A guide to configuring a private container registry for your truss
AWS_IAM
authentication method in Truss.
aws_access_key_id
and aws_secret_access_key
respectively.
AWS_IAM
authentication method when setting up your Truss. The config.yaml
file should look something like this:
aws_access_key_id_secret_name
and aws_secret_access_key_secret_name
options
under docker_auth
:
DOCKER_REGISTRY_{aws account id}.dkr.ecr.{us-east-1}.amazonaws.com
with the Base64-encoded secret
as the value.
secrets
section of the config.yaml
to allow this model to access the secret when it is pushed.
gcp-service-account
(or similar) with the JSON key blob as the value.
secrets
section of the config.yaml
to allow this model to access the secret when it is pushed.
docker_auth
section of your base_image:
to ensure that the service account authentication method will be used.secret_name
should match the name of the secret that is contains the JSON key blob.
DOCKER_REGISTRY_{us-west2}-docker.pkg.dev
with the Base64-encoded secret
as the value.
secrets
section of the config.yaml
to allow this model to access the secret when it is pushed.
DOCKER_REGISTRY_https://index.docker.io/v1/
with the Base64-encoded secret
as the value.
secrets
section of the config.yaml
to allow this model to access the secret when it is pushed.
config.yaml
: