apt auth.conf credentials
397 views
Skip to first unread message
Schultschik, Sven
Jun 18, 2021, 9:38:32 AM6/18/21
to kas-...@googlegroups.com
Hi all,
I’m currently working on integrating a restricted Debian package feed.
APT is using auth.conf file for this. It is working for me, but I now look into inject the auth file from outside, so I don’t have the credentials within my source code.
I could create my own kas image and mount the folder into it.
But there are already possibilities to inject KAS_SSH_DIR, AWS_CONFIG_FILE and GIT_CREDENTIAL_HELPER via environment variables etc.
Wouldn’t it be great to do the same for apt_auth.conf folder??
Regards
Sven
Jan Kiszka
Jun 18, 2021, 1:06:09 PM6/18/21
to Schultschik, Sven, kas-...@googlegroups.com
interface for injecting such a file into the build & target chroots. Or
does Isar already carry the builder's auth.conf into the chroots? If
not, start the discussion there.
Jan
--
Siemens AG, T RDA IOT
Corporate Competence Center Embedded Linux
Henning Schild
Jun 18, 2021, 7:29:33 PM6/18/21
to Jan Kiszka, Schultschik, Sven, kas-...@googlegroups.com
Am Fri, 18 Jun 2021 19:06:07 +0200
schrieb Jan Kiszka <jan.k...@siemens.com>:
Agreed, ssh and aws are concerned with bitbake-fetchers and clearly are
a kas-topic. When doing apt on top, very like with Isar, it needs to go
into Isar first.
apt in itself it not a bitbake and therefore not a kas thing, depending
on how isar would take it in ... it might turn out to be
directory-based, or maybe just env variables.
regards,
Henning
> Jan
>
schrieb Jan Kiszka <jan.k...@siemens.com>:
a kas-topic. When doing apt on top, very like with Isar, it needs to go
into Isar first.
apt in itself it not a bitbake and therefore not a kas thing, depending
on how isar would take it in ... it might turn out to be
directory-based, or maybe just env variables.
regards,
Henning
> Jan
>
Schultschik, Sven
Jun 21, 2021, 6:15:41 AM6/21/21
to henning...@siemens.com, jan.k...@siemens.com, kas-...@googlegroups.com
Hi,
good point. Sorry I'm not that deep in the isar meta classes, but I looked a little bit into the isar meta classes.
My first idea of how to integrate it would be to add into the buildchroot.bbclass in the buildchroot_do_mounts something like
cp -L /etc/apt/auth.conf.d/artifactory.conf '${BUILDCHROOT_DIR}/etc/apt/auth.conf.d/'
So if such a file would exist inside the container, it would be hard linke to the buildchroot-host
First try failed, but the question if I'm totally wrong or on the right track?
Thanks
Regards
Sven
Siemens Aktiengesellschaft: Vorsitzender des Aufsichtsrats: Jim Hagemann Snabe; Vorstand: Roland Busch, Vorsitzender; Cedrik Neike, Matthias Rebellius, Ralf P. Thomas, Judith Wiese; Sitz der Gesellschaft: Berlin und München, Deutschland; Registergericht: Berlin-Charlottenburg, HRB 12300, München, HRB 6684; WEEE-Reg.-Nr. DE 23691322
-----Ursprüngliche Nachricht-----
Von: Henning Schild <henning...@siemens.com>
Gesendet: Samstag, 19. Juni 2021 01:30
An: Kiszka, Jan (T RDA IOT) <jan.k...@siemens.com>
Cc: Schultschik, Sven (DI PA DCP R&D 2) <sven.sch...@siemens.com>; kas-...@googlegroups.com
Betreff: Re: apt auth.conf credentials
good point. Sorry I'm not that deep in the isar meta classes, but I looked a little bit into the isar meta classes.
My first idea of how to integrate it would be to add into the buildchroot.bbclass in the buildchroot_do_mounts something like
cp -L /etc/apt/auth.conf.d/artifactory.conf '${BUILDCHROOT_DIR}/etc/apt/auth.conf.d/'
So if such a file would exist inside the container, it would be hard linke to the buildchroot-host
First try failed, but the question if I'm totally wrong or on the right track?
Thanks
Regards
Sven
Siemens Aktiengesellschaft: Vorsitzender des Aufsichtsrats: Jim Hagemann Snabe; Vorstand: Roland Busch, Vorsitzender; Cedrik Neike, Matthias Rebellius, Ralf P. Thomas, Judith Wiese; Sitz der Gesellschaft: Berlin und München, Deutschland; Registergericht: Berlin-Charlottenburg, HRB 12300, München, HRB 6684; WEEE-Reg.-Nr. DE 23691322
-----Ursprüngliche Nachricht-----
Von: Henning Schild <henning...@siemens.com>
Gesendet: Samstag, 19. Juni 2021 01:30
An: Kiszka, Jan (T RDA IOT) <jan.k...@siemens.com>
Cc: Schultschik, Sven (DI PA DCP R&D 2) <sven.sch...@siemens.com>; kas-...@googlegroups.com
Betreff: Re: apt auth.conf credentials
Jan Kiszka
Jun 21, 2021, 9:40:02 AM6/21/21
to Schultschik, Sven (DI PA DCP R&D 2), kas-...@googlegroups.com, Schild, Henning (T RDA IOT SES-DE)
(at this stage).
Reply all
Reply to author
Forward
0 new messages