Handle nil OCI authenticator with malformed registry

Fixes #896 Signed-off-by: Adrien Fillon <adrien.fillon@manomano.com>
fluxcd · Sep 13, 2022 · 9a0e5bb · 9a0e5bb
1 parent 9e853a9
commit 9a0e5bb
Showing 1 changed file with 8 additions and 1 deletion.
diff --git a/controllers/ocirepository_controller.go b/controllers/ocirepository_controller.go
@@ -672,7 +672,14 @@ func oidcAuth(ctx context.Context, url, provider string) (authn.Authenticator, e
  opts.GcpAutoLogin = true
  }
 
- return login.NewManager().Login(ctx, u, ref, opts)
+ authenticator, err := login.NewManager().Login(ctx, u, ref, opts)
+ if err != nil {
+ return nil, err
+ } else if authenticator == nil {
+ return nil, fmt.Errorf("could not authenticate to OCI provider %s with URL %s", provider, url)
+ }
+
+ return authenticator, nil
 }
 
 // craneOptions sets the auth headers, timeout and user agent