I'm looking for advice on how to share our private Helm charts with clients. We also host private OCI images on Docker Hub, and I want a streamlined approach to give clients access to both our Helm charts and Docker images.
Should I add clients as team members in Docker Hub with read-only access? This way, they can access both the images and charts. However, I prefer not to make them sign in to Docker; I'd like to manage and distribute an access token instead, but Docker tokens are user-based. How do you handle this situation?
4 Answers
Have you considered using a dedicated Helm chart repository service? Services like Artifact Hub might be more suitable and could help you avoid the limitations of Docker Hub's access tokens.
If your clients can run an agent, check out Glasskube's distr. It’s great for distributing both Docker and Helm packaged applications efficiently.
We set up a dedicated customer group in Artifactory and created user accounts or tokens tied to that group. This way, customers can only fetch the charts from that specific repository without accessing anything else.
Another option is to share the source code with clients and let them build it themselves. Plus, you can also provide the artifacts as zip files if they prefer that approach.
But what about the Docker images? That might complicate things.