1OC SECRETS(1)                      June 2016                     OC SECRETS(1)
2
3
4

NAME

6       oc secrets new-dockercfg - DEPRECATED: create secret
7
8
9

SYNOPSIS

11       oc secrets new-dockercfg [OPTIONS]
12
13
14

DESCRIPTION

16       DEPRECATED: This command has been moved to "oc create secret"
17
18
19

OPTIONS

21       --allow-missing-template-keys=true
22           If  true, ignore any errors in templates when a field or map key is
23       missing in the template. Only applies to  golang  and  jsonpath  output
24       formats.
25
26
27       --docker-email=""
28           Email for Docker registry
29
30
31       --docker-password=""
32           Password for Docker registry authentication
33
34
35       --docker-server=" ⟨https://index.docker.io/v1/"⟩
36           Server location for Docker registry
37
38
39       --docker-username=""
40           Username for Docker registry authentication
41
42
43       -o, --output=""
44           Output  format.  One  of: json|yaml|name|go-template-file|template‐
45       file|template|go-template|jsonpath|jsonpath-file.
46
47
48       --template=""
49           Template string or path to template file  to  use  when  -o=go-tem‐
50       plate,  -o=go-template-file.  The template format is golang templates [
51http://golang.org/pkg/text/template/#pkg-overview⟩].
52
53
54

