add docker hub credentials

molgenis-jenkins/README.md

@@ -46,14 +46,15 @@ You can override the values at deploy time but otherwise also configure them
 Environment variables stored in molgenis-pipeline-env secret, to be added as environment variables
 in the slave pods.
 
-| Parameter                          | Description                              | Default         |
+| Parameter                              | Description                               | Default         |
-| ---------------------------------- | ---------------------------------------- | --------------- |
+| -------------------------------------- | ----------------------------------------- | --------------- |
-| `PipelineSecrets.Env.Replace`      | Replace molgenis-pipeline-env secret     | `true`          |
+| `PipelineSecrets.Env.Replace`          | Replace molgenis-pipeline-env secret      | `true`          |
-| `PipelineSecrets.Env.PGPPassphrase`| passphrase for the pgp signing key       | `literal:xxxx`  |
+| `PipelineSecrets.Env.PGPPassphrase`    | passphrase for the pgp signing key        | `literal:xxxx`  |
-| `PipelineSecrets.Env.CodecovToken` | token for codecov.io                     | `xxxx`          |
+| `PipelineSecrets.Env.CodecovToken`     | token for codecov.io                      | `xxxx`          |
-| `PipelineSecrets.Env.GitHubToken`  | token for GH molgenis-jenkins user       | `xxxx`          |
+| `PipelineSecrets.Env.GitHubToken`      | token for GH molgenis-jenkins user        | `xxxx`          |
-| `PipelineSecrets.Env.NexusPassword`| token for molgenis-jenkins user in NEXUS | `xxxx`          |
+| `PipelineSecrets.Env.NexusPassword`    | token for molgenis-jenkins user in NEXUS  | `xxxx`          |
-| `PipelineSecrets.Env.SonarToken`   | token for sonarcloud.io                  | `xxxx`          |                                                            |
+| `PipelineSecrets.Env.DockerHubPassword`| token for molgenis user in hub.docker.com | `xxxx`          |
+| `PipelineSecrets.Env.SonarToken`       | token for sonarcloud.io                   | `xxxx`          |                                                            |
 
 ### File
 

molgenis-jenkins/templates/molgenis-jenkins-dockerhub-secret.yaml

@@ -0,0 +1,16 @@
+apiVersion: v1
+kind: Secret
+metadata:
+# this is the jenkins id.
+  name: "molgenis-jenkins-dockerhub-secret"
+  labels:
+# so we know what type it is.
+    "jenkins.io/credentials-type": "usernamePassword"
+  annotations: {
+# description - can not be a label as spaces are not allowed
+    "jenkins.io/credentials-description" : "user to authenticate against GOGS (git.webhosting.rug.nl)"
+  }
+type: Opaque
+data:
+  username: {{ "molgenis" | b64enc | quote }}
+  password: {{ .Values.PipelineSecrets.Env.DockerHubPassword | b64enc | quote }}

molgenis-jenkins/values.yaml

@@ -269,6 +269,8 @@ PipelineSecrets:
     SonarToken: xxxx
     # Password Local NEXUS
     NexusPassword: xxxx
+    # Password hub.docker.com
+    DockerHubPassword: xxxx
   File:
     # Set to false to keep existing secret
     Replace: true