Offline mirror for Openshift 4!

In the following post, we are going to talk about how to mirror specific operators for Openshift 4.

Prerequisites

• Linux Operating System ( in the further steps example of this post, we are going to use Fedora Linux 36 (Workstation Edition) ).
• The host should have internet connectivity
• The host has already available the offline registry. For more details check the other post Offline registry for Openshift 4
• The host has already available the oc-client-client

Offiline mirroring

Step 1. Make sure you have the right pull-secret.json file

Go to the Download Openshift pull-secret to download the pull-secret file. Once you obtain the file check the following command to

Step 2. Modifying pull-secret file for offline-registry use

 cat ${HOME}/Downloads/pull-secret | jq . > /apps/registry/pull-secret.json

The following /apps/registry/pull-secret.json content would follow the following template:

{
  "auths": {
    "cloud.openshift.com": {
      "auth": "b3BlbnNo...",
      "email": "you@example.com"
    },
    "quay.io": {
      "auth": "b3BlbnNo...",
      "email": "you@example.com"
    },
    "registry.connect.redhat.com": {
      "auth": "NTE3Njg5Nj...",
      "email": "you@example.com"
    },
    "registry.redhat.io": {
      "auth": "NTE3Njg5Nj...",
      "email": "you@example.com"
    }
  }
}

Now we should add the section that describes the credentials to the offline registry:

"auths": {
    "<mirror_registry>": {
      "auth": "<credentials>",
      "email": "you@example.com"
  },

In the end the pull-secret.json should follow the following template:

{
  "auths": {
    "cloud.openshift.com": {
      "auth": "b3BlbnNo...",
      "email": "you@example.com"
    },
    "quay.io": {
      "auth": "b3BlbnNo...",
      "email": "you@example.com"
    },
    "registry.connect.redhat.com": {
      "auth": "NTE3Njg5Nj...",
      "email": "you@example.com"
    },
    "registry.redhat.io": {
      "auth": "NTE3Njg5Nj...",
      "email": "you@example.com"
    },
    "<mirror_registry>": {
      "auth": "<credentials>",
      "email": "you@example.com"
    }
  }
}

Step 3. Login to the offline registry

podman login --authfile pull-secret.json -u <username> -p <password> INBACRNRDL0100.offline.oxtechnix.lan:5000
  Login Succeeded!

Step 4. Login to the registry.redhat.io

podman login registry.redhat.io --authfile pull-secret.json 
  Authenticating with existing credentials for registry.redhat.io
  Existing credentials are valid. Already logged in to registry.redhat.io