fix: handle the break change for parse external sentinel redis url
Handle the ParseSentinelURL to resolve an incompatible modification that does not recognize the default redis database.
Closes: #17483
Signed-off-by: chlins <chenyuzh@vmware.com>
Signed-off-by: chlins <chenyuzh@vmware.com>
* Add audit log and log rotation test cases
1. Add audit log test case
2. Add log rotation test case
3. Add log rotation schedule test case
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
* Refresh base images
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
Update portal-base and nginx-base Dockerfile.base
Installing nginx 1.22 creates the nginx group and nginx user, so instead
of creating them again, modify them.
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
fix: validate the existence of project for export cve api
Validate the existence of the project for export CVE API handler, return
not found error if the project is not exist.
Closes: #17430
Signed-off-by: chlins <chenyuzh@vmware.com>
fix: correct description for export cve project parameter
Correct the description for the project parameter of export CVE API in
the swagger.
Closes: #17429
Signed-off-by: chlins <chenyuzh@vmware.com>
Update replication and trivy testcases
1 Update replication filter_label_xpath because of this PR #17267 updated xpath
2 Update the Manual Scan All test case, because Scan All will affect other testcases if it is not finished running
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
fix: validate export cve request params
1. Validate export cve request params in the API handler
2. Trim space for request in the scan export job
Closes: #17326
Signed-off-by: chlins <chenyuzh@vmware.com>
fix: replication webhook lost when src namespace different with dest
Fix the replication webhook notification lost when the rule is
pull-based and src namespace different with dest.
Closes: #17298
Signed-off-by: chlins <chenyuzh@vmware.com>
fix: reduce the high db cpu usage for tag retention
1. Add two indexes to database migrations.
2. Skip refresh quota in middleware for requests from jobservice.
3. Refresh quota by self in the end of tag retention job.
Closes: #14708
Signed-off-by: chlins <chenyuzh@vmware.com>
Add purge audit log API test cases
Added test cases for the following APIs:
1. PUT /system/purgeaudit/{purge_id} Stop the specific purge audit log execution
2. GET /system/purgeaudit/{purge_id} Get purge job status
3. GET /system/purgeaudit/{purge_id}/log Get purge job log
4. PUT /system/purgeaudit/schedule Update purge job's schedule
5. POST /system/purgeaudit/schedule Create a purge job schedule
6. GET /system/purgeaudit/schedule Get purge's schedule
7. GET /system/purgeaudit Get purge job results.
Signed-off-by: Yang Jiao <jiaoya@vmware.com>
1. Add resource permission check for API handler
2. Validate export cve params project
3. Optimize friendly human message when execution status is error
Signed-off-by: chlins <chenyuzh@vmware.com>
1. Refact the scan export FilterProcessor interface
2. Optmize the sql template for export cve report
3. Update the process of cve export job
Signed-off-by: chlins <chenyuzh@vmware.com>
Fixed#17145
1, Filter out the accessory from the artifact list.
2, Disable the display func of the accessory interface, currently this will not impact any kind of accessory, like signature and nydus. If we'd like to introduce it, it needs to resolve the pagiation issue of artifact list.
Signed-off-by: Wang Yan <wangyan@vmware.com>
