// RegistryListTags returns the list of images instances obtained from all tags existing in the registry
func RegistryListTags(image *imagename.ImageName, auth *docker.AuthConfigurations) (images []*imagename.ImageName, err error) {
var (
name = image.Name
registry = image.Registry
)
regAuth, err := GetAuthForRegistry(auth, image)
if err != nil {
return nil, fmt.Errorf("Failed to get auth token for registry: %s, make sure you are properly logged in using `docker login` or have AWS credentials set in case of using ECR", image)
}
// XXX: AWS ECR Registry API v2 does not support listing tags
// wo we just return a single image tag if it exists and no wildcards used
if image.IsECR() {
log.Debugf("ECR detected %s", registry)
if !image.IsStrict() {
return nil, fmt.Errorf("Amazon ECR does not support tags listing, therefore image wildcards are not supported, sorry: %s", image)
}
if exists, err := ecrImageExists(image, regAuth); err != nil {
return nil, err
} else if exists {
log.Debugf("ECR image %s found in the registry", image)
images = append(images, image)
}
return
}
if registry == "" {
registry = "registry-1.docker.io"
if !strings.Contains(name, "/") {
name = "library/" + name
}
}
var (
tg = tags{}
url = fmt.Sprintf("https://%s/v2/%s/tags/list?page_size=9999&page=1", registry, name)
)
log.Debugf("Listing image tags from the remote registry %s", url)
if err := registryGet(url, regAuth, &tg); err != nil {
return nil, err
}
log.Debugf("Got %d tags from the remote registry for image %s", len(tg.Tags), image)
for _, t := range tg.Tags {
candidate := imagename.New(image.NameWithRegistry(), t)
if image.Contains(candidate) || image.Tag == candidate.Tag {
images = append(images, candidate)
}
}
return
}
// GetAuthForRegistry extracts desired docker.AuthConfiguration object from the
// list of docker.AuthConfigurations by registry hostname
func GetAuthForRegistry(auth *docker.AuthConfigurations, image *imagename.ImageName) (result docker.AuthConfiguration, err error) {
registry := image.Registry
// The default registry is "index.docker.io"
if registry == "" || registry == "registry-1.docker.io" {
registry = "index.docker.io"
}
// Optionally override auth took via aws-sdk (through ENV vars)
if image.IsECR() {
if awsRegAuth, err := GetECRAuth(registry, image.GetECRRegion()); err != nil && err != credentials.ErrNoValidProvidersFoundInChain {
return result, err
} else if awsRegAuth.Username != "" {
return awsRegAuth, nil
}
}
if auth == nil {
return
}
if result, ok := auth.Configs[registry]; ok {
return result, nil
}
if result, ok := auth.Configs["https://"+registry]; ok {
return result, nil
}
if result, ok := auth.Configs["https://"+registry+"/v1/"]; ok {
return result, nil
}
// not sure /v2/ is needed, but just in case
if result, ok := auth.Configs["https://"+registry+"/v2/"]; ok {
return result, nil
}
if result, ok := auth.Configs["*"]; ok {
return result, nil
}
return
}