Commit graph

8280 commits

Author SHA1 Message Date
Joseph Schorr
86f898d9bd Fix OAuth scopes display
Before, we were sending the wrong kind of data (namedtuple instead of dict) in the non-superuser case, which broke prod. Now, we always explicitly send a standard dictionary.

Fixes https://jira.coreos.com/browse/QUAY-871
2018-03-16 13:03:42 -04:00
josephschorr
32a473d23c
Merge pull request #3022 from coreos-inc/cache-serialization-fix
Fix serialization of blobs to/from the cache
2018-03-02 14:26:46 -05:00
Joseph Schorr
24b77bbc10 Fix serialization of blobs to/from the cache
Also makes sure the test checks that serialization
2018-03-02 14:22:55 -05:00
josephschorr
0bc1a06f4c
Merge pull request #3021 from coreos-inc/temp-fix
Add missing update on temp memcached install
2018-03-02 13:44:58 -05:00
Joseph Schorr
22fa44cf1a Add missing update on temp memcached install 2018-03-02 13:43:14 -05:00
josephschorr
ae4b2d377a
Merge pull request #3020 from coreos-inc/temp-add-memcached-to-dockerfile
Add memcached install temporarily to the top-level Dockerfile
2018-03-02 13:38:03 -05:00
Joseph Schorr
c2099c3578 Add memcached install temporarily to the top-level Dockerfile
The quay-base Dockerfile is broken (great...), and so we cannot update it with the memcached dependency
2018-03-02 13:35:57 -05:00
josephschorr
d2069a4bba
Merge pull request #3019 from coreos-inc/mysql-field
Change name field back to a normal string
2018-03-02 13:26:16 -05:00
Joseph Schorr
ff1773bd28 Change name field back to a normal string
Our prod MySQL does not support an index on a UTF8 field of this size; thankfully, we don't need UTF8 here
2018-03-02 13:23:30 -05:00
josephschorr
e992e576b2
Merge pull request #3018 from coreos-inc/missing-default-value
Add missing server_default on enabled col in repositorybuildtrigger
2018-03-02 13:15:32 -05:00
Joseph Schorr
4db4a44491 Add missing server_default on enabled col in repositorybuildtrigger
Without it, we'll default all existing triggers to disabled
2018-03-02 13:13:32 -05:00
josephschorr
dbe4258fc4
Merge pull request #2892 from coreos-inc/joseph.schorr/QS-21/autodisable-triggers
Automatic disabling of failing build triggers
2018-03-02 11:37:38 -05:00
Joseph Schorr
ed84835d23 Changes for code review 2018-03-01 16:49:52 -05:00
Joseph Schorr
3438c1bfad Add new config fields to the schema 2018-03-01 16:49:51 -05:00
Joseph Schorr
de2469ccdc Add warning that triggers will be auto-disabled 2018-03-01 16:49:51 -05:00
Joseph Schorr
3837a7c2ed Add datetime of when a trigger was disabled 2018-03-01 16:49:51 -05:00
Joseph Schorr
93d79e777e Automatically disable build triggers with successive failures or internal errors
We allow users to reenable them manually once disabled
2018-03-01 16:49:51 -05:00
Joseph Schorr
c35eec0615 Add ability for triggers to be disabled
Will be used in the followup commit to automatically disable broken triggers
2018-03-01 16:49:28 -05:00
josephschorr
1e54a4d9e9
Merge pull request #2949 from coreos-inc/joseph.schorr/QS-91/memcached
Switch Quay to using an in-container memcached for data model caching
2018-03-01 16:48:52 -05:00
josephschorr
fd3117f217
Merge pull request #3017 from coreos-inc/superuser-api
Remove internal_only from superuser APIs for users and orgs
2018-03-01 15:25:01 -05:00
Joseph Schorr
4be3594ec8 Remove internal_only from superuser APIs for users and orgs 2018-03-01 15:14:39 -05:00
Joseph Schorr
ab0172d2fd Switch Quay to using an in-container memcached for data model caching 2018-02-27 16:55:22 -05:00
josephschorr
5cecc54bd5
Merge pull request #3014 from coreos-inc/joseph.schorr/QUAY-838/async-delete
Make namespace deletion asynchronous
2018-02-27 14:01:32 -05:00
Joseph Schorr
8bc55a5676 Make namespace deletion asynchronous
Instead of deleting a namespace synchronously as before, we now mark the namespace for deletion, disable it, and rename it. A worker then comes along and deletes the namespace in the background. This results in a *significantly* better user experience, as the namespace deletion operation now "completes" in under a second, where before it could take 10s of minutes at the worse.

