vbatts/quay
Archived
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
6494 commits 2 branches 62 tags 205 MiB
Commit graph

135 commits

Author SHA1 Message Date
Joseph Schorr
b3a74b94b3 Fix flaky port selection in registry tests 
Depends on https://github.com/jarus/flask-testing/pull/98

[Fixes #136705135]
 2017-01-18 15:06:11 -05:00
josephschorr
9b65b37011 Merge pull request #2245 from coreos-inc/recaptcha 
Add support for recaptcha during the create account flow
 2017-01-17 11:34:23 -05:00
Joseph Schorr
7e0fbeb625 Custom SSL certificates config panel 
Adds a new panel to the superuser config tool, for managing custom SSL certificates in the config bundle

[Delivers #135586525]
 2017-01-13 14:34:35 -05:00
Joseph Schorr
3eb17b7caa Add support for recaptcha during the create account flow 
If the feature is enabled and recaptcha keys are given in config, then a recaptcha box is displayed in the UI when creating a user and a recaptcha response code *must* be sent with the create API call for it to succeed.
 2017-01-09 11:08:21 -05:00
Jimmy Zelinskie
f9d0ec7d1b requirments.txt: lock breaking dependencies 2016-10-18 15:41:26 -04:00
Jake Moshenko
f04b018805 Write our users to Marketo as leads. 2016-10-14 16:29:11 -04:00
Jimmy Zelinskie
44d8cca813 reqs: add namedlist 2016-09-27 10:19:10 -04:00
Joseph Schorr
3afe5a1c12 Forgot to update the requirements SHA 2016-08-29 11:59:28 -04:00
Jimmy Zelinskie
75ddaba0a0 requirements: migrate back to upstream PyGithub (#1592) 2016-07-01 11:49:41 -04:00
Jimmy Zelinskie
8810157586 remove GPL'd timeparse library 2016-06-02 12:27:49 -04:00
Jimmy Zelinskie
70f794b0af replace rfc3987 library with urlparse 
The former is GPL licensed.
 2016-05-26 13:29:48 -04:00
Joseph Schorr
dc9bcec9ce Add pre shared generation tool 2016-04-29 14:09:37 -04:00
Evan Cordell
9f6813e8c0 Rollback APScheduler to 3.0.5 2016-04-06 16:35:39 -04:00
Evan Cordell
ca2a845fd9 Fix build error, refer to correct autobahn and functools packages 2016-04-06 15:39:55 -04:00
Evan Cordell
df3daacb8c Document process for freezing dependencies and freeze git dependencies 
to commits
 2016-04-06 13:52:42 -04:00
Evan Cordell
59dbff6ced Freeze requirements 2016-04-05 14:48:55 -04:00
Joseph Schorr
eab6af2b87 Add mocked unit tests for cloud storage engine 2016-03-23 12:13:54 -04:00
Joseph Schorr
c0374d71c9 Refactor the security worker and API calls and add a bunch of tests 2016-02-25 12:29:41 -05:00
Jake Moshenko
97be6d3e3d Downgrade pymysql because phusion/baseimage has old python 2016-01-29 15:12:53 -05:00
Jake Moshenko
69d4cd68dc Fix conflict by removing pycrypto, dump python dep list 2016-01-28 14:11:41 -05:00
Jake Moshenko
d7332a725b Freeze our version of cryptography to work around segfault 2016-01-28 11:36:49 -05:00
Jake Moshenko
01a92a66ba Refresh base image and python dependencies 2016-01-27 11:36:40 -05:00
Jake Moshenko
1d89f00806 Update the version of bintrees to remove logging 2016-01-11 16:47:50 -05:00
Joseph Schorr
9a36e8820c Add missing benode requirement 2016-01-08 13:52:50 -05:00
Jake Moshenko
011538f9f4 Upgrade bintress to eliminate the stdout garbage 2016-01-06 10:59:54 -05:00
Jake Moshenko
766d60493f Add the ability to blacklist v2 for specific versions 2015-12-15 18:27:10 -05:00
Joseph Schorr
c9c5fcf53f Fix typo in requirements.txt 2015-11-24 16:29:09 -05:00
Joseph Schorr
544fa40a5f Add a base class for a global worker that locks via Redis 2015-11-24 16:18:45 -05:00
Jake Moshenko
ab340e20ea Merge remote-tracking branch 'upstream/master' into python-registry-v2 2015-11-11 16:41:40 -05:00
Jake Moshenko
