vbatts/quay
Archived
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
8230 commits 2 branches 62 tags 205 MiB
Commit graph

8230 commits

This branch
This branch
All branches
Author SHA1 Message Date
josephschorr
4857cd9c48
Merge pull request #2987 from coreos-inc/joseph.schorr/QUAY-805/dot-fix 
Add decorator to prevent reflected text attacks
 2018-02-20 12:02:22 -05:00
Joseph Schorr
188ea98441 Add new decorator to prevent reflected text attacks 
Instead of disabling repo names with periods in them, we simply disallow calls to the API when they are GET requests, whose path ends in a dot, and that do not have a referrer from the frontend.
 2018-02-20 11:33:45 -05:00
Joseph Schorr
b342111edb Add registry tests for pushing and pulling previously bad repo names 2018-02-20 11:31:36 -05:00
Evan Cordell
0db304e169
Merge pull request #3007 from ecordell/log-tuf-api-errors 
log response data on non-200 responses in TUF API
 2018-02-20 10:24:14 -05:00
Evan Cordell
b545cad380 log response data on non-200 responses in TUF API 2018-02-20 09:46:53 -05:00
josephschorr
ac328da383
Merge pull request #3006 from coreos-inc/joseph.schorr/QUAY-827/noop-team-name 
Add messaging when trying to create a team that already exists
 2018-02-15 16:41:51 -05:00
Joseph Schorr
72ca758c88 Add messaging when trying to create a team that already exists 
Fixes https://jira.coreos.com/browse/QUAY-827
 2018-02-15 16:03:09 -05:00
josephschorr
7cd2c00d4d
Merge pull request #2967 from coreos-inc/joseph.schorr/QS-111/auth-refactor 
Refactor auth code to be cleaner and more extensible
 2018-02-15 16:02:22 -05:00
Joseph Schorr
e220b50543 Refactor auth code to be cleaner and more extensible 
We move all the auth handling, serialization and deserialization into a new AuthContext interface, and then standardize a registration model for handling of specific auth context types (user, robot, token, etc).
 2018-02-14 15:35:27 -05:00
josephschorr
33b7ca0eaa
Merge pull request #3005 from coreos-inc/2.8.0-release 
CHANGELOG updates for v2.8.0
 2018-02-13 17:31:10 -05:00
Brad Ison
00e0de5005
Merge pull request #3004 from bison/repo-admin-script 
Add script for fixing missing admin permissions
 2018-02-13 16:59:03 -05:00
Joseph Schorr
b188cf11cc CHANGELOG updates for v2.8.0 2018-02-13 16:44:21 -05:00
Brad Ison
87e55870b7 Add script for fixing missing admin permissions 
Adds a util script to find and fix repositories in user namespaces
that are missing admin permissions for the owning user.  These admin
permissions are required, but were missing in some cases.  See:

  https://github.com/coreos-inc/quay/pull/2998
 2018-02-13 16:23:17 -05:00
josephschorr
8ba2e71fb1
Merge pull request #3003 from coreos-inc/joseph.schorr/QUAY-808/expired-app-token-banner 
Small fixes for expiring-soon app tokens banner
 2018-02-12 17:28:21 -05:00
Joseph Schorr
e1a3857de9 Make sure to filtered already-expired tokens from the "expiring soon" tokens 2018-02-12 17:07:50 -05:00
Joseph Schorr
8c14a8fdf2 Fix language for expiring app tokens notification 2018-02-12 16:56:06 -05:00
josephschorr
06d25816be
Merge pull request #3001 from coreos-inc/fix-azure-storage 
Fix bugs in Azure storage engine to make it actually work
 2018-02-12 12:28:31 -05:00
Joseph Schorr
143ca8653d Fix bugs in Azure storage engine to make it actually work 
Tested against a real Azure account
 2018-02-09 16:46:50 -05:00
josephschorr
846deb75fe
Merge pull request #2902 from coreos-inc/joseph.schorr/QS-51/azure-blob-store 
Add support for Azure Blob Storage
 2018-02-07 11:34:29 -05:00
josephschorr
61363f0ffc
Merge pull request #2997 from coreos-inc/joseph.schorr/QUAY-818/verify-schema 
Add test to verify that all defined config fields are found in the schema
 2018-02-06 16:39:24 -05:00
josephschorr
2bdcd7f64f
Merge pull request #2998 from coreos-inc/joseph.schorr/QUAY-826/create-transaction 
Make sure to add primary repo permissions under a transaction
 2018-02-06 15:32:42 -05:00
Joseph Schorr
5490e64669 Fill out schema and schema whitelist 2018-02-06 15:27:01 -05:00
Joseph Schorr
7893ef6acc Add test to ensure that all config.py properties are defined in the config schema 2018-02-06 15:26:31 -05:00
Joseph Schorr
5a2f6f6faf Add exception if relative path is given to Azure storage engine 2018-02-06 13:48:40 -05:00
Joseph Schorr
de47b13c24 Add superuser config for Azure blob storage 2018-02-06 13:48:40 -05:00
Joseph Schorr
d488517b36 Implement storage driver for Azure Blob Storage 2018-02-06 13:48:40 -05:00
Joseph Schorr
da0fa2e0d2 Make sure to add primary repo permissions under a transaction 
Should prevent a repository from being created under a user's namespace without a corresponding admin permission

