shishantbiswas/coder
1
0
Fork 0
mirror of https://github.com/coder/coder.git synced 2026-06-04 13:38:21 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
08ffcb74c6bc4d5d269c2d8c9d44de80098a6fa1
coder/docs/admin/integrations/jfrog-xray.md
T
Charlie Voiselle 4e0963966d docs: markdown fixes and edits (#15527) 
- **docs: improve admonition for need to add useHttpPath**
- **docs: fix list item nesting**
- **docs: fix list item nesting**
- **docs: improve admonition for authentication**
- **docs: tidy and update vault guide**
- **docs: improve admonitions**
- **docs: improve admonitions**
- **docs: content edits, reference links to make copy easier to read**

previews:
- <https://coder.com/docs/@fix-guides-list-numbers/admin/external-auth>
-
<https://coder.com/docs/@fix-guides-list-numbers/admin/integrations/island>

---------

Co-authored-by: EdwardAngert <17991901+EdwardAngert@users.noreply.github.com>
Co-authored-by: EdwardAngert <EdwardAngert@users.noreply.github.com>
2025-01-03 14:13:46 -05:00

2.6 KiB
Raw Blame History

Integrating JFrog Xray with Coder Kubernetes Workspaces

March 17, 2024

This guide describes the process of integrating JFrog Xray to Coder Kubernetes-backed workspaces using Coder's JFrog Xray Integration.

Prerequisites

  • A self-hosted JFrog Platform instance.
  • Kubernetes workspaces running on Coder.

Deploy the Coder - JFrog Xray Integration

  1. Create a JFrog Platform Access Token with a user that has the read permission for the repositories you want to scan.

  2. Create a Coder token with a user that has the owner role.

  3. Create Kubernetes secrets for the JFrog Xray and Coder tokens.

    kubectl create secret generic coder-token \
  --from-literal=coder-token='<token>'

    kubectl create secret generic jfrog-token \
  --from-literal=user='<user>' \
  --from-literal=token='<token>'

  4. Deploy the Coder - JFrog Xray integration.

    helm repo add coder-xray https://helm.coder.com/coder-xray

    helm upgrade --install coder-xray coder-xray/coder-xray \
  --namespace coder-xray \
  --create-namespace \
  --set namespace="<your-coder-workspaces-namespace-name>" \
  --set coder.url="https://<your-coder-url>" \
  --set coder.secretName="coder-token" \
  --set artifactory.url="https://<your-artifactory-url>" \
  --set artifactory.secretName="jfrog-token"

    To authenticate with the Artifactory registry, you may need to create a Docker config and use it in the imagePullSecrets field of the Kubernetes Pod. See the Defining ImagePullSecrets for Coder workspaces guide for more information.

Validate your installation

Once installed, configured workspaces will now have a banner appear on any workspace with vulnerabilities reported by JFrog Xray.

JFrog Xray Integration
Reference in New Issue View Git Blame Copy Permalink