Fixes https://jira.coreos.com/browse/QUAY-838
2018-02-27 13:12:51 -05:00
Brad Ison
d9015a1863
Merge pull request #3000 from bison/update-deps
Update dependencies
2018-02-26 14:57:22 -05:00
Brad Ison
6cfa96bdeb Update all dependencies 2018-02-26 13:09:40 -05:00
Brad Ison
d4ee938a5d Fix license test in Dockerfile 2018-02-26 12:56:01 -05:00
Brad Ison
d1ba2dcfc3 Add labels to test cases for invalid JWTs 2018-02-26 12:55:49 -05:00
Brad Ison
5da8744ddf Reject JWTs with future issued-at times
PyJWT stopped doing this in 1.5.0 because it's not part of the spec,
and there are legitimate reasons to issue future tokens.  We still
want to reject these though as we don't have that need.
2018-02-26 12:55:32 -05:00
Brad Ison
f0d6b69729 Pin cnr_server version 2018-02-26 12:55:16 -05:00
Brad Ison
77e894d958 Remove old cnr from requirements-nover.txt 2018-02-26 12:55:01 -05:00
Brad Ison
cb729d0dfd
Merge pull request #3015 from bison/blobupload-byte-count
Make byte_count on BlobUpload table not nullable
2018-02-26 12:33:40 -05:00
Brad Ison
f89a16a64d Make byte_count on BlobUpload table not nullable
The byte_count field on the BlobUpload model is marked as not
nullable, but the migration to make the field a big integer removed
that restriction (#2388 :: 76de324) in the database.  It's still in
the model though, which means they are out of sync.  This adds a
migration to mark the field as not nullable in the database again.
2018-02-26 11:36:56 -05:00
Brad Ison
f458307ffd
Merge pull request #3009 from bison/drop-image-checksum
Drop checksum from ImageStorage table
2018-02-24 17:27:13 -05:00
Brad Ison
5bd826e7b5 Drop checksum from ImageStorage table
The checksum field was removed from the ImageStorage model in #815,
but was never dropped from the database.  This adds a migration to
drop the unused column.
2018-02-24 17:00:07 -05:00
josephschorr
823ce52466
Merge pull request #3013 from coreos-inc/joseph.schorr/QUAY-837/filtered-check
Have cor-checkable-menus reflect the filtered set of items
2018-02-21 16:43:32 -05:00
Joseph Schorr
e857c676db Have cor-checkable-menus reflect the filtered set of items
Fixes https://jira.coreos.com/browse/QUAY-837
2018-02-21 16:38:21 -05:00
josephschorr
6220df4f88
Merge pull request #3012 from coreos-inc/access-control-header
Add X-Requested-With header to allowed CORS headers
2018-02-21 14:27:36 -05:00
josephschorr
f851693095
Merge pull request #3011 from coreos-inc/mysql-queue-tests
Switch build queue limiter query to use total number of alive jobs
2018-02-21 14:21:57 -05:00
Joseph Schorr
bcd9b680fa Add X-Requested-With header to allowed CORS headers
Will fix the API explorer
2018-02-21 14:21:27 -05:00
Joseph Schorr
e446eb5757 Switch build queue limiter query to use total number of alive jobs
This is slightly more accurate and, not being based on time, will work better under MySQL
2018-02-21 14:04:40 -05:00
josephschorr
d77aa9228f
Merge pull request #3002 from coreos-inc/joseph.schorr/QUAY-822/gc-app-tokens
Add a worker to automatically GC expired app specific tokens
2018-02-20 17:21:48 -05:00
josephschorr
7b106d81ef
Merge pull request #3010 from coreos-inc/schema-fix
Fix config schema for bitbucket trigger
2018-02-20 17:01:28 -05:00
Joseph Schorr
4d0ad0074d Fix config schema for bitbucket trigger 2018-02-20 16:59:34 -05:00
josephschorr
3f2604c61e
Merge pull request #3008 from coreos-inc/build-queue-limits
Add configurable limits for number of builds allowed under a namespace
2018-02-20 16:54:37 -05:00
Joseph Schorr
9a452ace11 Add configurable limits for number of builds allowed under a namespace
We also support that limit being increased automatically once a successful billing charge has gone through
2018-02-20 16:54:22 -05:00
Brad Ison
62971b7f20
Merge pull request #2999 from bison/user-location
Add user location metadata filed
2018-02-20 16:48:37 -05:00
josephschorr
4857cd9c48
Merge pull request #2987 from coreos-inc/joseph.schorr/QUAY-805/dot-fix
Add decorator to prevent reflected text attacks
2018-02-20 12:02:22 -05:00
Joseph Schorr
188ea98441 Add new decorator to prevent reflected text attacks
Instead of disabling repo names with periods in them, we simply disallow calls to the API when they are GET requests, whose path ends in a dot, and that do not have a referrer from the frontend.
2018-02-20 11:33:45 -05:00
Joseph Schorr
b342111edb Add registry tests for pushing and pulling previously bad repo names 2018-02-20 11:31:36 -05:00