Fixes https://jira.coreos.com/browse/QUAY-826
 2018-02-06 11:20:40 -05:00
Brad Ison
cc26eefd2f
Merge pull request #2989 from bison/docker-compose 
Add docker-compose configuration for dev
 2018-02-06 10:50:36 -05:00
Brad Ison
620cf76c58 Add docker-compose configuration 2018-02-05 12:03:50 -05:00
josephschorr
00ae24cb2f
Merge pull request #2996 from coreos-inc/josephschorr/QUAY-819/app-specific-expiration 
We cannot cache the full expiration for an app specific token, as it would include the datetime when the cache is created, rather than `now`
 2018-02-02 16:39:40 -05:00
Joseph Schorr
6228ab5a51 We cannot cache the full expiration for an app specific token, as it would include the datetime when the cache is created, rather than now 
Fixes https://jira.coreos.com/browse/QUAY-819
 2018-02-02 16:11:59 -05:00
josephschorr
944e9e9f1f
Merge pull request #2983 from coreos-inc/joseph.schorr/QUAY-781/login-binding 
Enable setting the login binding field for Github and Google login
 2018-02-02 15:34:53 -05:00
josephschorr
9f7b08d0ff
Merge pull request #2993 from coreos-inc/joseph.schorr/QUAY-797/pagination-size 
Allow size of pages in V2 api to be configurable
 2018-02-02 15:21:15 -05:00
Joseph Schorr
eae9175950 Allow size of pages in V2 api to be configurable 2018-02-02 13:54:41 -05:00
josephschorr
ccef3bffe9
Merge pull request #2978 from coreos-inc/joseph.schorr/QS-117/gunicorn-worker-count 
Make gunicorn worker count scale automatically and be configurable
 2018-02-02 13:46:17 -05:00
josephschorr
0486fe6314
Merge pull request #2909 from coreos-inc/joseph.schorr/QS-56/bad-service-key 
Better handling of instance key failure in Quay
 2018-02-02 13:44:47 -05:00
josephschorr
e2693ac390
Merge pull request #2994 from coreos-inc/fix-syslog 
Fix syslog for updated phusion base image
 2018-02-02 13:44:37 -05:00
Joseph Schorr
da9b05fa4a Remove syslog check lines from all services 2018-02-02 13:38:25 -05:00
Joseph Schorr
bbdf9e074c Add metrics for tracking when instance key renewal succeeds and fails, as well as when instance key *lookup* fails 2018-02-02 11:14:42 -05:00
Joseph Schorr
a927ce3e0f Have boot.py verify that the existing instance's service key is valid and regenerate if it is not 
This prevents the scenario where a container is restarted after an outage and therefore runs with a bad key
 2018-02-02 11:14:00 -05:00
Joseph Schorr
c1cc52f58b Add a health check for the instance key 
If the key expires or disappears, the node will now go unhealthy, taking it out of service and preventing downtime
 2018-02-02 11:14:00 -05:00
Joseph Schorr
0f49d787eb Fix syslog for updated phusion base image 
Syslog is now started outside of the normal init process
 2018-02-02 10:52:18 -05:00
Joseph Schorr
4cd3d110db Make gunicorn worker count scale automatically and be configurable 
Fixes https://jira.coreos.com/browse/QS-117
 2018-02-02 10:34:19 -05:00
josephschorr
6514bf229f
Merge pull request #2973 from coreos-inc/joseph.schorr/QS-116/cloudfront-storage 
Add support for configuring cloudfront storage
 2018-02-02 10:14:28 -05:00
josephschorr
e051c3a125
Merge pull request #2992 from coreos-inc/joseph.schorr/QUAY-813/no-config-yaml 
Remove config.yaml from built container and add a script to detect in case its added back in the future
 2018-02-01 11:44:09 -05:00
Joseph Schorr
493b278de8 Remove the deploy directory from the code base, as it is not necessary AND it contains an (old) copy of our development config, which should never have been checked into this repository in the first place 2018-02-01 11:24:34 -05:00
josephschorr
1b065c27e0
Merge pull request #2991 from coreos-inc/joseph.schorr/QUAY-807/disable-build-ui 
Hide build-related UI elements when builds are disabled
 2018-01-31 19:00:10 -05:00
Joseph Schorr
43d74d808c Add a script which explicitly detects for the presence of config.yaml in the built container, and fails if it is there 
This will prevent any leakage of config.yaml's into the built image
 2018-01-31 18:56:50 -05:00
Joseph Schorr
1b707660de Hide build-related UI elements when builds are disabled 
Fixes https://jira.coreos.com/browse/QUAY-807
 2018-01-31 18:09:38 -05:00
josephschorr
bc8e8f60e7
Merge pull request #2988 from coreos-inc/joseph.schorr/QUAY-774/update-base-image 
Update phusion base image to newest version
 2018-01-31 11:40:04 -05:00