And in my experience is the only one that has RBAC and can be deployed on premise and that actually works, I’ve tried everything at this point

kirici 5 days ago | parent | next [-]

I am currently looking into zot, what were your blockers/hiccups with it?

	▲	tetha 5 days ago \| parent [-]
		When we looked at modernizing our image hosting, it came down to Zot vs Harbor, and we preferred Zot as it looked easier to deploy. Just a go binary with a few environment variables connecting to our minio, what could be easier? However, when getting the config prod-ready, we started to trip over one thing after the other. First, my colleague was struggling to get the scale-out clustering to work in our container management. Right, use the other deployment way for HA. Then we found that apparently, if you enable OIDC, all other authentication methods get deactivated, so suddenly container hosts would have to login with tokens... somehow? And better hope your OIDC provider never goes down. And then we found a bug on top that Zot possibly doesn't remove blobs from minio during GC. At that point we reconsidered and went with Harbor.

cyberpunk 5 days ago | parent | prev [-]

? GitLab?