What is the proper way to log in to ECR?

aws-cli amazon-ecr

Currently, I have this command in my bash script for building & pushing an image to Amazon ECR

docker login -u AWS -p "$(aws ecr get-login-password)" "https://$(aws sts get-caller-identity --query 'Account' --output text).dkr.ecr.us-east-1.amazonaws.com"

Which gives the warning "WARNING! Using --password via the CLI is insecure. Use --password-stdin."

How can I change this command to not give the warning? Is this really insecure?


Tinkering around this seems to work well:

aws ecr get-login-password | docker login -u AWS --password-stdin "https://$(aws sts get-caller-identity --query 'Account' --output text).dkr.ecr.us-east-1.amazonaws.com"


$(aws ecr get-login --no-include-email --region cn-northwest-1)

replace cn-northwest-1 as your region.


The recommended way to log in to ECR is to use the command produced by aws ecr get-login.

Related

File Explorer closes when viewing mapped drives and other SMB Shares
munin-cron Unable to Copy Contents
CentOS 7 ntpd not synchronize with AD domain controller
How would a prominent country go about changing its ccTLD in practice? (in particular, if New Zealand gets renamed to Aotearoa) [closed]
Diagnosing SSH authentication failures when you don't have access to the client
Filter puppet pluginsync
How to retrieve the routing tables in JSON format (linux)?
How to Troubleshoot Angular "10 $digest() iterations reached" Error
Can the owner of a repo see clones?
Using python Logging with AWS Lambda
How do I daemonize an arbitrary script in unix?
When is the right time to delete a git feature branch?