Commit Graph

11902 Commits

Author SHA1 Message Date
Wang Yan
3f72604d57
fix robot account access issue (#19627)
fixes #19622
Resolve the 403 issue occurring when a robot account, equipped with both system and project scope, attempts to access project resources.

Signed-off-by: wang yan <wangyan@vmware.com>
2023-11-27 19:16:37 +08:00
Yang Jiao
4fbcf92da9
Add jump to CNAB Bundle index artifact list test case (#19629)
Fix #19278

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-11-27 18:26:06 +08:00
Yang Jiao
38ac8bf717
Add notation pull policy test case (#19625)
Fix #19547

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-11-27 09:44:20 +00:00
dependabot[bot]
e1df9b0a73
Bump golang.org/x/time from 0.0.0-20220210224613-90d013bbcef8 to 0.4.0 in /src (#19541)
Bump golang.org/x/time in /src

Bumps [golang.org/x/time](https://github.com/golang/time) from 0.0.0-20220210224613-90d013bbcef8 to 0.4.0.
- [Commits](https://github.com/golang/time/commits/v0.4.0)

---
updated-dependencies:
- dependency-name: golang.org/x/time
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Shengwen YU <yshengwen@vmware.com>
2023-11-27 16:58:28 +08:00
dependabot[bot]
4fac10a97d
Bump actions/setup-node from 3 to 4 (#19478)
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 3 to 4.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Orlix <7236111+OrlinVasilev@users.noreply.github.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
2023-11-27 15:48:21 +08:00
Wang Yan
e6900301ce
fix system label resource (#19621)
Make sure robot can use rbac.Resource(label) to access system level label

Signed-off-by: wang yan <wangyan@vmware.com>
2023-11-27 13:34:17 +08:00
Yang Jiao
969dd1be66
Add notation accessory copy test case (#19605)
Fix #19546

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-11-22 18:13:44 +08:00
Yang Jiao
45b41d4443
Add API(scan,volumes,jobservice,scanner,label,securityhub,catalog) permission testcases (#19595)
Add scan,volumes,jobservice,scanner,label,securityhub,catalog permission testcases

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-11-22 09:08:27 +00:00
Shijun Sun
13ae233729
Add test cases for the project level permissions (#19593)
Add API test cases for project permission of a robot account

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-11-22 08:13:04 +00:00
Shijun Sun
d967ac0fb6
Update the permission scope (#19603)
1. Update the permission scope
2. Sort the resources and actions by unicode

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-11-22 06:37:31 +00:00
MinerYang
9875965837
add prepare migration script for 2.10 (#19600)
Signed-off-by: yminer <yminer@vmware.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
2023-11-22 13:58:45 +08:00
Wang Yan
062d144d22
add permission validation for robot creating and updating. (#19598)
* add permission validation for robot creating and updating.

It is not allowed to create an new robot with the access outside the predefined scope.

Signed-off-by: wang yan <wangyan@vmware.com>

* Fix robot testcase and update robot permission metadata (#167)

1. Fix robot testcase
2. update robot permission metadata

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
Signed-off-by: wang yan <wangyan@vmware.com>

---------

Signed-off-by: wang yan <wangyan@vmware.com>
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
Co-authored-by: Yang Jiao <72076317+YangJiao0817@users.noreply.github.com>
2023-11-22 12:51:03 +08:00
Chlins Zhang
43ccd2f09f
perf: optimize the performance of accessory query (#19557)
1. Add db index for subject_artifact_id in table artifact_accessory.
2. Optimize the SQL of excluding the accessory for artifact count.

Signed-off-by: chlins <chenyuzh@vmware.com>
2023-11-22 02:11:11 +00:00
MinerYang
17c17ffd8e
bump golang to 1.21.4 (#19601)
Signed-off-by: yminer <yminer@vmware.com>
2023-11-21 19:23:16 +08:00
Chlins Zhang
553c85eed0
fix: increase beego max memory and upload size (#19578)
1. Increase the default beego max memory and upload size from 32GB to
   128GB.
2. Support customize the two beego configs from env.

