Commit Graph

12028 Commits

Author SHA1 Message Date
Yang Jiao
04397fb6a2
Add API permission testcase (#19571)
usage example:
HARBOR_BASE_URL=https://{ip_or_domain}/api/v2.0 RESOURCE=preheat-instance  USER_NAME={username} PASSWORD={password}  python tests/apitests/python/test_permission.py

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-11-14 09:38:39 +08:00
Shengwen YU
e941f3272b
fix: sorting quota (#19538)
fix: sort Project Quotas

Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
2023-11-13 14:37:41 +08:00
jmichot-exotec
219e4ba48d
19559 cannot see full label easily (#19564)
* modified label css to allow hover on it

Signed-off-by: Julien Michot <julien.michot.ext@exotec.com>

* modified label css to allow hover on it

Signed-off-by: Julien Michot <julien.michot.ext@exotec.com>

* Update common.scss

Signed-off-by: jmichot-exotec <150228661+jmichot-exotec@users.noreply.github.com>

* used title way to show full label on hover

Signed-off-by: Julien Michot <julien.michot.ext@exotec.com>

---------

Signed-off-by: Julien Michot <julien.michot.ext@exotec.com>
Signed-off-by: jmichot-exotec <150228661+jmichot-exotec@users.noreply.github.com>
Co-authored-by: Julien Michot <julien.michot.ext@exotec.com>
2023-11-13 04:02:59 +00:00
stonezdj(Daojun Zhang)
3a9d68a32a
Allow POST method to request service/token in readonly mode (#19556)
fixes #18243

Signed-off-by: stonezdj <daojunz@vmware.com>
2023-11-10 05:08:31 +00:00
Chlins Zhang
f6d5bf2e0f
perf: optimize the trigger retention API (#19533)
Enhance the API for triggering retention by optimizing it from synchronous to asynchronous to solve the problem of slow response in the case of a large number of tasks.

Signed-off-by: chlins <chenyuzh@vmware.com>
2023-11-09 07:45:01 +00:00
Shijun Sun
b7116fff0f
Add full permissions for the robot account (#19507)
1.Fixes #19353

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-11-09 03:18:07 +00:00
Wang Yan
5c02fd807e
add permission api (#19543)
The permission api targets to return the full set of permissons for robot to use.
And only system and project admin have the access

Signed-off-by: wang yan <wangyan@vmware.com>
2023-11-09 09:47:07 +08:00
stonezdj(Daojun Zhang)
da949bfc3f
Delete project member when delete project (#19523)
Signed-off-by: stonezdj <daojunz@vmware.com>
2023-11-08 20:51:21 +08:00
Shijun Sun
bfd44b9115
Update UI package to clear security alerts (#19553)
Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-11-08 15:30:08 +08:00
stonezdj(Daojun Zhang)
c9214256e5
Skip to validate username when update user profile (#19552)
fixes #19528

Signed-off-by: stonezdj <daojunz@vmware.com>
2023-11-08 13:29:30 +08:00
Yang Jiao
35a605ec05
Add notation sign artifact API test case (#19549)
Fix #19545

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-11-07 08:39:37 +00:00
Yang Jiao
6d238f1948
Update E2E test engine images (#19544)
Fix #19283
1. Bump up chromedriver version to 119.0.6045.105
2. Bump up containerd version to 1.7.8
3. Bump up docker compose version to 2.23.0
4. Bump up helm version to 3.13.1
5. Bump up ORSA version to 1.1.0
6. Bump up imgpkg version to 0.39.0
7. Bump up cosign version to 2.2.0
8. Add install notation 1.0.0

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-11-07 11:05:29 +08:00
Shengwen YU
b8f65bb281
fix: bump up TRIVYVERSION=v0.46.1 && TRIVYADAPTERVERSION=v0.30.18 (#19500)
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
2023-11-06 08:38:56 +00:00
Daniel Jiang
ebb2c40095
Use absolute path for the profile.cov (#19535)
There's a path change introduced by #19508 which may impact showing the
coverage on codecov.
This commit makes sure the profile.cov is referenced as absolute path in
`coverage4gotest.sh`

Signed-off-by: Daniel Jiang <jiangd@vmware.com>
2023-11-06 05:58:08 +00:00
Yang Jiao
e1a44232f4
Add banner message UI test case (#19529)
Fix #19272

