torrust-tracker icon indicating copy to clipboard operation
torrust-tracker copied to clipboard

Published 20 hours ago verified publisher icon torrust

Docker Security Overhaul: Create Secure Credentials Guide

Open josecelano opened this issue 7 months ago • 0 comments

Write a guide on how to set up docker to store registry credentials safely. You'll only need this if you publish docker images manually. We are using workflows and storing a token as a GitHub secret.

Use:

  • pass
  • docker-credential-pass

To store registry credentials encrypted. The default behavior is base64.

# install dependencies
sudo apt install libsecret-1-0 gnupg2 pass

# install docker-credential-pass
wget https://github.com/docker/docker-credential-helpers/releases/download/v0.8.2/docker-credential-pass-v0.8.2.linux-amd64
sudo mv docker-credential-pass-v0.8.2.linux-amd64 /usr/local/bin/docker-credential-pass
sudo chmod +x /usr/local/bin/docker-credential-pass

# check
docker-credential-pass -v

pass init

josecelano avatar Apr 14 '25 16:04 josecelano