Update pipeline drone-kaniko-harness

feat: [CI-16588]: Add support to PLUGIN_TAR_PATH, PLUGIN_SOURCE_TAR_PATH and PLUGIN_PUSH_ONLY to kaniko-ecr (#141 )
* Add support for tar-path, source-tar-path and push-only operations * Updated cmd/kaniko-ecr/main.go * Updated cmd/kaniko-ecr/main.go * Update cmd/kaniko-ecr/main.go
2026-06-20 16:20:38 +08:00 · 2025-04-09 19:19:27 +05:30 · 2025-03-24 21:31:18 +05:30 · 2025-03-20 19:10:13 +05:30
2 changed files with 19 additions and 48 deletions
@@ -12,32 +12,6 @@ pipeline:
        build: <+input>
        sparseCheckout: []
  stages:
-    - stage:
-        name: Manager Approval
-        identifier: Manager_Approval
-        description: ""
-        type: Approval
-        spec:
-          execution:
-            steps:
-              - step:
-                  name: CI Manager Approval
-                  identifier: CI_Manager_Approval
-                  type: HarnessApproval
-                  timeout: 1d
-                  spec:
-                    approvalMessage: |-
-                      Please review the following information
-                      and approve the pipeline progression
-                    includePipelineExecutionHistory: true
-                    approvers:
-                      minimumCount: 1
-                      disallowPipelineExecutor: false
-                      userGroups:
-                        - CI_Manager
-                    isAutoRejectEnabled: false
-                    approverInputs: []
-        tags: {}
    - parallel:
        - stage:
            name: linux-amd64
@@ -655,13 +629,13 @@ pipeline:
                          nodeName: manifest_<+matrix.repo>
                  - step:
                      type: Plugin
-                      name: Manifest_kaniko
+                      name: Manifest_kaniko191
                      identifier: Manifest_kaniko
                      spec:
                        connectorRef: Plugins_Docker_Hub_Connector
                        image: plugins/manifest
                        settings:
-                          auto_tag: "true"
+                          auto_tag: "false"
                          spec: docker/<+matrix.repo>/manifest-kaniko1.9.1.tmpl
                          username: drone
                          password: <+secrets.getValue("Plugins_Docker_Hub_Pat")>
@@ -679,3 +653,4 @@ pipeline:
                          nodeName: manifest_<+matrix.repo>
        when:
          pipelineStatus: Success
+  allowStageExecutions: true
@@ -879,6 +879,18 @@ func getOidcCreds(oidcToken, assumeRole string) (string, string, string, error)
 	return *result.Credentials.AccessKeyId, *result.Credentials.SecretAccessKey, *result.Credentials.SessionToken, nil
 }

+func createECRSession(region, accessKey, secretKey, sessionToken string) *ecrv1.ECR {
+	sess := session.Must(session.NewSession(&awsv1.Config{
+		Region: awsv1.String(region),
+		Credentials: credentials.NewStaticCredentials(
+			accessKey,
+			secretKey,
+			sessionToken,
+		),
+	}))
+	return ecrv1.New(sess)
+}
+
 func handlePushOnly(c *cli.Context) error {
 	sourceTarPath := c.String("source-tar-path")
 	if sourceTarPath == "" {
@@ -909,31 +921,15 @@ func handlePushOnly(c *cli.Context) error {
 		if err != nil {
 			return fmt.Errorf("failed to get OIDC credentials: %v", err)
 		}
-		
-		sess := session.Must(session.NewSession(&awsv1.Config{
-			Region: awsv1.String(c.String("region")),
-			Credentials: credentials.NewStaticCredentials(
-				accessKey,
-				secretKey,
-				sessionToken,
-			),
-		}))
-		svc = ecrv1.New(sess)
+
+		svc = createECRSession(c.String("region"), accessKey, secretKey, sessionToken)
 	} else if assumeRole := c.String("assume-role"); assumeRole != "" {
 		accessKey, secretKey, sessionToken, err := getAssumeRoleCreds(c.String("region"), assumeRole, c.String("external-id"), "")
 		if err != nil {
 			return fmt.Errorf("failed to get assume role credentials: %v", err)
 		}
-		
-		sess := session.Must(session.NewSession(&awsv1.Config{
-			Region: awsv1.String(c.String("region")),
-			Credentials: credentials.NewStaticCredentials(
-				accessKey,
-				secretKey,
-				sessionToken,
-			),
-		}))
-		svc = ecrv1.New(sess)
+
+		svc = createECRSession(c.String("region"), accessKey, secretKey, sessionToken)
 	} else {
 		// Use direct credentials or IAM role
 		sess := session.Must(session.NewSession(&awsv1.Config{
Author	SHA1	Message	Date
ompragash.viswanathan@harness.io	474a6a8d28	Update pipeline drone-kaniko-harness	2025-04-09 19:19:27 +05:30
OP (oppenheimer)	58bd727c07	feat: [CI-16588]: Add support to PLUGIN_TAR_PATH, PLUGIN_SOURCE_TAR_PATH and PLUGIN_PUSH_ONLY to kaniko-ecr (#141 ) * Add support for tar-path, source-tar-path and push-only operations * Updated cmd/kaniko-ecr/main.go * Updated cmd/kaniko-ecr/main.go * Update cmd/kaniko-ecr/main.go	2025-03-24 21:31:18 +05:30
ci-reporunner	a73b8ee28d	Update pipeline drone-kaniko-harness (#142 ) Co-authored-by: ompragash.viswanathan@harness.io <ompragash.viswanathan@harness.io>	2025-03-20 19:10:13 +05:30