Missing scope in bearer auth challenge when fetching from private quay.io repository #2248

bb4242 · 2016-03-03T23:12:02Z

I'm trying to use rkt to pull a docker image from a private quay.io repository. I've set up my credentials according to the instructions here. My /etc/rkt/auth.d/quay.json file looks like this:

{
        "rktKind": "dockerAuth",
        "rktVersion": "v1",
        "registries": ["quay.io"],
        "credentials": {
                "user": "my_user",
                "password": "my_password"
        }
}

However, when I do

# rkt fetch --insecure-options=image docker://quay.io/my_organization/my_image:tag

I get this error: fetch: missing scope in bearer auth challenge. Any ideas what might be wrong? Thanks!

The text was updated successfully, but these errors were encountered:

iaguis · 2016-03-04T11:33:53Z

@dgonyeo

cgonyeo · 2016-03-04T19:14:56Z

Yup, I can reproduce this. I'll see if I can come up with a fix. Sorry about that.

bb4242 · 2016-03-04T19:37:29Z

No worries, thanks for your help! :)

cgonyeo · 2016-03-05T19:07:00Z

And here's the fix: appc/docker2aci#126. Once that gets merged I'll make a PR against rkt to bump the version of docker2aci it uses.

bb4242 · 2016-03-05T22:05:21Z

Sounds good, thanks again!

On Sat, Mar 5, 2016 at 11:07 AM, Derek Gonyeo notifications@github.com
wrote:

And here's the fix: appc/docker2aci#126
appc/docker2aci#126. Once that gets merged I'll
make a PR against rkt to bump the version of docker2aci it uses.

—
Reply to this email directly or view it on GitHub
#2248 (comment).

bb4242 · 2016-03-08T01:17:57Z

Cool, looks like appc/docker2aci#126 was merged. Any chance you could bump the version in rkt now? I'd be glad to test the fix. :)

bb4242 · 2016-03-08T01:19:45Z

Sorry, didn't mean to click "close" quite yet... :P

cgonyeo · 2016-03-08T01:52:25Z

I'll try to put together the PR for rkt to bump docker2aci tomorrow, unless someone else wants to beat me to it.

On Mar 7, 2016, at 20:20, Brett Bethke notifications@github.com wrote:

Sorry, didn't mean to click "close" quite yet... :P

―
Reply to this email directly or view it on GitHub.

bb4242 · 2016-03-09T22:54:38Z

Cool, just created #2267. I verified that it works for me (I can pull from my private quay.io account now).

cgonyeo · 2016-03-09T23:03:33Z

Thanks, sorry about me being slow in getting around to that.

On Wed, Mar 9, 2016 at 5:54 PM, Brett Bethke notifications@github.com
wrote:

Cool, just created #2267 #2267. I
verified that it works for me (I can pull from my private quay.io account
now).

—
Reply to this email directly or view it on GitHub
#2248 (comment).

bb4242 · 2016-03-09T23:06:24Z

No problem! Haha, I was excited to test it so I figured I'd go ahead. Thanks for fixing the root issue in docker2aci. :)

This pulls in the latest docker2aci. Fixes rkt#2248.

cgonyeo self-assigned this Mar 4, 2016

bb4242 closed this as completed Mar 8, 2016

bb4242 reopened this Mar 8, 2016

bb4242 mentioned this issue Mar 9, 2016

Bump docker2aci to v0.9.1 #2267

Merged

bb4242 pushed a commit to bb4242/rkt that referenced this issue Mar 14, 2016

Godeps: update docker2aci to v0.9.1.

86cc2ea

This pulls in the latest docker2aci. Fixes rkt#2248.

iaguis closed this as completed in #2267 Mar 14, 2016

lucab unassigned cgonyeo Apr 5, 2017

charlessolar mentioned this issue Jun 1, 2017

Missing scope in bearer auth challenge when fetching from private repository vmware/vic#5338

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Missing scope in bearer auth challenge when fetching from private quay.io repository #2248

Missing scope in bearer auth challenge when fetching from private quay.io repository #2248

Missing scope in bearer auth challenge when fetching from private quay.io repository #2248

Missing scope in bearer auth challenge when fetching from private quay.io repository #2248

Comments