Image Pull from Private Gitlab Registry [Access Forbidden]

JupyterHub Zero to JupyterHub on Kubernetes
1

Hello,

I am currently facing an issue blocking me from pulling images from my Private Gitlab Container Registry. I am using JupyterHub Kubernetes deployment via Helm.

Image and secret configuration:

singleuser:
  image:
    name: myapp.com/repo-name/myimage
    tag: '0.1'
  imagePullSecret:
    email: <email>
    enabled: true
    password: <password>
    registry: myapp.com
    username: <username>

Failed to pull image "myurl.com/myimage:0.1": 
rpc error: code = Unknown desc = Error response from daemon: 
Get https://myurl.com/v2/repo-name/myimage/manifests/0.1: denied: access forbidden

I believe the v2 and manifests appended to the URL are specific to DockerHub, causing it to return forbidden. The docs mention DockerHub is used by default, is there an option or flag I am missing to override this?

I have verified:

  1. The credentials are correct
  2. singleuser-image-credentials pre-pull Kubernetes secret is created with correct credentials

Any help on this is greatly appreciated!

2

ping @consideRatio - Jupyter master shi-fu (:

3

This ended up being an issue with the my self-hosted container registry, enabling SSL pass-through fixed this issue.

1 Like
4

Thanks for reporting back the resolution @jd0x :heart:!

Iā€™m sorry for not failing to reply on this, I remember reading and failing to figure out what can have gone wrong and then lost track of it.

5

No problem! It was a peculiar, edge case scenario.

Happy to help :slight_smile: