Commit graph

3978 commits

Author SHA1 Message Date
Jimmy Zelinskie
15464f1169 Merge pull request #41 from coreos-inc/smallfixes
Fix case where the auth token was not written properly for BitBucket
2015-05-26 13:41:22 -04:00
Joseph Schorr
374d1d7e89 Fix case where the auth token was not written properly for BitBucket 2015-05-26 13:40:21 -04:00
josephschorr
f5dc3c2a5a Merge pull request #40 from coreos-inc/verifyfix
Have the verifyUser endpoint use the same confirm_existing_user method
2015-05-22 16:30:25 -04:00
Jimmy Zelinskie
66dad67661 Merge pull request #35 from jzelinskie/tls
Update lots of stuff in regards to TLS
2015-05-22 16:26:38 -04:00
Joseph Schorr
855f3a3e4d Have the verifyUser endpoint use the same confirm_existing_user method
This will prevent us from encountering the same problem as the generated encrypted password issue when using LDAP
2015-05-22 16:26:26 -04:00
Jimmy Zelinskie
581d2fa4fc nginx: move ssl config out of server-base 2015-05-22 16:25:28 -04:00
Jimmy Zelinskie
2a25864061 setup-tool: add HSTS info box 2015-05-22 16:18:56 -04:00
josephschorr
1117a2cdc6 Merge pull request #36 from coreos-inc/ldapfix
LDAP fixes
2015-05-22 15:46:00 -04:00
Joseph Schorr
5589bfc6d5 - Have the heartbeat fail to update if the worker has timed out
- Add additional build component logging for tracking down problems in the future
2015-05-22 15:24:14 -04:00
Jimmy Zelinskie
4323eb58da nginx: SSL config into server-base.conf 2015-05-22 13:54:43 -04:00
Jimmy Zelinskie
f9f933feff nginx: update cipher suite, HSTS, X-Frame-Options 2015-05-22 13:35:49 -04:00
Jimmy Zelinskie
dfc2df1885 Merge pull request #39 from coreos-inc/hiddentab
Disable the angular poll channel when the browser tab is hidden
2015-05-21 18:12:39 -04:00
Joseph Schorr
c788d02a57 Disable the angular poll channel when the browser tab is hidden
Quay pages that normally poll (repo view, build logs, etc) will skip the API call(s) when the tab is hidden.
2015-05-21 17:16:38 -04:00
Jimmy Zelinskie
5f787c7e82 Merge pull request #37 from coreos-inc/fixhealthcheck
Fix the DB health check
2015-05-20 17:42:26 -04:00
Joseph Schorr
e23f1e9ded Fix the DB health check
Make sure to search for the proper DB identifier
2015-05-20 17:40:43 -04:00
Jimmy Zelinskie
417c77f4d9 Merge pull request #34 from jzelinskie/flatten-logs
cloudconfig: flatten logentries container
2015-05-20 16:42:52 -04:00
Joseph Schorr
b0d763b5ff Fix encrypted password generator to use the LDAP username, not the Quay username.
Currently, we use the Quay username via `verify_user` when we go to create the encrypted password. This is only correct if Quay has not generated its own different username for the LDAP user, and fails if it has. We therefore add a new method `confirm_existing_user`, which looks up the federated login for the LDAP user and then runs the auth flow using that username.
2015-05-20 16:37:09 -04:00
Jimmy Zelinskie
db05db6295 cloudconfig: flatten logentries container 2015-05-20 16:34:16 -04:00
Jimmy Zelinskie
60763d69b1 nginx: support OCSP Stapling 2015-05-20 16:32:12 -04:00
Jimmy Zelinskie
4689c00fad nginx: drop SSLv3, support TLS 1.1 & 1.2 2015-05-20 16:31:32 -04:00
Jimmy Zelinskie
c44846103e nginx: enable Strict Transport Security 2015-05-20 16:31:00 -04:00
Joseph Schorr
ac239ec4ee Make sure to only split into two parts max 2015-05-20 14:54:41 -04:00
Joseph Schorr
d5e70c6e2a Explicitly enable LDAP referrals
Note: The mock LDAP system doesn't support referrals, so we can't add a unit test for this.
