Commit graph

4212 commits

Author SHA1 Message Date
Jimmy Zelinskie
f6a34c5d06 refactor securityworker
Fixes #772.
2015-11-12 16:03:10 -05:00
Jimmy Zelinskie
e86a342868 create class for security config validation 2015-11-12 15:47:01 -05:00
josephschorr
744ad9e79b Merge pull request #849 from coreos-inc/vulnerability-tool-priority
Only send vulnerability events if the minimum priority is gte to that…
2015-11-10 16:15:08 -05:00
Joseph Schorr
ca7d736db2 Only send vulnerability events if the minimum priority is gte to that specified
Fixes #770
2015-11-10 16:05:55 -05:00
Jimmy Zelinskie
5926501e08 Merge pull request #842 from jzelinskie/goodhumor
add queue and worker for clair notifications
2015-11-10 15:23:41 -05:00
Jimmy Zelinskie
5655c08467 fix security worker service permissions 2015-11-10 15:22:36 -05:00
Jimmy Zelinskie
8e2868737b rename secscan_endpoint and move db close to API 2015-11-10 15:22:31 -05:00
Jimmy Zelinskie
270010105d add security notification worker to init 2015-11-10 15:22:30 -05:00
Jimmy Zelinskie
da31714fb5 specify securityworker skip message 2015-11-10 15:22:30 -05:00
Jimmy Zelinskie
52962b3732 close db connections when calling out to clair 2015-11-10 15:22:30 -05:00
Jimmy Zelinskie
954d988452 pylint: ignore constant names and too many locals 2015-11-10 15:22:30 -05:00
Jimmy Zelinskie
d651ea4b48 initial security notification worker 2015-11-10 15:22:30 -05:00
Jimmy Zelinskie
dc476470fe add secscan notification queue 2015-11-10 15:22:30 -05:00
josephschorr
189762694f Merge pull request #837 from coreos-inc/vulnerability-tool-fixquery
Update quay sec code to fix problems identified in previous review
2015-11-09 18:29:23 -05:00
Joseph Schorr
a69c9e12fd Update quay sec code to fix problems identified in previous review
- Change get_repository_images_recursive to operate over a single docker image and storage uuid
- Move endpoints/sec to endpoints/secscan
- Change notification system to work with new Quay-sec format

Fixes #768
2015-11-09 17:14:35 -05:00
Quentin Machu
16c364a90c Rename secscan_endpoint where required, fix index and indentation 2015-11-09 15:18:42 -05:00
Quentin Machu
fa0897faae Merge pull request #831 from Quentin-M/vulnerability-tool
Remove checksum from Clair's worker and adjust line length
2015-11-09 14:55:46 -05:00
Quentin Machu
7dbe15e339 Remove checksum from Clair's worker and adjust line length 2015-11-09 14:31:24 -05:00
Joseph Schorr
02e2bef943 Fix hardcoded priority 2015-11-09 12:51:05 -05:00
Joseph Schorr
b408cfd2cc Ready for demo 2015-11-09 12:51:05 -05:00
Joseph Schorr
75173d5573 Base DB with notification 2015-11-09 12:51:05 -05:00
Joseph Schorr
136ab28f17 Base demo DB 2015-11-09 12:51:05 -05:00
Joseph Schorr
8c144397e9 WIP: UI for QuaySec 2015-11-09 12:50:39 -05:00
Joseph Schorr
75dfec7875 Fix endpoint 2015-11-09 12:50:39 -05:00
Joseph Schorr
7fa4fe08e7 Fix worker 2015-11-09 12:50:39 -05:00
Joseph Schorr
407eaae137 WIP: Towards sec demo 2015-11-09 12:50:39 -05:00
Joseph Schorr
fb3d0fa27d Add a SecEndpoint class and move all the cert and config handling in there 2015-11-09 12:49:19 -05:00
Joseph Schorr
87c56d1caa Add vulnerabilities and packages API to Quay
Fixes #564
2015-11-09 12:49:19 -05:00
Joseph Schorr
d7ace69fe3 Add a vulnerability_found event for notice when we detect a vuln
Fixes #637

Note: This PR does *not* actually raise the event; it merely adds support for it
2015-11-09 12:49:19 -05:00
Quentin Machu
37118423a5 Add support for Quay's vulnerability tool 2015-11-09 12:49:19 -05:00
Jake Moshenko
c97bc0d8d0 Merge pull request #829 from jakedt/migratelogs
Add debug logs to migrations
2015-11-09 11:16:22 -05:00
Jake Moshenko
b9fce4f5d0 Add debug logs to migrations 2015-11-09 11:12:23 -05:00
Quentin Machu
56a147b695 Merge pull request #827 from Quentin-M/fixmighead
Fix migration 57dad559ff2d's header
2015-11-08 22:05:19 -05:00
Quentin Machu
ade664036c Fix migration 57dad559ff2d's header
Fixes #825
2015-11-08 15:22:15 -05:00
Jake Moshenko
b526e2a3cd Merge pull request #822 from coreos-inc/phase2-11-07-2015
Phase2 11 07 2015
2015-11-08 13:21:59 -05:00
Jake Moshenko
3a4200956d Merge pull request #820 from coreos-inc/phase1-11-07-2015
Phase1 11 07 2015
2015-11-08 13:14:23 -05:00
josephschorr
ed0160dd4d Merge pull request #821 from coreos-inc/phase1-11-07-2015-fixtest
Phase1 11 07 2015 fixtest
2015-11-08 13:12:23 -05:00
Joseph Schorr
8463514a09 Fix delete_user call to remove all user data 2015-11-08 13:10:01 -05:00
Joseph Schorr
8019994462 Merge branch 'phase1-11-07-2015' of github.com:coreos-inc/quay into phase1-11-07-2015 2015-11-07 21:16:34 -05:00
Jake Moshenko
90dd76806c Merge pull request #813 from jakedt/phase2-11-07-2015
Stop reading the v1 checksums from storage
2015-11-06 16:36:07 -05:00
Jake Moshenko
75f917f592 Stop reading the v1 checksums from storage 2015-11-06 16:17:12 -05:00
Jake Moshenko
fd3f88f489 Re-enable parent id backfill, use new backfill style 2015-11-06 16:17:12 -05:00
Jake Moshenko
9036ca2f2f Backfill the v1 checksums from imagestorage 2015-11-06 16:17:12 -05:00
Jimmy Zelinskie
0e4d749f89 Merge pull request #814 from jzelinskie/fixmigrations
resolve migration branches and run initdb
2015-11-06 16:15:57 -05:00
Jimmy Zelinskie
d5e7f6bea7 resolve migration branches and run initdb 2015-11-06 16:10:31 -05:00
Jake Moshenko
08f22a0aae Merge pull request #812 from jakedt/phase2-11-07-2015
Re-enable parent id backfill, use new backfill style
2015-11-06 15:58:57 -05:00
Jake Moshenko
79c89ba11d Re-enable parent id backfill, use new backfill style 2015-11-06 15:45:39 -05:00
Matt Jibson
d8c0d243f4 Merge pull request #811 from mjibson/mjibson-key
Update mjibson ssh key
2015-11-06 15:44:23 -05:00
Matt Jibson
2325328bbd Update mjibson ssh key 2015-11-06 15:34:52 -05:00
Jake Moshenko
88b9e80cbb Backfill the v1 checksums from imagestorage 2015-11-06 15:28:44 -05:00