summaryrefslogtreecommitdiff
path: root/vendor/github.com/fsouza/go-dockerclient/auth.go
diff options
context:
space:
mode:
authorOpenShift Merge Robot <openshift-merge-robot@users.noreply.github.com>2021-03-29 20:36:07 +0000
committerGitHub <noreply@github.com>2021-03-29 20:36:07 +0000
commitf24fabba13df6d442b120cb88fa57287ab85e2de (patch)
tree109299ef9cd051e08380119b41288f970443ed2a /vendor/github.com/fsouza/go-dockerclient/auth.go
parentc8af1747320bb9506ab4ea80892f0dae81c03a95 (diff)
parent1386f90467e9111533742b40f91018f908efea81 (diff)
downloadpodman-f24fabba13df6d442b120cb88fa57287ab85e2de.tar.gz
podman-f24fabba13df6d442b120cb88fa57287ab85e2de.tar.bz2
podman-f24fabba13df6d442b120cb88fa57287ab85e2de.zip
Merge pull request #9868 from mheon/310_backports
Final backports for v3.1.0
Diffstat (limited to 'vendor/github.com/fsouza/go-dockerclient/auth.go')
-rw-r--r--vendor/github.com/fsouza/go-dockerclient/auth.go100
1 files changed, 100 insertions, 0 deletions
diff --git a/vendor/github.com/fsouza/go-dockerclient/auth.go b/vendor/github.com/fsouza/go-dockerclient/auth.go
index ee37a2331..bc949dc35 100644
--- a/vendor/github.com/fsouza/go-dockerclient/auth.go
+++ b/vendor/github.com/fsouza/go-dockerclient/auth.go
@@ -13,6 +13,7 @@ import (
"io/ioutil"
"net/http"
"os"
+ "os/exec"
"path"
"strings"
)
@@ -283,3 +284,102 @@ func (c *Client) AuthCheck(conf *AuthConfiguration) (AuthStatus, error) {
}
return authStatus, nil
}
+
+// helperCredentials represents credentials commit from an helper
+type helperCredentials struct {
+ Username string `json:"Username,omitempty"`
+ Secret string `json:"Secret,omitempty"`
+}
+
+// NewAuthConfigurationsFromCredsHelpers returns AuthConfigurations from
+// installed credentials helpers
+func NewAuthConfigurationsFromCredsHelpers(registry string) (*AuthConfiguration, error) {
+ // Load docker configuration file in order to find a possible helper provider
+ pathsToTry := cfgPaths(os.Getenv("DOCKER_CONFIG"), os.Getenv("HOME"))
+ if len(pathsToTry) < 1 {
+ return nil, errors.New("no docker configuration found")
+ }
+
+ provider, err := getHelperProviderFromDockerCfg(pathsToTry, registry)
+ if err != nil {
+ return nil, err
+ }
+
+ c, err := getCredentialsFromHelper(provider, registry)
+ if err != nil {
+ return nil, err
+ }
+
+ creds := new(AuthConfiguration)
+ creds.Username = c.Username
+ creds.Password = c.Secret
+ return creds, nil
+}
+
+func getHelperProviderFromDockerCfg(pathsToTry []string, registry string) (string, error) {
+ for _, path := range pathsToTry {
+ content, err := ioutil.ReadFile(path)
+ if err != nil {
+ // if we can't read the file keep going
+ continue
+ }
+
+ provider, err := parseCredsDockerConfig(content, registry)
+ if err != nil {
+ continue
+ }
+ if provider != "" {
+ return provider, nil
+ }
+ }
+ return "", errors.New("no docker credentials provider found")
+}
+
+func parseCredsDockerConfig(config []byte, registry string) (string, error) {
+ creds := struct {
+ CredsStore string `json:"credsStore,omitempty"`
+ CredHelpers map[string]string `json:"credHelpers,omitempty"`
+ }{}
+ err := json.Unmarshal(config, &creds)
+ if err != nil {
+ return "", err
+ }
+
+ provider, ok := creds.CredHelpers[registry]
+ if ok {
+ return provider, nil
+ }
+ return creds.CredsStore, nil
+}
+
+// Run and parse the found credential helper
+func getCredentialsFromHelper(provider string, registry string) (*helperCredentials, error) {
+ helpercreds, err := runDockerCredentialsHelper(provider, registry)
+ if err != nil {
+ return nil, err
+ }
+
+ c := new(helperCredentials)
+ err = json.Unmarshal(helpercreds, c)
+ if err != nil {
+ return nil, err
+ }
+
+ return c, nil
+}
+
+func runDockerCredentialsHelper(provider string, registry string) ([]byte, error) {
+ cmd := exec.Command("docker-credential-"+provider, "get")
+
+ var stdout bytes.Buffer
+
+ cmd.Stdin = bytes.NewBuffer([]byte(registry))
+ cmd.Stdout = &stdout
+
+ err := cmd.Run()
+ if err != nil {
+ return nil, err
+ }
+
+ return stdout.Bytes(), nil
+}