josephschorr
fd1237cff9
Merge pull request #2974 from coreos-inc/joseph.schorr/QS-118/manifest-write-query
...
Audit the number of SQL queries we make in writing manifests, and significantly reduce in the common case
2018-01-31 11:08:33 -05:00
Joseph Schorr
9e16a989f5
Audit the number of SQL queries we make in writing manifests, and significantly reduce in the common case
...
Instead of 41 queries now for the simple manifest, we are down to 14.
The biggest changes:
- Only synthesize the V1 image rows if we haven't already found them in the database
- Thread the repository object through to the other model method calls, and use it instead of loading again and again
2018-01-25 11:10:43 -05:00
Joseph Schorr
208dc38d25
Allow expired app specific tokens to be deleted
2018-01-23 11:40:51 -05:00
josephschorr
b29e8202e5
Merge pull request #2977 from coreos-inc/joseph.schorr/QS-121/gunicorn-health
...
Add instance health checks for all gunicorn workers
2018-01-16 11:31:22 -05:00
Joseph Schorr
e91b83e1be
Add instance health checks for all gunicorn workers
...
Fixes https://jira.coreos.com/browse/QS-121
2018-01-16 11:29:40 -05:00
Joseph Schorr
a32edb646d
Fix 500 exception when sending a non-string release name to appr
...
Fixes https://jira.coreos.com/browse/QS-120
2018-01-12 17:14:05 -05:00
Joseph Schorr
c887aa543b
Change superuser API errors to be more descriptive
...
Fixes https://jira.coreos.com/browse/QS-103
2018-01-05 17:09:26 -05:00
josephschorr
13b738c43c
Merge pull request #2954 from coreos-inc/joseph.schorr/QS-102/user-api-filter
...
Add ability to filter users list to enabled users
2018-01-05 15:40:50 -05:00
josephschorr
5286fd63b0
Merge pull request #2953 from coreos-inc/joseph.schorr/QS-101/discovery-anon
...
Allow anonymous access to the discovery endpoint
2018-01-05 15:40:39 -05:00
josephschorr
d8fde005d8
Merge pull request #2961 from coreos-inc/joseph.schorr/QS-107/create-repo-opt
...
Small optimizations around create repository code
2018-01-05 15:40:30 -05:00
Joseph Schorr
888b564a9b
Add a banner to the Quay UI when an app specific token is about to expire
2018-01-04 15:27:42 -05:00
Joseph Schorr
2214a2c7ad
Disable fresh login check in auth engines that won't support it
2018-01-04 15:27:41 -05:00
Joseph Schorr
524d77f527
Add an AppSpecificAuthToken data model for app-specific auth tokens. These will be used for the Docker CLI in place of username+password
2018-01-04 15:27:41 -05:00
Joseph Schorr
1e1bec0afe
Remove extra update call on create repo
2018-01-04 13:42:05 -05:00
Joseph Schorr
c1cff32c1e
Fix log levels in registry
2018-01-04 13:07:11 -05:00
Joseph Schorr
f05982dc7c
Fix app registry logging
2018-01-04 13:05:50 -05:00
Joseph Schorr
8e473b9779
Add filter for disabled users to superuser user list API
...
Fixes https://jira.coreos.com/browse/QS-102
2017-12-22 16:45:49 -05:00
Joseph Schorr
1d3a93efcb
Linter fixes for superuser API file
2017-12-22 16:18:58 -05:00
Joseph Schorr
6b42e3e4ca
Allow anonymous access to the discovery endpoint
...
Fixes https://jira.coreos.com/browse/QS-101
2017-12-22 16:13:23 -05:00
Joseph Schorr
11e3724919
Return an http 415 (manifest version not supported) for OCI manifest content types
...
This was breaking skopeo, as it first tries to send the *OCI* manifest type, which we didn't say we didn't support, thus breaking the tool
2017-12-20 11:02:34 -05:00
Joseph Schorr
9e16596854
Add a bunch of logging to the data model caching mechanism
...
Should help us debug any potential issues
2017-12-18 14:18:37 -05:00
Joseph Schorr
b2485934ed
Enable caching of blobs in V2 registry protocol, to avoid DB connections after the cache has been loaded
...
This should help for bursty pull traffic, as it will avoid DB connections on a huge % of requests
2017-12-14 13:38:24 -05:00
Joseph Schorr
db6007cb37
Change v2 registry auth code to not hit the database when we know we have permissions loaded
...
Avoids a DB call and, when used in conjunction with blob caching, will avoid a DB *connection*
2017-12-14 13:37:31 -05:00
Joseph Schorr
51e67ab7f5
Fix get_blob_path to not make any database calls and add a test
...
This will be supported by caching, hopefully removing the need to hit the database when the blob object is cached
2017-12-13 16:27:46 -05:00
Joseph Schorr
a706d99849
Add additional logs and an additional test for verbs
2017-12-07 15:22:20 -05:00
josephschorr
6db2ecc19f
Merge pull request #2928 from coreos-inc/joseph.schorr/QS-74/fix-restart
...
Have Quay lookup the sbin/my_init PID to kill
2017-12-07 13:25:16 -05:00
Joseph Schorr
1d1c6f0606
Invalidate all session tokens when a user signs out
...
Fixes https://jira.coreos.com/browse/QS-85
2017-12-07 13:03:11 -05:00
josephschorr
d405f6f158
Merge pull request #2899 from coreos-inc/joseph.schorr/QS-36/appr-auth-improvement
...
Allow app registry to use robots and tokens to login
2017-12-06 15:04:22 -05:00
josephschorr
b9ad8bbb5d
Merge pull request #2934 from coreos-inc/joseph.schorr/QS-78/email-recovery
...
Security fixes for password recovery
2017-12-06 14:53:02 -05:00
Joseph Schorr
a204dc20fb
Require CAPTCHA for password recovery
...
https://jira.coreos.com/browse/QS-79
2017-12-06 14:25:34 -05:00
josephschorr
8d7381336a
Merge pull request #2910 from coreos-inc/joseph.schorr/QS-58/oidc-auth-bug
...
Don't add a "password required" notification for non-database auth via OIDC
2017-12-06 14:19:49 -05:00
Joseph Schorr
927d469db0
In password recovery, don't reveal whether an e-mail address is valid (unless it is an org's e-mail address)
2017-12-06 14:07:38 -05:00
Joseph Schorr
3bf8973fd9
Change app registry to use the credentials verification system
...
Allows for tokens, OAuth tokens and robot accounts to be used as well
Fixes https://jira.prod.coreos.systems/browse/QS-36
2017-12-06 13:52:25 -05:00
Joseph Schorr
aa49b37ad2
Change Docker V1 index to use verify_credentials
2017-12-06 13:52:25 -05:00
Joseph Schorr
25248a8c35
Make sure to close the database connection before forking in verbs
...
This prevents a bug with the postgres driver from breaking the verbs
Fixes https://jira.coreos.com/browse/QS-68
2017-12-04 16:33:24 -05:00
Joseph Schorr
4db1615d94
Fix bugs in updateuser
...
1) Also check for matching organization names
2) Ensure that errors don't leave the throbber
2017-12-01 14:58:29 -05:00
Joseph Schorr
874a7b0c41
Have Quay lookup the sbin/my_init PID to kill
...
We changed the entry point in Quay to be a shell script that calls `my_init`, which means the init no longer has PID 1. We therefore need to look up the correct PID to kill it.
Fixes https://jira.coreos.com/browse/QS-74
2017-12-01 14:04:43 -05:00
Joseph Schorr
2ced523313
Add Explore tab and query-less searching
...
Allows for exploration of all visible repositories, in paginated form.
This change also fixes the layout of the header on different viewport sizes to be consistently a single line in height.
Fixes https://jira.coreos.com/browse/QS-63
2017-11-28 16:50:23 +02:00
Joseph Schorr
9b2fb46e34
Move recaptcha check after the username check
...
Ensures that if someone chooses an existing username, they don't need to re-recaptcha
Fixes https://jira.coreos.com/browse/QS-65
2017-11-27 16:59:42 +02:00
Joseph Schorr
503cff8f0c
Don't add a "password required" notification for non-database auth via OIDC
2017-11-13 16:17:36 -05:00
Joseph Schorr
1b6ecb6c1c
Fix bug in listing owned tags
...