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-11-06 03:41:35 +00:00
Daniel Jiang
3f7c605cf5
[WIP] Remove vendor folder from harbor code base (#19508)
* Remove vendor folder from harbor code base

Signed-off-by: Daniel Jiang <jiangd@vmware.com>

* debug ut failure

* debug failure

* debug failure

---------

Signed-off-by: Daniel Jiang <jiangd@vmware.com>
2023-11-05 14:37:25 +08:00
Shijun Sun
d0a9754786
Update the style for severity (#19525)
1.Related issue #19249

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-11-02 09:02:32 +00:00
stonezdj(Daojun Zhang)
b337f51e7e
Replace comma in username to avoid casbin issue (#19505)
Check username when creating user by API
   Replace comma with underscore in username for OnboardUser
   Fixes #19356

Signed-off-by: stonezdj <daojunz@vmware.com>
2023-11-02 03:50:50 +00:00
Shijun Sun
f75a2f9407
Add a tooltip for the replication rule (#19509)
1. Fixes #19371

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-10-31 10:32:00 +00:00
Yang Jiao
2916d09917
Add banner message API test case (#19510)
Fix #19271

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-10-31 08:54:04 +00:00
MinerYang
193b00b9e6
bump golang to 1.21.3 (#19504)
update ut mock

update go mod

Signed-off-by: yminer <yminer@vmware.com>
2023-10-31 15:01:23 +08:00
Shijun Sun
064a109f56
Not allow comma for the user name (#19501)
Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-10-30 16:02:52 +01:00
Yang Jiao
58557d3bae
Add GC details and GC workers UI test case (#19487)
Fix #19277

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-10-26 11:49:56 +08:00
Yang Jiao
61fdf25e5d
Add GC details and GC workers API test case (#19482)
Fix #19276

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-10-25 15:12:53 +08:00
SphinxKnight
d3907f6eee
fix: Accessibility - change color for WCAG AA (#19472)
* fix: Accessibility - change color for WCAG AA

Signed-off-by: julieng <julien.gattelier@gmail.com>

* fix: #ffffff to #fff to comply with stylelint

Signed-off-by: julieng <julien.gattelier@gmail.com>

* Factoring in #19249

Signed-off-by: julieng <julien.gattelier@gmail.com>

---------

Signed-off-by: julieng <julien.gattelier@gmail.com>
2023-10-25 03:44:54 +00:00
MinerYang
adb066cf50
bump go.opentelemetry.io/contrib/instrumentation/github.com/gorilla/m… (#19477)
bump go.opentelemetry.io/contrib/instrumentation/github.com/gorilla/mux/otelmux

Signed-off-by: yminer <yminer@vmware.com>
2023-10-24 08:21:34 +00:00
stonezdj(Daojun Zhang)
7b0beed934
Delete tag retention rule and tag immutable rule when deleting project (#19390)
fixes #18250

Signed-off-by: stonezdj <daojunz@vmware.com>
2023-10-24 04:28:16 +00:00
Kenji Gaillac
a1effcbb98
Add label's description as tooltip (#19421)
* feat(ui): add label's description as tooltip

Will only display the tooltip on artifact-list-page.

Signed-off-by: Kenji Gaillac <kenji@gaillac.eu>

* fix(ui): remove redundant condition

Signed-off-by: Kenji Gaillac <kenji@gaillac.eu>

---------

Signed-off-by: Kenji Gaillac <kenji@gaillac.eu>
2023-10-24 01:52:35 +00:00
Yang Jiao
f58dc2dbec
Add GC accessory UI test case (#19470)
Fix #19274

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-10-23 07:46:00 +00:00
Chlins Zhang
99b40bf764
feat: enhance the replication webhook payload (#19433)
Add the new filed 'references' to the replication webhook payload, which
can help user better know the replicated artifact tags or digests.
(references is the lists of the artifact tag name or digest if no tag)

Signed-off-by: chlins <chenyuzh@vmware.com>
2023-10-23 03:29:30 +00:00
Yang Jiao
322dce5272
Add GC accessory API test case (#19462)
Fix #19273

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-10-20 06:49:20 +00:00
imeoer
13f4fca96e
subject: fix missing media type recognition for nydus (#19453)
Nydus images are compatible with both docker scheme v2 and OCI image spec v1
types of config media type:

  - application/vnd.oci.image.config.v1+json
  - application/vnd.docker.container.image.v1+json

The patch fixes the media type recognition on the accessory type check.

