Skip to content

Commit

Permalink
Add docker.io to the whitelisted registries when loading an IIB
Browse files Browse the repository at this point in the history 
Medical diagnosis for example uses docker.io/obsidiandynamics/kafdrop:latest
which would be denied by policy.
  • Loading branch information
@mbaldessari
mbaldessari committed Aug 1, 2023
1 parent 35e64a1 commit 81ea894
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion ansible/roles/iib_ci/tasks/setup-internal-registry.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -45,7 +45,7 @@

- name: Set registry allowedRegistries
ansible.builtin.shell: >
oc patch image.config.openshift.io/cluster --patch "{\"spec\":{\"registrySources\":{\"allowedRegistries\":[ \"registry.stage.redhat.io\", \"registry.access.redhat.com\", \"registry.connect.redhat.com\", \"ghcr.io\", \"gcr.io\", \"quay.io\", \"registry.redhat.io\",
oc patch image.config.openshift.io/cluster --patch "{\"spec\":{\"registrySources\":{\"allowedRegistries\":[ \"registry.stage.redhat.io\", \"registry.access.redhat.com\", \"registry.connect.redhat.com\", \"ghcr.io\", \"gcr.io\", \"quay.io\", \"registry.redhat.io\", \"docker.io\",
\"registry-proxy.engineering.redhat.com\", \"image-registry.openshift-image-registry.svc:5000\", \"{{ registry_route }}\"]}}}" --type=merge
- name: Set registry insecureRegistries
Expand Down

0 comments on commit 81ea894

Please sign in to comment.