We were indexing into a map using the docker_image_id, but the ancestors use the *image id*. Also cleans up the code and adds some tests.
Fixes https://jira.prod.coreos.systems/browse/QS-55
2017-11-09 16:21:40 -05:00
Joseph Schorr
f67e2baeba
Fix verbs for recent storage change
...
1) Initialize the storage class in verbs with the extra needed args
2) Make the CloudFrontedS3Storage resilient to those extra args being missing
2017-10-07 00:17:10 -04:00
Joseph Schorr
2ce4e49711
Build job does not have a request context when calling get_file_url
...
We therefore need to specify some sort of IP or get_file_url will attempt to get it from context
2017-10-06 12:57:02 -04:00
josephschorr
3bef21253d
Merge pull request #2695 from coreos-inc/oidc-internal-auth
...
OIDC internal auth support
2017-10-02 16:51:17 -04:00
josephschorr
491b9c8278
Merge pull request #2872 from coreos-inc/joseph.schorr/QS-12/fix-org-links
...
Fix namespace links that end in slashes
2017-09-29 13:03:10 -04:00
josephschorr
82e09d6f16
Merge pull request #2869 from coreos-inc/joseph.schorr/QS-2/cloudfront
...
CloudFront redirect support
2017-09-29 12:08:50 -04:00
Joseph Schorr
58e6a17373
Fix namespace links that end in slashes
2017-09-28 15:14:53 -04:00
Joseph Schorr
82ff85b125
Add ability for users to change their name and company information
2017-09-26 16:58:04 -04:00
Joseph Schorr
56fbbcf7cf
Add request IP to get_direct_download_url method
2017-09-25 17:14:28 -04:00
Alec Merdler
ad61df66c5
Merge pull request #2846 from alecmerdler/QUAY-682
...
Optimize Webpack JS Bundle Size
2017-09-18 16:47:30 -04:00
Joseph Schorr
804d3c46c3
Add feature flag to allow users to be created only if invited to join a team
...
Allows for open user creation, but only if extended an invitation by someone who already has access
2017-09-14 16:28:39 -04:00
Joseph Schorr
c6aad5fef0
Add option to disable partial autocompletion of users
2017-09-12 15:55:37 -04:00
Joseph Schorr
adc70d2fe2
Add alias for callback path
2017-09-12 12:26:42 -04:00
Evan Cordell
1d246784dd
Include invalid oidc token in the error message for debugging
2017-09-12 12:26:42 -04:00
Joseph Schorr
e724125459
Add support for using OIDC tokens via the Docker CLI
2017-09-12 12:23:22 -04:00
Joseph Schorr
e0820c6be5
Remove encoding of credentials in build trigger web hook
...
This now breaks BitBucket
2017-09-07 11:27:02 -04:00
Joseph Schorr
2fdc1be94b
Remove duplicate orgs when using public namespaces
...
Fixes https://coreosdev.atlassian.net/browse/QUAY-770
2017-08-24 14:13:26 -04:00
Joseph Schorr
464bccb5a0
Fix permissions on accessing archived logs
2017-08-18 13:45:36 -04:00
josephschorr
46e1bd9c75
Merge pull request #2850 from coreos-inc/jpmc-features
...
Features for JPMC
2017-08-16 14:29:00 -04:00
Jimmy Zelinskie
9e09612851
Revert "Merge pull request #2844 from coreos-inc/alegrand/use_latest_appr_server_code"
...
This reverts commit 646fafb2fd
, reversing
changes made to 5c1b635439
.
2017-08-09 20:45:46 -04:00
Joseph Schorr
854155fe82
Fix missing to_dict and import in robots model
...
Also adds a test to catch this issue
2017-08-09 20:33:14 -04:00
Joseph Schorr
2184721d28
Fix recursion error in images API
...
We only need parents for the root set of images
2017-08-09 13:27:54 -04:00
Evan Cordell
cac0457540
fix misnamed key in permissions api
2017-08-09 08:37:59 -04:00
Antoine Legrand
646fafb2fd
Merge pull request #2844 from coreos-inc/alegrand/use_latest_appr_server_code
...
Migrate from cnr -> appr
2017-08-09 00:01:25 +02:00
Joseph Schorr
57136eb343
Require CAPTCHA for creating new accounts via OAuth
...
Plugs the remaining hole for bot-based account creation
2017-08-08 15:23:57 -04:00
Antoine Legrand
6336a4a971
Migrate from cnr -> appr
2017-08-08 11:48:59 +02:00
Joseph Schorr
650dbe5f5b
Add config to enable "public" namespaces
...
These are namespaces that will be displayed in the repo list view, regardless of whether the user is a member.
2017-08-07 15:59:06 -04:00
Joseph Schorr
dff4207a89
Add feature flag to enable viewing builds and build logs for public repos
2017-08-07 15:24:36 -04:00
Alec Merdler
6dae6c4f82
whitelisted moment.js locales to reduce bundle size
2017-08-02 15:46:14 -04:00
Alec Merdler
41c12c853c
use Webpack code-splitting to dynamically import Highlight.js languages as they are detected by Showdown Markdown extension
2017-08-01 15:36:54 -04:00
Charlton Austin
0359ac8753
Merge pull request #2848 from charltonaustin/fix_bug_robot_stuffs
...
fix(endpoints/api/robot.py): fix misnamed attribute
2017-08-01 15:05:43 -04:00
Charlton Austin
36e58e3bd0
fix(endpoints/api/robot.py): fix missnamed attribute
...
Issue:NA
- [ ] It works!
- [ ] Comments provide sufficient explanations for the next contributor
- [ ] Tests cover changes and corner cases
- [ ] Follows Quay syntax patterns and format
2017-08-01 14:43:20 -04:00
Charlton Austin
524af4331d
Merge pull request #2847 from charltonaustin/fix_bug_superuser_panel
...
fix(superuser_models_pre_oci): have None for approver
2017-08-01 13:37:50 -04:00
josephschorr
83e9dfac7a
Merge pull request #2817 from coreos-inc/joseph.schorr/QUAY-688/dex-fixes
...
Dex Fixes
2017-08-01 13:26:50 -04:00
Charlton Austin
f05e684b31
fix(superuser_models_pre_oci): have None for approver
...
### Description of Changes
this fixes a null pointer exception
Issue: https://coreosdev.atlassian.net/browse/QUAY-fix_bug_superuser_panel
## Reviewer Checklist
- [ ] It works!
- [ ] Comments provide sufficient explanations for the next contributor
- [ ] Tests cover changes and corner cases
- [ ] Follows Quay syntax patterns and format
2017-08-01 13:09:41 -04:00
Charlton Austin
044036ff4d
Merge pull request #2843 from charltonaustin/create_data_interface_for_subsystem_api/superuser.py_750
...
Create data interface for subsystem api/superuser.py 750
2017-08-01 12:03:19 -04:00
Evan Cordell
e407bc1441
Merge pull request #2806 from ecordell/QUAY-643/api-permission-v22
...
Add data interface for api-permissions for v2-2
2017-08-01 11:56:40 -04:00
Evan Cordell
66dc093639
Convert RepositoryUserTransitivePermission security tests to pytest
2017-08-01 11:34:31 -04:00
Charlton Austin
6c29ec873a
refactor(endpoints/api/superuser*): refactored code behind db model
...
this moves all the db model code behind an interface in prep for v2-2
Issue: https://coreosdev.atlassian.net/browse/QUAY-750
- [ ] It works!
- [ ] Comments provide sufficient explanations for the next contributor
- [ ] Tests cover changes and corner cases
- [ ] Follows Quay syntax patterns and format
2017-08-01 11:27:55 -04:00
Evan Cordell
37ebfd9ab5
Merge pull request #2808 from ecordell/QUAY-647/api-globalmessages-v22
...
Add data interface for globalmessages API
2017-08-01 10:59:35 -04:00
Charlton Austin
3688b6a8df
style(endpoints/api/suconfig_models_interface.py): formatted file
...
### Description of Changes
Issue: https://coreosdev.atlassian.net/browse/QUAY-750
## Reviewer Checklist
- [ ] It works!
- [ ] Comments provide sufficient explanations for the next contributor
- [ ] Tests cover changes and corner cases
- [ ] Follows Quay syntax patterns and format
2017-08-01 09:39:17 -04:00
Charlton Austin
d55397e851
Merge pull request #2820 from charltonaustin/create_data_interface_for_subsystem_api/robot.py_630
...
refactor(endpoints/api/robot*): adding in database interface
2017-08-01 09:37:09 -04:00
Evan Cordell
4734cc90b4
Merge pull request #2809 from ecordell/QUAY-649/api-manifest-v22
...
Add a data interface for manifest labels API
2017-08-01 09:34:10 -04:00
josephschorr
0ae767d506
Merge pull request #2811 from coreos-inc/joseph.schorr/QUAY-631/repotoken-data-interface
...
Change repotoken to use a data interface
2017-07-31 18:02:12 -04:00
josephschorr
004fb88726
Merge pull request #2815 from coreos-inc/joseph.schorr/QUAY-650/image-api-data-interface
...
Change Image API to use a data interface
2017-07-31 18:01:55 -04:00
Joseph Schorr
9676d7d8c7
Make downstream issues show their error in the UI
2017-07-31 17:07:22 -04:00
Evan Cordell
6528c1f3bc
Adds docstrings for permission api data interface
2017-07-31 15:46:13 -04:00
Evan Cordell
a68ec6966e
Add data interface for api-permissions for v2-2
2017-07-31 15:46:13 -04:00
Evan Cordell
c92b566427
Add doc comments to data interface for manifest labels
2017-07-31 15:45:52 -04:00
Evan Cordell
af27a1b6dc
Add a data interface for manifest labels API
2017-07-31 15:45:52 -04:00
Evan Cordell
0d239e08c2
Add docstrings to globalmessages data interface
2017-07-31 15:44:54 -04:00
Evan Cordell
4ca6c37e54
Add data interface for globalmessages API
2017-07-31 15:44:54 -04:00
Jimmy Zelinskie
fe6760749a
Merge pull request #2826 from jzelinskie/appr-v22
...
endpoints.appr: move to new v22 format
2017-07-31 07:36:40 -07:00
Joseph Schorr
8ab600707c
Change repotoken to use a data interface
2017-07-28 15:51:49 -04:00
Charlton Austin
39196b6b97
fix(repository_models_pre_oci): fixed how we called a field
...
Issue: NA
- [ ] It works!
- [ ] Comments provide sufficient explanations for the next contributor
- [ ] Tests cover changes and corner cases
- [ ] Follows Quay syntax patterns and format
2017-07-28 14:14:20 -04:00
Charlton Austin
78f77017e8
Merge pull request #2829 from charltonaustin/fix_bug_with_v2_2
...
fix(error with repository): removed a field that is not being used
2017-07-27 10:40:43 -04:00
Charlton Austin
11b1dca994
fix(error with repository): removed a field that is not being used
...
this causes an exception when getting releases
Issue: https://coreosdev.atlassian.net/browse/QUAY-753
- [ ] It works!
- [ ] Comments provide sufficient explanations for the next contributor
- [ ] Tests cover changes and corner cases
- [ ] Follows Quay syntax patterns and format
2017-07-27 10:20:55 -04:00
Jimmy Zelinskie
155cb65f7d
endpoints.appr: move to new v22 format
2017-07-26 11:02:44 -07:00
Joseph Schorr
f0b932559d
Reporting the expiration got lost in a rebase
...
This ensure the tag expiration shows up in the UI
2017-07-26 11:29:21 -04:00
Charlton Austin
7d5e4dd6d3
refactor(endpoints/api/robot*): adding in database interface
...
this creates a layer of abstraction so we can move to v2-2 easier
Issue: https://coreosdev.atlassian.net/browse/QUAY-630
- [ ] It works!
- [ ] Comments provide sufficient explanations for the next contributor
- [ ] Tests cover changes and corner cases
- [ ] Follows Quay syntax patterns and format
2017-07-26 10:21:09 -04:00