fabric icon indicating copy to clipboard operation
fabric copied to clipboard

Published 20 hours ago verified publisher icon hyperledger

Support docker registry authentication when pulling chaincode builder images and chaincode runtime images

Open Alex-duzhichao opened this issue 4 years ago • 11 comments

When deploying fabric in enterprise's intranet (without the ability to access internet), users maybe upload chaincode builder images and chaincode runtime images to a private docker registry which requires authentication when pulling images. I think fabric can support this scenario by adding configuration in chaincode section of core.yaml, such as:

chaincode:
    registry:
        authentication:
              user: ****
              password: ****

and then uses this configuration for authentication when invoking docker's api .

Alex-duzhichao avatar Nov 03 '21 09:11 Alex-duzhichao

What do you think @mbwhite ?

denyeart avatar Nov 10 '21 06:11 denyeart

I can see that could be a useful addition certainly; we can currently configure what the chaincode builder images are, and that could quite easily be a private repo.

I'd suggest that we mark this as an Good First Issue, and ask for community contributions.

If possible,use the 'as-a-service' pattern for chaincode as this avoids these type of issues :-) Of course, might not be applicable in all cases.

mbwhite avatar Nov 10 '21 10:11 mbwhite

@mbwhite are there thoughts around deprecating the chaincode build service via the peer node? (i.e. making chaincode as a service a default option)

arsulegai avatar Feb 16 '22 12:02 arsulegai

@arsulegai Exactly.

mbwhite avatar Feb 17 '22 17:02 mbwhite

This feature request would then be void. Would you still recommend somebody spending time on this feature?

arsulegai avatar Feb 17 '22 21:02 arsulegai

honestly I wouldn't no.

mbwhite avatar Feb 18 '22 14:02 mbwhite

Thanks for the heads up.

On side notes: I had a first time contributor interested in Fabric, they found this issue to work on based on the issue tag. Do you have anything else for them to pick up?

arsulegai avatar Feb 18 '22 18:02 arsulegai

Hey @arsulegai and @mbwhite is this issue still available for resolving?

AyushRaj8271 avatar Mar 27 '22 10:03 AyushRaj8271

Hi! @mbwhite can you tell please, is it still needs resolving?

musinit avatar Apr 19 '22 13:04 musinit

Hello @musinit .. I don't believe that this needs resolving - the preferred solution would be the external chaincode-as-a-service feature.

mbwhite avatar Apr 19 '22 13:04 mbwhite

Maybe we will close this issue? I want to start coding on some 'good first issue' to dive deeper in fabric, but it's hard to find smth..

musinit avatar Apr 21 '22 07:04 musinit

Maybe we will close this issue?

+1

(alternatively, provide a link to the relevant code sections, thus a newcomer can take immediately a look at it)

ghost avatar Mar 30 '23 18:03 ghost

Since most production deployments use external builders or chaincode as a service, there isn't a need to make the default builder more complicated. The default builder is typically used in Fabric trials where the public images can be pulled. I'll go ahead and close this issue.

denyeart avatar Apr 03 '23 16:04 denyeart