No description
This repository has been archived on 2020-03-24. You can view files and clone it, but cannot push or open issues or pull requests.
Find a file
2016-09-26 14:47:06 -04:00
auth Change permissions model so that non-admins do not get org-wide read 2016-08-04 16:47:28 -04:00
avatars Fail safe when gravatar is done 2016-04-11 13:46:32 -04:00
buildman Merge pull request #1830 from coreos-inc/superuser-dashboard 2016-09-26 17:19:22 +02:00
buildstatus status badges updated to use shields.io standard 2015-03-23 20:24:08 -04:00
buildtrigger Fix manual run under bitbucket repos with many tags/branches 2016-08-25 18:24:35 -04:00
conf Merge pull request #1830 from coreos-inc/superuser-dashboard 2016-09-26 17:19:22 +02:00
data database: initial manifestlist schema changes 2016-09-26 14:47:06 -04:00
digest Merge branch 'newchanges' into python-registry-v2 2015-11-06 18:24:32 -05:00
emails emails: add missing periods to sentences in emails 2016-08-09 15:36:47 -07:00
endpoints satisfy the pylint gods 2016-09-26 14:47:06 -04:00
events Fix all target="_blank" anchors to be safer 2016-04-28 14:38:22 -04:00
features Strip whitespace from ALL the things. 2014-11-24 16:07:38 -05:00
formats aci: handle null docker env vars 2016-08-19 18:30:00 -04:00
grunt Disable source map generation 2015-11-30 11:42:45 -05:00
health Add missing arg to validate call and add logging 2016-08-03 11:13:27 -04:00
static Merge pull request #1830 from coreos-inc/superuser-dashboard 2016-09-26 17:19:22 +02:00
storage Don't exception log for expected 404s in Swift storage 2016-09-20 14:07:29 -04:00
templates analytics: change munchkin script 2016-08-16 11:41:01 -07:00
test Fix the build manager tests for recent change 2016-09-26 17:28:09 +02:00
tools Properly handle refunds in their appropriate month. Handle discounts. 2016-09-15 10:23:35 -04:00
util Merge pull request #1830 from coreos-inc/superuser-dashboard 2016-09-26 17:19:22 +02:00
workers Add a worker for reporting global stats to Prometheus 2016-09-12 16:19:19 -04:00
.dockerignore Update the roadmap for current sprint and strip from QE 2016-03-04 11:29:51 -05:00
.gitignore Remove escaped_fragment snapshot rendering. 2016-06-14 12:53:10 -04:00
alembic.ini Print the time when logging from migrations 2015-11-09 22:29:17 -05:00
app.py Basic labels support 2016-08-26 15:24:26 -04:00
application.py Split secscan endpoints into a new process 2016-05-02 11:38:00 -04:00
boot.py Use the instance service key for registry JWT signing 2016-06-07 11:58:10 -04:00
build.sh Update build.sh to work with GIT_HEAD 2015-11-04 16:55:34 -05:00
CHANGELOG.md cut 1.17.1 (#1863) 2016-09-22 11:32:30 -04:00
config.py Add feature flag to turn off requirement for team invitations 2016-09-20 16:45:00 -04:00
dev.df Refactor prometheus integration 2016-07-01 14:16:50 -04:00
Dockerfile Fix handling of custom LDAP cert 2016-09-19 17:55:08 -04:00
external_libraries.py Fix use of bootstrap glyph icons in QE 2016-08-12 15:41:01 -04:00
initdb.py Basic labels support 2016-08-26 15:24:26 -04:00
local-docker.sh local-docker.sh now accepts env vars 2016-07-08 15:50:51 -04:00
local-run.sh remove shebang from local scripts 2014-11-20 15:25:13 -05:00
local-test.sh use kwargs for parse_repository_name 2016-03-09 16:20:28 -05:00
MAINTAINERS MAINTAINERS: initial commit 2015-08-04 21:39:33 -07:00
pylintrc database: initial manifestlist schema changes 2016-09-26 14:47:06 -04:00
README.md readme: fix URLs pointing to the wrong docs 2016-08-03 22:21:35 -04:00
registry.py Merge remote-tracking branch 'upstream/v2-phase4' into python-registry-v2 2015-10-22 16:59:28 -04:00
release.py superuser: add storage replication config 2015-11-09 17:34:22 -05:00
requirements-dev.txt reqs: add ipdb to dev 2016-05-27 14:44:30 -04:00
requirements-nover.txt Fix handling of dates in logs view 2016-08-17 16:27:06 -04:00
requirements.txt Forgot to update the requirements SHA 2016-08-29 11:59:28 -04:00
ROADMAP.md Update the roadmap for current sprint and strip from QE 2016-03-04 11:29:51 -05:00
secscan.py Split secscan endpoints into a new process 2016-05-02 11:38:00 -04:00
verbs.py Add DEBUGLOG flag for enabling full debug logs in all gunicorn components 2015-10-13 10:45:49 -04:00
web.py Add well-known endpoint for Quay 2016-09-12 17:33:08 -04:00

quay

Docker Repository on Quay

Note: The master branch may be in an unstable or even broken state during development. Please use releases instead of the master branch in order to get stable binaries.

