars.tpl | ||
_kubernetes_apparmor_configmap.tpl | ||
_kubernetes_apparmor_loader_init_container.tpl | ||
_kubernetes_apparmor_volumes.tpl | ||
_kubernetes_container_security_context.tpl | ||
_kubernetes_entrypoint_init_container.tpl | ||
_kubernetes_kubectl_params.tpl | ||
_kubernetes_mandatory_access_control_annotation.tpl | ||
_kubernetes_metadata_labels.tpl | ||
_kubernetes_pod_anti_affinity.tpl | ||
_kubernetes_pod_image_pull_secret.tpl | ||
_kubernetes_pod_rbac_roles.tpl | ||
_kubernetes_pod_rbac_serviceaccount.tpl | ||
_kubernetes_pod_security_context.tpl | ||
_kubernetes_probes.tpl | ||
_kubernetes_resources.tpl | ||
_kubernetes_seccomp_annotation.tpl | ||
_kubernetes_tolerations.tpl | ||
_kubernetes_upgrades_daemonset.tpl | ||
_kubernetes_upgrades_deployment.tpl | ||
_kubernetes_upgrades_statefulset.tpl | ||
_mon_host_from_k8s_ep.sh.tpl | ||
_prometheus_pod_annotations.tpl | ||
_prometheus_service_annotations.tpl | ||
_release_uuid.tpl | ||
_rgw_s3_admin_env_vars.tpl | ||
_rgw_s3_secret_creds.tpl | ||
_rgw_s3_user_env_vars.tpl | ||
_tls_volume_mount.tpl | ||
_tls_volume.tpl | ||
_values_template_renderer.tpl |