How to use podman secrets together with the quayconfig.yml

7 views

Skip to first unread message

Flomickl

unread,

Jul 26, 2024, 5:02:12 PM7/26/24

to quay-sig

Hi,

I posted this question already on GitHub but I want to ask here again:
https://github.com/quay/quay/discussions/3006

I am currently using podman version 4.9.4-rhel
and I want to use podman secrets combined with the quay config.yml

So with

echo "my-super-secret-email-password" | podman secret create email-secret -

I would like to use this for example with the email like here [1]

MAIL_PASSWORD: <USE SECRET HERE>

If I add the secret to my podman run like

podman run -d \
  --name quay \
  --network quay \
  -v ./config/quay:/quay-registry/conf/stack:ro,Z \
  -v ./data/quay/registry:/datastorage/registry:Z \
  -e QUAY_VERSION=3.11.1 \
  -e QUAY_HOTRELOAD=true \
  -e DEBUGLOG=false \
  -e IGNORE_VALIDATION=true \
  -e QUAYRUN=/tmp \
  -e WORKER_COUNT_UNSUPPORTED_MINIMUM=1 \
  -e WORKER_COUNT=1 \
  --secret email-secret \
  quay.io/projectquay/quay:3.11.1

it is accessible in the container under /run/secrets/email-secret

As long I could not find any PASSWORD_FILE Option, it there an easy way to pass it here?
Something similar should be available in OpenShift with a similar concept.

The end usage should be similar, or?

[1] https://docs.redhat.com/en/documentation/red_hat_quay/3.8/html/configure_red_hat_quay/config-fields-intro#config-fields-mail

Reply all

Reply to author

Forward

0 new messages