Insufficient scope error when contacting the registry
Summary
Insufficient scope error when contacting the registry
Steps to reproduce
- git clone git@github.com:waterkip/docker-registry.git
- git checkout gitlab
- edit examples/gitlab.pl to have your username and access token
- docker build -t gitlab .
- docker run --rm -ti gitlab bash
- perl -Ilib examples/gitlab.pl
What is the current bug behavior?
You will see an error:
'www-authenticate' => 'Bearer realm="https://gitlab.com/jwt/auth",service="container_registry",scope="registry:catalog:*",error="insufficient_scope"',
What is the expected correct behavior?
I'm expecting to see a list.
I should be more precise. I either expect the _catalog call to work, or I'd expect the JWT call to fail because it cannot support the scope.
Output of checks
This bug happens on GitLab.com
Possible lacking feature
I was looking for relevant information and came across this: https://gitlab.com/gitlab-org/gitlab-ce/issues/36075
I'm not sure what is implemented and what is not implemented. So I decided to raise a bug. If it is currently not supported, I'm fine with that conclusion :) I'd also like to know a rough ETA of when this can/will be fixed.