Signed-off-by: chlins <chenyuzh@vmware.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
2023-11-21 15:36:06 +08:00
Maksym Trofimenko
996e57b511
Feature: GDPR compliant audit logs (#17396) 2023-11-20 21:31:22 +01:00
stonezdj(Daojun Zhang)
307a3121aa
Return empty result when no scanner configured (#19577)
fixes #19534

Signed-off-by: stonezdj <daojunz@vmware.com>
2023-11-17 07:29:19 +00:00
Yang Jiao
08cb0803a8
Add API(audit-log,project,registry,replication) permission testcase (#19584)
Add audit-log,project,registry,replication API permission testcase

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-11-16 08:51:00 +00:00
Shijun Sun
95b4032201
Correct loop condition for replication tasks (#19570)
Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-11-15 09:50:06 +00:00
Shijun Sun
da9e263ca7
Avoid menu closure when filtering labels (#19561)
1. Fixes #19554

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-11-15 17:12:55 +08:00
Shijun Sun
30730c6716
Add a placeholder to the cards for the security-hub (#19536)
1. Related issue #19249

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-11-15 08:23:07 +00:00
Shijun Sun
7718134301
Add quota sorting to the project quotas list (#19576)
1. For #16517

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-11-15 07:25:55 +00:00
Shijun Sun
6a6e29570c
Show OIDC provider name on the OIDC login button (#19581)
1. Related issue #13198

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-11-15 05:23:57 +00:00
stonezdj(Daojun Zhang)
3f6c0298fe
Add oidc provider name to systeminfo API (#19575)
fixes #13198

Signed-off-by: stonezdj <daojunz@vmware.com>
2023-11-15 11:00:39 +08:00
Yang Jiao
04397fb6a2
Add API permission testcase (#19571)
usage example:
HARBOR_BASE_URL=https://{ip_or_domain}/api/v2.0 RESOURCE=preheat-instance  USER_NAME={username} PASSWORD={password}  python tests/apitests/python/test_permission.py

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-11-14 09:38:39 +08:00
Shengwen YU
e941f3272b
fix: sorting quota (#19538)
fix: sort Project Quotas

Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
2023-11-13 14:37:41 +08:00
jmichot-exotec
219e4ba48d
19559 cannot see full label easily (#19564)
* modified label css to allow hover on it

Signed-off-by: Julien Michot <julien.michot.ext@exotec.com>

* modified label css to allow hover on it

Signed-off-by: Julien Michot <julien.michot.ext@exotec.com>

* Update common.scss

Signed-off-by: jmichot-exotec <150228661+jmichot-exotec@users.noreply.github.com>

* used title way to show full label on hover

Signed-off-by: Julien Michot <julien.michot.ext@exotec.com>

---------

Signed-off-by: Julien Michot <julien.michot.ext@exotec.com>
Signed-off-by: jmichot-exotec <150228661+jmichot-exotec@users.noreply.github.com>
Co-authored-by: Julien Michot <julien.michot.ext@exotec.com>
2023-11-13 04:02:59 +00:00
stonezdj(Daojun Zhang)
3a9d68a32a
Allow POST method to request service/token in readonly mode (#19556)
fixes #18243

Signed-off-by: stonezdj <daojunz@vmware.com>
2023-11-10 05:08:31 +00:00
Chlins Zhang
f6d5bf2e0f
perf: optimize the trigger retention API (#19533)
Enhance the API for triggering retention by optimizing it from synchronous to asynchronous to solve the problem of slow response in the case of a large number of tasks.

Signed-off-by: chlins <chenyuzh@vmware.com>
2023-11-09 07:45:01 +00:00
Shijun Sun
b7116fff0f
Add full permissions for the robot account (#19507)
1.Fixes #19353

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-11-09 03:18:07 +00:00
Wang Yan
5c02fd807e
add permission api (#19543)
The permission api targets to return the full set of permissons for robot to use.
And only system and project admin have the access

Signed-off-by: wang yan <wangyan@vmware.com>
2023-11-09 09:47:07 +08:00
stonezdj(Daojun Zhang)
da949bfc3f
Delete project member when delete project (#19523)
Signed-off-by: stonezdj <daojunz@vmware.com>
2023-11-08 20:51:21 +08:00
Shijun Sun
bfd44b9115
Update UI package to clear security alerts (#19553)
Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-11-08 15:30:08 +08:00
stonezdj(Daojun Zhang)
c9214256e5
Skip to validate username when update user profile (#19552)
fixes #19528

