R
Railway•13mo ago
whalemare

How to pull from private docker registry?

I don't want to use railway as build-machine, but only as 'cloud' for my service. How I can use private docker image here?
14 Replies
Percy
Percy•13mo ago
Project ID: 855671b7-88eb-4afa-9a53-6b654c4ae8c9
whalemare
whalemare•13mo ago
855671b7-88eb-4afa-9a53-6b654c4ae8c9
Brody
Brody•13mo ago
private images are not currently supported, it is on the roadmap though
philipahlberg
philipahlberg•13mo ago
Is there anywhere we can track progress on this feature?
Brody
Brody•13mo ago
doesnt look like there is anything official in https://feedback.railway.app/ but it will eventually be supported, can i ask whats wrong with using railway's builder? its not like they charge for it lol
philipahlberg
philipahlberg•13mo ago
In my case, the build needs a little bit of setup with build-time secrets. I have an existing CI job that does this, so it would be convenient to have Railway just grab the resulting image.
Brody
Brody•13mo ago
I agree that it would definitely be convenient if railway could grab that image, but at the same time would the same build be impossible to setup on railway?
philipahlberg
philipahlberg•13mo ago
I'm not sure, I'm trying to figure that out now. I would need a way to access secrets before building the image. Does Railway have any secrets management?
Brody
Brody•13mo ago
there's service variables that you can access during the build in your dockerfile
philipahlberg
philipahlberg•13mo ago
Those are plain variables though, and available as runtime environment variables, correct? I'd like these to not be accessible outside the build.
Brody
Brody•13mo ago
why can't the variables be available during runtime?
philipahlberg
philipahlberg•13mo ago
To limit exposure. They are not needed at runtime.
Brody
Brody•13mo ago
if you dont expose them, they wont be exposed 🙂
BrianJM
BrianJM•13mo ago
An exploited instance would be the primary concern (for me). A script that dumps environment variables would expose them all. Could a script be executed on deployment (entry point) that clears the environment variables that should never be exposed or used within the app?
Want results from more Discord servers?
Add your server