I am working on a Renku template that would automatically and dynamically setup the environment to work with Spark/Hadoop. For this, I thought of using repositories with configurations (repo for the configuration of the backend, using renku-env of the user to tune the configuration) but I cannot access private repositories from the entrypoint script run at startup of the environment.
Is it normal that I cannot clone the renku-env repository of my user from the script if it is private? From what I can read in the sidekick then yes, as it checks that the beginning of the url corresponds to the repository of the environment before adding the access token. I just want to make sure because I find it weird that the user is not allowed to have an private environment.
So for my use I may change the sidekick’s logic to add the token for other clones or api requests but before doing that I want to clarify some things. The tokens we have access to are described here. Does this means that we have access to two different tokens? One with more restricted access than the other? Or are those not related to the GITLAB_OAUTH_TOKEN we can access from the sidekick? I’m somewhat confused because in the scope of renku application there is no mention of write access although we can push to the repository of the environment.
I’m trying to get an understanding of these elements to develop my ideas in line of what has already been done, thank for helping me out!