Pulling OCI containers from own Registry

ihr · 2025-11-26T08:44:00+0100

Hi,

In our lab, we run our own OCI Container Registry and pulling from it requires user authentication. I’ve been searching the documentation about new LXC from OCI and can’t find a way to indicate the registry from which a container has to be pulled and the authentication mechanism to that registry. Can anyone point me to the right place?

Regards
Ignacio

fabian · 2025-11-26T08:55:57+0100

authentication is not (yet?) implemented. please file an enhancement request in our bugzilla!

ihr · 2025-11-26T10:49:22+0100

fabian said:
authentication is not (yet?) implemented. please file an enhancement request in our bugzilla!

Done, enhancement request filed, thank you for your prompt response.

fschauer · 2025-11-26T12:46:40+0100

As a workaround for now you can manually provide the credentials to skopeo directly via the host shell.

Code:

skopeo login <registry> -u <username> --authfile /run/containers/33/auth.json

This will ask for a password

Then grant the permissions to the www-data user

Code:

chown -R www-data /run/containers/33
chmod 755 /run/containers

Search

Search

Pulling OCI containers from own Registry

ihr

Member

fabian

Proxmox Staff Member

ihr

Member

fschauer

Proxmox Staff Member

We value your privacy