jetstack-secure icon indicating copy to clipboard operation
jetstack-secure copied to clipboard
verified publisher icon jetstack

Check the presence of the images after releasing

Open wallrj opened this issue 1 year ago • 1 comments 

          **Unrelated:** I think we should also check the presence of the images after releasing. Just to double check. Do you think this check should be part as the release process @wallrj?

To check that the automation went through, check that the 3 public images are available:

docker run -it quay.io/jetstack/preflight:v0.1.49 version
docker run -it quay.io/jetstack/venafi-agent:v0.1.49 version
docker run -it registry.venafi.cloud/venafi-agent/venafi-agent:v0.1.49 version

Then, you will need to use venctl to check the two private registries:

  1. curl -sSfL https://dl.venafi.cloud/venctl/latest/installer.sh | bash

  2. Go to https://ven-tlspk.venafi.cloud/platform-settings/user-preferences?key=api-keys. Log in using the username [email protected] and the password here). Copy the API key for the next step (click "Generate" if the API key doesn't already exist).

  3. Set the APIKEY env variable:

    APIKEY=...

  4. Docker login to private-registry.venafi.cloud:

    venctl iam service-account registry create --name "$USER Temp" \
  --vcp-region US \
  --output dockerconfig \
  --output-file dockerconfig \
  --api-key $APIKEY
docker login private-registry.venafi.cloud \
  | --username $(cat dockerconfig | jq '.. | select(.username?).username' -r) \
  | --password $(cat dockerconfig | jq '.. | select(.username?).auth            | @base64d' -r | cut -d: -f2) |

  5. Go to https://ven-tlspk-eu.venafi.cloud/platform-settings/user-preferences?key=api-keys. Log in using the username [email protected] and the password here). Click "Generate" and copy the API key for the next step.

  6. Set the APIKEY env variable:

    APIKEY=...

  7. Docker login to private-registry.venafi.eu:

    venctl iam service-account registry create --name "$USER Temp" \
  --vcp-region EU \
  --output dockerconfig \
  --output-file dockerconfig \
  --api-key $APIKEY
docker login private-registry.venafi.eu \
  | --username $(cat dockerconfig | jq '.. | select(.username?).username' -r) \
  | --password $(cat dockerconfig | jq '.. | select(.username?).auth            | @base64d' -r | cut -d: -f2) |

And now:

docker run -it private-registry.venafi.cloud/venafi-agent/venafi-agent:v0.1.49 version
docker run -it private-registry.venafi.eu/venafi-agent/venafi-agent:v0.1.49 version

Originally posted by @maelvls in https://github.com/jetstack/jetstack-secure/issues/548#issuecomment-2222998317

wallrj avatar Jul 12 '24 13:07 wallrj

xref: https://github.com/jetstack/jetstack-secure/issues/586

maelvls avatar Oct 11 '24 10:10 maelvls