fixes#19622
Resolve the 403 issue occurring when a robot account, equipped with both system and project scope, attempts to access project resources.
Signed-off-by: wang yan <wangyan@vmware.com>
* add permission validation for robot creating and updating.
It is not allowed to create an new robot with the access outside the predefined scope.
Signed-off-by: wang yan <wangyan@vmware.com>
* Fix robot testcase and update robot permission metadata (#167)
1. Fix robot testcase
2. update robot permission metadata
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
Signed-off-by: wang yan <wangyan@vmware.com>
---------
Signed-off-by: wang yan <wangyan@vmware.com>
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
Co-authored-by: Yang Jiao <72076317+YangJiao0817@users.noreply.github.com>
1. Add db index for subject_artifact_id in table artifact_accessory.
2. Optimize the SQL of excluding the accessory for artifact count.
Signed-off-by: chlins <chenyuzh@vmware.com>
1. Increase the default beego max memory and upload size from 32GB to
128GB.
2. Support customize the two beego configs from env.
Signed-off-by: chlins <chenyuzh@vmware.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
* modified label css to allow hover on it
Signed-off-by: Julien Michot <julien.michot.ext@exotec.com>
* modified label css to allow hover on it
Signed-off-by: Julien Michot <julien.michot.ext@exotec.com>
* Update common.scss
Signed-off-by: jmichot-exotec <150228661+jmichot-exotec@users.noreply.github.com>
* used title way to show full label on hover
Signed-off-by: Julien Michot <julien.michot.ext@exotec.com>
---------
Signed-off-by: Julien Michot <julien.michot.ext@exotec.com>
Signed-off-by: jmichot-exotec <150228661+jmichot-exotec@users.noreply.github.com>
Co-authored-by: Julien Michot <julien.michot.ext@exotec.com>
Enhance the API for triggering retention by optimizing it from synchronous to asynchronous to solve the problem of slow response in the case of a large number of tasks.
Signed-off-by: chlins <chenyuzh@vmware.com>
The permission api targets to return the full set of permissons for robot to use.
And only system and project admin have the access
Signed-off-by: wang yan <wangyan@vmware.com>
Fix#19283
1. Bump up chromedriver version to 119.0.6045.105
2. Bump up containerd version to 1.7.8
3. Bump up docker compose version to 2.23.0
4. Bump up helm version to 3.13.1
5. Bump up ORSA version to 1.1.0
6. Bump up imgpkg version to 0.39.0
7. Bump up cosign version to 2.2.0
8. Add install notation 1.0.0
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
There's a path change introduced by #19508 which may impact showing the
coverage on codecov.
This commit makes sure the profile.cov is referenced as absolute path in
`coverage4gotest.sh`
Signed-off-by: Daniel Jiang <jiangd@vmware.com>
Check username when creating user by API
Replace comma with underscore in username for OnboardUser
Fixes#19356
Signed-off-by: stonezdj <daojunz@vmware.com>
* fix: Accessibility - change color for WCAG AA
Signed-off-by: julieng <julien.gattelier@gmail.com>
* fix: #ffffff to #fff to comply with stylelint
Signed-off-by: julieng <julien.gattelier@gmail.com>
* Factoring in #19249
Signed-off-by: julieng <julien.gattelier@gmail.com>
---------
Signed-off-by: julieng <julien.gattelier@gmail.com>
