This message was deleted Rancher Users #rke2

Join Slack

This message was deleted.

# rke2

adamant-kite-43734

05/16/2024, 10:46 AM

This message was deleted.

powerful-librarian-10572

05/16/2024, 10:52 AM

https://helm.sh/docs/helm/helm_registry_login/

Copy code

--key-file string    identify registry client using this SSL key file

is an available argument

👍 1

creamy-pencil-82913

05/16/2024, 4:56 PM

no, not supported at the moment. I guess we could make it so that if the HelmChart’s Spec.AuthSecret pointed to a TLS secret, we would use that for tls client auth.

creamy-pencil-82913

05/16/2024, 5:37 PM

https://github.com/k3s-io/klipper-helm/pull/78

better-animal-75203

05/17/2024, 6:27 AM

So current workaround for now would be using "set.spec" ,right?

creamy-pencil-82913

05/17/2024, 6:53 AM

No, set is passed through to the --set flag. There is no way to add arbitrary flags to the helm command.

better-animal-75203

05/17/2024, 8:58 AM

Our private helm repo only support tls client auth, so I am not sure how can I make it work then. Any workaround if you know?

better-animal-75203

05/17/2024, 9:01 AM

May be if I pull it using normal helm command(passing certs) . then base64 encode the downloaded helm tar and add it into the helm "spec.chartContent"

creamy-pencil-82913

05/17/2024, 4:48 PM

That would work

creamy-pencil-82913

05/17/2024, 4:49 PM

You're the first person I've seen using TLS client auth for a helm repo!

3 Views

Open in Slack

Previous Next