-
Notifications
You must be signed in to change notification settings - Fork 705
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support for OCI registries in Flux plugin #5007
Comments
Hi Greg, could you update the current status of this issue and next steps planned? |
Current status: in progress.
These items are optional and can be addressed at any point in the future:
|
|
Current status:
|
This PR is still in progress with lots of changes coming in, so adding this as comment here rather than creating a new issue: The current redis cache for helm OCI repos is broken. It loads the initial state into the cache just fine, but when the state on the remote changes, such as:
will result in out-of-sync cache. Basically any change on remote server, the cache will get out of sync with the remote. The reason is that fluxcd chose not to implement a feature where the caller gets notified when source on remote changes (ref fluxcd/source-controller#839). I understand the seriousness of the issue and I am currently considering different fixes for this, such as:
will update this PR as I narrow the solution down |
fyi, flux v. 33 adds HelmRepository.spec.provider. I will need to find out more about it and whether it affects our code or not update Sept 7. The decision was to go ahead and add this as a feature. Implementation wise, I was thinking this:
|
Just FYI, this feature mentioned above appears to be something flux authors call "auto-login" or If I had to summarize this approach in one sentence it would something like "instead of |
Thanks for the info, Greg, that makes it more understandable. The term "contextual login" or "contextual auth" looks like a good fit for referring to it. Wondering how we can manage the feature from the UI point of view. For example: user creating a |
Haven't thought this far ahead yet. As a first cut I was thinking of having users pick from a fixed list. I haven't done enough research to see if it's possible to find out automatically. Flux guys chose to put the burden on the user, so there is that |
Status update: took 3 full days but I have now verified that the feature works as advertised in flux. That is, having the field |
I believe this issue can be now closed. All planned features have been implemented. If any new features rise we shall open separate PR targeting those |
This is a long-running issue I started a little over a month ago.
Flux CD added support for OCI registries recently
fluxcd/flux2#2597
My work is to expose this functionality to kubeapps end user via flux plugin.
Areas that I worked on so far:
(like an index for regular helm repositories)
U(pdate) implementation still pending.
docker api v2 compatible registry
https://github.com/opencontainers/distribution-spec/blob/main/spec.md#api using
ORAS v2 libraries. Works for GitHub (ghcr.io), others TBD
Full discussion here: Flux oci support 2 #4932. I stopped
when I got blocked by Support
last
parameter for listing catalog and tags oras-project/oras-go#196 below. Once I verify it is fixed and will pick upwhere I left off
Areas which I have not started yet:
because I wanted to see what flux engine really does on the server-side
I know I need to do the client-side tests.
Currently outstanding issues that will require verification and/or code changes when fixed:
last
parameter for listing catalog and tags oras-project/oras-go#196I plan to be updating this issue as I make further progress with OCI support in flux plugin
The text was updated successfully, but these errors were encountered: