Quay.io backend S3 storage #1612
Replies: 4 comments 1 reply
-
Bostjan- we actually document this thru OpenShift: https://docs.openshift.com/container-platform/4.11/installing/install_config/configuring-firewall.html <https://docs.openshift.com/container-platform/4.11/installing/install_config/configuring-firewall.html>
Hope that helps,
Bill Dettelback
He/Him
Sr. Engineering Manager, Quay / OpenShift Registry
Red Hat <https://www.redhat.com/>
<https://www.redhat.com/>
… On Nov 7, 2022, at 8:01 AM, Bostjan Bozic ***@***.***> wrote:
Hello,
I wonder if someone can point me to documentation (or provide me with a list) regarding Quay's backing S3 buckets?
Reason why I would need this information is that we are using AWS VPC S3 gateway endpoint with Endpoint policy and I need to whitelist quay.io there (traffic goes through VPC S3 endpoint, since CloudFront is pointing toward S3 buckets for image layers.
Thank you and best regards,
Bostjan
—
Reply to this email directly, view it on GitHub <#1612>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AABQYQXZJ45CYXXYVUP46D3WHD4S5ANCNFSM6AAAAAARZFKBEM>.
You are receiving this because you are subscribed to this thread.
|
Beta Was this translation helpful? Give feedback.
-
Hello Bill, thank you for fast reply on this. Perfect, for some reason I was going through Quay code and docs, never considered checking OpenShift docs :) Adding Thank you again! |
Beta Was this translation helpful? Give feedback.
-
@BostjanBozic how did you added the bucket in your policy? by following name Please let me know. Thanks |
Beta Was this translation helpful? Give feedback.
-
@prashant0085 I added is as following (added some other ones there as well to cover DockerHub, gcr.io and some others (GetObject permission is added there):
|
Beta Was this translation helpful? Give feedback.
-
Hello,
I wonder if someone can point me to documentation (or provide me with a list) regarding Quay's backing S3 buckets?
Reason why I would need this information is that we are using AWS VPC S3 gateway endpoint with Endpoint policy and I need to whitelist quay.io there (traffic goes through VPC S3 endpoint, since CloudFront is pointing toward S3 buckets for image layers.
Thank you and best regards,
Bostjan
Beta Was this translation helpful? Give feedback.
All reactions