summaryrefslogtreecommitdiff
path: root/playbooks/roles/oci/templates/volumes/config.toml
diff options
context:
space:
mode:
Diffstat (limited to 'playbooks/roles/oci/templates/volumes/config.toml')
-rw-r--r--playbooks/roles/oci/templates/volumes/config.toml15
1 files changed, 9 insertions, 6 deletions
diff --git a/playbooks/roles/oci/templates/volumes/config.toml b/playbooks/roles/oci/templates/volumes/config.toml
index 6d2f199..520d6f6 100644
--- a/playbooks/roles/oci/templates/volumes/config.toml
+++ b/playbooks/roles/oci/templates/volumes/config.toml
@@ -18,18 +18,21 @@ root_dir = "/images"
endpoint = "http://127.0.0.1:4317"
sampling_rate = 1.0
-[identity.ci]
-username = "ci"
-password = "{{ simple_registry_password_argon_encoded }}"
+[identity.{{ ci_user }}]
+username = "{{ ci_user }}"
+password = "{{ ci_user_registry_password_argon_encoded }}"
[identity.readonly]
username = "readonly"
-password = "$argon2i$v=19$m=16,t=2,p=1$TjJyTEdIZUJ6dFZkdlZvSg$qf8vG09O93Z/9vUMCgWNtA" # readonly
+password = "$argon2i$v=19$m=16,t=2,p=1$TjJyTEdIZUJ6dFZkdlZvSg$qf8vG09O93Z/9vUMCgWNtA" # hash for "readonly"
-[repository."img"]
+{% for repo in oci_repos %}
+[repository."{{ repo }}"]
-[repository."img".access_policy]
+[repository."{{ repo }}".access_policy]
default_allow = false
rules = [
'request.action.startsWith("get-") || request.action.startsWith("list-") || identity.id == "ci"'
]
+{% endfor %}
+
generated by cgit v1.2.3-70-g09d2 (git 2.46.0) at 2025-09-23 23:11:29 +0000