vbatts/quay - Git - Batts Cloud

Archived

Author	SHA1	Message	Date
Joseph Schorr	fda203e4d7	Add proper and tested OIDC support on the server Note that this will still not work on the client side; the followup CL for the client side is right after this one.	2017-01-23 17:53:34 -05:00
Jimmy Zelinskie	64421db0a3	MAINTAINERS: init owners to subpkgs	2017-01-23 17:46:34 -05:00
alecmerdler	615e233671	moved Angular routes to separate module; load Webpack bundle before other main scripts	2017-01-20 16:24:55 -08:00
Joseph Schorr	19f7acf575	Lay foundation for truly dynamic external logins Moves all the external login services into a set of classes that share as much code as possible. These services are then registered on both the client and server, allowing us in the followup change to dynamically register new handlers	2017-01-20 15:21:08 -05:00
Joseph Schorr	4755d08677	Refactor and rename the standard OAuth services	2017-01-19 15:23:15 -05:00
Joseph Schorr	bee2551dc2	Temporarily remove Dex login support This will be added back in later in this PR as part of proper generic OIDC support	2017-01-19 14:51:12 -05:00
josephschorr	e2748fccd9	Merge pull request #2282 from coreos-inc/motd-updates Severity and Markdown support in MOTD	2017-01-18 17:41:27 -05:00
Joseph Schorr	3106504f39	Severity and Markdown support in MOTD [Delivers #133555165]	2017-01-18 16:55:32 -05:00
Joseph Schorr	669a3070bd	Only parse request URL in track_and_log when necessary	2017-01-18 11:23:23 -05:00
Joseph Schorr	89229a8f2c	Don't publish registry events to Redis for robots The tutorial can only be used by users, so no need to publish for robots, which can cause issues in pulling for builders and other prod mechanisms if Redis is being finicky	2017-01-18 11:22:07 -05:00
josephschorr	9b65b37011	Merge pull request #2245 from coreos-inc/recaptcha Add support for recaptcha during the create account flow	2017-01-17 11:34:23 -05:00
josephschorr	ac8cddc5a9	Merge pull request #2274 from coreos-inc/custom-cert-management Custom SSL certificates config panel	2017-01-13 16:24:47 -05:00
Joseph Schorr	efdedba2ae	Superuser config tool warnings Adds warnings displayed in the superuser config tool that the changes made will only be applied to the local instance (in non-k8s case) or that a deployment is required (in the k8s case) [Delivers #137537413]	2017-01-13 15:50:50 -05:00
Joseph Schorr	7e0fbeb625	Custom SSL certificates config panel Adds a new panel to the superuser config tool, for managing custom SSL certificates in the config bundle [Delivers #135586525]	2017-01-13 14:34:35 -05:00
Alec Merdler	081424ed82	Merge pull request #2268 from coreos-inc/frontend-testing-framework Front-end testing framework	2017-01-11 16:20:40 -08:00
Jake Moshenko	fe9f97cd0e	Fix the order and number of arguments for squashing/ACI	2017-01-11 15:16:49 -05:00
Joseph Schorr	3eb17b7caa	Add support for recaptcha during the create account flow If the feature is enabled and recaptcha keys are given in config, then a recaptcha box is displayed in the UI when creating a user and a recaptcha response code must be sent with the create API call for it to succeed.	2017-01-09 11:08:21 -05:00
alecmerdler	659417f7ef	tests for AngularViewArray service	2017-01-07 00:28:02 -08:00
Joseph Schorr	9413e25123	Change georeplication queuing to use new batch system	2016-12-21 17:44:30 -05:00
josephschorr	732ab67b57	Merge pull request #2252 from coreos-inc/parallel-tests Fix pytests and enable parallel registry tests	2016-12-20 16:56:52 -05:00
Joseph Schorr	481cebe46b	Fix pytests and enable parallel registry tests	2016-12-20 15:42:04 -05:00
Joseph Schorr	f4f5a065df	Add check for None repository in start build API Fixes #2244	2016-12-19 11:40:24 -05:00
Brad Ison	2730c26b2e	Merge pull request #2237 from coreos-inc/metrics-labels Don't record size in chunk upload metrics	2016-12-15 14:20:34 -05:00
Brad Ison	df7366eace	Add chunk size metric	2016-12-15 13:20:16 -05:00
EvB	43aed7c6f4	fix(endpoints/api): return empty 204 resp Return an empty body on API requests with status code 204, which means "No content". Incorrect 'Deleted' responses were being returned after successful DELETE operations despite the "No Content" definition of 204.	2016-12-14 16:22:39 -05:00
Brad Ison	8f59ac1251	Don't record size in chunk upload metrics	2016-12-14 12:16:02 -05:00
Joseph Schorr	fd364ccca3	Remove unneeded exception var	2016-12-09 14:52:49 -05:00
Joseph Schorr	1302fd2fbd	Switch csrf token check to use `compare_digest` to prevent timing attacks Also adds some additional tests for CSRF tokens	2016-12-08 23:46:31 -05:00
Joseph Schorr	dbdcb802b1	Add end-to-end OAuth login and attach tests	2016-12-08 18:35:42 -05:00
Joseph Schorr	36324708db	Fix small pylint issues	2016-12-08 16:21:44 -05:00
Joseph Schorr	ff52fde8a5	Have Quay always use an OAuth-specific CSRF token This change ensures that we always store and then check the contents of the OAuth `state` argument against a session-stored CSRF token. Fixes https://www.pivotaltracker.com/story/show/135803615	2016-12-08 16:11:57 -05:00
josephschorr	543d86ae10	Merge pull request #2221 from coreos-inc/fix-error-pages Have all error pages be rendered by Angular	2016-12-07 17:53:14 -05:00
josephschorr	111b7b0788	Merge pull request #2206 from coreos-inc/ldap-user-search-fix Fix external auth returns for query_user calls	2016-12-07 17:53:04 -05:00
Joseph Schorr	c06bba38de	Have all error pages be rendered by Angular Fixes #2198 Fixes https://www.pivotaltracker.com/story/show/135724483	2016-12-07 17:49:02 -05:00
Jimmy Zelinskie	00eafff747	Merge pull request #2204 from jzelinskie/429builds add rate limiting to build queues	2016-12-07 15:03:31 -05:00
Joseph Schorr	3203fd6de1	Fix external auth returns for query_user calls Adds the missing field on the query_user calls, updates the external auth tests to ensure it is returned properly, and adds new end-to-end tests which call the external auth engines via the API, to ensure this doesn't break again	2016-12-07 14:28:42 -05:00
Jimmy Zelinskie	ebbe58d311	replace prefix w/ canonical name list	2016-12-07 12:56:56 -05:00
Joseph Schorr	d349e1639a	Fix doc comment on security scan API endpoint Fixes #2216	2016-12-07 11:50:22 -05:00
Jimmy Zelinskie	c41de8ded6	build queue rate limiting: address PR comments	2016-12-06 20:40:54 -05:00
Jimmy Zelinskie	eb69abff8b	build rate limiting: tests	2016-12-06 16:30:12 -05:00
Jimmy Zelinskie	57770493fa	build rate limiting: use a rate	2016-12-06 16:30:12 -05:00
Jimmy Zelinskie	7877c6ab94	add rate limiting to build queues	2016-12-06 16:30:12 -05:00
Jake Moshenko	d656e54d99	Fix unsafe mutable default params.	2016-12-06 14:00:16 -05:00
Jake Moshenko	21e3001446	Add a bulk insert for queue and notifications. Use it for Clair spawned notifications.	2016-12-06 14:00:16 -05:00
Joseph Schorr	97d150e281	Have QSS only add security scanner notifications once	2016-12-05 19:08:20 -05:00
Joseph Schorr	cf61c29671	Move SETUP_COMPLETE check up to allow users to add license Somehow this change got lost.	2016-12-05 13:22:14 -05:00
Charlton Austin	4103a0b75f	Adding in cancel notifications	2016-11-30 14:38:34 -05:00
josephschorr	b7aac159ae	Merge pull request #2170 from coreos-inc/password-reset Fix small bugs around account recovery and user settings redirection	2016-11-28 19:51:23 -05:00
Joseph Schorr	dcd8157207	Fix JWT exception in Dex code	2016-11-28 18:55:51 -05:00
Joseph Schorr	0e24f6b40a	Fix user redirects to go to the correct URL `/user` no longer works and returns a 404; we now need to redirect to the specific user page	2016-11-28 18:55:41 -05:00
Joseph Schorr	402ad25690	Change team invitation acceptance to join all invited teams under the org Fixes #1989	2016-11-28 18:39:28 -05:00
Evan Cordell	9e96e6870f	Add support for * (admin) permission to registry auth v2 endpoint	2016-11-28 14:02:08 -05:00
josephschorr	1529ed2086	Merge pull request #2154 from coreos-inc/receipt-filename Make receipt filenames include date information	2016-11-23 12:25:53 -05:00
Joseph Schorr	964b1013d9	Make receipt filenames include date information Fixes #1997	2016-11-21 15:35:56 -05:00
Joseph Schorr	080802ed2d	Add tracking of pulled tag/digest to logs Fixes #2148	2016-11-21 12:29:59 -05:00
Charlton Austin	2fe74e4057	Adding in UI for cancel anytime.	2016-11-21 10:58:32 -05:00
josephschorr	ff14601669	Merge pull request #2139 from coreos-inc/oauth-reauth Fix error displayed for OAuth if an existing token already matches scopes	2016-11-17 16:42:56 -05:00
Joseph Schorr	0e602efbf9	Fix error displayed for OAuth if an existing token already matches scopes Before this change, the OAuth system would automatically redirect to display the code if the scopes requested were a subset of those already granted by the user. However, the missing process auth resulted in `get_authenticated_user` returning None, which broke the OAuth flow. Fixes #2131	2016-11-17 16:21:26 -05:00
Joseph Schorr	0b549125d9	Fix 500 on get label endpoint and add a test Fixes #2133	2016-11-17 14:55:14 -05:00
Joseph Schorr	1a61ef4e04	Report the user's name and company to Marketo Also fixes the API to report the other changes (username and email) as well	2016-11-14 17:34:50 -05:00
Joseph Schorr	aa2704acc7	Add a test for operation name collisions and fix the one additional collision found	2016-11-10 15:38:27 -05:00
Joseph Schorr	932fa56227	Fix name collision between the two organization delete calls Fixes #2104 The collision was causing the frontend to try to call the superuser method (in local, where superuser is enabled), but on prod (where it isn't), it was calling the normal method, which takes a different parameter name	2016-11-10 15:28:20 -05:00
josephschorr	45b1148118	Merge pull request #2086 from coreos-inc/user-info Add collection of user metadata: name and company	2016-11-09 13:15:07 -05:00
josephschorr	6200a2a49a	Merge pull request #2088 from coreos-inc/license-about-notification Add a warning bar when the license will become invalid in a week	2016-11-09 11:45:48 -05:00
Joseph Schorr	7e78406112	Add a defined timeout on all HTTP calls in notification methods	2016-11-08 18:28:06 -05:00
Joseph Schorr	0f2eb61f4a	Add collection of user metadata: name and company	2016-11-08 16:15:02 -05:00
Joseph Schorr	74c3346562	Add a warning bar when the license will become invalid in a week	2016-11-08 14:24:55 -05:00
josephschorr	9aac68fbeb	Merge pull request #2031 from coreos-inc/license-notification Add banner bar message when license has expired or is invalid	2016-11-07 13:52:53 -05:00
josephschorr	d051e58e69	Merge pull request #2082 from coreos-inc/moar-stats Add new metrics as requested by some customers	2016-11-03 16:25:11 -04:00
Joseph Schorr	1e3b354201	Add support for temp usernames and an interstitial to confirm username When a user now logs in for the first time for any external auth (LDAP, JWT, Keystone, Github, Google, Dex), they will be presented with a confirmation screen that affords them the opportunity to change their Quay-assigned username. Addresses most of the user issues around #74	2016-11-03 15:59:14 -04:00
Joseph Schorr	4b926ae189	Add new metrics as requested by some customers Note that the `status` field on the pull and push metrics will eventually be set to False for failed pulls and pushes in a followup PR	2016-11-03 15:28:40 -04:00
josephschorr	840ea4e768	Merge pull request #2047 from coreos-inc/external-auth-email-optional Make email addresses optional in external auth if email feature is turned off	2016-10-31 14:16:33 -04:00
Joseph Schorr	0fc132cffb	Make sure Google email addresses are verified	2016-10-31 13:52:09 -04:00
Joseph Schorr	3a473cad2a	Enable permanent sessions Fixes #1955	2016-10-31 13:52:09 -04:00
Joseph Schorr	d7f56350a4	Make email addresses optional in external auth if email feature is turned off Before this change, external auth such as Keystone would fail if a user without an email address tried to login, even if the email feature was disabled.	2016-10-31 13:50:24 -04:00
Joseph Schorr	bab17932ac	Fix namespace lookup in V1 registry search Fixes #2053	2016-10-31 13:24:40 -04:00
Joseph Schorr	ccb5bc8f1b	Add external auth emails to entity search Fixes #1791	2016-10-27 16:08:07 -04:00
josephschorr	934cdecbd6	Merge pull request #1905 from coreos-inc/external-auth-search Add support for entity search against external auth users not yet linked	2016-10-27 16:06:42 -04:00
Joseph Schorr	d145222812	Add support for linking to external users in entity search	2016-10-27 15:42:03 -04:00
Jimmy Zelinskie	30821569a4	key server: fix tests by exporting jwk_with_kid	2016-10-25 16:14:18 -04:00
Jimmy Zelinskie	b1327bcb8f	key server: add kid to services JWKs	2016-10-25 15:33:01 -04:00
Joseph Schorr	43a63af44c	Add banner bar message when license has expired or is invalid	2016-10-24 15:37:45 -04:00
Joseph Schorr	5ed13da2e6	Add missing security test for delete org	2016-10-21 17:37:49 -04:00
josephschorr	edc2bc8b93	Merge pull request #1698 from coreos-inc/delete-namespace Add support for deleting namespaces (users, organizations)	2016-10-21 16:54:52 -04:00
Joseph Schorr	73eb66eac5	Add support for deleting namespaces (users, organizations) Fixes #102 Fixes #105	2016-10-21 15:41:09 -04:00
Joseph Schorr	b7fc7999c3	Delete old "license" checking code arounds user counts This is legacy code that doesn't actually do anything of value	2016-10-20 14:58:35 -04:00
Joseph Schorr	864c44501e	Fix global messages by removing "extra" method I think this happened due to a bad merge.	2016-10-20 13:53:51 -04:00
Joseph Schorr	213cc856e4	Fix UI for real license handling Following this change, the user gets detailed errors and entitlement information	2016-10-19 17:49:15 -04:00
Joseph Schorr	2eabf1a291	Fix tests and test provider for real license format	2016-10-18 23:44:08 -04:00
Jake Moshenko	9f1c12e413	Refactor our license code to be entitlement centric.	2016-10-18 22:33:28 -04:00
josephschorr	2a7dbd3348	Merge pull request #2009 from coreos-inc/qe2-license Add license support for QE	2016-10-17 23:11:43 -04:00
Joseph Schorr	ee96693252	Add superuser config section for updating license	2016-10-17 21:44:25 -04:00
Jimmy Zelinskie	5fee4d6d19	*: misc formatting cleanup	2016-10-17 21:43:45 -04:00
Jimmy Zelinskie	a42eb09a3e	util.license: make bp-modification a method	2016-10-17 21:43:45 -04:00
Jimmy Zelinskie	0c5400b7d1	enforce license across registry blueprints	2016-10-17 21:43:45 -04:00
Joseph Schorr	8fe29c5b89	Add license upload step to the setup flow Fixes #853	2016-10-17 21:43:15 -04:00
Joseph Schorr	b1c17b1a45	Fix messages API to not NPE show_if does not work on a method route	2016-10-17 17:43:12 -04:00
Charlton Austin	f45aac063e	Merge pull request #2005 from charltonaustin/fix_spacing_for_motd Moving the messages endpoint to something more generic, and making th…	2016-10-17 17:21:03 -04:00
Charlton Austin	8e5dc8d3db	Moving the messages endpoint to something more generic, and making the get visible all the time.	2016-10-17 16:23:48 -04:00
Joseph Schorr	18097a1bd6	Fix Link headers for pagination to match RFC Fixes part of #2002	2016-10-17 13:57:05 -04:00
Jake Moshenko	95ced00457	Merge pull request #1982 from jakedt/marsquito Write our users to Marketo as leads.	2016-10-14 16:30:03 -04:00
Jake Moshenko	f04b018805	Write our users to Marketo as leads.	2016-10-14 16:29:11 -04:00
Joseph Schorr	886489c666	Fix NPE raised if a vulnerability notification doesn't have a level filter Fixes #1990	2016-10-14 14:23:50 -04:00
Charlton Austin	97d644d95d	Adding in the delete api and the delete and create UI.	2016-10-13 10:40:52 -04:00
Charlton Austin	be916fb6ed	Merge pull request #1966 from charltonaustin/j_code_review_comments Adding in security tests and docs.	2016-10-11 09:50:47 -04:00
charltonaustin	5a4b702888	Adding in security tests and docs.	2016-10-11 09:30:37 -04:00
Jake Moshenko	7a3ee86e53	Merge pull request #1957 from jakedt/absolutecorruption Always use absolute URLs in Location headers.	2016-10-10 18:25:29 -04:00
Jake Moshenko	df1f35e9f9	Always use absolute URLs in Location headers. This works around docker/docker#15048	2016-10-10 16:30:24 -04:00
josephschorr	7fc33a9a57	Merge pull request #1965 from coreos-inc/condense-slack-notifications Less verbose notifications for QSS	2016-10-10 15:38:12 -04:00
Joseph Schorr	ebf4120326	Less verbose notifications for QSS Fixes #1914	2016-10-10 15:18:49 -04:00
charltonaustin	2739a40479	Removing validate annotation.	2016-10-10 15:15:28 -04:00
charltonaustin	f179320944	Adding in validate son request.	2016-10-10 14:15:09 -04:00
charltonaustin	14eb3005b6	Some fixes for code review.	2016-10-10 12:55:00 -04:00
charltonaustin	075e87089f	removing debug print statement	2016-10-10 09:36:59 -04:00
charltonaustin	1e733ddffb	Adding in a new message data model and the corresponding methods to in the API.	2016-10-07 15:56:58 -04:00
charltonaustin	002f533bf8	Creating message api.	2016-10-07 10:22:30 -04:00
charltonaustin	5264b64999	Adding in an endpoint for super user messages.	2016-10-06 17:33:32 -04:00
Joseph Schorr	ff0a292548	Handle unicode in entity search Fixes #1934	2016-10-04 21:56:47 +03:00
Jake Moshenko	2efaee6aef	Fix all of the sample notification calls.	2016-10-03 15:26:49 -04:00
Joseph Schorr	f72cb1d2ba	Fix tags API pagination and add a test	2016-10-03 22:06:31 +03:00
Jimmy Zelinskie	671dc73b82	Merge pull request #1924 from coreos-inc/manifestlogs v2: better manifest error messages	2016-10-03 10:32:49 -04:00
Jimmy Zelinskie	afa220a744	v2: add logs around InvalidManifest exception	2016-10-03 10:29:14 -04:00
Jimmy Zelinskie	6c6ef0f22a	v2: better manifest error messages	2016-10-03 10:13:39 -04:00
Joseph Schorr	0b7bb6d6c6	Fix issue in V1 registry code with accessing locations under HEAD Fixes #1922	2016-10-03 17:09:12 +03:00
Jimmy Zelinskie	fae9538467	notifications: another switch to repo attrdict Fixes #1919.	2016-10-01 16:44:19 -04:00
Jimmy Zelinskie	31b77cf232	rename auth.auth to auth.process This fixes some ambiguity around imports.	2016-09-29 15:24:57 -04:00
Jimmy Zelinskie	fc7301be0d	*: fix legacy imports This change reorganizes imports and renames the legacy flask extensions.	2016-09-28 20:17:14 -04:00
josephschorr	4943ae3d32	Merge pull request #1857 from coreos-inc/better-404 Better 404 (and 403) pages	2016-09-27 11:12:54 +02:00
Jimmy Zelinskie	44eca10c05	update interfaces to use ABC	2016-09-26 14:50:24 -04:00
Jimmy Zelinskie	ca883e5662	port label support to refactored v2 registry	2016-09-26 14:49:58 -04:00
Joseph Schorr	3c8b87e086	Fix verbs in manifestlist All registry_tests now pass	2016-09-26 14:49:58 -04:00
Jimmy Zelinskie	c35413d4f6	add boilerplate for verbs data interface	2016-09-26 14:49:23 -04:00
Jimmy Zelinskie	2e5a94bc0b	create key server data interface	2016-09-26 14:49:23 -04:00
Jimmy Zelinskie	c06d395f96	create interfaces for v1 and v2 data model	2016-09-26 14:49:23 -04:00
Joseph Schorr	db60df827d	Implement V2 interfaces and remaining V1 interfaces Also adds some tests to registry tests for V1 stuff. Note: All registry tests currently pass, but as verbs are not yet converted, the verb tests in registry_tests.py currently fail.	2016-09-26 14:49:04 -04:00
Jimmy Zelinskie	d67991987b	v1: refactor index	2016-09-26 14:48:42 -04:00
Jimmy Zelinskie	419779b9c5	v2/blob: remove references to docker client	2016-09-26 14:48:05 -04:00
Jimmy Zelinskie	c77a7bc0b9	v2/blob: _upload_chunk parse range header	2016-09-26 14:48:05 -04:00
Jimmy Zelinskie	9f743fd6cd	address PR comments	2016-09-26 14:48:05 -04:00
Jimmy Zelinskie	16b451437f	v2/blob: s/make_response/Response()	2016-09-26 14:48:05 -04:00
Jimmy Zelinskie	35579093ca	s/close_db_filter/CloseForLongOperation	2016-09-26 14:48:05 -04:00
Jimmy Zelinskie	b68e1b5efc	add "get_" prefix to all db read funcs	2016-09-26 14:48:05 -04:00
Jimmy Zelinskie	32a6c22b43	mv data/types image This change also merges formats into the new image module.	2016-09-26 14:48:05 -04:00
Jimmy Zelinskie	a516c08deb	v2: refactor auth to use data.types	2016-09-26 14:48:05 -04:00
Jimmy Zelinskie	3de6000428	v2: refactor blob.py to use data.types	2016-09-26 14:48:05 -04:00
Jimmy Zelinskie	21cbe0bd07	v2: mv _paginate paginate	2016-09-26 14:48:05 -04:00
Jimmy Zelinskie	3f722f880e	v2: add pagination decorator	2016-09-26 14:48:05 -04:00
Jimmy Zelinskie	5b630ebdb0	v2/manifest: refactor to use types	2016-09-26 14:48:05 -04:00
Jimmy Zelinskie	a5502b54f8	trackhelper: use data.types.Repository	2016-09-26 14:47:06 -04:00
Joseph Schorr	ea18790dfe	Get V1 registry code working with new model methods	2016-09-26 14:47:06 -04:00
Jimmy Zelinskie	8435c254c3	finish v1 registry refactor	2016-09-26 14:47:06 -04:00
Jimmy Zelinskie	c14437e54a	initial v1 refactor to use model methods	2016-09-26 14:47:06 -04:00
Jimmy Zelinskie	4f95a814c0	satisfy the pylint gods	2016-09-26 14:47:06 -04:00
josephschorr	ad4efba802	Merge pull request #1830 from coreos-inc/superuser-dashboard Add prometheus stats to enable better dashboarding	2016-09-26 17:19:22 +02:00
josephschorr	1a1a5f7240	Merge pull request #1854 from coreos-inc/invite Add feature flag to turn off requirement for team invitations	2016-09-22 11:36:58 -04:00
Joseph Schorr	6fffc22b8a	Fix build should_perform for empty JSON	2016-09-21 15:00:47 -04:00
Joseph Schorr	af79fde50d	Fix build notifications	2016-09-21 14:37:23 -04:00
Joseph Schorr	4d5c65e6d4	Better 404 (and 403) pages Fixes #1819	2016-09-21 13:54:21 -04:00
Joseph Schorr	25ed99f9ef	Add feature flag to turn off requirement for team invitations Fixes #1804	2016-09-20 16:45:00 -04:00
josephschorr	33bfe2678b	Merge pull request #1831 from coreos-inc/well-known Add well-known endpoint for Quay	2016-09-16 21:07:30 -04:00
josephschorr	349bd1e0fa	Merge pull request #1839 from coreos-inc/better-notifications Better notifications UI and features	2016-09-16 21:07:14 -04:00
Joseph Schorr	03d4445a02	Add notification filtering for builds based on ref regex Fixes #1835	2016-09-14 16:48:17 -04:00
Joseph Schorr	2fb43196c6	Add well-known endpoint for Quay Fixes #1790	2016-09-12 17:33:08 -04:00
Joseph Schorr	bda0311dbe	Allow build triggers to be invoked by any repo admin Fixes #1079	2016-09-09 17:21:14 -04:00
Joseph Schorr	3f2447d831	Make the frontend agnostic to why a trigger can be run manually	2016-09-09 16:54:46 -04:00
Joseph Schorr	c8a1b8abab	Add prom stats for repository push, pull and verb actions	2016-09-09 15:13:58 -04:00
Joseph Schorr	5d6876eb81	Remove old metrics dashboard It only applies to a single instance, making it fairly useless	2016-09-09 14:46:33 -04:00
Jake Moshenko	1d8b72235a	Add a helper method to Image to parse ancestor string.	2016-09-07 10:48:58 -04:00
josephschorr	cd8b45e25b	Merge pull request #1754 from coreos-inc/team-add-perms Better UI and permissions handling for robots and teams	2016-09-06 17:21:19 -04:00
Joseph Schorr	1b7b3ea41d	Make sure to filter starred repos to those visible to the user Fixes #1793	2016-08-31 14:08:31 -04:00
Joseph Schorr	357005e33f	Raise a 409 if we try to insert a tag twice at the same time Also fixes handling of labels for existing manifests Fixes #1775	2016-08-29 16:03:35 -04:00
Joseph Schorr	608ffd9663	Basic labels support Adds basic labels support to the registry code (V2), and the API. Note that this does not yet add any UI related support.	2016-08-26 15:24:26 -04:00
Joseph Schorr	391d70d9ec	Add repo permissions dialog for existing teams and robots Fixes #1686	2016-08-22 14:43:12 -04:00
Joseph Schorr	6ebb417923	Redesign the teams page to use a table Allows for faster loading and easier viewing of important information about teams	2016-08-22 14:42:54 -04:00
Ben Spoon	979d813551	Merge pull request #1736 from coreos-inc/analytics Analytics	2016-08-19 12:17:34 -07:00
Joseph Schorr	b459581637	Fix handling of dates in logs view - Fixes #1742 - Also fixes the time zone on the aggregated logs API	2016-08-17 16:27:06 -04:00
Joseph Schorr	193040a473	Fix tag links Fixes #1741	2016-08-17 15:06:10 -04:00
Ben Spoon	a706901405	analytics: add google analytics	2016-08-16 11:35:39 -07:00
Joseph Schorr	7f5b536ddb	Fix pagination of repositories Fixes #1725	2016-08-15 16:48:04 -04:00
Joseph Schorr	4f5b4e63f2	Really fix the hack (for now) on public repo pagination	2016-08-13 14:40:11 -04:00
Joseph Schorr	0a12c0cd34	Hack to temporarily fix pagination over public repos	2016-08-13 14:21:23 -04:00
Joseph Schorr	75e8af47e5	Switch Olark to Chatlio	2016-08-08 18:18:35 -04:00
Joseph Schorr	b7bde27b3c	Fix display for builds which have fully expired Fixes #1663	2016-08-04 11:13:32 -04:00
josephschorr	8bc0080aeb	Merge pull request #1672 from coreos-inc/off-by-one Fix off-by-one error in repo tags pagination	2016-08-03 15:00:23 -04:00
josephschorr	b662fad09e	Merge pull request #1670 from coreos-inc/blob-upload-logs Add additional logs for invalid blob upload	2016-08-02 14:55:44 -04:00
Joseph Schorr	dc22b50b56	Add missing requires_cors to build log archive URL Fixes #1671	2016-08-02 14:18:58 -04:00
Joseph Schorr	b1b0da7afd	Fix off-by-one error in repo tags pagination Fixes #1665	2016-08-02 14:17:33 -04:00
Joseph Schorr	a1a6647ea7	Add additional logs for invalid blob upload Fixes #1668	2016-08-02 12:15:30 -04:00
Joseph Schorr	cb9a99fc7b	Change user events tutorial Redis error to be an inline box Fixes #1653	2016-07-27 13:41:26 -07:00
Joseph Schorr	06d52f2c83	Fix handling of multi-part branches in the build triggers Fixes #1360	2016-07-26 13:41:13 -07:00
Joseph Schorr	0fe3e6510a	Prevent invalid tags on builds Fixes #1632	2016-07-25 17:50:35 -07:00
Joseph Schorr	cbf7c2bf44	Add better logging to blob uploads Fixes #1635	2016-07-20 17:53:43 -04:00
Joseph Schorr	4e1259b58a	Fix the Repository ID in pagination problem once and for all But.... ONCE AND FOR ALL! Note: Tested on SQLite, Postgres and MySQL	2016-07-14 17:09:52 -04:00
Joseph Schorr	e252ee07cb	Fix popularity metrics on list repos API	2016-07-06 16:15:54 -04:00
josephschorr	6bde6406c9	Merge pull request #1598 from coreos-inc/instance-key-id-health Add instance key ID to the health check endpoint	2016-07-05 15:45:47 -04:00
Joseph Schorr	a1009af61c	Move aggregator into its own repo and add it to the image	2016-07-05 15:39:51 -04:00
Joseph Schorr	7fddc61b8f	Add instance key ID to the health check endpoint Fixes #1429	2016-07-05 14:14:22 -04:00
Joseph Schorr	1eec6f53b2	Fix SQL error with pagination around Repositories Fixes #1591	2016-06-30 17:31:35 -04:00
Joseph Schorr	310ecd11cc	Handle user events Redis not working in tutorial Also does some basic restyling Fixes #1586	2016-06-28 17:04:31 -04:00
Joseph Schorr	38744c81c5	Change future entries in heat map to be empty	2016-06-23 17:08:11 -04:00
Joseph Schorr	853cca35f3	Change repo stats to use the RAC table and a nice UI	2016-06-22 15:06:53 -04:00
josephschorr	9e6a264f5f	Merge pull request #1523 from coreos-inc/verb-tag-cache-fix Add a uniqueness hash to derived image storage to break caching over …	2016-06-20 16:38:25 -04:00
Joseph Schorr	a43b741f1b	Add a uniqueness hash to derived image storage to break caching over tags This allows converted ACIs and squashed images to be unique based on the specified tag. Fixes #92	2016-06-20 16:34:52 -04:00
Joseph Schorr	9158fe38ee	Add Marketo munchkin tracking via angulartics	2016-06-20 16:22:30 -04:00
Jake Moshenko	a1cf12e460	Add a sitemap.txt for popular public repos and reference it from the robots.txt	2016-06-17 14:34:20 -04:00
Joseph Schorr	b73b534022	Disable hosted status on 500 pages Fixes #1547	2016-06-16 16:27:18 -04:00
josephschorr	614b9124ae	Merge pull request #1512 from coreos-inc/optimize-queries Optimize various queries	2016-06-16 14:22:59 -04:00
Jake Moshenko	746728ba24	Remove escaped_fragment snapshot rendering.	2016-06-14 12:53:10 -04:00
josephschorr	58bef472d9	Merge pull request #1526 from coreos-inc/superuser-grant Add ability for super users to take ownership of namespaces	2016-06-13 16:23:10 -04:00
Joseph Schorr	20816804e5	Add ability for super users to take ownership of namespaces Fixes #1395	2016-06-13 16:22:52 -04:00
josephschorr	92f0db8056	Merge pull request #1514 from coreos-inc/better-logs Only send heavy log-based stats for repository where required	2016-06-09 14:52:30 -04:00
Joseph Schorr	c3701cea7a	Only send heavy log-based stats for repository where required	2016-06-09 14:52:15 -04:00
Joseph Schorr	8177c39aff	Move privacy and TOS to Angular Fixes #1529	2016-06-09 13:45:37 -04:00
Joseph Schorr	8887f09ba8	Use the instance service key for registry JWT signing	2016-06-07 11:58:10 -04:00
Joseph Schorr	73cb3c00ec	Remove unused import	2016-06-03 13:33:22 -04:00
Joseph Schorr	9a747ca6a0	Have get_parent_images not join on placements The only case that needs the placements is in verbs, for which we use a new method	2016-06-03 13:33:15 -04:00
Joseph Schorr	53538f9001	Optimize get_tag_image query No caller uses the image placements or locations, so no need to load them.	2016-06-02 16:36:38 -04:00
josephschorr	cad8746f9d	Merge pull request #1502 from coreos-inc/image-replication Enable storage replication for V2 and add backfill tool	2016-06-02 15:02:53 -04:00
Joseph Schorr	12924784ce	Enable storage replication for V2 and add backfill tool Fixes #1501	2016-06-02 14:36:08 -04:00
Joseph Schorr	48213f9ff9	Reject manifest 2 earlier to make pushes faster	2016-06-02 12:46:20 -04:00
