lifecycle icon indicating copy to clipboard operation
lifecycle copied to clipboard

Published 20 hours ago verified publisher icon buildpacks

Allow env vars to skip vendor specific keychain

Open jabrown85 opened this issue 1 year ago • 2 comments

Summary

Vendor keychains can be slow or fail. This allows platform operators to skip them entirely.

Release notes

Allow platform operators the ability to skip vendor specific keychain implementations by setting CNB_REGISTRY_AUTH_KEYCHAIN_SKIP_AMAZON or CNB_REGISTRY_AUTH_KEYCHAIN_SKIP_AZURE.

Related

Resolves https://github.com/buildpacks/lifecycle/issues/1007#issuecomment-1561349524

Context

The Amazon/ECR one is terribly inefficient. It tries to query the metadata service and eventually fails after a few tries. This is not needed if the platform is providing the credentials via Default/Env. Selectively disabling seemed liked a decent enough idea.

jabrown85 avatar Mar 08 '24 18:03 jabrown85