You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Trying to use a policy image from an AWS private repository fails to download all image layers. Getting a 400 Bad Request when trying to download the blob.
I'm not very familiar with the oci downloader. @carabasdaniel you and @DerGut have more insight into this. @DerGut anything you see that can help to resolve this.
Hi @ashutosh-narkar, I'm not very familiar with the authorizer plugin mechanism used by the rest client. In this scenario I suspect the issue might be related to something like #6728.
I've tried to use the policy CLI with the private registry and that one seems to work without any issues using the default docker resolver in the OCI package. I suspect the rest client used by the docker resolver might be the cause behind this as I mentioned.
I hope @DerGut knows this better and can help us out.
Trying to use a policy image from an AWS private repository fails to download all image layers. Getting a 400 Bad Request when trying to download the blob.
Steps to reproduce:
aws ecr get-login-password --region us-east-2
opa run -c <config.yaml> -l debug
From my initial investigation it seems that only the tarball layer fails to download while the manifest and config layer are loaded.
I've also tried using the rest aws plugin but getting the same results.
Can someone please take a look at what might be the cause of this issue and if there is a possible workaround ?
The text was updated successfully, but these errors were encountered: