bitnami
/
minideb
mirror of https://github.com/bitnami/minideb.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Enable content trust only when pushing to DockerHub (#57) 

The result of pushing to GCR or Quay.io with content trust enabled is unknown, so I rather avoid it for now.
This commit is contained in:
Alejandro Ruiz 2018-09-20 14:06:07 +02:00 committed by GitHub
parent 76256c1844
commit 8367d275c8
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
pushall
View File

@ -25,17 +25,18 @@ if [ -n "${GCR_KEY:-}" ]; then
gcloud auth activate-service-account "$GCR_EMAIL" --key-file <(echo "$GCR_KEY")
fi
ENABLE_DOCKER_CONTENT_TRUST=0
if [ -n "${DOCKER_CONTENT_TRUST_REPOSITORY_PASSPHRASE:-}" -a -n "${DOCKER_CONTENT_TRUST_REPOSITORY_KEY:-}" ]; then
tmpdir=$(mktemp -d)
(cd "${tmpdir}" && bash -c 'echo -n "${DOCKER_CONTENT_TRUST_REPOSITORY_KEY}" | base64 -d > key')
chmod 400 "${tmpdir}/key"
docker trust key load "${tmpdir}/key"
rm -rf "${tmpdir}"
export DOCKER_CONTENT_TRUST=1
export ENABLE_DOCKER_CONTENT_TRUST=1
fi
for DIST in $DISTS; do
docker push "${BASENAME}:${DIST}"
DOCKER_CONTENT_TRUST=${ENABLE_DOCKER_CONTENT_TRUST} docker push "${BASENAME}:${DIST}"
docker push "${QUAY_BASENAME}:${DIST}"
gcloud docker -- push "${GCR_BASENAME}:${DIST}"
done