Quay Logo

Quay is project to build, store, and distribute container images.

High-level features include:

Getting Started

macOS

macOS developers will need:

# Download the code
git clone git@github.com:coreos-inc/quay.git && cd quay

# Install the system dependencies
brew install libevent libmagic postgresql gpgme

# Some installs don't have /usr/include, required for finding SASL header files
if [ ! -e /usr/include ]; then sudo ln -s `xcrun --show-sdk-path`/usr/include /usr/include; fi

# Install the Python dependencies
pyenv virtualenv 2.7.11 quay
pyenv activate quay
pip install -r requirements.txt
pip install -r requirements-dev.txt

# Setup a local config
git clone git@github.com:coreos-inc/quay-config.git ../quay-config
ln -s ../../quay-config/local conf/stack

clang errors

Some packages may fail to build with clang (which now defaults to C11).

They can be installed with C99 with:

CFLAGS='-std=c99' pip install --no-cache --no-binary :all: gevent
CFLAGS='-std=c99' pip install --no-cache --no-binary :all: cffi
CFLAGS='-std=c99' pip install --no-cache --no-binary :all: cryptography

Linux

TODO

Running and Testing

Test Data

A SQLite database full of test data is committed to this git repository at test/data/test.db. This database is generated by executing python initdb.py. The username and password of the admin test account is devtable and password, respectively.

Local Scripts

  • local-run runs the web server for testing
  • local-test runs the unit test suite

Development inside Docker

To build and run a development container, pass one argument to local-docker.sh:

  • buildman: run the buildmanager
  • dev: run web server on port 5000
  • initdb: clear and initialize the test database
  • notifications: run the notification worker
  • test: run the unit test suite

Adding a Python Dependency

# Create a new virtualenv and activate it
pyenv virtualenv 2.7.11 quay-deps
pyenv activate quay-deps

# Install unversioned dependencies with your changes
pip install -r requirements-nover.txt

# Run the unit test suite
./local-test.sh

# Freeze the versions of all of the dependencies
pip freeze > requirements.txt

Running the Build System

TODO

# Run an instance of redis
docker run -d -p 6379:6379 quay.io/quay/redis

Documentation

Architecture at a Glance

TODO

Terminology

Organizations

  • AppC: a standards body responsible for a Runtime and Image Format superseded by the Open Container Initiative
  • Open Container Initiative: a standards body responsible for a Runtime specification and an Image Format
  • Docker: a company that builds a platform that has its own Image Formats, Build System, Container Runtime, and Container Orchestration

Concepts

  • Image: an archive containing all of the contents necessary to execute a container
  • Image Format: a specification for the structure of an Image
  • Image Layer: an Image that may depend on being applied to other Images to generate a final Image
  • Image Squashing: the process of compressing an Image into a single Layer
  • Manifest: a text file containing metadata for a particular Image
  • Tag: a human-friendly named, mutable pointer to a particular set of Images
  • Build System: a program used to generate Images
  • Registry: a program that speaks one or more standard protocols to store and receive Images
  • Repository: a collection of related Tags organized by a Registry
  • Push: the act of uploading an Image to a Registry
  • Pull: the act of downloading an Image from a Registry
  • Container: an Image and its execution environment
  • Container Runtime: a program that can transform an Image into a Container by executing it
  • Container Orchestration: a program or set of programs that provides a framework for deploying Containers

Software

  • Quay.io: CoreOS's hosted Registry
  • Quay: CoreOS's enterprise-grade Registry product
  • quayctl: an open source program that implements alternative methods for pulling Images from Quay
  • Clair: an open source static analysis tool used to detect vulnerability in Images
  • Quay Security Scanning: the integration between Clair and Quay
  • Kubernetes: an open source program implementing Container Orchestration
  • Docker Hub: Docker's hosted Registry
  • Docker Trusted Registry: Docker's enterprise-grade Registry product
  • Notary: an open source implementation of the TUF protocol used in Docker Content Trust
  • Docker Content Trust: the integration between Notary and Docker Trusted Registry
  • Docker Engine: a program used to interact with all aspects of the Docker platform
  • Swarm: a program implementing Container Orchestration for the Docker platform