-
Notifications
You must be signed in to change notification settings - Fork 7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
helm 3.6.1: --pass-credentials
required with urls: ['charts/foobar-0.0.2.tgz']
#9868
Comments
--pass-credentials
required with urls: ['charts/lessorwork-0.0.1.tgz']--pass-credentials
required with urls: ['charts/foobar-0.0.1.tgz']
--pass-credentials
required with urls: ['charts/foobar-0.0.1.tgz']--pass-credentials
required with urls: ['charts/foobar-0.0.2.tgz']
Duplicate of #9820. No, the case you described was an uncaught case. See #9820 (comment) for more context. |
Err, this seems slightly different than #9820, but very closely related. We’ll keep it open for now. |
I think we need to add some additional debug logging. I can work on a PR on Monday for this. It would provide some deeper logging as to what's going on so we can see what the issue is. |
uh oh, I think I found a bug I created when I did the security fix. With some additional logging put in... ❯ helm pull bitnami/wordpress
httpgetter.go:70: With URL bitnami/wordpress+
httpgetter.go:71: Fetch URL https://charts.bitnami.com/bitnami/wordpress-11.0.16.tgz+ I think I'll be crafting a fix for this on Monday if someone else doesn't beat me to it. |
Would someone please test #9871 to see if it fixes the issue. |
I can confirm that #9871 works. |
I've read the security advisory.
This works:
But if I don't provide --pass-credentials:
When I look at https://harbor.lessor.dk/chartrepo/dev/index.yaml I see this for
foobar
:I see nothing here to indicate that
which is what should require
--pass-credentials
.In #9857, @bacongobbler writes:
A URL like 'charts/foobar-0.0.2.tgz` clearly is relative but also does not match the above list of criteria for "local" URLs. Is that the problem?
Output of
helm version
:version.BuildInfo{Version:"v3.6.1", GitCommit:"61d8e8c4a6f95540c15c6a65f36a6dd0a45e7a2f", GitTreeState:"clean", GoVersion:"go1.16.5"}
Output of
kubectl version
:Client Version: version.Info{Major:"1", Minor:"21", GitVersion:"v1.21.2", GitCommit:"092fbfbf53427de67cac1e9fa54aaa09a28371d7", GitTreeState:"clean", BuildDate:"2021-06-16T12:59:11Z", GoVersion:"go1.16.5", Compiler:"gc", Platform:"linux/amd64"}
Server Version: version.Info{Major:"1", Minor:"17", GitVersion:"v1.17.13", GitCommit:"30d651da517185653e34e7ab99a792be6a3d9495", GitTreeState:"clean", BuildDate:"2020-10-15T00:59:17Z", GoVersion:"go1.13.15", Compiler:"gc", Platform:"linux/amd64"}
Cloud Provider/Platform (AKS, GKE, Minikube etc.):
On-premise v1.17 k8s served by nutanix.
The text was updated successfully, but these errors were encountered: