Commit graph

8941 commits

Author SHA1 Message Date
Joseph Schorr
bcd9b680fa Add X-Requested-With header to allowed CORS headers
Will fix the API explorer
2018-02-21 14:21:27 -05:00
Joseph Schorr
e446eb5757 Switch build queue limiter query to use total number of alive jobs
This is slightly more accurate and, not being based on time, will work better under MySQL
2018-02-21 14:04:40 -05:00
josephschorr
d77aa9228f
Merge pull request #3002 from coreos-inc/joseph.schorr/QUAY-822/gc-app-tokens
Add a worker to automatically GC expired app specific tokens
2018-02-20 17:21:48 -05:00
josephschorr
7b106d81ef
Merge pull request #3010 from coreos-inc/schema-fix
Fix config schema for bitbucket trigger
2018-02-20 17:01:28 -05:00
Joseph Schorr
4d0ad0074d Fix config schema for bitbucket trigger 2018-02-20 16:59:34 -05:00
josephschorr
3f2604c61e
Merge pull request #3008 from coreos-inc/build-queue-limits
Add configurable limits for number of builds allowed under a namespace
2018-02-20 16:54:37 -05:00
Joseph Schorr
9a452ace11 Add configurable limits for number of builds allowed under a namespace
We also support that limit being increased automatically once a successful billing charge has gone through
2018-02-20 16:54:22 -05:00
Brad Ison
62971b7f20
Merge pull request #2999 from bison/user-location
Add user location metadata filed
2018-02-20 16:48:37 -05:00
josephschorr
4857cd9c48
Merge pull request #2987 from coreos-inc/joseph.schorr/QUAY-805/dot-fix
Add decorator to prevent reflected text attacks
2018-02-20 12:02:22 -05:00
Joseph Schorr
188ea98441 Add new decorator to prevent reflected text attacks
Instead of disabling repo names with periods in them, we simply disallow calls to the API when they are GET requests, whose path ends in a dot, and that do not have a referrer from the frontend.
2018-02-20 11:33:45 -05:00
Joseph Schorr
b342111edb Add registry tests for pushing and pulling previously bad repo names 2018-02-20 11:31:36 -05:00
Evan Cordell
0db304e169
Merge pull request #3007 from ecordell/log-tuf-api-errors
log response data on non-200 responses in TUF API
2018-02-20 10:24:14 -05:00
Evan Cordell
b545cad380 log response data on non-200 responses in TUF API 2018-02-20 09:46:53 -05:00
josephschorr
ac328da383
Merge pull request #3006 from coreos-inc/joseph.schorr/QUAY-827/noop-team-name
Add messaging when trying to create a team that already exists
2018-02-15 16:41:51 -05:00
Joseph Schorr
72ca758c88 Add messaging when trying to create a team that already exists
Fixes https://jira.coreos.com/browse/QUAY-827
2018-02-15 16:03:09 -05:00
josephschorr
7cd2c00d4d
Merge pull request #2967 from coreos-inc/joseph.schorr/QS-111/auth-refactor
Refactor auth code to be cleaner and more extensible
2018-02-15 16:02:22 -05:00
Joseph Schorr
e220b50543 Refactor auth code to be cleaner and more extensible
We move all the auth handling, serialization and deserialization into a new AuthContext interface, and then standardize a registration model for handling of specific auth context types (user, robot, token, etc).
2018-02-14 15:35:27 -05:00
josephschorr
33b7ca0eaa
Merge pull request #3005 from coreos-inc/2.8.0-release
CHANGELOG updates for v2.8.0
2018-02-13 17:31:10 -05:00
Brad Ison
00e0de5005
Merge pull request #3004 from bison/repo-admin-script
Add script for fixing missing admin permissions
2018-02-13 16:59:03 -05:00
Joseph Schorr
b188cf11cc CHANGELOG updates for v2.8.0 2018-02-13 16:44:21 -05:00
Brad Ison
87e55870b7 Add script for fixing missing admin permissions
Adds a util script to find and fix repositories in user namespaces
that are missing admin permissions for the owning user.  These admin
permissions are required, but were missing in some cases.  See:

