KubeZero/charts/kubeadm/templates/k8s-ecr-login-renew
2021-04-14 16:05:16 +02:00
..
cronjob.yaml feat: add runtimeclass for crio, reorg kubeadm for 1.20 2021-04-14 16:05:16 +02:00
README.md feat: add runtimeclass for crio, reorg kubeadm for 1.20 2021-04-14 16:05:16 +02:00
service-account.yml feat: add runtimeclass for crio, reorg kubeadm for 1.20 2021-04-14 16:05:16 +02:00

Create IAM role for ECR read-only access

  • Attach managed policy: AmazonEC2ContainerRegistryReadOnly

Create secret for IAM user for ecr-renew

`kubectl create secret -n kube-system generic ecr-renew-cred --from-literal=AWS_REGION=<AWS_REGION> --from-literal=AWS_ACCESS_KEY_ID=<AWS_SECRET_ID> --from-literal=AWS_SECRET_ACCESS_KEY=<AWS_SECRET_KEY>

Resources