Deploy Trivy-operator in air-gapped environment

[krishk8s]

What steps did you take and what happened:

Intalled trivy-operator using helm chart (with buildInTrivyServer) on EKS cluster
Operator :v0.18.5
Trivy Version: 0.49.1

Uploaded Trivy and Java db to artifactory using oras
added dbregistry to our private repo and also added DbRepositoryUsername and password to allow pull (used curl to test and it can get manifest.json file)

But it fails to pull the DB:
This is from trivy-server-0 logs:

Error: Failed to download vulnerablity DB: database download error: OCI repository error: 1 error occurred:

• GET https://our_repo/trivy/trivy-db/manifests/2: UNAUTHORIZED: the client does not have permissions for manifest; map[manifest:trivy/trivy-db/2/manifest.json.

• ---- used curl and it worked so no issue with file or auth

I have now tried with ECR.. it's same... UNAUTHORIZED, tried with inbuildserver and without it's all same

used oras to push the db.tar.gz file to ecr.

oras push localhost:5000/trivy-db:2
db.tar.gz:application/vnd.aquasec.trivy.db.layer.v1.tar+gzip

What did you expect to happen:

Able to pull the db from private repo.

Thanks