dc24e8b1a1 Backfill by allocating and selecting ids in random blocks 
Fixes #826
 2015-11-09 22:29:17 -05:00
Jake Moshenko
2c10d28afc Merge remote-tracking branch 'upstream/master' into python-registry-v2 2015-10-26 14:44:16 -04:00
Jake Moshenko
f0d19dbbc8 Add the resumeable hashlib requirement 2015-10-24 15:31:32 -04:00
Jake Moshenko
e7a6176594 Merge remote-tracking branch 'upstream/v2-phase4' into python-registry-v2 2015-10-22 16:59:28 -04:00
Jimmy Zelinskie
d2c4a465e3 add default HTTP timeout to GitLab 
Fixes #623.
 2015-10-13 14:51:28 -04:00
Jimmy Zelinskie
0d94a025c0 remove duplicate dependency from reqs.txt 2015-09-28 14:33:32 -04:00
Joseph Schorr
49b575afb6 Start refactoring of the trigger system: 
- Move each trigger handler into its own file
- Add dictionary helper classes for easier reading and writing of dict-based data
- Extract the web hook payload -> internal representation building for each trigger system
- Add tests for this transformation
- Remove support for Github archived-based building
 2015-09-21 16:36:48 -04:00
Jake Moshenko
26cea9a07c Merge remote-tracking branch 'upstream/master' into python-registry-v2 2015-09-17 16:16:27 -04:00
Joseph Schorr
840e4cd64b Add missing requirement 2015-09-10 11:57:43 -04:00
Jake Moshenko
210ed7cf02 Merge remote-tracking branch 'upstream/master' into python-registry-v2 2015-09-04 16:32:01 -04:00
Jake Moshenko
82efc746b3 Make our JWT checking more strict. 2015-09-04 15:18:57 -04:00
Joseph Schorr
b87427aefb Add missing pyjwkest dependency 2015-08-25 14:18:07 -04:00
Joseph Schorr
f092c00621 Allow builds to be started with an external archive URL 
Fixes #114
 2015-08-17 17:01:49 -04:00
Jake Moshenko
e1b3e9e6ae Another huge batch of registry v2 changes 
Add patch support and resumeable sha
Implement all actual registry methods
Add a simple database generation option
 2015-08-12 16:41:12 -04:00
Jake Moshenko
2109d24483 Add the toposort dependency. 2015-07-17 11:50:41 -04:00
Jake Moshenko
1fb676d1f6 Refresh the dependencies and switch back to upstream peewee now that coleifer has added a fix. 2015-07-06 15:02:52 -04:00
Jimmy Zelinskie
3fb052be3c reqs: fallback to vendored python-etcd 
We need to figure out why this is a problem, but it can't block our
deployment for now.
 2015-06-24 16:20:07 -04:00
Jimmy Zelinskie
282125e4f7 reqs: refreeze requirements.txt 2015-06-24 15:19:40 -04:00
Jake Moshenko
5f1d23c6e8 Use a UNION query instead of a multitude of left outer joins for performance reasons. 
Fixes #159
 2015-06-23 17:18:37 -04:00
Jake Moshenko
2a2414d6af Merge pull request #60 from coreos-inc/jwtauthentication 
Add support for an external JWT-based authentication system
 2015-06-05 13:37:42 -04:00
Joseph Schorr
8aac3fd86e Add support for an external JWT-based authentication system 
This authentication system hits two HTTP endpoints to check and verify the existence of users:

Existance endpoint:
GET http://endpoint/ with Authorization: Basic (username:) =>
    Returns 200 if the username/email exists, 4** otherwise

Verification endpoint:
GET http://endpoint/ with Authorization: Basic (username:password) =>
    Returns 200 and a signed JWT with the user's username and email address if the username+password validates, 4** otherwise with the body containing an optional error message

The JWT produced by the endpoint must be issued with an issuer matching that configured in the config.yaml, and the audience must be "quay.io/jwtauthn". The JWT is signed using a private key and then validated on the Quay.io side with the associated public key, found as "jwt-authn.cert" in the conf/stack directory.
 2015-06-05 13:20:10 -04:00