Signed-off-by: stonezdj <daojunz@vmware.com>
2023-11-08 13:29:30 +08:00
Yang Jiao
35a605ec05
Add notation sign artifact API test case (#19549)
Fix #19545

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-11-07 08:39:37 +00:00
Yang Jiao
6d238f1948
Update E2E test engine images (#19544)
Fix #19283
1. Bump up chromedriver version to 119.0.6045.105
2. Bump up containerd version to 1.7.8
3. Bump up docker compose version to 2.23.0
4. Bump up helm version to 3.13.1
5. Bump up ORSA version to 1.1.0
6. Bump up imgpkg version to 0.39.0
7. Bump up cosign version to 2.2.0
8. Add install notation 1.0.0

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-11-07 11:05:29 +08:00
Shengwen YU
b8f65bb281
fix: bump up TRIVYVERSION=v0.46.1 && TRIVYADAPTERVERSION=v0.30.18 (#19500)
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
2023-11-06 08:38:56 +00:00
Daniel Jiang
ebb2c40095
Use absolute path for the profile.cov (#19535)
There's a path change introduced by #19508 which may impact showing the
coverage on codecov.
This commit makes sure the profile.cov is referenced as absolute path in
`coverage4gotest.sh`

Signed-off-by: Daniel Jiang <jiangd@vmware.com>
2023-11-06 05:58:08 +00:00
Yang Jiao
e1a44232f4
Add banner message UI test case (#19529)
Fix #19272

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-11-06 03:41:35 +00:00
Daniel Jiang
3f7c605cf5
[WIP] Remove vendor folder from harbor code base (#19508)
* Remove vendor folder from harbor code base

Signed-off-by: Daniel Jiang <jiangd@vmware.com>

* debug ut failure

* debug failure

* debug failure

---------

Signed-off-by: Daniel Jiang <jiangd@vmware.com>
2023-11-05 14:37:25 +08:00
Shijun Sun
d0a9754786
Update the style for severity (#19525)
1.Related issue #19249

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-11-02 09:02:32 +00:00
stonezdj(Daojun Zhang)
b337f51e7e
Replace comma in username to avoid casbin issue (#19505)
Check username when creating user by API
   Replace comma with underscore in username for OnboardUser
   Fixes #19356

Signed-off-by: stonezdj <daojunz@vmware.com>
2023-11-02 03:50:50 +00:00
Shijun Sun
f75a2f9407
Add a tooltip for the replication rule (#19509)
1. Fixes #19371

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-10-31 10:32:00 +00:00
Yang Jiao
2916d09917
Add banner message API test case (#19510)
Fix #19271

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-10-31 08:54:04 +00:00
MinerYang
193b00b9e6
bump golang to 1.21.3 (#19504)
update ut mock

update go mod

Signed-off-by: yminer <yminer@vmware.com>
2023-10-31 15:01:23 +08:00
Shijun Sun
064a109f56
Not allow comma for the user name (#19501)
Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-10-30 16:02:52 +01:00
Yang Jiao
58557d3bae
Add GC details and GC workers UI test case (#19487)
Fix #19277

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-10-26 11:49:56 +08:00
Yang Jiao
61fdf25e5d
Add GC details and GC workers API test case (#19482)
Fix #19276

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-10-25 15:12:53 +08:00
SphinxKnight
d3907f6eee
fix: Accessibility - change color for WCAG AA (#19472)
* fix: Accessibility - change color for WCAG AA

Signed-off-by: julieng <julien.gattelier@gmail.com>

* fix: #ffffff to #fff to comply with stylelint

Signed-off-by: julieng <julien.gattelier@gmail.com>

* Factoring in #19249

Signed-off-by: julieng <julien.gattelier@gmail.com>

---------

Signed-off-by: julieng <julien.gattelier@gmail.com>
2023-10-25 03:44:54 +00:00
MinerYang
adb066cf50
bump go.opentelemetry.io/contrib/instrumentation/github.com/gorilla/m… (#19477)
bump go.opentelemetry.io/contrib/instrumentation/github.com/gorilla/mux/otelmux

Signed-off-by: yminer <yminer@vmware.com>
2023-10-24 08:21:34 +00:00