Implement setup tool support for Clair

Fixes #1387
2016-05-02 15:29:31 -04:00 · 2016-05-02 15:29:31 -04:00 · 2cbdecb043
commit 2cbdecb043
parent 53ce4de6aa
23 changed files with 584 additions and 116 deletions
--- a/static/directives/config/config-setup-tool.html
+++ b/static/directives/config/config-setup-tool.html
@ -286,6 +286,53 @@
      </div>
    </div>

+    <!-- Security Scanner -->
+    <div class="co-panel">
+      <div class="co-panel-heading">
+        <i class="fa fa-bug"></i> Security Scanner
+      </div>
+      <div class="co-panel-body">
+        <div class="description">
+          <p>If enabled, all images pushed to Quay will be scanned via the external security scanning service, with vulnerability information available in the UI and API, as well
+              as async notification support.
+          </p>
+        </div>
+
+        <div class="co-checkbox">
+          <input id="ftsecurity" type="checkbox" ng-model="config.FEATURE_SECURITY_SCANNER">
+          <label for="ftsecurity">Enable Security Scanning</label>
+        </div>
+
+        <div class="co-alert co-alert-info" ng-if="config.FEATURE_SECURITY_SCANNER" style="margin-top: 20px;">
+          A scanner compliant with the Quay Security Scanning API must be running to use this feature. Documentation on running <a href="https://github.com/coreos/clair" ng-safenewtab>Clair</a> can be found at <a href="https://tectonic.com/quay-enterprise/docs/latest/clair.html" ng-safenewtab>Running Clair Security Scanner</a>.
+        </div>
+
+        <table class="config-table" ng-if="config.FEATURE_SECURITY_SCANNER">
+          <tr>
+            <td>Security Scanner Endpoint:</td>
+            <td>
+              <span class="config-string-field" binding="config.SECURITY_SCANNER_ENDPOINT"
+                    placeholder="Security Scanner API endpoint (Example: http://myhost:6060)"
+                    pattern="http(s)?://.+"></span>
+              <div class="help-text">
+                The HTTP URL at which the security scanner is running.
+              </div>
+            </td>
+          </tr>
+          <tr>
+            <td>Authentication Key:</td>
+            <td>
+              <span class="config-service-key-field" service-name="{{ config.SECURITY_SCANNER_ISSUER_NAME }}"></span>
+              <div class="help-text">
+                The security scanning service requires an authorized service key to speak to Quay. Once setup, the key
+                can be managed in the Service Keys panel under the Super User Admin Panel.
+              </div>
+            </td>
+          </tr>
+        </table>
+      </div>
+    </div>
+
    <!-- ACI Conversion -->
    <div class="co-panel">
      <div class="co-panel-heading">