mirror of
https://github.com/docker/login-action.git
synced 2026-04-24 15:38:21 +08:00
4bcfaae325
Implement native OIDC-based authentication for Chainguard's container registry, following the same pattern as the existing AWS ECR integration. When registry is set to cgr.dev, the action automatically exchanges a GitHub Actions OIDC token with Chainguard's STS endpoint for a short-lived registry credential, removing the need for chainctl or long-lived pull tokens. New inputs: chainguard (auto/true/false), chainguard-identity. Signed-off-by: Augustus Nguyen <theflash28012002@gmail.com>
43 lines
1.3 KiB
YAML
43 lines
1.3 KiB
YAML
# https://help.github.com/en/articles/metadata-syntax-for-github-actions
|
|
name: 'Docker Login'
|
|
description: 'GitHub Action to login against a Docker registry'
|
|
author: 'docker'
|
|
branding:
|
|
icon: 'anchor'
|
|
color: 'blue'
|
|
|
|
inputs:
|
|
registry:
|
|
description: 'Server address of Docker registry. If not set then will default to Docker Hub'
|
|
required: false
|
|
username:
|
|
description: 'Username used to log against the Docker registry'
|
|
required: false
|
|
password:
|
|
description: 'Password or personal access token used to log against the Docker registry'
|
|
required: false
|
|
ecr:
|
|
description: 'Specifies whether the given registry is ECR (auto, true or false)'
|
|
required: false
|
|
chainguard:
|
|
description: 'Specifies whether the given registry is Chainguard (auto, true or false)'
|
|
required: false
|
|
chainguard-identity:
|
|
description: 'Chainguard identity to assume for OIDC-based authentication'
|
|
required: false
|
|
scope:
|
|
description: 'Scope for the authentication token'
|
|
required: false
|
|
logout:
|
|
description: 'Log out from the Docker registry at the end of a job'
|
|
default: 'true'
|
|
required: false
|
|
registry-auth:
|
|
description: 'Raw authentication to registries, defined as YAML objects'
|
|
required: false
|
|
|
|
runs:
|
|
using: 'node24'
|
|
main: 'dist/index.js'
|
|
post: 'dist/index.js'
|