Jimmy Zelinskie	2317938bfa	Merge pull request #1496 from jzelinskie/ripRMS dockerfile: add check for GPL pip packages	2016-06-02 12:28:18 -04:00
josephschorr	a85c3ebff7	Merge pull request #1457 from coreos-inc/xauth Add support for direct granting of OAuth tokens and add tests	2016-06-01 12:07:12 -04:00
Joseph Schorr	04df2410ec	Add better errors if Redis is down Fixes #1497	2016-05-31 15:24:36 -04:00
Jimmy Zelinskie	70f794b0af	replace rfc3987 library with urlparse The former is GPL licensed.	2016-05-26 13:29:48 -04:00
Jake Moshenko	8323c51e6e	Extend registry auth to support notary JWTs.	2016-05-24 13:42:28 -04:00
josephschorr	fa3b342901	Merge pull request #1483 from coreos-inc/superuser-external-user Fix setup tool when binding to external auth	2016-05-23 17:17:45 -04:00
Joseph Schorr	7933aecf25	Add support for direct granting of OAuth tokens and add tests This allows a client (when authorized in a whitelist) to send direct credentials via a Basic auth header and therefore bypass the OAuth approval UI for that user.	2016-05-23 17:17:06 -04:00
Joseph Schorr	60bbca2185	Fix setup tool when binding to external auth We now query the external auth provider for the external service's identifier before adding the linking row into the database. This fixes the case where the external service resolves a different identifier for the same username. Fixes #1477	2016-05-23 17:11:36 -04:00
Joseph Schorr	f670c4c7a9	Change Signer to use the config provider and fix tests Fixes the broken ACI tests	2016-05-23 17:10:03 -04:00
Joseph Schorr	343a080833	Make security scan testing much faster	2016-05-05 13:55:24 -04:00
Jake Moshenko	9221a515de	Use the registry API for security scanning when the storage engine doesn't support direct download url	2016-05-04 18:04:06 -04:00
Joseph Schorr	73fa593d02	Various small fixes in prep for QE release	2016-05-04 15:20:27 -04:00
josephschorr	550b9cb2b3	Merge pull request #1428 from coreos-inc/clair-setup-new Implement setup tool support for Clair	2016-05-04 13:52:54 -04:00
Joseph Schorr	2cbdecb043	Implement setup tool support for Clair Fixes #1387	2016-05-04 13:40:50 -04:00
Joseph Schorr	6e2df3b339	Fix key server to not list expired keys Fixes the key server to not list expire keys and by default not return expired or unapproved keys unless explicitly requested. Fixes #1430	2016-05-03 17:58:47 -04:00
josephschorr	f0af2ca9c3	Merge pull request #1407 from coreos-inc/enterpriselanding Add Enterprise Landing page	2016-05-03 13:52:22 -04:00
Evan Cordell	2242c6773d	Add 'Automatic' ServiceKeyApprovalType	2016-04-29 14:10:33 -04:00
Evan Cordell	668ce2c7cd	Generate private key on startup	2016-04-29 14:10:33 -04:00
Joseph Schorr	6091db983b	Hide expired keys outside of their staleness window	2016-04-29 14:10:33 -04:00
Jimmy Zelinskie	726cb5fe6a	key server: 403 on expired approved keys (#1410 )	2016-04-29 14:09:37 -04:00
Joseph Schorr	4f63a50a17	Change account-less logs to use a user and not null This allows us to skip the migration	2016-04-29 14:09:37 -04:00
Jimmy Zelinskie	ca5794ba18	key server: use total_seconds() for cache headers	2016-04-29 14:09:37 -04:00
Joseph Schorr	5d6e5a42e8	Add delete logging and tests for logging	2016-04-29 14:09:09 -04:00
Jimmy Zelinskie	6aa7040f39	keyserver: add cache-control headers	2016-04-29 14:05:16 -04:00
Joseph Schorr	bc08ac2749	Fix timeouts in the JWT endpoint tests	2016-04-29 14:05:16 -04:00
Joseph Schorr	522cf68c5d	Lots of smaller fixes: - Add the rotation_duration to the keys API - Have the key service UI use the new rotation_duration field - Fix notification deletion lookup path - Add proper support for the new notification in the UI - Only delete expired keys after 7 days (configurable) - Fix angular digest loop - Fix unit tests - Regenerate initdb	2016-04-29 14:05:16 -04:00
Jimmy Zelinskie	d0bd70fb36	endpoints.web: add missing import	2016-04-29 14:05:16 -04:00
Jimmy Zelinskie	370ac3ecd0	service keys: add rotation_duration field	2016-04-29 14:05:16 -04:00
Jimmy Zelinskie	fca258d8bf	endpoints: remove /keys BitTorrent support should now be able to use the keyserver infrastructure instead.	2016-04-29 14:05:16 -04:00
Jimmy Zelinskie	9f4a4092da	keyserver: get signer kid from unverified headers	2016-04-29 14:05:16 -04:00
Joseph Schorr	08017c5111	Further UI updates	2016-04-29 14:05:16 -04:00
Jimmy Zelinskie	cfc15746a6	keyserver: tests!	2016-04-29 14:05:16 -04:00
Jimmy Zelinskie	d19eb16b45	keyserver: add generate key function The superuser API, initdb, and tests will all need this functionality.	2016-04-29 14:05:16 -04:00
Joseph Schorr	fb1dca4e94	Add API usage tests	2016-04-29 14:05:16 -04:00
Joseph Schorr	11ff3e9b59	keys ui WIP	2016-04-29 14:05:16 -04:00
Jimmy Zelinskie	136f92400f	key_server: remove s at the end of endpoint	2016-04-29 13:38:25 -04:00
Jimmy Zelinskie	e456228434	keyserver: insert rotation policy into metadata	2016-04-29 13:38:25 -04:00
Jimmy Zelinskie	885a41e6f5	key server: misc fixes to make jwtproxy work	2016-04-29 13:38:25 -04:00
Jimmy Zelinskie	50ad1bb6b1	key server: misc cleanup to get it working	2016-04-29 13:38:25 -04:00
Jimmy Zelinskie	c0ab45d335	key server: derive audience from host and scheme	2016-04-29 13:38:25 -04:00
Jimmy Zelinskie	93720bd0f4	superuser: proper view for approvals/keys	2016-04-29 13:38:25 -04:00
Jimmy Zelinskie	d277fe6741	add final service key config	2016-04-29 13:38:25 -04:00
Jimmy Zelinskie	c6b8b3ce8c	service_keys: s/get_keys/list_keys	2016-04-29 13:38:25 -04:00
Jimmy Zelinskie	0ec54fc70e	clear notifications on delete/replace service_key	2016-04-29 13:38:25 -04:00
Jimmy Zelinskie	42b5196b21	add notification path and use for service keys	2016-04-29 13:38:25 -04:00
Jimmy Zelinskie	97ae800e6c	canonicalize json	2016-04-29 13:38:25 -04:00
Jimmy Zelinskie	f406942984	converging on proper rotation	2016-04-29 13:38:25 -04:00
Jimmy Zelinskie	aaf9e83278	basically finish superuser key api	2016-04-29 13:38:25 -04:00
Jimmy Zelinskie	35ed73e195	rework superuser api	2016-04-29 13:38:25 -04:00
Jimmy Zelinskie	4079dba167	service keys: do all the right stuff	2016-04-29 13:38:25 -04:00
Jimmy Zelinskie	499bb16306	service key server wip	2016-04-29 13:38:25 -04:00
Joseph Schorr	c6f7dfa102	Add Enterprise Landing page Note: The design comes directparners.	2016-04-28 13:47:54 -04:00
Joseph Schorr	03489c22ad	Log the pushed tag and add IP address display Fixes #798	2016-04-20 13:00:21 -04:00
Evan Cordell	9a1d97216b	Switch error mimetype back to application/json	2016-04-18 17:42:08 -05:00
Evan Cordell	4d7843580f	Fix superuser page	2016-04-15 16:50:01 -04:00
josephschorr	cf04fedd6a	Merge pull request #1347 from coreos-inc/marketingtagman Add Google Tag Manager support to Quay	2016-04-13 16:50:36 -04:00
Evan Cordell	09064853ac	Merge pull request #1364 from ecordell/error-json-fixes Fix error-related issues	2016-04-13 13:32:00 -04:00
Evan Cordell	eb3e7eba88	Merge pull request #1351 from ecordell/document-201-swagger Swagger: document 201 responses for POST requests	2016-04-13 09:50:34 -04:00
Evan Cordell	e1b3312495	Add back `error_message` and `error_type` for backwards-compatibility	2016-04-13 09:11:40 -04:00
Evan Cordell	7b44beb1fd	Fix `WWW-Authenticate` header on 401	2016-04-13 09:01:42 -04:00
Evan Cordell	d67c4ba46c	Fix formatting in `endpoints/api/error.py`	2016-04-12 16:53:50 -04:00
Joseph Schorr	891f7d9213	Add Google Tag Manager support to Quay	2016-04-12 15:28:24 -04:00
Evan Cordell	1cdbd89120	Fix test (response validation in debug mode)	2016-04-12 07:56:58 -04:00
Evan Cordell	693a11c58e	Add RFC citation	2016-04-11 20:08:45 -04:00
Evan Cordell	7c361c07f9	Use ApiService to get error message	2016-04-11 17:31:30 -04:00
Evan Cordell	b5db41920f	Address review comments	2016-04-11 16:34:40 -04:00
Evan Cordell	eba75494d9	Use new error format for auth errors (factor exceptions into module)	2016-04-11 16:22:26 -04:00
Evan Cordell	9c08717173	Return application/problem+json format errors and provide error endpoint to dereference error codes.	2016-04-11 14:57:24 -04:00
Evan Cordell	d69d79d302	swagger: document 201 responses for POST requests	2016-04-07 09:26:28 -04:00
Joseph Schorr	a06bda5910	Never include Stripe checking in LDN Instead, we always load it from Stripe when billing is enabled. Also fixes our Stripe icon.	2016-04-01 14:10:11 -04:00
Joseph Schorr	a882055f62	Better error message for invalid recovery codes	2016-03-30 16:02:47 -04:00
Joseph Schorr	42e934d84f	Make notification lookup faster and fix repo pagination on Postgres	2016-03-30 14:46:31 -04:00
josephschorr	4aa079e743	Merge pull request #1247 from coreos-inc/useradminscopes Remove internal_only from some APIs now that we expose a user admin scope	2016-03-23 14:16:02 -04:00
Joseph Schorr	aa5587c93c	Fixes and added tests for the security notification worker Fixes #1301 - Ensures that the worker uses pagination properly - Ensures that the worker handles failure as expected - Moves marking the notification as read to after the worker processes it - Increases the number of layers requested to 100	2016-03-18 20:28:06 -04:00
Joseph Schorr	6a4584b87a	Add another test for security notification filtering	2016-03-17 12:59:27 -04:00
Joseph Schorr	57e5141fb5	Fix link-to-parent-with-different-blob issue and add a test	2016-03-14 15:35:18 -04:00
Jimmy Zelinskie	ea2e17cc11	v2: send proper scopes for authorization failures Fixes #1278.	2016-03-11 13:41:38 -05:00
Jimmy Zelinskie	bb46cc933d	use kwargs for parse_repository_name	2016-03-09 16:20:28 -05:00
Jake Moshenko	fe2cd240bc	Revert "Remove old search API which is no longer in use"	2016-03-07 10:07:41 -05:00
josephschorr	57430a18b4	Merge pull request #1224 from coreos-inc/removeoldsearch Remove old search API which is no longer in use	2016-03-04 12:05:07 -05:00
Joseph Schorr	85919cbc39	Fix error when constructing DownstreamIssue exception	2016-02-25 17:45:49 -05:00
Jimmy Zelinskie	c7904db30d	v2: always send www-authn headers on unauthorized Fixes #1254.	2016-02-25 17:09:29 -05:00
Joseph Schorr	f498e92d58	Implement against new Clair paginated notification system	2016-02-25 15:58:42 -05:00
Joseph Schorr	c0374d71c9	Refactor the security worker and API calls and add a bunch of tests	2016-02-25 12:29:41 -05:00
Quentin Machu	0183c519f7	Merge pull request #1253 from Quentin-M/clair2 Adapt securityworker, secscan API and Quay UI for Clair 1.0	2016-02-19 18:21:25 -05:00
Quentin Machu	4bd5996bbf	Adapt secscan API for Clair v1.0 Squash /vulnerabilities and /packages as it basically does the same action on Clair and we don't need both for Quay	2016-02-19 17:44:23 -05:00
josephschorr	11af123ba5	Merge pull request #1244 from coreos-inc/enableaci Add UI to the setup tool for enabling ACI conversion	2016-02-17 12:29:48 -05:00
Joseph Schorr	1940fd9939	Add UI to the setup tool for enabling ACI conversion Fixes #1211	2016-02-17 12:05:48 -05:00
Joseph Schorr	8d9f3309aa	Remove internal_only from some APIs now that we expose a user admin scope Fixes #1246	2016-02-16 16:50:33 -05:00
josephschorr	e8faa9f843	Merge pull request #939 from coreos-inc/user-admin Add user admin scope	2016-02-16 16:42:29 -05:00
josephschorr	81a36ee3b8	Merge pull request #1217 from coreos-inc/v2pagination Fix V2 catalog and tag pagination	2016-02-16 15:34:49 -05:00
josephschorr	ded0a27901	Merge pull request #1242 from coreos-inc/receiptemailsbug Fix schema for invoice email updating	2016-02-16 13:26:26 -05:00
Joseph Schorr	ecaa051791	Fix schema for invoice email updating Fixes #1209	2016-02-16 11:52:57 -05:00
Jake Moshenko	6e05920d6b	Delete bad manifests from the DB	2016-02-16 11:42:19 -05:00
Joseph Schorr	4b24556cb3	Check for the parent's ID in the updated ID map. Fixes #1240	2016-02-15 11:02:52 -05:00
Joseph Schorr	69262282fe	Make sure to encode all V1 metadata strings Fixes #1239	2016-02-15 10:57:20 -05:00
Jimmy Zelinskie	70aa7cc731	Merge pull request #1230 from jzelinskie/aci-head allow HEAD on ACI images	2016-02-12 16:29:12 -05:00
Jimmy Zelinskie	2b07b6d8a9	allow HEAD on ACI images Fixes #911.	2016-02-12 16:28:44 -05:00
Jake Moshenko	6454b5aeb7	Update the layer rename PR to preserve the original manifest	2016-02-12 16:25:47 -05:00
Joseph Schorr	abd2e3c234	V1 Docker ID <-> V2 layer SHA mismatch fix Fix handling of V1 Docker ID <-> V2 layer SHA mismatch by dynamically rewriting the manifest to use new synthesized IDs for all layers above the mismatch. Also adds a bunch of tests for this and other use cases, fixes a bug around manifest digest uniqueness and fixes the 5.5 migration for MySQL.	2016-02-12 17:39:27 +02:00
Quentin Machu	5c7f2a5c16	Remove abort(500) on checksum mismatch	2016-02-11 18:32:21 -05:00
josephschorr	a9c64545fa	Merge pull request #1228 from coreos-inc/v2storagevalidation Add a check that will fail if we try to mislink V1 layers	2016-02-11 22:49:33 +02:00
josephschorr	904b2d53d2	Merge pull request #1197 from coreos-inc/webpytest Tests for endpoints/web and some small fixes	2016-02-11 22:42:43 +02:00
Joseph Schorr	27f1cc0a13	Add a check that will fail if we try to mislink V1 layers Also logs some useful information	2016-02-11 22:40:00 +02:00
Joseph Schorr	1887dc879c	Remove old search API which is no longer in use	2016-02-10 15:02:27 +02:00
Joseph Schorr	db0eab0461	Fix V2 catalog and tag pagination	2016-02-10 00:25:33 +02:00
Jimmy Zelinskie	deadd5eee3	Merge pull request #1210 from jzelinskie/torrent-life extend torrent webseed lifetime to an hour	2016-02-09 14:51:26 -05:00
Jimmy Zelinskie	463dc98a42	return an error when writing manifest v2 schema2	2016-02-09 14:42:58 -05:00
Jimmy Zelinskie	e18dacd26b	extend torrent webseed lifetime to an hour	2016-02-08 17:57:28 -05:00
Joseph Schorr	6a8331d305	Tests for endpoints/web and some small fixes	2016-02-05 09:45:25 +02:00
Joseph Schorr	534ec9cb2b	Add pagination to the repository list API to make it better for public Fixes #1166	2016-02-01 22:42:44 +02:00
Jake Moshenko	9310fe1832	Convert some flask-login user methods to properties	2016-01-29 10:36:28 -05:00
Joseph Schorr	accc576a98	Fix V1 push URL to match Docker and fix registry tests	2016-01-29 16:42:15 +02:00
Jake Moshenko	018bf8c5ad	Refactor how parsed_args are passed to methods	2016-01-26 16:27:36 -05:00
Joseph Schorr	335c8eb3a9	Add 2 day TTL to page tokens	2016-01-26 14:04:03 -05:00
Joseph Schorr	b4bddacedb	Switch to Fernet crypto as per gtank's recommendation	2016-01-26 12:50:48 -05:00
Joseph Schorr	bd0a098282	Add ID-based pagination to logs using new decorators and an encrypted token Fixes #599	2016-01-26 12:50:48 -05:00
Joseph Schorr	a03f0f1970	Fix manifest content type Fixes #1168	2016-01-25 16:39:59 -05:00
josephschorr	b081e234f8	Merge pull request #1162 from coreos-inc/publicnocredauth Fix issue with Docker 1.8.3 and pulling public repos with no creds	2016-01-25 16:07:55 -05:00
Joseph Schorr	8cd38569d6	Fix issue with Docker 1.8.3 and pulling public repos with no creds We now return the valid subset of auth scopes requested. Adds a test for this case and adds testing of all returned JWTs in the V2 login tests	2016-01-25 15:54:17 -05:00
Jimmy Zelinskie	85ae1a2a0a	Merge pull request #1161 from jzelinskie/torrenthmac misc torrent changes	2016-01-22 23:02:44 -05:00
josephschorr	566a91f003	Merge pull request #1160 from coreos-inc/dockerv2authsucks Fix Docker Auth and our V2 registry paths to support library (i.e. namespace-less) repositories.	2016-01-22 16:00:30 -05:00
Joseph Schorr	e4ffaff869	Fix Docker Auth and our V2 registry paths to support library (i.e. namespace-less) repositories. This support is placed behind a feature flag.	2016-01-22 15:54:06 -05:00
Jimmy Zelinskie	e54b86c6eb	s/TORRENT/BITTORRENT	2016-01-22 15:52:28 -05:00
josephschorr	d00db518df	Merge pull request #1153 from coreos-inc/fixtutorial Fix tutorial by properly publishing user events for V2 API	2016-01-22 12:51:47 -05:00
josephschorr	cd81d1e4f5	Merge pull request #1156 from coreos-inc/torrentverb Add support for torrenting verbs	2016-01-20 18:15:52 -05:00
Joseph Schorr	7c572fd218	Add support for torrenting verbs Fixes #1130	2016-01-20 18:15:32 -05:00
Joseph Schorr	068301ef1f	Add more debugging statements to V2 auth Also fixes a spurious return	2016-01-20 18:06:46 -05:00
Joseph Schorr	22b8a562be	Fix tutorial by properly publishing user events for V2 API Fixes #1123	2016-01-20 13:42:30 -05:00
Jake Moshenko	5f10c3f7ed	Merge pull request #1149 from jakedt/notsoswift Improve swift path computations	2016-01-15 15:54:35 -05:00
Jake Moshenko	612098b645	Use the centrally initialized storage engine for verbs in master process	2016-01-15 15:35:04 -05:00
Jake Moshenko	3071152dd1	Fix the JWK to use base64 encoded bytes	2016-01-14 10:08:35 -05:00
Jimmy Zelinskie	de750defdb	s/RSA256/RS256	2016-01-13 12:59:53 -05:00
Jimmy Zelinskie	bcdbf0301d	add cache-control headers to /keys	2016-01-12 17:58:21 -05:00
Joseph Schorr	e4da61a05d	Fix piece hash calculation	2016-01-12 17:44:19 -05:00
Jake Moshenko	8ab6c8a22d	Fix torrent hash generation to work in mixed stacks	2016-01-11 16:43:46 -05:00
Jimmy Zelinskie	d21b4adc62	remove global for get_route_data	2016-01-08 16:43:15 -05:00
Jake Moshenko	1ae101c917	Address torrent feature review comments.	2016-01-08 16:38:21 -05:00
Jimmy Zelinskie	8a924aae4a	move jwk set URI to /keys	2016-01-08 16:22:31 -05:00
Jimmy Zelinskie	559a55b1de	add lru cache to _get_route_data()	2016-01-08 16:22:17 -05:00
Jake Moshenko	b9821290f6	Merge remote-tracking branch 'upstream/master' into torrent	2016-01-08 15:43:12 -05:00
Jake Moshenko	17d3b5e204	Fix a bug with torrent calculation on duplicate v2 uploads	2016-01-08 15:08:12 -05:00
josephschorr	269bd80f53	Merge pull request #1121 from coreos-inc/typofix2 Fix typo	2016-01-08 14:30:42 -05:00
Joseph Schorr	161475baaa	Break circular dependencies introduced by importing common in verbs	2016-01-08 13:54:40 -05:00
Jimmy Zelinskie	087c6828ad	add feature.BITTORRENT and jwk set URI	2016-01-07 19:07:23 -05:00
Jimmy Zelinskie	e8c0a8355f	only check repo usage when billing enabled	2016-01-07 14:34:19 -05:00
Jimmy Zelinskie	a089b3c383	torrent: don't get user when public repo	2016-01-07 14:16:21 -05:00
Joseph Schorr	cd204d8940	Fix typo	2016-01-06 15:00:36 -05:00
Jake Moshenko	476ac8cec9	Add piece hashing to verbs generated image storages	2016-01-06 12:01:15 -05:00
Jake Moshenko	9e2b6a312a	Fix typo in method name	2016-01-06 10:59:54 -05:00
Jake Moshenko	8f80d7064b	Hash v1 uploads for torrent chunks	2016-01-05 14:43:40 -05:00
Jake Moshenko	44fcc7e44b	Fix logic when deciding whether to hash for torrent	2016-01-05 12:13:26 -05:00
Jimmy Zelinskie	0f6c77caab	s/repository/repo_name	2016-01-04 16:17:51 -05:00
Jimmy Zelinskie	c780572e69	add public/private torrent swarms	2016-01-04 16:17:51 -05:00
Jimmy Zelinskie	4cb06525a4	finish implementing torrent verb	2016-01-04 16:17:51 -05:00
Jake Moshenko	ce8fcbeaae	Update the pieces to use base64 encoded binary	2016-01-04 16:17:51 -05:00
Jake Moshenko	fe87d3c796	Hash and track layer file chunks for torrenting	2016-01-04 16:17:51 -05:00
Jimmy Zelinskie	6f6c82a217	implement torrent verb	2016-01-04 16:16:40 -05:00
josephschorr	f748d4348d	Merge pull request #1106 from coreos-inc/billingemail Add support for custom billing invoice email address	2016-01-04 14:34:30 -05:00
josephschorr	0ca01e5ae4	Merge pull request #1105 from coreos-inc/qeversion Show version number next to copyright in QE	2016-01-03 17:57:11 -05:00
Jimmy Zelinskie	a967340aad	update format_date to handle December	2016-01-01 18:59:27 -05:00
josephschorr	28eb31ed36	Merge pull request #1102 from coreos-inc/deleteimagediff Delete the image diff feature	2015-12-29 14:47:38 -05:00
josephschorr	6371f5e9be	Merge pull request #1107 from coreos-inc/errorresponsetype Switch error messages to have content type JSON	2015-12-29 12:26:35 -05:00
Joseph Schorr	31a8a0fba4	Better UX when recovering organization emails Fixes #291	2015-12-28 15:25:31 -05:00
Joseph Schorr	2f3d77157b	Switch error messages to have content type JSON Fixes #893	2015-12-28 14:17:44 -05:00
Joseph Schorr	10efa96009	Add support for custom billing invoice email address Fixes #782	2015-12-28 13:59:50 -05:00
Joseph Schorr	be61730224	Show version number next to copyright in QE Fixes #672	2015-12-28 13:27:32 -05:00
Joseph Schorr	ab166c4448	Delete the image diff feature Fixes #1077	2015-12-23 13:08:01 -05:00
Joseph Schorr	327258c83e	Add namespace to be returned by docker search Fixes #956	2015-12-17 16:38:06 -05:00
Jake Moshenko	3fda6696e5	Merge pull request #1069 from jakedt/trackhostname Trackhostname	2015-12-16 14:08:55 -05:00
Jake Moshenko	d5bebe2149	Add the hostname to mixpanel requests.	2015-12-16 13:43:31 -05:00
Jake Moshenko	766d60493f	Add the ability to blacklist v2 for specific versions	2015-12-15 18:27:10 -05:00
Joseph Schorr	ca7d36bf14	Handle empty scopes and always send the WWW-Authenticate header, as per spec Fixes #1045	2015-12-15 14:59:47 -05:00
Joseph Schorr	ea9ebb98e6	Sample repo pulls in V2 Fixes #1058	2015-12-14 17:41:16 -05:00
Joseph Schorr	54095eb5cb	Handle the common case of one chunk when calculating the uncompressed size Reference #992	2015-12-14 15:27:48 -05:00
josephschorr	1323da20e3	Merge pull request #1050 from coreos-inc/v2betterlogging Make our JWT subjects better and log using the info	2015-12-14 15:24:39 -05:00
Silas Sewell	881fd53714	Merge pull request #1056 from coreos-inc/dont-hide-ioerror Handle IOErrors in v2 uploads	2015-12-14 14:46:46 -05:00
Joseph Schorr	4a4eee5e05	Make our JWT subjects better and log using the info Fixes #1039	2015-12-14 14:00:33 -05:00
Silas Sewell	2dcc1f13a6	Handle IOErrors in v2 uploads	2015-12-14 11:58:24 -05:00
Joseph Schorr	d963f7174a	Change manifest delete to mark tag as dead and log	2015-12-10 15:45:53 -05:00
Jake Moshenko	9f13bb8960	Fix the overlap condition on resumed uploads	2015-12-10 13:14:11 -05:00
josephschorr	37dec895ce	Merge pull request #987 from coreos-inc/multimanifest Make manifest generation safe for multiple callers	2015-12-08 14:12:39 -05:00
josephschorr	6c897a7c22	Merge pull request #1035 from coreos-inc/closeforlong Close for long operation before we upload chunks	2015-12-07 14:22:29 -05:00
Joseph Schorr	bcd7f45905	Close for long operation before we upload chunks	2015-12-07 14:11:56 -05:00
Joseph Schorr	b8bd92a64f	Handle 404s on blob uploads Fixes #1033	2015-12-07 12:30:28 -05:00
Joseph Schorr	ee0eb80c8f	Fix blob content types Fixes #990	2015-12-04 16:13:58 -05:00
josephschorr	32fae5533c	Merge pull request #1022 from coreos-inc/manifestexc Only write exceptions for manifest gen when a tag exists	2015-12-04 14:32:06 -05:00
Silas Sewell	d28768f792	Make eventConfig required in create notification	2015-12-03 18:28:07 -05:00
Joseph Schorr	c324ebd7f6	Only write exceptions for manifest gen when a tag exists Fixes #1019 Currently, we just raise an exception to the logs regardless, which can make it appear as if there is an issue (when there isn't).	2015-12-03 16:04:17 -05:00
Silas Sewell	8781cf6e11	Increase nginx proxy timeout and close db before storage operation	2015-12-03 11:19:39 -05:00
Silas Sewell	664a2951cc	Don't send content-length when redirecting v2 blob Fixes #1012	2015-12-02 21:28:11 -05:00
Quentin Machu	8a539c4bc1	Fix security notification perform condition As defined in util/secscan/api.py, Critical < High < Medium < Low < Negligible < Unknown. We have to send the notification if the expected level is higher than the vulnerability level, not the opposite.	2015-11-30 13:54:34 -05:00
josephschorr	dc1f6c2d87	Merge pull request #974 from coreos-inc/derivedfix Derived image fixes	2015-11-25 11:57:16 -05:00
Joseph Schorr	6ed705be15	Make manifest generation safe for multiple callers Fixes #985	2015-11-24 18:38:29 -05:00
josephschorr	0dbd19a236	Merge pull request #976 from coreos-inc/incidentaltests Add login tests and fix scope security issue	2015-11-24 13:42:06 -05:00
Joseph Schorr	75a91f0f92	Add login tests and fix scope security issue	2015-11-24 13:39:16 -05:00
Joseph Schorr	762cd56e64	Change derived storage to be based on image Fixes #971	2015-11-24 12:44:07 -05:00
josephschorr	1eb019cd16	Merge pull request #970 from coreos-inc/disableverbcaching Disable derived image storage entirely until we fix it to be by image…	2015-11-23 23:56:51 -05:00
Joseph Schorr	5d3aa2a2b9	Disable derived image storage entirely until we fix it to be by image, not storage	2015-11-23 23:49:46 -05:00
Joseph Schorr	a0e597f957	Send Docker-Content-Digest headers on GET requests Fixes #955	2015-11-23 13:56:34 -05:00
Joseph Schorr	5c8eea2728	Log when pulls occur in V2 Fixes #958	2015-11-20 21:30:03 -05:00
Jake Moshenko	0c44949017	Return a 401 when doing a login with bad credentials	2015-11-20 18:37:52 -05:00
Joseph Schorr	b49435bfee	Fix track_and_log for grant-ed users	2015-11-19 17:41:27 -05:00
Jake Moshenko	b564492ea7	Improve the performance of fetching manifest blobs by checksum.	2015-11-19 11:01:47 -05:00
Jake Moshenko	e01f5ce06e	Re-enable squashed caching	2015-11-18 22:05:07 -05:00
Jake Moshenko	39d799b1aa	Fix anonymous repository pulls	2015-11-18 20:11:06 -05:00
Jake Moshenko	c27f91f7cf	Fix token pushes for v2 auth, tokens have no user	2015-11-18 19:18:12 -05:00
Matt Jibson	f02bb3caee	Add user admin scope Also remove unused scope decorator. fixes #890	2015-11-18 12:01:40 -05:00
Silas Sewell	f3dafd50e4	Fix squash pull after v2 merge	2015-11-17 18:25:43 -05:00
Jake Moshenko	7205bf5e7f	Merge pull request #885 from jakedt/python-registry-v2 Python registry v2 mega merge	2015-11-16 16:15:40 -05:00
Matt Jibson	d5fb8cafd4	Don't expose unnamed API operations fixes #861	2015-11-16 15:40:33 -05:00
Jake Moshenko	4cc619f4ca	Clean up v2 branch to no longer warn about readiness	2015-11-16 14:42:43 -05:00
Jake Moshenko	0459c3bc54	Merge remote-tracking branch 'upstream/master' into python-registry-v2	2015-11-16 14:22:54 -05:00
Jake Moshenko	52125bbfed	Fix gc by using the v1/v2 storage location helper everywhere	2015-11-16 14:13:37 -05:00
Joseph Schorr	32a799a067	Remove code that adds images to the image diff queue	2015-11-13 12:42:43 -05:00
Joseph Schorr	db1fae4cfc	Fix security scan endpoint status	2015-11-13 01:06:18 -05:00
Joseph Schorr	b7206a8cfc	Remove file added accidentally by merge	2015-11-12 22:03:13 -05:00
Joseph Schorr	7816b0c657	Merge master into vulnerability-tool	2015-11-12 21:52:47 -05:00
Joseph Schorr	3b3f101ea6	Vulnerability UI part 2 Fixes #860 Fixes #855	2015-11-12 16:59:36 -05:00
Jake Moshenko	44d06b0c2e	Fix v1 backward compatibility	2015-11-12 16:22:19 -05:00
Joseph Schorr	76ce63895f	New Quay Sec UI and fix some small bugs Fixes #855	2015-11-11 18:15:58 -05:00
Jake Moshenko	ab340e20ea	Merge remote-tracking branch 'upstream/master' into python-registry-v2	2015-11-11 16:41:40 -05:00
Jake Moshenko	a1ccd860e7	Merge pull request #823 from coreos-inc/phase3-11-07-2015 Phase3 11 07 2015	2015-11-11 14:22:19 -05:00
Joseph Schorr	ca7d736db2	Only send vulnerability events if the minimum priority is gte to that specified Fixes #770	2015-11-10 16:05:55 -05:00
Joseph Schorr	888ec17538	Recover by email needs to allow anon access to its endpoints	2015-11-10 15:41:19 -05:00
Jimmy Zelinskie	8e2868737b	rename secscan_endpoint and move db close to API	2015-11-10 15:22:31 -05:00
Jimmy Zelinskie	d651ea4b48	initial security notification worker	2015-11-10 15:22:30 -05:00
Silas Sewell	e826b14ca4	Merge pull request #725 from coreos-inc/setup-tool-georeplication superuser: add storage replication config	2015-11-09 17:43:38 -05:00
Silas Sewell	5000b1621c	superuser: add storage replication config	2015-11-09 17:34:22 -05:00
Joseph Schorr	a69c9e12fd	Update quay sec code to fix problems identified in previous review - Change get_repository_images_recursive to operate over a single docker image and storage uuid - Move endpoints/sec to endpoints/secscan - Change notification system to work with new Quay-sec format Fixes #768	2015-11-09 17:14:35 -05:00
Quentin Machu	16c364a90c	Rename secscan_endpoint where required, fix index and indentation	2015-11-09 15:18:42 -05:00
Matt Jibson	5d9999d1f7	Merge pull request #791 from mjibson/clear-repo-notifications Remove error notification when user deletes repos	2015-11-09 14:46:51 -05:00
Joseph Schorr	02e2bef943	Fix hardcoded priority	2015-11-09 12:51:05 -05:00
Joseph Schorr	b408cfd2cc	Ready for demo	2015-11-09 12:51:05 -05:00
Joseph Schorr	407eaae137	WIP: Towards sec demo	2015-11-09 12:50:39 -05:00
Joseph Schorr	fb3d0fa27d	Add a SecEndpoint class and move all the cert and config handling in there	2015-11-09 12:49:19 -05:00
Joseph Schorr	87c56d1caa	Add vulnerabilities and packages API to Quay Fixes #564	2015-11-09 12:49:19 -05:00
Jake Moshenko	7efa6265bf	Merge branch 'newchanges' into python-registry-v2	2015-11-06 18:24:32 -05:00
Jake Moshenko	c2fcf8bead	Merge remote-tracking branch 'upstream/phase4-11-07-2015' into python-registry-v2	2015-11-06 18:18:29 -05:00
Jake Moshenko	4314882fa0	Reverse the order of get_parent_images	2015-11-06 17:47:08 -05:00
Jake Moshenko	ad93425ead	Stop writing to v1 checksum on ImageStorage	2015-11-06 16:40:04 -05:00
Jake Moshenko	75f917f592	Stop reading the v1 checksums from storage	2015-11-06 16:17:12 -05:00
Joseph Schorr	cfa03951e1	Add a SecScanEndpoint class and move all the cert and config handling in there	2015-11-06 15:22:18 -05:00
Joseph Schorr	e4508fc0d0	Add vulnerabilities and packages API to Quay Fixes #564	2015-11-06 15:22:18 -05:00
Joseph Schorr	0f3db709ea	Add a vulnerability_found event for notice when we detect a vuln Fixes #637 Note: This PR does not actually raise the event; it merely adds support for it	2015-11-06 15:22:18 -05:00
Jake Moshenko	3d0bcbaaeb	Move v1 checksums to image and track v2 separately	2015-11-06 15:17:55 -05:00
Matt Jibson	f4b57eff96	Set and use ETag headers Also set no-cache exactly as github recommends. The removed @no_cache decorater used "Cache-Control:no-cache, no-store, must-revalidate", but just no-cache should be sufficient, and should certainly work correctly with github. See: https://github.com/github/markup/issues/224#issuecomment-48532178 fixes #712	2015-11-06 12:15:15 -05:00
Quentin Machu	da1fe7d48b	Merge pull request #790 from Quentin-M/set4O4 Define nginx v2 vhost & properly set 404 status code	2015-11-04 16:32:11 -05:00
josephschorr	11be448d75	Merge pull request #773 from coreos-inc/imageload Never load the full repo image list	2015-11-04 16:29:20 -05:00
Matt Jibson	4d81567a0c	Remove error notification when user deletes repos Also prevent duplicate notifications of that type. fixes #493	2015-11-04 16:11:15 -05:00
Joseph Schorr	4f41f79fa8	Never load the full repo image list Always make smaller queries per tag to ensure we scale better Fixes #754	2015-11-04 15:53:00 -05:00
Quentin Machu	c1fa22d9b0	Define nginx v2 vhost & properly set 404 status code Fixes #777	2015-11-04 14:56:18 -05:00
josephschorr	c3a4c36df7	Merge pull request #761 from coreos-inc/fixtoomanylogin Move decorator for TooManyLoginAttempts into general decorated module	2015-11-04 12:29:01 -05:00
Joseph Schorr	d4646e459e	Disable 404, as it is breaking V2 API checks	2015-11-04 02:47:33 -05:00
Joseph Schorr	95c47fe250	Fix layer ordering in verbs	2015-11-03 14:43:47 -05:00
Joseph Schorr	5e1cd2b2ad	Move decorator for TooManyLoginAttempts into general decorated module Currently, this is missing in gunicorn_registry which causes 500s when user logins become throttled	2015-11-03 12:16:01 -05:00
Joseph Schorr	f6a53f7cc5	Change all Quay.io references to Quay, fix tour and change logo Fixes #741	2015-11-02 14:37:48 -05:00
josephschorr	4ae940aede	Merge pull request #660 from coreos-inc/superuser Superuser Panel Improvements	2015-10-30 14:32:16 -04:00
Quentin Machu	3f35265858	Merge pull request #683 from Quentin-M/whoops-404 Add 404 page	2015-10-30 14:30:20 -04:00
Jake Moshenko	1666ac50fe	Filter down the signing key to only public portion	2015-10-26 16:40:19 -04:00
Jake Moshenko	2c10d28afc	Merge remote-tracking branch 'upstream/master' into python-registry-v2	2015-10-26 14:44:16 -04:00
Jake Moshenko	fc55730db8	Add a feature flag to advertise v2 endpoints	2015-10-26 14:20:51 -04:00
Jake Moshenko	9da64f3aba	Stop writing to deprecated columns for image data.	2015-10-24 14:45:15 -04:00
Joseph Schorr	7bac042954	Fix verbs for merged changes to image and image storage Fixes #698	2015-10-23 15:49:31 -04:00
Jimmy Zelinskie	e973289397	Revert "Revert "Merge pull request #682 from jzelinskie/revertrevert"" This reverts commit `278bc736e3`.	2015-10-23 15:26:33 -04:00
Jake Moshenko	e7a6176594	Merge remote-tracking branch 'upstream/v2-phase4' into python-registry-v2	2015-10-22 16:59:28 -04:00
Jimmy Zelinskie	278bc736e3	Revert "Merge pull request #682 from jzelinskie/revertrevert" This reverts commit `627ad25c9c`, reversing changes made to `31c392fecc`.	2015-10-22 16:02:07 -04:00
Jake Moshenko	ce94931540	Stop writing to deprecated columns for image data.	2015-10-22 12:14:39 -04:00
Quentin Machu	adb744089e	Add 404 page Fixes coreos-inc/quay#677	2015-10-21 18:40:15 -04:00
josephschorr	5dae970787	Merge pull request #681 from coreos-inc/userorg Return user orgs when making a call via OAuth	2015-10-21 16:41:43 -04:00
Joseph Schorr	5d8121e060	Return user orgs when making a call via OAuth Fixes #673	2015-10-21 16:40:31 -04:00
Jimmy Zelinskie	39cfe77d42	Revert "Merge pull request #557 from coreos-inc/revert-migration" This reverts commit `c4f938898a`, reversing changes made to `7ad2522dbe`.	2015-10-21 15:29:57 -04:00
Joseph Schorr	147b7b26b4	Fix is_public in repo list Fixes #678	2015-10-21 14:13:39 -04:00
Matt Jibson	b4554f4d14	Verify signed manifests fixes #394	2015-10-20 02:08:45 -04:00
Joseph Schorr	5941f3937c	Enable async GC for all Fixes #569	2015-10-19 14:22:41 -04:00
Joseph Schorr	d464af4cce	Add ability to update superusers via the UI Fixes #634	2015-10-16 15:41:18 -04:00
Joseph Schorr	a37b9394d9	Add org email address to orgs list	2015-10-16 15:17:51 -04:00
Joseph Schorr	ad5beab3ef	Disable superuser functions around users when not using DB auth	2015-10-16 15:14:49 -04:00
josephschorr	d3857e509f	Merge pull request #643 from coreos-inc/nullimage Check and handle NULL image_size	2015-10-15 13:26:13 -04:00
Joseph Schorr	fe79d5fb66	Check and handle NULL image_size Fixes #613	2015-10-15 13:25:54 -04:00
josephschorr	24b54f1e34	Merge pull request #615 from coreos-inc/queriesunite Unionize the mega query - It needed more performance-based benefits	2015-10-15 13:17:01 -04:00
Joseph Schorr	c9daf7d8a9	Add additional tests for repo visibility and further simplify the query for perf	2015-10-15 12:12:57 -04:00
Jimmy Zelinskie	7c1547221d	raise a 520 for any GitLab timeouts	2015-10-13 17:34:08 -04:00
Jimmy Zelinskie	9818481b08	limit logs to a maximum number of pages	2015-10-06 14:13:23 -04:00
josephschorr	3e7a95407b	Merge pull request #598 from coreos-inc/limitbadquery Prevent unlimited insane query from running and fix tests	2015-10-05 21:29:35 -04:00
Silas Sewell	c6da322ec1	Merge pull request #597 from coreos-inc/tag-validation Update tag validation	2015-10-05 21:10:55 -04:00
Silas Sewell	dd3d939b31	Update tag validation Fixes #536	2015-10-05 19:32:10 -04:00
Joseph Schorr	dd804816ba	Prevent unlimited insane query from running and fix tests Fixes #591	2015-10-05 17:11:49 -04:00
Joseph Schorr	8ca92d6828	Remove old search API and switch V1 search to use the new search system	2015-10-05 14:36:43 -04:00
Joseph Schorr	f393236c9f	Add repo name check to V2 Fixes #592	2015-10-05 14:19:52 -04:00
Joseph Schorr	d0dc8fe45d	Add endpoint security tests for the V2 endpoints Fixes #581	2015-10-02 14:01:12 -04:00
Joseph Schorr	35c35d9913	Load images and storage references in bulk during V1 synthesize Currently, we perform multiple queries for each layer, making it much slower (especially cross-region) Fixes #413	2015-09-29 17:53:39 -04:00
Joseph Schorr	f44ca79391	Add _catalog endpoint as specified by V2 API Fixes #391	2015-09-29 16:02:19 -04:00
Joseph Schorr	decdaa4c79	New tests and small fixes while comparing against the V2 spec Fixes #391	2015-09-29 15:18:48 -04:00
Silas Sewell	9000169b53	Revert "Merge pull request #491 from jakedt/migratebackp2" This reverts commit `7ad2522dbe`, reversing changes made to `a0b191ffa1`.	2015-09-28 16:09:22 -04:00
Joseph Schorr	2e694dd3f0	Move Docker V2 key to be loaded from file or generated on server load Fixes #394	2015-09-28 15:43:51 -04:00
Joseph Schorr	09f8ad695b	Fix resumable upload support and add another test	2015-09-28 12:17:17 -04:00
josephschorr	7ad2522dbe	Merge pull request #491 from jakedt/migratebackp2 Migrate image data back phase 2	2015-09-26 15:11:46 -04:00
Joseph Schorr	4dc30d6321	Remove yaml and switch to JSON because yaml is so slow	2015-09-24 16:17:42 -04:00
Joseph Schorr	a283c8d8ec	Add a check to ensure repository names are valid according to an extended set of rules. Fixes #534	2015-09-24 11:55:08 -04:00
Joseph Schorr	49b575afb6	Start refactoring of the trigger system: - Move each trigger handler into its own file - Add dictionary helper classes for easier reading and writing of dict-based data - Extract the web hook payload -> internal representation building for each trigger system - Add tests for this transformation - Remove support for Github archived-based building	2015-09-21 16:36:48 -04:00
Jake Moshenko	26cea9a07c	Merge remote-tracking branch 'upstream/master' into python-registry-v2	2015-09-17 16:16:27 -04:00
Jake Moshenko	8baacd2741	Migrate old data to new locations, read only new.	2015-09-17 15:47:13 -04:00
josephschorr	c801965626	Merge pull request #492 from coreos-inc/nofreelunch UI and API fixes for disallowing private repo count abuse	2015-09-16 17:53:11 -04:00
Silas Sewell	a8183ed87b	Sample pull_repo events	2015-09-15 18:41:48 -04:00
Joseph Schorr	fbfe7fdb54	Make change repo visibility and create repo raise a 402 when applicable We now check the user or org's subscription plan and raise a 402 if the user attempts to create/make a repo private over their limit	2015-09-15 14:33:35 -04:00
Jake Moshenko	b56de3355c	Migrate data back to Image in preparation for v2	2015-09-15 11:53:31 -04:00
Jake Moshenko	9c3ddf846f	Some fixes and tests for v2 auth Fixes #395	2015-09-10 15:38:57 -04:00
Joseph Schorr	fd3a21fba9	Add Kubernetes configuration provider which writes config to a secret Fixes #145	2015-09-10 12:19:59 -04:00
Joseph Schorr	88a04441de	Extract the config provider into its own sub-module	2015-09-10 12:19:59 -04:00
josephschorr	edef283697	Merge pull request #447 from coreos-inc/ronon Add support for Dex to Quay	2015-09-10 11:42:01 -04:00
Jimmy Zelinskie	d55ab78fbe	fix pagination of tags in API Fixes #461.	2015-09-09 15:52:21 -04:00
Joseph Schorr	c0286d1ac3	Add support for Dex to Quay Fixes #306 - Adds support for Dex as an OAuth external login provider - Adds support for OIDC in general - Extract out external logins on the JS side into a service - Add a feature flag for disabling direct login - Add support for directing to the single external login service - Does not yet support the config in the superuser tool	2015-09-04 17:05:06 -04:00
Joseph Schorr	48cf33a8c1	Add missing superuser aggregate logs endpoint Reference: `d47d28ea4e/Screen-Shot-2015-09-04-at-11-04-41.png`	2015-09-04 16:48:32 -04:00
