The quay builder uses a secure web socket and https to communicate with Quay enterprise. TLS certificates can be added to the builder by placing the CA in a local directory, bind-mounting it into the builder container, and running /usr/sbin/update-ca-certificates inside the container.
This can be simplified in a docker run command such as:
docker run -d --restart on-failure -e SERVER=wss://$QuayDNSorIP -v /path/to/certs:/usr/local/share/ca-certificates -v /var/run/docker.sock:/var/run/docker.sock quay.io/coreos/quay-builder:v2.4.0 /bin/sh -c "/usr/sbin/update-ca-certificates ; /quay-builder"
Please sign in to leave a comment.