How can we use OIDC to pull docker image in GCP?

janpaologo · October 15, 2024, 12:13am

Hi! We integrated our CircleCI pipeline to GCP using OIDC by following this guide: Using OpenID Connect tokens in jobs - CircleCI

Then now, we want to have a docker executor wherein the image is stored in GCP. There’s this guide: Authorize Google Cloud SDK - CircleCI but it uses a GCLOUD_SERVICE_KEY which defeats the purpose of OIDC.

This is our current definition in config.yml that we’re trying to migrate to OIDC

executors:
  docker:
    docker:
      - image: us.gcr.io/...
        auth:
          username: _json_key
          password: $GCLOUD_SERVICE_KEY

How can we use OIDC to pull docker image in GCP?

Thank you!

Topic		Replies	Views
Authenticated docker pulls for GCP Artifact Registry? Build Environment docker , circle-yml , auth , gcp	2	6001	March 22, 2022
Walk-through - OIDC to GCP Integrations and Accounts	0	2470	May 28, 2022
Docker AWS ECR auth with oidc role doesn't seem to be working Build Environment ecr , docker , auth	7	987	November 14, 2024
GCR orb missing OIDC support Orbs	0	320	January 17, 2024
Google Cloud / GCP convenience image Build Environment convenience-images	0	925	January 24, 2020

How can we use OIDC to pull docker image in GCP?

Related topics