Jake Moshenko	210ed7cf02	Merge remote-tracking branch 'upstream/master' into python-registry-v2	2015-09-04 16:32:01 -04:00
Jake Moshenko	8269d4ac90	Checkpoint implementing PATCH according to Docker	2015-09-03 16:26:02 -04:00
Joseph Schorr	42dba8655c	Fix auth and add V2 tests!	2015-09-03 12:21:21 -04:00
Matt Jibson	a821ad2b01	Return an error on failed S3 uploads The previous change to this file didn't raise the error up to stream_write, and so the complete_upload function still ran because the loop was only broken. It errored because the data was already canceled. This is better than what we had before, which was to silently fail but report success (even internally to ourselves!) on bad image upload. This means we discovered a bug where a user could have failed during image upload, but quay would write that image to the repository, potentially writing broken images to S3.	2015-09-01 15:53:32 -04:00
josephschorr	62ea4a6cf4	Merge pull request #191 from coreos-inc/carmen Add automatic storage replication	2015-09-01 15:04:36 -04:00
Joseph Schorr	724b1607d7	Add automatic storage replication Adds a worker to automatically replicate data between storages and update the database accordingly	2015-09-01 14:53:32 -04:00
Joseph Schorr	51c507d02d	Add back the ability to retrieve information for an org member directly Fixes #427	2015-08-31 16:45:24 -04:00
Jake Moshenko	398202e6fc	Implement some new methods on the storage engines.	2015-08-27 11:29:19 -04:00
josephschorr	4fa37a46d1	Merge pull request #408 from coreos-inc/python-registry-v2-notfun Change to return a proper manifest URL	2015-08-26 16:17:25 -04:00
josephschorr	9d1296da38	Merge pull request #407 from coreos-inc/python-registry-v2-pushevent Spawn the repo_push event in V2	2015-08-26 16:13:02 -04:00
Joseph Schorr	9842857b89	Change to return a proper manifest URL	2015-08-26 14:14:59 -04:00
Joseph Schorr	aa90caa97e	Spawn the repo_push event in V2 Fixes #403	2015-08-25 16:02:21 -04:00
Joseph Schorr	84458811d5	Rename wrap_with_hash to a more generic wrap_with_handler	2015-08-25 15:53:13 -04:00
Joseph Schorr	767be0798f	Fix V1 tests due to a typo Fixes #397	2015-08-25 14:31:25 -04:00
Joseph Schorr	31fdb94436	Enable rate limiting of V2 requests	2015-08-25 14:18:34 -04:00
Joseph Schorr	f2252f0726	Add a temporary multiplier for the Docker size -> uncompressed size	2015-08-25 13:49:36 -04:00
Joseph Schorr	1450b7e84c	Fix verbs support in V2	2015-08-24 12:05:09 -04:00
Joseph Schorr	cf030e2a98	Save the compressed image size on blob upload completion	2015-08-24 12:05:09 -04:00
Joseph Schorr	d246e68e68	Move shared V1/V2 code into common methods and fix verbs	2015-08-24 12:05:09 -04:00
Joseph Schorr	0e93dbb832	Fix image API for V2 images	2015-08-24 12:05:09 -04:00
Jake Moshenko	b998eca8e5	Fix the tests for registry v2 changes.	2015-08-24 11:59:12 -04:00
josephschorr	b8bfed915d	Merge pull request #382 from coreos-inc/manytags Limit the number of branches and tags loaded to 30	2015-08-21 14:36:43 -04:00
Joseph Schorr	b6502d9302	Limit the number of branches and tags loaded to 30 Fixes #380	2015-08-21 14:07:20 -04:00
Matt Jibson	2ea784cd6d	Send SSL client certs on webhook notifications This allows clients that provide a HTTPS webook endpoint a way to verify that the source of the notification came from quay.io. Needed for the kubernetes auto deployer so it can verify the request. And apparently others have also wanted this.	2015-08-19 13:53:34 -04:00
Joseph Schorr	dead054b43	Fix image API for V2 images	2015-08-19 13:35:47 -04:00
Jimmy Zelinskie	523dc912f7	Merge pull request #372 from coreos-inc/notifyui Better notifications UI	2015-08-17 17:13:24 -04:00
Jimmy Zelinskie	239f76d39f	Merge pull request #368 from coreos-inc/buildarchive Allow builds to be started with an external archive URL	2015-08-17 17:09:14 -04:00
Joseph Schorr	84276ee945	Better notifications UI Fixes #369	2015-08-17 17:08:58 -04:00
Joseph Schorr	f092c00621	Allow builds to be started with an external archive URL Fixes #114	2015-08-17 17:01:49 -04:00
Jake Moshenko	2fd1d5969e	Merge pull request #351 from mjibson/more-metrics More metrics	2015-08-17 13:09:08 -04:00
Joseph Schorr	bc4e07343e	Fix PATCH semantics due to recent API changes	2015-08-13 15:35:37 -04:00
Joseph Schorr	f50ea3329a	Fix URL scheme on the authenticate header	2015-08-13 14:44:42 -04:00
Joseph Schorr	17d3bed835	Fix small NPE in BB trigger code	2015-08-13 12:28:48 -04:00
Jake Moshenko	e1b3e9e6ae	Another huge batch of registry v2 changes Add patch support and resumeable sha Implement all actual registry methods Add a simple database generation option	2015-08-12 16:41:12 -04:00
Matt Jibson	b483209862	Wrap API and registry requests with common metric timings Record response times, codes, and rollup non-2XX responses.	2015-08-12 12:16:00 -04:00
Joseph Schorr	09bb98f161	Really fix the build trigger schema and add a test for it	2015-08-11 17:17:18 -04:00
Jimmy Zelinskie	7d6c6ba8e8	Merge pull request #316 from jzelinskie/read-tags tag history requires READ instead of WRITE	2015-08-07 13:26:04 -04:00
Joseph Schorr	7ea4c7d17e	Add missing JSON schema for 'refs' and 'branch_name' Fixes #325	2015-08-07 13:01:49 -04:00
Joseph Schorr	aab8866345	Fix accidental rename of key	2015-08-06 13:21:52 -04:00
Joseph Schorr	ea25538646	MySQL and Postgres complain about the group by, so calculate dates ourselves	2015-08-06 12:52:55 -04:00
Joseph Schorr	d34afde954	Fix logs view and API - We needed to use an engine-agnostic way to extract the days - Joining with the LogEntryKind table has horrible performance in MySQL, so do it ourselves - Limit to 50 logs per page	2015-08-05 17:47:03 -04:00
Jimmy Zelinskie	411d4e7abb	tag history requires READ instead of WRITE Fixes #315.	2015-08-05 17:09:34 -04:00
Jake Moshenko	65f982577d	Merge pull request #289 from coreos-inc/swaggerfix Fix swagger errors	2015-08-04 10:23:05 -04:00
Jimmy Zelinskie	b5b6076b4a	Merge pull request #303 from coreos-inc/docsearch Add documentation search to the main search bar	2015-08-03 17:19:48 -04:00
Joseph Schorr	8a8955d234	Add documentation search to the main search bar	2015-08-03 17:15:53 -04:00
josephschorr	f772bd0c9e	Merge pull request #300 from coreos-inc/toomanyutils Refactor the util directory to use subpackages.	2015-08-03 16:18:55 -04:00
Jake Moshenko	18100be481	Refactor the util directory to use subpackages.	2015-08-03 16:04:19 -04:00
Jimmy Zelinskie	8e6a0fbbee	Merge pull request #294 from coreos-inc/logsload Switch to using an aggregated logs query and infinite scrolling	2015-08-03 14:52:04 -04:00
Joseph Schorr	5c1d195a19	Fix swagger errors Fixes #287	2015-08-03 14:10:15 -04:00
Joseph Schorr	3d6c92901c	Switch to using an aggregated logs query and infinite scrolling This should allow users to work with large logs set. Fixes #294	2015-07-31 16:38:02 -04:00
Joseph Schorr	4160b720f9	UI and API improvements for working with large repositories - Change the tag check bar to only select the current page (by default), but allow for selecting ALL tags - Limit the number of tags compared in the visualization view to 10 - Fix the multiselect dropdown to limit itself to 10 items selected - Remove saving the selected tags in the URL, as it is too slow and overloads the URLs in Chrome when there are 1000+ tags selected - Change the images API to not return locations: By skipping the extra join and looping, it made the /images API call 10x faster (in hand tests) Fixes #292 Fixes #293	2015-07-31 16:31:29 -04:00
Joseph Schorr	a916177c16	Fix broken imports	2015-07-29 18:28:58 -04:00
Joseph Schorr	572d6ba53c	Fix broken tests	2015-07-29 14:21:29 -04:00
Joseph Schorr	11c7994398	Fix 500 on logout	2015-07-28 15:47:04 -04:00
Joseph Schorr	80e2739b41	Manually load GHE org repos if none returned by default Fixes #276	2015-07-28 14:01:22 -04:00
Joseph Schorr	5d243bb45f	Fix potential NPE	2015-07-24 12:12:30 -04:00
Joseph Schorr	c3f269ee23	Add migration for BitBucket web hooks This needs to added only after we roll out #255	2015-07-23 14:45:12 -04:00
Joseph Schorr	f6311b09fe	Fix NPE in BitBucket V2 handling code	2015-07-23 14:06:35 -04:00
Jimmy Zelinskie	fee8bf8607	Merge pull request #255 from coreos-inc/betterbb Change to use the new BitBucket webhooks	2015-07-23 13:36:07 -04:00
Joseph Schorr	3c6f13da56	Change to use the new BitBucket webhooks BitBucket has deprecated services (which will be removed in approx 6 months), and they don't even really work all that well anyway. Fixes #251	2015-07-23 12:09:17 -04:00
Jimmy Zelinskie	2c29dc048d	Merge pull request #260 from coreos-inc/githubfix GitHub api now returns ALL the visible repositories for user	2015-07-22 13:53:58 -04:00
Joseph Schorr	69ca34161c	GitHub api now returns ALL the visible repositories for user Change the code to simply filter the single list returned, rather than reloading the org repos again	2015-07-22 13:50:46 -04:00
Joseph Schorr	687bab1c05	Support invite codes for verification of email Also changes the system so we don't apply the invite until it is called explicitly from the frontend Fixes #241	2015-07-22 13:41:27 -04:00
Jake Moshenko	5d86fa80e7	Merge pull request #197 from coreos-inc/keystone Add Keystone Auth	2015-07-22 13:38:47 -04:00
Joseph Schorr	38a6b3621c	Automatically link the superuser account to federated service for auth When the user commits the configuration, if they have chosen a non-DB auth system, we now auto-link the superuser account to that auth system, to ensure they can login again after restart.	2015-07-22 13:37:23 -04:00
Joseph Schorr	a0c4e72f13	Clean up the repository list API and loads stars with it We load stars with the same list API now so that we get the extra metadata needed in the repo list (popularity and last modified)	2015-07-22 13:05:02 -04:00

... 10 11 12 13 14 ...

2222 commits