mirror of
https://github.com/kyverno/kyverno.git
synced 2025-03-06 16:06:56 +00:00
cbbd8488c8
Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com> Signed-off-by: Batuhan Apaydın <batuhan.apaydin@trendyol.com> Co-authored-by: Charles-Edouard Brétéché <charled.breteche@gmail.com>
50 lines
1.5 KiB
Go
50 lines
1.5 KiB
Go
package oci
|
|
|
|
import (
|
|
"io"
|
|
|
|
"github.com/awslabs/amazon-ecr-credential-helper/ecr-login"
|
|
"github.com/chrismellard/docker-credential-acr-env/pkg/credhelper"
|
|
"github.com/google/go-containerregistry/pkg/authn"
|
|
"github.com/google/go-containerregistry/pkg/authn/github"
|
|
"github.com/google/go-containerregistry/pkg/v1/google"
|
|
"github.com/google/go-containerregistry/pkg/v1/remote"
|
|
"github.com/spf13/cobra"
|
|
)
|
|
|
|
const (
|
|
policyConfigMediaType = "application/vnd.cncf.kyverno.config.v1+json"
|
|
policyLayerMediaType = "application/vnd.cncf.kyverno.policy.layer.v1+yaml"
|
|
)
|
|
|
|
var (
|
|
amazonKeychain = authn.NewKeychainFromHelper(ecr.NewECRHelper(ecr.WithLogger(io.Discard)))
|
|
azureKeychain = authn.NewKeychainFromHelper(credhelper.NewACRCredentialsHelper())
|
|
keychain = authn.NewMultiKeychain(
|
|
authn.DefaultKeychain,
|
|
google.Keychain,
|
|
github.Keychain,
|
|
amazonKeychain,
|
|
azureKeychain,
|
|
)
|
|
|
|
Get = remote.Get
|
|
Write = remote.Write
|
|
imageRef string
|
|
)
|
|
|
|
func Command() *cobra.Command {
|
|
cmd := &cobra.Command{
|
|
Use: "oci",
|
|
Long: `This command is one of the supported experimental commands, and its behaviour might be changed any time`,
|
|
Short: "pulls/pushes images that include policie(s) from/to OCI registries",
|
|
Example: "",
|
|
RunE: func(cmd *cobra.Command, args []string) error {
|
|
return cmd.Help()
|
|
},
|
|
}
|
|
cmd.PersistentFlags().StringVarP(&imageRef, "image", "i", "", "image reference to push to")
|
|
cmd.AddCommand(ociPullCommand())
|
|
cmd.AddCommand(ociPushCommand())
|
|
return cmd
|
|
}
|