Add the --tls-verify option to (skopeo logout)

The current implementation can actually contact the registry (if logout fails with "not logged in" but there are .docker/config.json credentials present), so provide a non-deprecated way to disable TLS. Signed-off-by: Miloslav Trmač <mitr@redhat.com>
2025-08-29 11:32:45 +00:00 · 2021-07-23 15:46:00 +02:00 · 2021-07-23 15:46:00 +02:00 · a6cf2f4293
commit a6cf2f4293
parent bd309aed2a
1 changed files with 8 additions and 1 deletions
--- a/cmd/skopeo/logout.go
+++ b/cmd/skopeo/logout.go
@ -4,12 +4,14 @@ import (
 	"io"

 	"github.com/containers/common/pkg/auth"
+	"github.com/containers/image/v5/types"
 	"github.com/spf13/cobra"
 )

 type logoutOptions struct {
 	global     *globalOptions
 	logoutOpts auth.LogoutOptions
+	tlsVerify  optionalBool
 }

 func logoutCmd(global *globalOptions) *cobra.Command {
@ -24,12 +26,17 @@ func logoutCmd(global *globalOptions) *cobra.Command {
 		Example: `skopeo logout quay.io`,
 	}
 	adjustUsage(cmd)
-	cmd.Flags().AddFlagSet(auth.GetLogoutFlags(&opts.logoutOpts))
+	flags := cmd.Flags()
+	optionalBoolFlag(flags, &opts.tlsVerify, "tls-verify", "require HTTPS and verify certificates when accessing the registry")
+	flags.AddFlagSet(auth.GetLogoutFlags(&opts.logoutOpts))
 	return cmd
 }

 func (opts *logoutOptions) run(args []string, stdout io.Writer) error {
 	opts.logoutOpts.Stdout = stdout
 	sys := opts.global.newSystemContext()
+	if opts.tlsVerify.present {
+		sys.DockerInsecureSkipTLSVerify = types.NewOptionalBool(!opts.tlsVerify.value)
+	}
 	return auth.Logout(sys, &opts.logoutOpts, args)
 }