OPTIONS INHERITED FROM PARENT COMMANDS

56       --allow_verification_with_non_compliant_keys=false
57           Allow  a  SignatureVerifier  to  use  keys  which  are  technically
58       non-compliant with RFC6962.
59
60
61       --alsologtostderr=false
62           log to standard error as well as files
63
64
65       --application_metrics_count_limit=100
66           Max number of application metrics to store (per container)
67
68
69       --as=""
70           Username to impersonate for the operation
71
72
73       --as-group=[]
74           Group  to  impersonate for the operation, this flag can be repeated
75       to specify multiple groups.
76
77
78       --azure-container-registry-config=""
79           Path to the file containing Azure container registry  configuration
80       information.
81
82
83       --boot_id_file="/proc/sys/kernel/random/boot_id"
84           Comma-separated  list  of files to check for boot-id. Use the first
85       one that exists.
86
87
88       --cache-dir="/builddir/.kube/http-cache"
89           Default HTTP cache directory
90
91
92       --certificate-authority=""
93           Path to a cert file for the certificate authority
94
95
96       --client-certificate=""
97           Path to a client certificate file for TLS
98
99
100       --client-key=""
101           Path to a client key file for TLS
102
103
104       --cloud-provider-gce-lb-src-cidrs=130.211.0.0/22,209.85.152.0/22,209.85.204.0/22,35.191.0.0/16
105           CIDRs opened in GCE firewall for LB traffic proxy  health checks
106
107
108       --cluster=""
109           The name of the kubeconfig cluster to use
110
111
112       --container_hints="/etc/cadvisor/container_hints.json"
113           location of the container hints file
114
115
116       --containerd="unix:///var/run/containerd.sock"
117           containerd endpoint
118
119
120       --context=""
121           The name of the kubeconfig context to use
122
123
124       --default-not-ready-toleration-seconds=300
125           Indicates    the    tolerationSeconds   of   the   toleration   for
126       notReady:NoExecute that is added by default to every pod that does  not
127       already have such a toleration.
128
129
130       --default-unreachable-toleration-seconds=300
131           Indicates  the  tolerationSeconds  of  the  toleration for unreach‐
132       able:NoExecute that is added by default to  every  pod  that  does  not
133       already have such a toleration.
134
135
136       --docker="unix:///var/run/docker.sock"
137           docker endpoint
138
139
140       --docker-tls=false
141           use TLS to connect to docker
142
143
144       --docker-tls-ca="ca.pem"
145           path to trusted CA
146
147
148       --docker-tls-cert="cert.pem"
149           path to client certificate
150
151
152       --docker-tls-key="key.pem"
153           path to private key
154
155
156       --docker_env_metadata_whitelist=""
157           a  comma-separated  list of environment variable keys that needs to
158       be collected for docker containers
159
160
161       --docker_only=false
162           Only report docker containers in addition to root stats
163
164
165       --docker_root="/var/lib/docker"
166           DEPRECATED: docker root is read from docker info (this is  a  fall‐
167       back, default: /var/lib/docker)
168
169
170       --enable_load_reader=false
171           Whether to enable cpu load reader
172
173
174       --event_storage_age_limit="default=24h"
175           Max length of time for which to store events (per type). Value is a
176       comma separated list of key values, where  the  keys  are  event  types
177       (e.g.: creation, oom) or "default" and the value is a duration. Default
178       is applied to all non-specified event types
179
180
181       --event_storage_event_limit="default=100000"
182           Max number of events to store (per type). Value is  a  comma  sepa‐
183       rated  list  of  key values, where the keys are event types (e.g.: cre‐
184       ation, oom) or "default" and  the  value  is  an  integer.  Default  is
185       applied to all non-specified event types
186
187
188       --global_housekeeping_interval=0
189           Interval between global housekeepings
190
191
192       --housekeeping_interval=0
193           Interval between container housekeepings
194
195
196       --httptest.serve=""
197           if non-empty, httptest.NewServer serves on this address and blocks
198
199
200       --insecure-skip-tls-verify=false
201           If true, the server's certificate will not be checked for validity.
202       This will make your HTTPS connections insecure
203
204
205       --kubeconfig=""
206           Path to the kubeconfig file to use for CLI requests.
207
208
209       --log-flush-frequency=0
210           Maximum number of seconds between log flushes
211
212
213       --log_backtrace_at=:0
214           when logging hits line file:N, emit a stack trace
215
216
217       --log_cadvisor_usage=false
218           Whether to log the usage of the cAdvisor container
219
220
221       --log_dir=""
222           If non-empty, write log files in this directory
223
224
225       --logtostderr=true
226           log to standard error instead of files
227
228
229       --machine_id_file="/etc/machine-id,/var/lib/dbus/machine-id"
230           Comma-separated list of files to  check  for  machine-id.  Use  the
231       first one that exists.
232
233
234       --match-server-version=false
235           Require server version to match client version
236
237
238       -n, --namespace=""
239           If present, the namespace scope for this CLI request
240
241
242       --request-timeout="0"
243           The  length  of  time  to  wait before giving up on a single server
244       request. Non-zero values should contain a corresponding time unit (e.g.
245       1s, 2m, 3h). A value of zero means don't timeout requests.
246
247
248       -s, --server=""
249           The address and port of the Kubernetes API server
250
251
252       --stderrthreshold=2
253           logs at or above this threshold go to stderr
254
255
256       --storage_driver_buffer_duration=0
257           Writes  in  the  storage driver will be buffered for this duration,
258       and committed to the non memory backends as a single transaction
259
260
261       --storage_driver_db="cadvisor"
262           database name
263
264
265       --storage_driver_host="localhost:8086"
266           database host:port
267
268
269       --storage_driver_password="root"
270           database password
271
272
273       --storage_driver_secure=false
274           use secure connection with database
275
276
277       --storage_driver_table="stats"
278           table name
279
280
281       --storage_driver_user="root"
282           database username
283
284
285       --token=""
286           Bearer token for authentication to the API server
287
288
289       --user=""
290           The name of the kubeconfig user to use
291
292
293       -v, --v=0
294           log level for V logs
295
296
297       --version=false
298           Print version information and quit
299
300
301       --vmodule=
302           comma-separated list of pattern=N settings for  file-filtered  log‐
303       ging
304
305
306

EXAMPLE

308                # Create a new .dockercfg secret:
309                oc SECRET --docker-server=DOCKER_REGISTRY_SERVER --docker-username=DOCKER_USER --docker-password=DOCKER_PASSWORD --docker-email=DOCKER_EMAIL
310
311                # Create a new .dockercfg secret from an existing file:
312                oc secrets new SECRET path/to/.dockercfg
313
314                # Create a new .docker/config.json secret from an existing file:
315                oc secrets new SECRET .dockerconfigjson=path/to/.docker/config.json
316
317                # To add new secret to 'imagePullSecrets' for the node, or 'secrets' for builds, use:
318                oc edit SERVICE_ACCOUNT
319
320
321
322

SEE ALSO

324       oc-secrets(1),
325
326
327

HISTORY

329       June 2016, Ported from the Kubernetes man-doc generator
330
331
332
333Openshift                  Openshift CLI User Manuals            OC SECRETS(1)
Impressum