How to pull private actions docker from private registry #698

peimanja · 2021-07-14T04:04:49Z

peimanja
Jul 14, 2021

I want to use private actions in form of docker from a private docker registry (we use Artifactory), something like:

jobs:
  my_first_job:
    steps:
      - name: My first step
        uses: docker://<my-private-registry>:<image>:<tag>

Github does not support passing the credentials yet (although it supports job containers) and since pulling images happens before any steps you cannot really authenticate with Artifactory.

Is there any chance we can support that in the runner startup script?

Answered by peimanja

Sep 5, 2021

Ended up building our own image and doing something like this

ARG RUNNER_IMAGE_TAG

FROM docker summerwind/actions-runner-dind:${RUNNER_IMAGE_TAG}

ARG ARTIFACTORY_USERNAME
ARG ARTIFACTORY_PASSWORD


RUN mkdir -p ~/.docker
RUN echo "{\"auths\":{\n\
    \"<registry>\":{\"username\":\"${ARTIFACTORY_USERNAME}\" ,\"password\":\"${ARTIFACTORY_PASSWORD}\"}\n\
    }}" > ~/.docker/config.json

View full answer

rajbos · 2021-07-16T14:11:23Z

rajbos
Jul 16, 2021

Adding to this: our private registry has a self signed certificate installed without a full trust chain.

Any idea's on how to support this so we can still pull containers from it?

  /usr/local/bin/docker pull registry.artifactory.*****.com/node:lts
  Error response from daemon: Get https://registry.artifactory.******.com/v2/: x509: certificate signed by unknown authority

1 reply

rajbos Sep 7, 2021

For a writeup on how to fix this ☝️ , see here

peimanja · 2021-09-05T04:44:02Z

peimanja
Sep 5, 2021
Author

Ended up building our own image and doing something like this

ARG RUNNER_IMAGE_TAG

FROM docker summerwind/actions-runner-dind:${RUNNER_IMAGE_TAG}

ARG ARTIFACTORY_USERNAME
ARG ARTIFACTORY_PASSWORD


RUN mkdir -p ~/.docker
RUN echo "{\"auths\":{\n\
    \"<registry>\":{\"username\":\"${ARTIFACTORY_USERNAME}\" ,\"password\":\"${ARTIFACTORY_PASSWORD}\"}\n\
    }}" > ~/.docker/config.json

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

How to pull private actions docker from private registry #698

{{title}}

Replies: 2 comments 1 reply

{{title}}

{{title}}

{{title}}

{{editor}}'s edit

{{editor}}'s edit

Select a reply

How to pull private actions docker from private registry #698

peimanja Jul 14, 2021

Replies: 2 comments · 1 reply

rajbos Jul 16, 2021

rajbos Sep 7, 2021

peimanja Sep 5, 2021 Author

peimanja
Jul 14, 2021

Replies: 2 comments 1 reply

rajbos
Jul 16, 2021

peimanja
Sep 5, 2021
Author