Reading dockercfg files for authenticating with private registries

hashicorp · Feb 6, 2016 · 1343e48 · 1343e48
1 parent 8701ce3
commit 1343e48
Show file tree

Hide file tree

Showing 2 changed files with 15 additions and 0 deletions.
diff --git a/client/driver/docker.go b/client/driver/docker.go
@@ -5,6 +5,7 @@ import (
 	"fmt"
 	"log"
 	"net"
+	"os"
 	"path/filepath"
 	"strconv"
 	"strings"
@@ -441,6 +442,17 @@ func (d *DockerDriver) Start(ctx *ExecContext, task *structs.Task) (DriverHandle
 			}
 		}
 
+		if authConfig := d.config.Read("docker.auth_config"); authConfig != "" {
+			if f, err := os.Open(authConfig); err == nil {
+				defer f.Close()
+				if authConfigurations, err := docker.NewAuthConfigurations(f); err == nil {
+					if authConfiguration, ok := authConfigurations.Configs[repo]; ok {
+						authOptions = authConfiguration
+					}
+				}
+			}
+		}
+
 		err = client.PullImage(pullOptions, authOptions)
 		if err != nil {
 			d.logger.Printf("[ERR] driver.docker: failed pulling container %s:%s: %s", repo, tag, err)

diff --git a/website/source/docs/drivers/docker.html.md b/website/source/docs/drivers/docker.html.md
@@ -247,6 +247,9 @@ The `docker` driver has the following host-level configuration options:
   to customize this if you use a non-standard socket (http or another
   location).
 
+* `docker.auth_config` - Allows an operator to specify a json file which is in
+  the dockercfg format containing authentication information for private registry. 
+
 * `docker.tls.cert` - Path to the server's certificate file (`.pem`). Specify
   this along with `docker.tls.key` and `docker.tls.ca` to use a TLS client to
   connect to the docker daemon. `docker.endpoint` must also be specified or