docker · doringeman · Jan 13, 2026 · sourcery-ai · Jan 22, 2026 · sourcery-ai
diff --git a/cmd/cli/desktop/desktop.go b/cmd/cli/desktop/desktop.go
@@ -16,6 +16,9 @@ import (
 
 	"github.com/docker/model-runner/cmd/cli/pkg/standalone"
 	"github.com/docker/model-runner/pkg/distribution/distribution"
+	"github.com/docker/model-runner/pkg/distribution/oci/authn"
+	"github.com/docker/model-runner/pkg/distribution/oci/reference"
+	"github.com/docker/model-runner/pkg/distribution/oci/remote"
 	"github.com/docker/model-runner/pkg/inference"
 	dmrm "github.com/docker/model-runner/pkg/inference/models"
 	"github.com/docker/model-runner/pkg/inference/scheduling"
@@ -29,6 +32,78 @@ var (
 	ErrServiceUnavailable = errors.New("service unavailable")
 )
 
+// resolveCredentials resolves Docker registry credentials for a model reference
+// and exchanges them for a short-lived bearer token.
+// Returns nil if no credentials are found (anonymous access).
+func resolveCredentials(ctx context.Context, model string) *distribution.Credentials {
+	// Skip credential resolution for Hugging Face models (use HF_TOKEN env var instead).
+	if strings.HasPrefix(strings.ToLower(model), "hf.co/") {
+		if hfToken := os.Getenv("HF_TOKEN"); hfToken != "" {
+			return &distribution.Credentials{BearerToken: hfToken}
+		}
+		return nil
+	}
+
+	ref, err := reference.ParseReference(model)
+	if err != nil {
+		return nil
+	}
+
+	resource := authn.NewResource(ref)
+	auth, err := authn.DefaultKeychain.Resolve(resource)
+	if err != nil {
+		return nil
+	}
+
+	authConfig, err := auth.Authorization()
+	if err != nil || authConfig == nil {
+		return nil
+	}
+
+	if authConfig.RegistryToken != "" {
+		return &distribution.Credentials{BearerToken: authConfig.RegistryToken}
+	}
+	if authConfig.IdentityToken != "" {
+		return &distribution.Credentials{BearerToken: authConfig.IdentityToken}
+	}
+
+	if authConfig.Username != "" && authConfig.Password != "" {
+		token, err := exchangeForToken(ctx, ref, auth)
+		if err != nil {
+			return &distribution.Credentials{
+				Username: authConfig.Username,
+				Password: authConfig.Password,
+			}
+		}
+		return &distribution.Credentials{BearerToken: token}
+	}
+
+	return nil
+}
+
+// exchangeForToken exchanges credentials for a short-lived bearer token.
+func exchangeForToken(ctx context.Context, ref reference.Reference, auth authn.Authenticator) (string, error) {
+	ctx, cancel := context.WithTimeout(ctx, 30*time.Second)
+	defer cancel()
+
+	pr, err := remote.Ping(ctx, ref.Context().Registry, nil)
+	if err != nil {
+		return "", fmt.Errorf("pinging registry: %w", err)
+	}
+
+	if pr.WWWAuthenticate.Realm == "" {
+		return "", fmt.Errorf("no auth required")
+	}
+
+	scope := ref.Scope(remote.PushScope)
+	token, err := remote.Exchange(ctx, ref.Context().Registry, auth, nil, []string{scope}, pr)
+	if err != nil {
+		return "", fmt.Errorf("exchanging credentials: %w", err)
+	}
+
+	return token.Token, nil
+}
+
 type otelErrorSilencer struct{}
 
 func (oes *otelErrorSilencer) Handle(error) {}
@@ -98,17 +173,16 @@ func (c *Client) Status() Status {
 }
 
 func (c *Client) Pull(model string, printer standalone.StatusPrinter) (string, bool, error) {
-	// Check if this is a Hugging Face model and if HF_TOKEN is set
-	var hfToken string
-	if strings.HasPrefix(strings.ToLower(model), "hf.co/") {
-		hfToken = os.Getenv("HF_TOKEN")
-	}
+	creds := resolveCredentials(context.Background(), model)
 
 	return c.withRetries("download", 3, printer, func(attempt int) (string, bool, error, bool) {
-		jsonData, err := json.Marshal(dmrm.ModelCreateRequest{
-			From:        model,
-			BearerToken: hfToken,
-		})
+		req := dmrm.ModelCreateRequest{From: model}
+		if creds != nil {
+			req.Username = creds.Username
+			req.Password = creds.Password
+			req.BearerToken = creds.BearerToken
+		}
+		jsonData, err := json.Marshal(req)
 		if err != nil {
 			// Marshaling errors are not retryable
 			return "", false, fmt.Errorf("error marshaling request: %w", err), false
@@ -223,12 +297,27 @@ func (c *Client) withRetries(
 }
 
