Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/werkspot/registry-secret-manager
Manages the creation and distribution of credentials for container registries
https://github.com/werkspot/registry-secret-manager
Last synced: about 2 months ago
JSON representation
Manages the creation and distribution of credentials for container registries
- Host: GitHub
- URL: https://github.com/werkspot/registry-secret-manager
- Owner: Werkspot
- Created: 2020-11-19T12:21:57.000Z (about 4 years ago)
- Default Branch: master
- Last Pushed: 2023-07-25T15:12:47.000Z (over 1 year ago)
- Last Synced: 2024-06-20T22:33:09.880Z (6 months ago)
- Language: Go
- Size: 99.6 KB
- Stars: 2
- Watchers: 6
- Forks: 0
- Open Issues: 12
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Container Registry Secret Manager
Manages the creation and distribution of credentials for container registries.
## Installation
```
$ git clone https://github.com/Werkspot/registry-secret-manager
$ helm upgrade registry-secret-manager --namespace registry-secret-manager --values helm/values.yaml registry-secret-manager/helm
```
## TODO
- [x] Add support for DockerHub and ECR registries
- [x] Listen for new ServiceAccounts creation via a webhook
- [x] Reconcile ServiceAccounts (create Secrets and inject its name in `ImagePullSecrets`)
- [x] Reconcile Secrets (renew ECR tokens every 3 hours)
- [ ] Optimize ECR token usage (now each request/reconcile performs a new login)
- [x] Make DockerHub and ECR registries optional
- [ ] Use the same logging client for Controller-Runtime, Kubernetes Client, Webhook and Reconcilers
- [ ] Make the Helm Chart available somewhere