2015-05-20 14:53:31 -04:00
Jimmy Zelinskie
7bed404302 Merge pull request #33 from coreos-inc/branchregex
Add some more debug logging around bitbucket triggers and add some te…
2015-05-20 14:22:33 -04:00
Joseph Schorr
eb773e40a2 Add some more debug logging around bitbucket triggers and add some tests to verify we properly handle trigger branch filters 2015-05-20 14:18:12 -04:00
Jimmy Zelinskie
1e0d184a99 Merge pull request #32 from jzelinskie/bb
custom-git: accept commit SHAs 7+ chars in length
2015-05-20 12:59:10 -04:00
Jimmy Zelinskie
fe3f0dc10b custom-git: accept commit SHAs 7+ chars in length 2015-05-20 12:53:43 -04:00
Joseph Schorr
54992c23b7 Add a feature flag for disabling unauthenticated access to the registry in its entirety. 2015-05-19 17:52:44 -04:00
Joseph Schorr
598fc6ec46 Add the error code to the worker error logged to redis 2015-05-18 15:01:48 -04:00
Joseph Schorr
2379af71f8 Parse the client secret properly 2015-05-18 15:01:37 -04:00
Joseph Schorr
fb8e718c44 Fix OAuth 2 handler to support retrieving parameters from other places; various OAuth client (such as the Go library) send the values in the request body or even the Auth header 2015-05-18 12:38:39 -04:00
Joseph Schorr
91b464d0de Switch build manager to always just WARN on boto 2015-05-18 12:34:26 -04:00
Jimmy Zelinskie
3daa0e6a52 migration: use SA boolean value for server_default 2015-05-15 19:04:54 -04:00
Jimmy Zelinskie
05e2bdbd02 Merge pull request #29 from jzelinskie/master
migration: server_default for boolean field
2015-05-15 17:06:12 -04:00
Jimmy Zelinskie
e12d5af52c migration: server_default for boolean field 2015-05-15 17:04:50 -04:00
Joseph Schorr
0bc1c29dff Switch the Python side to Swagger v2 2015-05-14 16:47:38 -04:00
Jimmy Zelinskie
86f400fdf5 buildman: fix btrfs mounting in worker cloudconfig 2015-05-13 17:40:35 -04:00
Joseph Schorr
ee2736bb17 Fix the CoreOS Icon font in the non-CDN case 2015-05-13 17:14:20 -04:00
Joseph Schorr
28bd9af4ff Fix tutorial 2015-05-13 14:55:39 -04:00
Joseph Schorr
30608366d7 Update screenshots and tour content 2015-05-13 14:24:12 -04:00
Joseph Schorr
0e86fc80ca Fix bitbucket trigger to use the specified branch name before the default branch 2015-05-13 13:55:44 -04:00
Joseph Schorr
6a52ffa942 Add missing default value on the new reversion column 2015-05-13 13:49:21 -04:00
Joseph Schorr
6f1a366f6c Merge branch 'master' of github.com:coreos-inc/quay 2015-05-13 13:30:31 -04:00
Joseph Schorr
2172cc73e3 Update screenshot generation 2015-05-13 13:30:22 -04:00
Jimmy Zelinskie
a6902a91d2 Merge pull request #27 from coreos-inc/butterfs
buildman: create and mount btrfs volume for docker
2015-05-13 13:29:46 -04:00
Jimmy Zelinskie
6a5cecebc5 buildman: create and mount btrfs volume for docker
There are numerous issues with overlayfs that actually aren't present with
btrfs. Btrfs seems to have long-running issues, but our builders are
ephemeral. Example issue: https://github.com/docker/docker/issues/10180
2015-05-12 17:42:34 -04:00
Joseph Schorr
af5fc42f27 Make the new repo page support all the trigger types automatically. 2015-05-12 12:40:26 -04:00
Joseph Schorr
07b4fb9105 LDAP sometimes has multiple records for a user 2015-05-12 12:02:09 -04:00
Joseph Schorr
efab02ae47 LDAP improvements:
- Better logging
  - Better error messages
  - Add unit tests
  - Clean up the setup tool for LDAP
2015-05-11 21:23:18 -04:00
Joseph Schorr
3e1abba284 Add ability for super users to rename and delete organizations 2015-05-11 18:03:25 -04:00