 func (c *Client) Push(model string, printer standalone.StatusPrinter) (string, bool, error) {
+	creds := resolveCredentials(context.Background(), model)
+
 	return c.withRetries("push", 3, printer, func(attempt int) (string, bool, error, bool) {
+		var body io.Reader
+		if creds != nil {
+			jsonData, err := json.Marshal(dmrm.ModelPushRequest{
+				Username:    creds.Username,
+				Password:    creds.Password,
+				BearerToken: creds.BearerToken,
+			})
+			if err != nil {
+				return "", false, fmt.Errorf("error marshaling request: %w", err), false
+			}
+			body = bytes.NewReader(jsonData)
+		}
+
 		pushPath := inference.ModelsPrefix + "/" + model + "/push"
 		resp, err := c.doRequest(
 			http.MethodPost,
 			pushPath,
-			nil, // Assuming no body is needed for the push request
+			body,
 		)
 		if err != nil {
 			// Only retry on network errors, not on client errors

diff --git a/cmd/cli/pkg/standalone/containers.go b/cmd/cli/pkg/standalone/containers.go
@@ -1,8 +1,6 @@
 package standalone
 
 import (
-	"archive/tar"
-	"bytes"
 	"context"
 	"errors"
 	"fmt"
@@ -29,66 +27,6 @@ import (
 // controllerContainerName is the name to use for the controller container.
 const controllerContainerName = "docker-model-runner"
 
-// copyDockerConfigToContainer copies the Docker config file from the host to the container
-// and sets up proper ownership and permissions for the modelrunner user.
-// It does nothing for Desktop and Cloud engine kinds.
-func copyDockerConfigToContainer(ctx context.Context, dockerClient *client.Client, containerID string, engineKind types.ModelRunnerEngineKind) error {
-	// Do nothing for Desktop and Cloud engine kinds
-	if engineKind == types.ModelRunnerEngineKindDesktop || engineKind == types.ModelRunnerEngineKindCloud ||
-		os.Getenv("_MODEL_RUNNER_TREAT_DESKTOP_AS_MOBY") == "1" {
-		return nil
-	}
-
-	dockerConfigPath := os.ExpandEnv("$HOME/.docker/config.json")
-	if s, err := os.Stat(dockerConfigPath); err != nil || s.Mode()&os.ModeType != 0 {
-		return nil
-	}
-
-	configData, err := os.ReadFile(dockerConfigPath)
-	if err != nil {
-		return fmt.Errorf("failed to read Docker config file: %w", err)
-	}
-
-	var buf bytes.Buffer
-	tw := tar.NewWriter(&buf)
-	header := &tar.Header{
-		Name: ".docker/config.json",
-		Mode: 0600,
-		Size: int64(len(configData)),
-	}
-	if err := tw.WriteHeader(header); err != nil {
-		return fmt.Errorf("failed to write tar header: %w", err)
-	}
-	if _, err := tw.Write(configData); err != nil {
-		return fmt.Errorf("failed to write config data to tar: %w", err)
-	}
-	if err := tw.Close(); err != nil {
-		return fmt.Errorf("failed to close tar writer: %w", err)
-	}
-
-	// Ensure the .docker directory exists
-	mkdirCmd := "mkdir -p /home/modelrunner/.docker && chown modelrunner:modelrunner /home/modelrunner/.docker"
-	if err := execInContainer(ctx, dockerClient, containerID, mkdirCmd, false); err != nil {
-		return err
-	}
-
-	// Copy directly into the .docker directory
-	err = dockerClient.CopyToContainer(ctx, containerID, "/home/modelrunner", &buf, container.CopyToContainerOptions{
-		CopyUIDGID: true,
-	})
-	if err != nil {
-		return fmt.Errorf("failed to copy config file to container: %w", err)
-	}
-
-	// Set correct ownership and permissions
-	chmodCmd := "chown modelrunner:modelrunner /home/modelrunner/.docker/config.json && chmod 600 /home/modelrunner/.docker/config.json"
-	if err := execInContainer(ctx, dockerClient, containerID, chmodCmd, false); err != nil {
-		return err
-	}
-
-	return nil
-}
-
 func execInContainer(ctx context.Context, dockerClient *client.Client, containerID, cmd string, asRoot bool) error {
 	execConfig := container.ExecOptions{
 		Cmd: []string{"sh", "-c", cmd},
@@ -447,14 +385,6 @@ func CreateControllerContainer(ctx context.Context, dockerClient *client.Client,
 		return fmt.Errorf("failed to start container %s: %w", controllerContainerName, err)
 	}
 
