#### Setting your own Docker configuration file (advanced)
There might be cases where you need to provide the complete [Docker configuration file](https://docs.docker.com/engine/reference/commandline/cli/#configuration-files):
...
...
@@ -641,6 +637,9 @@ List of requirements before using this variant for publishing your container ima
| `GCP_RELEASE_OIDC_PROVIDER` | Workload Identity Provider to push the release image _(only define if different from default)_ | _none_ |
| `GCP_RELEASE_OIDC_ACCOUNT` | Service Account to use to push the release image _(only define if different from default)_ | _none_ |
:warning: if using Kaniko, don't forget to either create the cache repository (snapshot image repository + `/cache`) or override `$KANIKO_SNAPSHOT_IMAGE_CACHE`
to use the snapshot image repository (will host your snapshot image as well as cached layers).
| `TBC_AWS_PROVIDER_IMAGE` | The [AWS Auth Provider](https://gitlab.com/to-be-continuous/tools/aws-auth-provider) image to use (can be overridden) | `$CI_REGISTRY/to-be-continuous/tools/aws-auth-provider:master` |
| `AWS_REGION` | Default region (where the ECR registry is located) | _none_ |
| `AWS_SNAPSHOT_REGION` | Region of the ECR registry for the snapshot image _(only define if different from default)_ | _none_ |
| `AWS_RELEASE_REGION` | Region of the ECR registry for the release image _(only define if different from default)_ | _none_ |
:warning: if using Kaniko, don't forget to either create the cache repository (snapshot image repository + `/cache`) or override `$KANIKO_SNAPSHOT_IMAGE_CACHE`
to use the snapshot image repository (will host your snapshot image as well as cached layers).
##### OIDC authentication config
This is the recommended authentication method. In order to use it, first carefuly follow [GitLab's documentation](https://docs.gitlab.com/ee/ci/cloud_services/aws/),
"description":"Default region (where the ECR registry is located)"
},
{
"name":"AWS_SNAPSHOT_REGION",
"description":"Region of the ECR registry for the snapshot image _(only define if different from default)_",
"advanced":true
},
{
"name":"AWS_RELEASE_REGION",
"description":"Region of the ECR registry for the release image _(only define if different from default)_",
"advanced":true
},
{
"name":"AWS_OIDC_AUD",
"description":"The `aud` claim for the JWT token _(only required for [OIDC authentication](https://docs.gitlab.com/ee/ci/cloud_services/aws/))_",
"default":"$CI_SERVER_URL",
"advanced":true
},
{
"name":"AWS_OIDC_ROLE_ARN",
"description":"Default IAM Role ARN associated with GitLab _(only required for [OIDC authentication](https://docs.gitlab.com/ee/ci/cloud_services/aws/))_"
},
{
"name":"AWS_SNAPSHOT_OIDC_ROLE_ARN",
"description":"IAM Role ARN associated with GitLab for the snapshot image _(only required for [OIDC authentication](https://docs.gitlab.com/ee/ci/cloud_services/aws/) and if different from default)_",
"advanced":true
},
{
"name":"AWS_RELEASE_OIDC_ROLE_ARN",
"description":"IAM Role ARN associated with GitLab for the release image _(only required for [OIDC authentication](https://docs.gitlab.com/ee/ci/cloud_services/aws/) and if different from default)_",
"advanced":true
},
{
"name":"AWS_ACCESS_KEY_ID",
"description":"Default access key ID (only required for basic authentication)",
"secret":true,
"advanced":true
},
{
"name":"AWS_SECRET_ACCESS_KEY",
"description":"Default secret access key (only required for basic authentication)",
"secret":true,
"advanced":true
},
{
"name":"AWS_SNAPSHOT_ACCESS_KEY_ID",
"description":"Access key ID for the snapshot image (only required for basic authentication and if different from default)",
"secret":true,
"advanced":true
},
{
"name":"AWS_SNAPSHOT_SECRET_ACCESS_KEY",
"description":"Secret access key for the snapshot image (only required for basic authentication and if different from default)",
"secret":true,
"advanced":true
},
{
"name":"AWS_RELEASE_ACCESS_KEY_ID",
"description":"Access key ID for the release image (only required for basic authentication and if different from default)",
"secret":true,
"advanced":true
},
{
"name":"AWS_RELEASE_SECRET_ACCESS_KEY",
"description":"Secret access key for the release image (only required for basic authentication and if different from default)",