  https://github.com/coreos-inc/quay/pull/2998
2018-02-13 16:23:17 -05:00
josephschorr
8ba2e71fb1
Merge pull request #3003 from coreos-inc/joseph.schorr/QUAY-808/expired-app-token-banner
Small fixes for expiring-soon app tokens banner
2018-02-12 17:28:21 -05:00
Joseph Schorr
e1a3857de9 Make sure to filtered already-expired tokens from the "expiring soon" tokens 2018-02-12 17:07:50 -05:00
Joseph Schorr
8c14a8fdf2 Fix language for expiring app tokens notification 2018-02-12 16:56:06 -05:00
Joseph Schorr
d45161b120 Add a worker to automatically GC expired app specific tokens
Fixes https://jira.coreos.com/browse/QUAY-822
2018-02-12 14:56:01 -05:00
josephschorr
06d25816be
Merge pull request #3001 from coreos-inc/fix-azure-storage
Fix bugs in Azure storage engine to make it actually work
2018-02-12 12:28:31 -05:00
Joseph Schorr
143ca8653d Fix bugs in Azure storage engine to make it actually work
Tested against a real Azure account
2018-02-09 16:46:50 -05:00
josephschorr
846deb75fe
Merge pull request #2902 from coreos-inc/joseph.schorr/QS-51/azure-blob-store
Add support for Azure Blob Storage
2018-02-07 11:34:29 -05:00
josephschorr
61363f0ffc
Merge pull request #2997 from coreos-inc/joseph.schorr/QUAY-818/verify-schema
Add test to verify that all defined config fields are found in the schema
2018-02-06 16:39:24 -05:00
Brad Ison
5965929187 Include location in user analytics 2018-02-06 16:06:17 -05:00
Brad Ison
3de6b4a646 Add location metadata field for users 2018-02-06 16:06:17 -05:00
josephschorr
2bdcd7f64f
Merge pull request #2998 from coreos-inc/joseph.schorr/QUAY-826/create-transaction
Make sure to add primary repo permissions under a transaction
2018-02-06 15:32:42 -05:00
Joseph Schorr
5490e64669 Fill out schema and schema whitelist 2018-02-06 15:27:01 -05:00
Joseph Schorr
7893ef6acc Add test to ensure that all config.py properties are defined in the config schema 2018-02-06 15:26:31 -05:00
Joseph Schorr
5a2f6f6faf Add exception if relative path is given to Azure storage engine 2018-02-06 13:48:40 -05:00
Joseph Schorr
de47b13c24 Add superuser config for Azure blob storage 2018-02-06 13:48:40 -05:00
Joseph Schorr
d488517b36 Implement storage driver for Azure Blob Storage 2018-02-06 13:48:40 -05:00
Joseph Schorr
da0fa2e0d2 Make sure to add primary repo permissions under a transaction
Should prevent a repository from being created under a user's namespace without a corresponding admin permission

Fixes https://jira.coreos.com/browse/QUAY-826
2018-02-06 11:20:40 -05:00
Brad Ison
cc26eefd2f
Merge pull request #2989 from bison/docker-compose
Add docker-compose configuration for dev
2018-02-06 10:50:36 -05:00
Brad Ison
620cf76c58 Add docker-compose configuration 2018-02-05 12:03:50 -05:00
josephschorr
00ae24cb2f
Merge pull request #2996 from coreos-inc/josephschorr/QUAY-819/app-specific-expiration
We cannot cache the full expiration for an app specific token, as it would include the datetime when the cache is created, rather than `now`
2018-02-02 16:39:40 -05:00
Joseph Schorr
6228ab5a51 We cannot cache the full expiration for an app specific token, as it would include the datetime when the cache is created, rather than now
Fixes https://jira.coreos.com/browse/QUAY-819
2018-02-02 16:11:59 -05:00
josephschorr
944e9e9f1f
Merge pull request #2983 from coreos-inc/joseph.schorr/QUAY-781/login-binding
Enable setting the login binding field for Github and Google login
2018-02-02 15:34:53 -05:00
josephschorr
9f7b08d0ff
Merge pull request #2993 from coreos-inc/joseph.schorr/QUAY-797/pagination-size
Allow size of pages in V2 api to be configurable
2018-02-02 15:21:15 -05:00
Joseph Schorr
eae9175950 Allow size of pages in V2 api to be configurable 2018-02-02 13:54:41 -05:00
josephschorr
ccef3bffe9
Merge pull request #2978 from coreos-inc/joseph.schorr/QS-117/gunicorn-worker-count
Make gunicorn worker count scale automatically and be configurable
2018-02-02 13:46:17 -05:00
josephschorr
0486fe6314
Merge pull request #2909 from coreos-inc/joseph.schorr/QS-56/bad-service-key
Better handling of instance key failure in Quay
2018-02-02 13:44:47 -05:00
josephschorr
e2693ac390
Merge pull request #2994 from coreos-inc/fix-syslog
Fix syslog for updated phusion base image
2018-02-02 13:44:37 -05:00
Joseph Schorr
da9b05fa4a Remove syslog check lines from all services 2018-02-02 13:38:25 -05:00
Joseph Schorr
bbdf9e074c Add metrics for tracking when instance key renewal succeeds and fails, as well as when instance key *lookup* fails 2018-02-02 11:14:42 -05:00