-	// Copy Docker config file if it exists and we're the container creator.
-	if created && !vllmOnWSL {
-		if err := copyDockerConfigToContainer(ctx, dockerClient, resp.ID, engineKind); err != nil {
-			// Log warning but continue - don't fail container creation
-			printer.Printf("Warning: failed to copy Docker config: %v\n", err)
-		}
-	}
-
 	// Add proxy certificate to the system CA bundle (requires root for update-ca-certificates)
 	if created && proxyCert != "" {
 		printer.Printf("Updating CA certificates...\n")

diff --git a/pkg/distribution/distribution/client.go b/pkg/distribution/distribution/client.go
@@ -23,6 +23,16 @@ import (
 	"github.com/sirupsen/logrus"
 )
 
+// Credentials holds authentication credentials for registry operations.
+type Credentials struct {
+	// Username for basic authentication.
+	Username string
+	// Password for basic authentication.
+	Password string
+	// BearerToken for token-based authentication (e.g., Hugging Face).
+	BearerToken string
+}
+
 // Client provides model distribution functionality
 type Client struct {
 	store    *store.LocalStore
@@ -227,32 +237,32 @@ func (c *Client) resolveID(id string) string {
 }
 
 // PullModel pulls a model from a registry and returns the local file path
-func (c *Client) PullModel(ctx context.Context, reference string, progressWriter io.Writer, bearerToken ...string) error {
+func (c *Client) PullModel(ctx context.Context, reference string, progressWriter io.Writer, creds *Credentials) error {
 	// Store original reference before normalization (needed for case-sensitive HuggingFace API)
 	originalReference := reference
 	// Normalize the model reference
 	reference = c.normalizeModelName(reference)
 	c.log.Infoln("Starting model pull:", utils.SanitizeForLog(reference))
 
-	// Handle bearer token for registry authentication
-	var token string
-	if len(bearerToken) > 0 && bearerToken[0] != "" {
-		token = bearerToken[0]
-	}
-
 	// HuggingFace references always use native pull (download raw files from HF Hub)
 	if isHuggingFaceReference(originalReference) {
 		c.log.Infoln("Using native HuggingFace pull for:", utils.SanitizeForLog(reference))
 		// Pass original reference to preserve case-sensitivity for HuggingFace API
+		var token string
+		if creds != nil && creds.BearerToken != "" {
+			token = creds.BearerToken
+		}
 		return c.pullNativeHuggingFace(ctx, originalReference, progressWriter, token)
 	}
 
 	// For non-HF references, use OCI registry
 	registryClient := c.registry
-	if token != "" {
-		// Create a temporary registry client with bearer token authentication
-		auth := authn.NewBearer(token)
-		registryClient = registry.FromClient(c.registry, registry.WithAuth(auth))
+	if creds != nil {
+		if creds.Username != "" && creds.Password != "" {
+			registryClient = registry.FromClient(c.registry, registry.WithAuthConfig(creds.Username, creds.Password))
+		} else if creds.BearerToken != "" {
+			registryClient = registry.FromClient(c.registry, registry.WithAuth(authn.NewBearer(creds.BearerToken)))
+		}
 	}
 
 	// Fetch the remote model to get the manifest
@@ -538,9 +548,18 @@ func (c *Client) Tag(source string, target string) error {
 }
 
 // PushModel pushes a tagged model from the content store to the registry.
-func (c *Client) PushModel(ctx context.Context, tag string, progressWriter io.Writer) (err error) {
+func (c *Client) PushModel(ctx context.Context, tag string, progressWriter io.Writer, creds *Credentials) (err error) {
+	registryClient := c.registry
+	if creds != nil {
+		if creds.BearerToken != "" {
+			registryClient = registry.FromClient(c.registry, registry.WithAuth(authn.NewBearer(creds.BearerToken)))
+		} else if creds.Username != "" && creds.Password != "" {
+			registryClient = registry.FromClient(c.registry, registry.WithAuthConfig(creds.Username, creds.Password))
+		}
+	}
+
 	// Parse the tag
-	target, err := c.registry.NewTarget(tag)
+	target, err := registryClient.NewTarget(tag)
 	if err != nil {
 		return fmt.Errorf("new tag: %w", err)
 	}