-
Notifications
You must be signed in to change notification settings - Fork 1.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
doc: Make it clearer what the auth documentation is about #7737 #7962
Open
leodahal4
wants to merge
5
commits into
tektoncd:main
Choose a base branch
from
leodahal4:main
base: main
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Commits on May 14, 2024
-
docs: update Overview section for authentication
This commit updates the Overview section of the authentication documentation to provide a clearer and more comprehensive explanation of how Tekton handles authentication for Git and Docker. The updated Overview section: - Lists the supported Secret types for Git and Docker authentication - Explains how TaskRuns and PipelineRuns access Secrets through their associated ServiceAccount and required annotations - Clearly separates the two stages of authentication: Pod scheduling/image pulling and Step execution - Describes the credential initialization process in a numbered list - Specifies the files/directories generated for Git and Docker authentication within the container - Mentions the specific rules for credential formatting and merging per Secret type The previous Overview section lacked clarity and completeness, which could lead to confusion for users. The updated section aims to provide a solid foundation for understanding Tekton's authentication mechanisms before diving into the details in the subsequent sections. Related issue: tektoncd#7737
Configuration menu - View commit details
-
Copy full SHA for 756bdf1 - Browse repository at this point
Copy the full SHA 756bdf1View commit details
Commits on May 19, 2024
-
fix(configuring-docker-authentication-for-docker): change on the grammer
and also the description, "When the Steps execute, Tekton uses those credentials to access the target Docker registry." has now been changed Changes to be committed: modified: docs/auth.md
Configuration menu - View commit details
-
Copy full SHA for 7d5b243 - Browse repository at this point
Copy the full SHA 7d5b243View commit details -
Configuration menu - View commit details
-
Copy full SHA for 4e95f12 - Browse repository at this point
Copy the full SHA 4e95f12View commit details
Commits on May 24, 2024
-
docs: clarify Docker authentication for image pulling and in-Pod
This commit updates the "Configuring Docker Authentication" section to provide a clearer distinction between the use cases of Docker authentication for: 1. Image Pulling Authentication: Using `dockercfg` and `dockerconfigjson` Secrets as `imagePullSecrets` to authenticate with Docker registries and pull container images during the Pod creation phase. 2. In-Pod Docker Authentication: Setting up Docker authentication within the Pod's container environment by generating a `~/.docker/config.json` file after the Pod is created and images are pulled. This authentication setup allows the Steps within the Pod to interact with Docker registries during execution. The section explains that the Docker authentication credentials used for in-Pod authentication are derived from the same Secrets specified as `imagePullSecrets`, and Tekton follows the credential formatting and merging rules defined by the Secret types. The commit also maintains the existing examples for defining the Secret and associating it with the ServiceAccount and Run. Resolves tektoncd#7737
Configuration menu - View commit details
-
Copy full SHA for d944b4c - Browse repository at this point
Copy the full SHA d944b4cView commit details
Commits on May 25, 2024
-
Configuration menu - View commit details
-
Copy full SHA for c37f814 - Browse repository at this point
Copy the full SHA c37f814View commit details
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.