Questions[ecr](server)

We want to create a github actions workflow which will generate the docker image at the end and should push to aws ecr private registry.

If it is public registry, I can get the access directly from github actions. But with private registy as below, it is accessible through IAM policies only. I can give access to an ec2 instance.

But how to use this private registry in the github actions workflow?

I tried logging in with the user:AWS and password retrieved from aws cli.

But I am getting this error

Error response from daemon: login attempt to https://436380240297.dkr.ecr.us-east-1.amazonaws.com/v2/ failed with status: 400 Bad Request

I created a private docker registry using AWS ECR. I want to use it with a Kubernetes cluster managed by Rancher, but the password to the registry is changed by AWS every 12 hours. How do I keep it updated as a secret in the cluster?

I am using Rancher 2.5.8 to run Kubernetes clusters. In my org, we maintain a private docker registry on AWS ECR. I know I can create registry credentials within a project (for use in one or all projects), but ECR changes the password every 12 hours and Rancher has no built in away to update the credentials. Someone came up with a convoluted way of updating the password with two container apps, but I find it much easier to use the aws cli and kubectl in the host vm to do this. I created a cron job that uses kubectl to delete and create a docker-registry secret in the cluster programmatically (there's no way to update a secret, apparently), but I can't figure out how to make that docker-registry secret visible in Rancher. Anyone know how to do this?