vbatts/quay
Archived
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
This repository has been archived on 2020-03-24. You can view files and clone it, but cannot push or open issues or pull requests.
quay/endpoints/api
History
Joseph Schorr 8aac3fd86e Add support for an external JWT-based authentication system 
This authentication system hits two HTTP endpoints to check and verify the existence of users:

Existance endpoint:
GET http://endpoint/ with Authorization: Basic (username:) =>
    Returns 200 if the username/email exists, 4** otherwise

Verification endpoint:
GET http://endpoint/ with Authorization: Basic (username:password) =>
    Returns 200 and a signed JWT with the user's username and email address if the username+password validates, 4** otherwise with the body containing an optional error message

The JWT produced by the endpoint must be issued with an issuer matching that configured in the config.yaml, and the audience must be "quay.io/jwtauthn". The JWT is signed using a private key and then validated on the Quay.io side with the associated public key, found as "jwt-authn.cert" in the conf/stack directory.
2015-06-05 13:20:10 -04:00
..
__init__.py Validate that we have a valid JSON body 2015-02-18 15:57:05 -05:00
billing.py Merge branch 'koh' 2014-12-01 12:30:09 -08:00
build.py Minimize the queries used when retrieve builds. Previously, we'd call out to SQL extra times per build. 2015-05-07 21:11:15 -04:00
discovery.py Merge branch 'koh' 2014-12-01 12:30:09 -08:00
image.py Work in progress: new image view 2015-03-20 17:46:02 -04:00
logs.py Finish mobilification of org view 2015-04-20 14:00:10 -04:00
organization.py Switch avatars to be built out of CSS and only overlayed with the gravatar when a non-default exists 2015-03-30 17:55:04 -04:00
permission.py Redo the permissions table to have different sections for users and robot accounts 2015-04-01 14:23:39 -04:00
prototype.py - Fix tests 2015-03-31 18:50:43 -04:00
repoemail.py Merge branch 'koh' 2014-12-01 12:30:09 -08:00
repository.py Make the repository API faster by only checking the log entries table once for each kind of entry, rather than twice. We make use of a special subquery-like syntax, which allows us to count those entries that are both 30 days only and 1 day old in the same query. This was tested successfully on MySQL, Postgres and Sqlite. 2015-05-07 22:49:11 -04:00
repositorynotification.py Merge branch 'koh' 2014-12-01 12:30:09 -08:00
repotoken.py Add documentation for all path parameters 2014-08-19 19:05:28 -04:00
robot.py Only return the team and repo permissions when listing robots when we absolutely need them. 2015-05-08 16:43:07 -04:00
search.py Switch to a 0.5 modifier 2015-04-20 13:00:56 -04:00
subscribe.py Strip whitespace from ALL the things. 2014-11-24 16:07:38 -05:00
suconfig.py Add support for an external JWT-based authentication system 2015-06-05 13:20:10 -04:00
superuser.py Change API calls that expect non-robots to explicitly filter 2015-05-26 17:47:33 -04:00
tag.py Add unit tests and a stronger restriction on the revert API call 2015-04-19 15:43:16 -04:00
team.py Switch avatars to be built out of CSS and only overlayed with the gravatar when a non-default exists 2015-03-30 17:55:04 -04:00
trigger.py UI and code improvements to make working with the multiple SCMs easier 2015-05-03 10:38:11 -07:00
user.py Change API calls that expect non-robots to explicitly filter 2015-05-26 17:47:33 -04:00