-
Notifications
You must be signed in to change notification settings - Fork 163
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Download Blob with Basic Auth Secret #1503
Comments
I think we're going to do a similar thing to the git secrets, where we find the first secret that has the annotation There will be 3 ways of configuring the secret:
data:
username:
password:
bearer:
authorization: |
I see a potential enhancement by being able to provide arbitrary headers on the secret. But I'm not sure how useful that would be in reality, so I might just leave it until somebody raises a feature request for it data:
headers:
x-my-special-header: value |
@chenbh : It's a nice design, is it an ETA for this feature? We are happy to use this feature as we need to download jar file from a private maven repo via http basic authentication and we can't code the username&password in the spec due to securtiy concern. |
@yilims I'm hoping to get it in and released by end of this month. |
Awesome, that's really a cool feature that the community is waiting for! |
Currently, blob downloads need to either be publicly accessible or have the access token in the URL. Basic Authentication can be forced into the URL here, but that results in the username & password being exposed in build logs.
Similar to image pull secrets, it would be ideal to store these credentials in a Kubernetes secret & reference them from the Image CRD.
The text was updated successfully, but these errors were encountered: