Hello good people!
Need some help in configuring private docker repository.
So situation is:
Repository is set up and working good. But I need to split permission a bit.
For example one team have some images that they don’t won’t to be accessible by others.
Is there any way with nexus mechanism to do that? I was thinking of content selectors but not sure how to properly configure them… In my case it is not an option to set up more private registries (we have many teams and it makes no sense for our company to set up private registry for every team).
I’m thinking of to do this that way:
nexus.registry.com/public/ - that is directory where everyone can push,pull,read all images.
nexus.registry.com/private/ - directory which can access 1-2 teams or users and this directory must be not visible to others team\users.
When I try to do this via content selector I can’t reach needed result
First selector: format==“docker” and path=~"./private/."
Second selector: format==“docker” and path=~"./public/."
Privileges for first selector: add,read
Privileges for second selector: add,read
Then I created roles and assign them to users. At this moment I have 403 error every time when I’m trying to pull\push images from Nexus no mater what roles (private or public) I use.
Will be glad for any advise.