-
Notifications
You must be signed in to change notification settings - Fork 35
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Testing registries for release 0.2.0 #147
Comments
I would like to contribute some testings, and some questions, please? Distribution, Basic-on-httpI believe I was able to test Basic-on-http using "distribution" ( Zot, Basic-on-httpI believe I was able to test Basic-on-http using "Zot" ( Distribution/Zot, using TokenI'm not sure if/how possible to test Token-on-http with either Distribution or Zot. Using TokenI'm having problem with Token-on-http/-https.
The error looks similar and getting Unauthorized when allegedly the token get used to upload blob. To check the server should answer as expected, I've used with the I don't recall this was a problem pre I'm running short of ideas how to resolve this issue, does anyone has any suggestion here, please?
|
response = self.session.request("GET", h.realm, params=params) |
and here:
Line 141 in caf8db5
response = self.session.request("GET", h.realm, params=params) |
I believe an effective workaround might be to do as follows:
import oras.client
client = oras.client.OrasClient(auth_backend="token", tls_verify=False)
client.session.verify = False
If I implement this workaround, I get back into the previous case (unable to actually use Token to push).
This is great - thank you! For each of the cases that don't work, it's a bit arduous but what I do is test in an interactive IPython terminal, so when it fails I have a catch in the code that does: import IPython
IPython.embed() And then it's possible to manually inspect and see what went wrong, and figure out how we might update an auth backend or (more reasonably) create a custom one to support the behavior. |
Thanks for the feedback; for better context, my question is about Token backend, is there a OCI registry servr which was modeled that after and for me attempt replicate a successful test, please? The reason I'm asking:
But instead:
I'm trying to understand which OCI registry, using Token based auth of Oras-py |
That's the reason we need testing and someone to closely inspect (interactively inspect) what is going on - the new auth setup likely needs development work so those cases work. I expected them to need some work. |
I see. Thanks for the feedback, I'll try to investigate further/report back/contribute. |
Thank you! And if there is a specific registry I can access as well, I can definitely help to reproduce (and then see if I can do a fix). |
Maybe we could add harbor to the registries. |
I did a little research: |
For Quay (in general, not necessarily In general, I would be happy to propose similarly to these:
If we agree with the approach in general of deploy some of the registries which can be self hosted by leveraging KinD in a GitHub action, I'm happy to contribute similarly here to oras-py. wdyt? |
@tarilabs and @mariusbertram I don't have bandwidth at the moment to work on these components, but I can fully support you and provide review for what you are able to contribute. Thank you! |
The current main branch has the TBA 0.2.0 release. I was waiting on getting a bit more testing of the new auth backend across registries of interest. Here is the list:
The text was updated successfully, but these errors were encountered: