Commit graph

3760 commits

Author SHA1 Message Date
Joseph Schorr
fdd43e2490 Change API calls that expect non-robots to explicitly filter
Before this change, we'd filter in the UI but calls to the API could allow robots accounts where we only expect real users
2015-05-26 17:47:33 -04:00
Jimmy Zelinskie
e5e2384998 Merge pull request #47 from coreos-inc/downloadbuildlogs
Add an endpoint for downloading the logs of a build.
2015-05-26 17:32:47 -04:00
Joseph Schorr
b3ea4ecaa2 Remove unneeded mime type set; jsonify does this for us 2015-05-26 17:30:10 -04:00
Joseph Schorr
9888c3ad9b Add an endpoint for downloading the logs of a build. 2015-05-26 17:24:18 -04:00
Joseph Schorr
ecabf086ea Add missing newline at end of decorators.py 2015-05-26 16:48:59 -04:00
Jimmy Zelinskie
2464124f62 Merge pull request #38 from coreos-inc/swift
Add Swift Storage
2015-05-26 16:37:26 -04:00
Joseph Schorr
375d7670a8 Explain why we re-raise ClientException in the swift storage engine 2015-05-26 16:35:12 -04:00
Joseph Schorr
7001fb05bf Add further comments on the TODO in get_direct_download_url 2015-05-26 16:34:59 -04:00
Joseph Schorr
2e4893dce0 We only add the build to the build list if present, not if missing 2015-05-26 16:05:38 -04:00
Joseph Schorr
58685f02cd Fix NPE in notifications service 2015-05-26 16:05:38 -04:00
Joseph Schorr
d1fa155eee Fix NPE 2015-05-26 16:05:37 -04:00
Joseph Schorr
597a86f501 Fix case where the auth token was not written properly for BitBucket 2015-05-26 16:05:37 -04:00
Joseph Schorr
162dcf05e3 Have the verifyUser endpoint use the same confirm_existing_user method
This will prevent us from encountering the same problem as the generated encrypted password issue when using LDAP
2015-05-26 16:05:37 -04:00
Jimmy Zelinskie
0359d3f379 nginx: move ssl config out of server-base 2015-05-26 16:05:37 -04:00
Jimmy Zelinskie
5db790bb30 setup-tool: add HSTS info box 2015-05-26 16:05:37 -04:00
Jimmy Zelinskie
5db4e58e16 nginx: SSL config into server-base.conf 2015-05-26 16:05:37 -04:00
Jimmy Zelinskie
0c15c2888d nginx: update cipher suite, HSTS, X-Frame-Options 2015-05-26 16:05:37 -04:00
Jimmy Zelinskie
ccfebdf22b nginx: support OCSP Stapling 2015-05-26 16:05:37 -04:00
Jimmy Zelinskie
2a03f4d070 nginx: drop SSLv3, support TLS 1.1 & 1.2 2015-05-26 16:05:37 -04:00
Jimmy Zelinskie
4f6234ea8f nginx: enable Strict Transport Security 2015-05-26 16:05:36 -04:00
Joseph Schorr
f6fea27c12 Fix encrypted password generator to use the LDAP username, not the Quay username.
Currently, we use the Quay username via `verify_user` when we go to create the encrypted password. This is only correct if Quay has not generated its own different username for the LDAP user, and fails if it has. We therefore add a new method `confirm_existing_user`, which looks up the federated login for the LDAP user and then runs the auth flow using that username.
2015-05-26 16:05:36 -04:00
Joseph Schorr
88ece113ee Explicitly enable LDAP referrals
Note: The mock LDAP system doesn't support referrals, so we can't add a unit test for this.
2015-05-26 16:05:36 -04:00
Joseph Schorr
4030b0a470 - Have the heartbeat fail to update if the worker has timed out
- Add additional build component logging for tracking down problems in the future
2015-05-26 16:05:36 -04:00
Joseph Schorr
0f18fc1c26 Disable the angular poll channel when the browser tab is hidden
Quay pages that normally poll (repo view, build logs, etc) will skip the API call(s) when the tab is hidden.
2015-05-26 16:05:36 -04:00
Joseph Schorr
dbd119c365 Fix the DB health check
Make sure to search for the proper DB identifier
2015-05-26 16:05:36 -04:00
Joseph Schorr
5845e37e32 Add Swift storage library 2015-05-26 16:05:21 -04:00
Jimmy Zelinskie
0633db973e Merge pull request #44 from coreos-inc/smallfixes
We only add the build to the build list if present, not if missing
2015-05-26 13:50:41 -04:00
Joseph Schorr
cb733ef25a We only add the build to the build list if present, not if missing 2015-05-26 13:49:58 -04:00
Jimmy Zelinskie
0a51891d95 Merge pull request #43 from coreos-inc/smallfixes
Fix NPE in notifications service
2015-05-26 13:48:31 -04:00
Joseph Schorr
578b62b4a8 Fix NPE in notifications service 2015-05-26 13:46:41 -04:00
Jimmy Zelinskie
67df205e12 Merge pull request #42 from coreos-inc/smallfixes
Fix NPE
2015-05-26 13:45:01 -04:00
Joseph Schorr
f257c8b405 Fix NPE 2015-05-26 13:43:51 -04:00
Jimmy Zelinskie
15464f1169 Merge pull request #41 from coreos-inc/smallfixes
Fix case where the auth token was not written properly for BitBucket
2015-05-26 13:41:22 -04:00
Joseph Schorr
374d1d7e89 Fix case where the auth token was not written properly for BitBucket 2015-05-26 13:40:21 -04:00
josephschorr
f5dc3c2a5a Merge pull request #40 from coreos-inc/verifyfix
Have the verifyUser endpoint use the same confirm_existing_user method
2015-05-22 16:30:25 -04:00
Jimmy Zelinskie
66dad67661 Merge pull request #35 from jzelinskie/tls
Update lots of stuff in regards to TLS
2015-05-22 16:26:38 -04:00
Joseph Schorr
855f3a3e4d Have the verifyUser endpoint use the same confirm_existing_user method
This will prevent us from encountering the same problem as the generated encrypted password issue when using LDAP
2015-05-22 16:26:26 -04:00
Jimmy Zelinskie
581d2fa4fc nginx: move ssl config out of server-base 2015-05-22 16:25:28 -04:00
Jimmy Zelinskie
2a25864061 setup-tool: add HSTS info box 2015-05-22 16:18:56 -04:00
josephschorr
1117a2cdc6 Merge pull request #36 from coreos-inc/ldapfix
LDAP fixes
2015-05-22 15:46:00 -04:00
Joseph Schorr
5589bfc6d5 - Have the heartbeat fail to update if the worker has timed out
- Add additional build component logging for tracking down problems in the future
2015-05-22 15:24:14 -04:00
Jimmy Zelinskie
4323eb58da nginx: SSL config into server-base.conf 2015-05-22 13:54:43 -04:00
Jimmy Zelinskie
f9f933feff nginx: update cipher suite, HSTS, X-Frame-Options 2015-05-22 13:35:49 -04:00
Jimmy Zelinskie
dfc2df1885 Merge pull request #39 from coreos-inc/hiddentab
Disable the angular poll channel when the browser tab is hidden
2015-05-21 18:12:39 -04:00
Joseph Schorr
c788d02a57 Disable the angular poll channel when the browser tab is hidden
Quay pages that normally poll (repo view, build logs, etc) will skip the API call(s) when the tab is hidden.
2015-05-21 17:16:38 -04:00
Jimmy Zelinskie
5f787c7e82 Merge pull request #37 from coreos-inc/fixhealthcheck
Fix the DB health check
2015-05-20 17:42:26 -04:00
Joseph Schorr
e23f1e9ded Fix the DB health check
Make sure to search for the proper DB identifier
2015-05-20 17:40:43 -04:00
Jimmy Zelinskie
417c77f4d9 Merge pull request #34 from jzelinskie/flatten-logs
cloudconfig: flatten logentries container
2015-05-20 16:42:52 -04:00
Joseph Schorr
b0d763b5ff Fix encrypted password generator to use the LDAP username, not the Quay username.
Currently, we use the Quay username via `verify_user` when we go to create the encrypted password. This is only correct if Quay has not generated its own different username for the LDAP user, and fails if it has. We therefore add a new method `confirm_existing_user`, which looks up the federated login for the LDAP user and then runs the auth flow using that username.
2015-05-20 16:37:09 -04:00
Jimmy Zelinskie
db05db6295 cloudconfig: flatten logentries container 2015-05-20 16:34:16 -04:00