Build container image in ACK cluster and push it to ACR with service account token

I knew that ACK support RRSA authentication. so I just want not to generate AccessKey and attach it to the pod env due to security concern.

There are any way to use service account attach to the runner pod to generate a temporary password to push the image to ACR?

Solution

Yes. That's possible. Here is an example of this case: https://github.com/AliyunContainerService/ack-ram-tool/tree/kaniko-example/examples/rrsa/kaniko-in-ack

Alibaba Cloud Terraform Apply - ErrorCode: RISK.RISK_CONTROL_REJECTION & ErrorCode: Forbidden.RiskControl
"ValueError: Timezone offset does not match system offset: 28800 != 7200. Please, check your config files."
How to move local directories to Alibaba Cloud OSS using ossutil tool?
Regexp instruction in SQL
Build container image in ACK cluster and push it to ACR with service account token
Where does Ali Cloud keep a full list of availability zones?
troubles generating signature for alibaba cloud
Save DataFrame to CSV or Text to Alicloud OSS
DTS task failed, DTS-077100: Record Replicator error in table asyncprocess.outgoing_bot. cause by jdbc Operation failed
Failed to connect to cc-clickhouse.ads.aliyuncs.com port 8443: Operation timed out
How can I get the account ID number programmatically with Aliyun Python SDK?
How to bulk upload Recipient lists in Alibaba Cloud Direct Mail?
Ruby on Rails can't load after deploy to Alibaba ECS
Migrate CyberPanel with everything to a new CyberPanel on different VPS
How do I install the "sparse_dot_topn" Package in Anaconda Installer?
Public DNS (IPv4) on alibaba cloud as use for other clouds?
Cross Account access in Alibaba Cloud
I just Need to create centralized DNS/LDAP for 3 cloud provider AWS, GCP, Alibaba
Error creating bean with name 'projectController': Unsatisfied dependency expressed through field 'service';
Alibaba ActionTrail records disappearing
Alibaba Cloud third party firewall scenario can you guide
How can I restrict access to a file on OSS while still allowing download using wget or curl
Terraform / alicloud : create an ECS instance with multiple data disks
Cannot ping alibaba ECS instance
Getting Subscription and PayAsYouGo prices for Alibaba products using API/SDK
Does Alibaba Cloud support Text Transcribe?
Alibaba Cloud - Kubernetes to RDS how to limit whitelist?
How to access MERN application deployed to alibaba cloud in the browser
Public DNS (IPv4) on alibaba
Alibaba ACP question about CDN(NEED EXPLAIN)