This message was deleted.

@cold-train-5848 you probably need to include an image pull secret in your deployment?

Yes, I saw that, but I hoped that there was an easier way to do it. I got it working at the end, but it was a bit tricky:

const imagePullSecret = new k8s.core.v1.Secret("regcred", {
  type: "<http://kubernetes.io/dockerconfigjson|kubernetes.io/dockerconfigjson>",
  metadata: { name: "regcred" },
  data: {
    ".dockerconfigjson": Buffer.from(
      JSON.stringify({
        auths: {
          "127.0.0.1:5000": {
            username: config.require("dockerUsername"),
            password: config.require("dockerPassword"),
            auth: Buffer.from(
              `${config.require("dockerUsername")}:${config.require(
                "dockerPassword"
              )}`
            ).toString("base64")
          }
        }
      })
    ).toString("base64")
  }
});

const appLabels = { app: appName };
const myaPpDeployment = new k8s.apps.v1beta1.Deployment(appName, {
  spec: {
    selector: { matchLabels: appLabels },
    replicas: 1,
    template: {
      metadata: { labels: appLabels },
      spec: {
        imagePullSecrets: [{ name: "regcred" }],
        // Use the app container at the specific SHA pushed.
        containers: [
          {
            name: appName,
            image: myaPpDocker.imageName
          }
        ]
      }
    }
  }
});

Some day we will raise the level of abstraction.