Skip to main content
Root’s registries require authentication. This page covers credential setup for both cr.root.io (Root Image Catalog) and pkg.root.io (Root Library Catalog), including CI/CD and service account configurations.

Getting Credentials

[How to obtain registry credentials from the Root platform — API tokens, username/password, or OIDC coming soon]

Authenticating to cr.root.io

[docker login, containerd credential helpers, Kubernetes ImagePullSecrets setup coming soon]

Authenticating to pkg.root.io

[Per-ecosystem authentication: pip netrc / keyring, npm .npmrc tokens, Maven settings.xml, Gradle credential providers coming soon]

Service Accounts for CI/CD

[Creating scoped service account tokens, recommended CI/CD variable names, short-lived token support coming soon]

Rotating Credentials

[How to rotate tokens without downtime, credential expiry policies coming soon]