Custom BlueBild Image on private repo

ucadi23 · August 23, 2024, 10:12pm

Hi,

I have created custom image in private repo. How to pull and rebase with authentication? I put ‘/etc/ostree/auth.json’ with login and password to Github but access is still “403 forbidden”.

rpm-ostree rebase ostree-unverified-registry:ghcr.io.....path_to_private_repo

stego · August 24, 2024, 8:50am

Relevant GitHub docs

ucadi23 · August 24, 2024, 9:33am

Solved. Thank you.

Short manaul for others:

Generate private classic token just to read packages
generate base46 from: username:privatetoken
create /etc/ostree/auth.json file
put authentication credentials there:

{
	"auths": {
		"ghcr.io": {
			"auth": "base64generatedcode"
		}
	}
}

Save the file
run the rebase command:
rpm-ostree rebase ostree-unverified-registry:ghcr.io ..... path_to_private_repo
and do other rebase tasks if needed

ucadi23 · August 31, 2024, 8:50am

Custom Bluebuild image cannot be signed:

rpm-ostree rebase ostree-unverified-registry:ghcr.io...... works
rpm-ostree rebase ostree-image-signed:docker://ghcr.io..... does not.

error:
Creating importer: Failed to invoke skopeo proxy method OpenImage: remote error: Running image docker://ghcr.io/...... is rejected by policy.

I thought I should add another scope on token generation page read:public_key alongside read:packages but it doesn’t help.

What’s the solution?

Topic		Replies	Views
rpm-ostree rebase Authentication Error for Custom GHCR.io Image General	1	565	March 22, 2024
Unable to run rpm-ostree upgrade Bluefin	2	467	May 18, 2024
Update trouble Bluefin	3	458	July 3, 2024
[Solved] help in creating a custom image General	2	146	December 6, 2023
Error when trying to rebase to Bluefin from Silverblue (Failed to invoke skopeo proxy method) Bluefin	5	953	April 28, 2024

Custom BlueBild Image on private repo

Related topics