Signed-off-by: Yan Song <yansong.ys@antgroup.com>
Co-authored-by: MinerYang <yminer@vmware.com>
2023-10-19 10:53:13 +08:00
stonezdj(Daojun Zhang)
d030ab216b
Use batch to list the job id in the job queue to avoid crash redis (#19444)
fixes: #19436

Signed-off-by: stonezdj <daojunz@vmware.com>
2023-10-18 09:31:37 +00:00
MinerYang
84a85fb299
bump golang.org/x/net to v0.17.0 && go.opentelemetry.io/contrib (#19461)
bump golang.org/x/net to v0.17.0

Signed-off-by: yminer <yminer@vmware.com>

bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp  to v0.45.0
2023-10-18 14:34:51 +08:00
Shijun Sun
18b979576d
Update the style for operation-component (#19445)
1.Fixes #19399

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-10-17 09:29:23 +08:00
Yang Jiao
ec0ef1772c
Add security hub UI test case (#19448)
Fix #19270

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-10-16 18:17:29 +08:00
Shengwen YU
2c36770b24
fix: bump up TRIVYVERSION=v0.46.0 && TRIVYADAPTERVERSION=v0.30.17 (#19446)
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
2023-10-16 14:23:15 +08:00
Wang Yan
f9ab185ed0
fix issue 19392 (#19437)
Needs to set the repo when to handle the accessory before subject manifest.

Signed-off-by: wang yan <wangyan@vmware.com>
2023-10-12 15:15:42 +08:00
stonezdj(Daojun Zhang)
663d0b81a7
Change fixed_version to package_version in query dangerous CVE sql (#19397)
Change fixed_version to package_version
  fixes #19391

Signed-off-by: stonezdj <daojunz@vmware.com>
2023-10-11 07:57:19 +00:00
MinerYang
1f975edb9c
bump golang to 1.20.10 (#19430)
Signed-off-by: yminer <yminer@vmware.com>
2023-10-11 13:05:31 +08:00
Kenji Gaillac
27e70cdf4f
feat(i18n): update french translations (#19418)
Signed-off-by: Kenji Gaillac <kenji@gaillac.eu>
2023-10-10 09:29:06 +00:00
Matt Terwilliger
950f19e4a3
Add heading to contributing docs (#19412)
I was searching for documentation on how to build the project and
skimmed this but missed the link to the website since it's under the
'fork repository' heading.

Signed-off-by: Matthew Terwilliger <matt.terwilliger@reddit.com>
2023-10-06 14:49:52 +08:00
Shijun Sun
d0322dfcba
Hide version property if the value is undefined (#19395)
1.Related issue #19391

Signed-off-by: AllForNothing <sshijun@vmware.com>
2023-09-28 10:59:10 +08:00
Wang Yan
3338f27189
support accessory in either order (#19375)
In certain cases, the OCI client may push the subject artifact and accessory in either order.
Therefore, it is necessary to handle situations where the client pushes the accessory ahead of the subject artifact.

Signed-off-by: wang yan <wangyan@vmware.com>
2023-09-23 02:42:58 +08:00
MinerYang
6fd4a2bd37
update default processor for unknwon type config (#19372)
update OCI-Subject header

Signed-off-by: yminer <yminer@vmware.com>

update default processor & add ut for artifact icon

update ut coverage
2023-09-21 15:19:42 +08:00
Yang Jiao
50e466b281
Add security hub API test case (#19376)
Fix #19269

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-09-20 18:58:55 +08:00
Wang Yan
4051b2b302
fix user resource (#19366)
fix the user resrouce defination of user api

Signed-off-by: wang yan <wangyan@vmware.com>
2023-09-18 14:16:25 +08:00
Bin Liu
26a4f6eeea
Remove duplicated sort fields from order by clause (#19347)
In MustClone() it will set Sorts field twice, that will
generate two duplicated order by fields in the generated SQL.

Signed-off-by: bin liu <liubin0329@gmail.com>
2023-09-17 02:01:30 +08:00
Wang Yan
ed370a496b
deprecate resource label (#19349)
There is no api is using the DAO, remove it from the source code.

Signed-off-by: wang yan <wangyan@vmware.com>
2023-09-14 01:25:52 +08:00
Yang Jiao
97b285168a
Refactor unstable test cases (#19350)
Fix #19282

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2023-09-13 08:14:34 +00:00