1OC SECRETS(1) June 2016 OC SECRETS(1)
2
6 oc secrets new-dockercfg - DEPRECATED: create secret
7
11 oc secrets new-dockercfg [OPTIONS]
12
16 DEPRECATED: This command has been moved to "oc create secret"
17
21 --allow-missing-template-keys=true
22 If true, ignore any errors in templates when a field or map key is
23 missing in the template. Only applies to golang and jsonpath output
24 formats.
25 --docker-email=""
28 Email for Docker registry
29 --docker-password=""
32 Password for Docker registry authentication
33 --docker-server=" ⟨https://index.docker.io/v1/"⟩
36 Server location for Docker registry
37 --docker-username=""
40 Username for Docker registry authentication
41 -o, --output=""
44 Output format. One of: json|yaml|name|go-template-file|template‐
45 file|template|go-template|jsonpath|jsonpath-file.
46 --template=""
49 Template string or path to template file to use when -o=go-tem‐
50 plate, -o=go-template-file. The template format is golang templates [
51 ⟨http://golang.org/pkg/text/template/#pkg-overview⟩].
52
56 --allow_verification_with_non_compliant_keys=false
57 Allow a SignatureVerifier to use keys which are technically
58 non-compliant with RFC6962.
59 --alsologtostderr=false
62 log to standard error as well as files
63 --application_metrics_count_limit=100
66 Max number of application metrics to store (per container)
67 --as=""
70 Username to impersonate for the operation
71 --as-group=[]
74 Group to impersonate for the operation, this flag can be repeated
75 to specify multiple groups.
76 --azure-container-registry-config=""
79 Path to the file containing Azure container registry configuration
80 information.
81 --boot_id_file="/proc/sys/kernel/random/boot_id"
84 Comma-separated list of files to check for boot-id. Use the first
85 one that exists.
86 --cache-dir="/builddir/.kube/http-cache"
89 Default HTTP cache directory
90 --certificate-authority=""
93 Path to a cert file for the certificate authority
94 --client-certificate=""
97 Path to a client certificate file for TLS
98 --client-key=""
101 Path to a client key file for TLS
102 --cloud-provider-gce-lb-src-cidrs=130.211.0.0/22,209.85.152.0/22,209.85.204.0/22,35.191.0.0/16
105 CIDRs opened in GCE firewall for LB traffic proxy health checks
106 --cluster=""
109 The name of the kubeconfig cluster to use
110 --container_hints="/etc/cadvisor/container_hints.json"
113 location of the container hints file
114 --containerd="unix:///var/run/containerd.sock"
117 containerd endpoint
118 --context=""
121 The name of the kubeconfig context to use
122 --default-not-ready-toleration-seconds=300
125 Indicates the tolerationSeconds of the toleration for
126 notReady:NoExecute that is added by default to every pod that does not
127 already have such a toleration.
128 --default-unreachable-toleration-seconds=300
131 Indicates the tolerationSeconds of the toleration for unreach‐
132 able:NoExecute that is added by default to every pod that does not
133 already have such a toleration.
134 --docker="unix:///var/run/docker.sock"
137 docker endpoint
138 --docker-tls=false
141 use TLS to connect to docker
142 --docker-tls-ca="ca.pem"
145 path to trusted CA
146 --docker-tls-cert="cert.pem"
149 path to client certificate
150 --docker-tls-key="key.pem"
153 path to private key
154 --docker_env_metadata_whitelist=""
157 a comma-separated list of environment variable keys that needs to
158 be collected for docker containers
159 --docker_only=false
162 Only report docker containers in addition to root stats
163 --docker_root="/var/lib/docker"
166 DEPRECATED: docker root is read from docker info (this is a fall‐
167 back, default: /var/lib/docker)
168 --enable_load_reader=false
171 Whether to enable cpu load reader
172 --event_storage_age_limit="default=24h"
175 Max length of time for which to store events (per type). Value is a
176 comma separated list of key values, where the keys are event types
177 (e.g.: creation, oom) or "default" and the value is a duration. Default
178 is applied to all non-specified event types
179 --event_storage_event_limit="default=100000"
182 Max number of events to store (per type). Value is a comma sepa‐
183 rated list of key values, where the keys are event types (e.g.: cre‐
184 ation, oom) or "default" and the value is an integer. Default is
185 applied to all non-specified event types
186 --global_housekeeping_interval=0
189 Interval between global housekeepings
190 --housekeeping_interval=0
193 Interval between container housekeepings
194 --httptest.serve=""
197 if non-empty, httptest.NewServer serves on this address and blocks
198 --insecure-skip-tls-verify=false
201 If true, the server's certificate will not be checked for validity.
202 This will make your HTTPS connections insecure
203 --kubeconfig=""
206 Path to the kubeconfig file to use for CLI requests.
207 --log-flush-frequency=0
210 Maximum number of seconds between log flushes
211 --log_backtrace_at=:0
214 when logging hits line file:N, emit a stack trace
215 --log_cadvisor_usage=false
218 Whether to log the usage of the cAdvisor container
219 --log_dir=""
222 If non-empty, write log files in this directory
223 --logtostderr=true
226 log to standard error instead of files
227 --machine_id_file="/etc/machine-id,/var/lib/dbus/machine-id"
230 Comma-separated list of files to check for machine-id. Use the
231 first one that exists.
232 --match-server-version=false
235 Require server version to match client version
236 -n, --namespace=""
239 If present, the namespace scope for this CLI request
240 --request-timeout="0"
243 The length of time to wait before giving up on a single server
244 request. Non-zero values should contain a corresponding time unit (e.g.
245 1s, 2m, 3h). A value of zero means don't timeout requests.
246 -s, --server=""
249 The address and port of the Kubernetes API server
250 --stderrthreshold=2
253 logs at or above this threshold go to stderr
254 --storage_driver_buffer_duration=0
257 Writes in the storage driver will be buffered for this duration,
258 and committed to the non memory backends as a single transaction
259 --storage_driver_db="cadvisor"
262 database name
263 --storage_driver_host="localhost:8086"
266 database host:port
267 --storage_driver_password="root"
270 database password
271 --storage_driver_secure=false
274 use secure connection with database
275 --storage_driver_table="stats"
278 table name
279 --storage_driver_user="root"
282 database username
283 --token=""
286 Bearer token for authentication to the API server
287 --user=""
290 The name of the kubeconfig user to use
291 -v, --v=0
294 log level for V logs
295 --version=false
298 Print version information and quit
299 --vmodule=
302 comma-separated list of pattern=N settings for file-filtered log‐
303 ging
304
308 # Create a new .dockercfg secret:
309 oc SECRET --docker-server=DOCKER_REGISTRY_SERVER --docker-username=DOCKER_USER --docker-password=DOCKER_PASSWORD --docker-email=DOCKER_EMAIL
310 # Create a new .dockercfg secret from an existing file:
312 oc secrets new SECRET path/to/.dockercfg
313 # Create a new .docker/config.json secret from an existing file:
315 oc secrets new SECRET .dockerconfigjson=path/to/.docker/config.json
316 # To add new secret to 'imagePullSecrets' for the node, or 'secrets' for builds, use:
318 oc edit SERVICE_ACCOUNT
319
324 oc-secrets(1),
325
329 June 2016, Ported from the Kubernetes man-doc generator
330Openshift Openshift CLI User Manuals OC SECRETS(1)