Support ACI for ACR deployed in VNet ASAP.
ACI is currently not supported when ACR is deployed in VNet. As ACI and ACR both are native Azure and ACI is better use case for containerization, at least ACI should work with ACR+VNet.
It is strange to see its allowed from AKS cluster but not from ACI

I have been searching for REST API which will list repositories in particular ACR like it is available through azure portal under service.

I've got a user who I have assigned the role AcrDelete (and Reader) to. According to [this](https://docs.microsoft.com/bs-latn-ba/azure/container-registry/container-registry-roles) that should be what is needed to delete an image from a repository in an azure container registry. However, even after logging out and logging back in, the user is unable to delete images. Note that removing his reader permission takes affect and then prevents him from seeing the containers in question. Is there a bug with this role?

Was asked to elevate this idea here from https://github.com/Azure/acr/issues/247

Put simply, it would be really nice if the ACR showed the LABEL data that was set in the Dockerfiles.

During task creation in azure container registry I found automation of docker build in ACR for CI/CD is only supported for github commits but not supported for Gitlab.

It would be very useful ans easy if Gitlab commits are also supported for ACR tasks/REST API.

allow to change the resource location

Add option to az acr to list all registries and/or repo’s that exist under a tenant instead of needing to iterate through all subs.

Could not find a fqdn of the image in the ACR details of an image. Would be nice to have a "copy to clipboard option" wich gives the full details as required to pull an image from ACR (not credentials), e.g., for configuring k8s deployment objects.

Hello,

i'm using az acr build to build image inside azure however i would like to use content trust during the build inside azure.
https://docs.microsoft.com/en-us/cli/azure/acr?view=azure-cli-latest#az-acr-build

I dont want to pull sign image and push sign image from my computer, i would like to have the argument --disable-content-trust=false like in docker build on az acr build.

https://docs.docker.com/engine/security/trust/content_trust/

regards

docker build allows labeling a image at build time.
e.g.

docker build . --label "version=1.0"

but there is no equivalent "acr build args"

Would like to be able to use:
az acr build -r
myrepo --label "version=1.0" --file Dockerfile .

Currently, ACR Tasks do not work for instances with the preview VNET / firewall configuration enabled. This will block usability of ACR for organizations that require increased network security.

Azure CLI allows to overwrite helm chart using --force option.
This option should be possible to disable for whole registry.
For production cases, helm charts should not be allowed to be overwritten.

`az acr task create` require access to access github repository by admin.
We sometimes cannot get this.
Using this access, `az acr task create` makes webhook setting of Github.
If it doesn't have enough permission, we should set webhook setting manually.

references:
https://docs.microsoft.com/en-us/azure/container-registry/container-registry-tutorial-build-task

laghadzishvili@icloud.com

We run CI/CD via Drone.io, which pushes an image tagged by branch name and build number on every 'green'/successful commit.

Currently, in order to delete the images that accumulate over time, I have to manually. delete. every. single. one.

It would be nice to be able to select a whole lot and delete at once.
:D

We need the ability to control the access to the Azure Container Registry on 'per user' basis. This will allow us to revoke or give different access privileges to our users. The current option to create a Service Principal for each different user is not working for us, cause this should be done on a code level and giving create-service-principal privileges to the application is a security concern for our IT department.
Our need is well covered with the SAS tokens for the Azure Blob Storage or Queues, but that feature is not existing for the ACR.

Currently `az acr import` only allows specifying a single tag (defaults to latest). Please consider adding a way to import all tags of a single repository.

Our use case:
We create a private container registry per project, so we can manage access control properly. If a project stops, we want to migrate all container images to a single archive repository, so no costs will occur for the (stopped) project.

One way to accomplish this, as an example: `az acr import -n MyContainerArchive --source myapp.azurecr.io/app-frontend:*`

Retention period for images- will be a good idea.
For example, images older than X days drop, but store at least 1 image.
It's not about purging or usage tracking. it's about Retention only.

Retention period for images- will be a good idea.
For example, images older than X days drop, but store at least 1 image.
It's not about purging or usage tracking. it's about Retention only.