insecure config

2025-01-21 23:21:26 +01:00 · 2016-06-22 12:03:50 +08:00 · 2016-06-22 12:03:50 +08:00 · 7862bd8033
commit 7862bd8033
parent c1a8846a68
5 changed files with 20 additions and 7 deletions
--- a/api/repository.go
+++ b/api/repository.go
@ -337,7 +337,7 @@ func newRepositoryClient(endpoint string, insecure bool, username, password, rep
 	credential := auth.NewBasicAuthCredential(username, password)
 	authorizer := auth.NewStandardTokenAuthorizer(credential, insecure, scopeType, scopeName, scopeActions...)

-	store, err := auth.NewAuthorizerStore(endpoint, authorizer)
+	store, err := auth.NewAuthorizerStore(endpoint, insecure, authorizer)
 	if err != nil {
 		return nil, err
 	}
--- a/api/target.go
+++ b/api/target.go
@ -276,12 +276,16 @@ func (t *TargetAPI) Delete() {
 	}
 }

+func ListPolicies(){
+	dao
+}
+
 func newRegistryClient(endpoint string, insecure bool, username, password, scopeType, scopeName string,
 	scopeActions ...string) (*registry.Registry, error) {
 	credential := auth.NewBasicAuthCredential(username, password)
 	authorizer := auth.NewStandardTokenAuthorizer(credential, insecure, scopeType, scopeName, scopeActions...)

-	store, err := auth.NewAuthorizerStore(endpoint, authorizer)
+	store, err := auth.NewAuthorizerStore(endpoint, insecure, authorizer)
 	if err != nil {
 		return nil, err
 	}
--- a/job/replication/transfer.go
+++ b/job/replication/transfer.go
@ -426,7 +426,7 @@ func newRepositoryClient(endpoint string, insecure bool, credential auth.Credent

 	authorizer := auth.NewStandardTokenAuthorizer(credential, insecure, scopeType, scopeName, scopeActions...)

-	store, err := auth.NewAuthorizerStore(endpoint, authorizer)
+	store, err := auth.NewAuthorizerStore(endpoint, insecure, authorizer)
 	if err != nil {
 		return nil, err
 	}
--- a/service/cache/cache.go
+++ b/service/cache/cache.go
@ -120,7 +120,7 @@ func NewRegistryClient(endpoint string, insecure bool, username, scopeType, scop
 	scopeActions ...string) (*registry.Registry, error) {
 	authorizer := auth.NewUsernameTokenAuthorizer(username, scopeType, scopeName, scopeActions...)

-	store, err := auth.NewAuthorizerStore(endpoint, authorizer)
+	store, err := auth.NewAuthorizerStore(endpoint, insecure, authorizer)
 	if err != nil {
 		return nil, err
 	}
@ -138,7 +138,7 @@ func NewRepositoryClient(endpoint string, insecure bool, username, repository, s

 	authorizer := auth.NewUsernameTokenAuthorizer(username, scopeType, scopeName, scopeActions...)

-	store, err := auth.NewAuthorizerStore(endpoint, authorizer)
+	store, err := auth.NewAuthorizerStore(endpoint, insecure, authorizer)
 	if err != nil {
 		return nil, err
 	}
--- a/utils/registry/auth/authorizer.go
+++ b/utils/registry/auth/authorizer.go
@ -16,6 +16,7 @@
 package auth

 import (
+	"crypto/tls"
 	"fmt"
 	"net/http"

@ -39,10 +40,18 @@ type AuthorizerStore struct {
 }

 // NewAuthorizerStore ...
-func NewAuthorizerStore(endpoint string, authorizers ...Authorizer) (*AuthorizerStore, error) {
+func NewAuthorizerStore(endpoint string, insecure bool, authorizers ...Authorizer) (*AuthorizerStore, error) {
 	endpoint = utils.FormatEndpoint(endpoint)

-	resp, err := http.Get(buildPingURL(endpoint))
+	client := &http.Client{
+		Transport: &http.Transport{
+			TLSClientConfig: &tls.Config{
+				InsecureSkipVerify: insecure,
+			},
+		},
+	}
+
+	resp, err := client.Get(buildPingURL(endpoint))
 	if err != nil {
 		return nil, err
 	}