-
|
Hi All, I'm hoping someone might be able to help. I'm trying to implement: #1618 via a custom container image. I'm using a self-hosted GitLab instance container registry, and am using AWS EKS managed node group with the Bottlerocket AMI ( Userdata addition: [[settings.container-registry.credentials]]
registry = "gitlab.domain.com:5050/bottlerocket-os-ephemeral-disk"
username = "bottlerocket-image"
password = "<snipped>"
[settings.bootstrap-containers.setup-ephemeral-disks]
source = "gitlab.domain:5050/bottlerocket-os-ephemeral-disk:latest-xfs"
mode = "always"
essential = true |
Beta Was this translation helpful? Give feedback.
Replies: 2 comments 1 reply
-
|
Hello @BenB196 could you please provide the logs of the failed bootstrap containers? You can use the configurations that you have, but instead of Is your custom gitlab endpoint behind https? If so, did you updated the CA store through the API? |
Beta Was this translation helpful? Give feedback.
-
|
Hi @BenB196, The settings are mapped to containerd's configuration for registry credentials as shown in https://github.com/containerd/containerd/blob/release/1.6/docs/cri/registry.md#configure-registry-credentials
Please try that out and let us know how it goes. |
Beta Was this translation helpful? Give feedback.
-
|
Thanks, that did the trick. I guess I assumed that the registry |
Beta Was this translation helpful? Give feedback.
Hi @BenB196,
container-registry.credentials[].registryshould be the registry host for your container registry and not the image repository URL. In this case, the registry host would be "gitlab.domain.com:5050".The settings are mapped to containerd's configuration for registry credentials as shown in https://github.com/containerd/containerd/blob/release/1.6/docs/cri/registry.md#configure-registry-credentials
Specially this part pertains to how
container-registry.credentials[].registryshould be set:Please try that out and let us know how it goes.