Mark Huang
c2257d49b8
Hide projects in global logs where user has limited guest role
...
Signed-off-by: Mark Huang <mhuang@pivotal.io>
2020-01-17 11:34:46 -05:00
danfengliu
012aa570c8
Merge pull request #10515 from danfengliu/cherry-pick-1.10-switch-registry-from-dockerhub-to-cpe-4
...
Switch registry from docker-hub ot internal harbor registry
2020-01-17 16:11:38 +08:00
Danfeng Liu (c)
410fb5242b
Switch registry from docker-hub ot internal harbor registry
...
In nightly test, images for tests were pulled from docker-hub, and sometime in an rare occasion, client will fail to contact docker-hub like timeout error, so we like to pull image from an internal harbor registry with no network issue invovled.
Signed-off-by: Danfeng Liu (c) <danfengl@vmware.com>
2020-01-17 15:06:00 +08:00
danfengliu
ed056f2fea
Merge pull request #10510 from danfengliu/cherry-pick-1.10-add-remove-notary-signature-nightly-testcase
...
[Cherry-pick 1.10.0]Add notary remove signature test case in nightly
2020-01-17 14:32:40 +08:00
Danfeng Liu (c)
e0db766f97
O
...
Add notary remove signature test case in nightly
1. Update E2E image Dockerfile for adding notary CLI;
2. Add test case of remove notary signature.
Signed-off-by: Danfeng Liu (c) <danfengl@vmware.com>
2020-01-17 13:34:32 +08:00
He Weiwei
7ae208cd6c
build(swagger): change download link of swagger-codegen-cli ( #10511 )
...
The http://central.maven.org is not available now so change the download
link of swagger-codegen-cli to https://repo1.maven.org
Signed-off-by: He Weiwei <hweiwei@vmware.com>
2020-01-17 12:11:48 +08:00
Wenkai Yin(尹文开)
96e2bbf12e
Merge pull request #10453 from bitsf/ecr_delete_image_1.10
...
(cherry-pick): aws ecr delete image 1.10.x
2020-01-13 13:10:34 +08:00
Ziming Zhang
8e1f7bbd9f
fix(replication): aws ecr delete image
...
Change-Id: I5e38b813c2840e0270973c38680cb8f815e5ece9
Signed-off-by: Ziming Zhang <zziming@vmware.com>
2020-01-13 11:05:17 +08:00
Steven Zou
fb02036597
Merge pull request #10393 from heww/fix-issue-10284
...
fix(scanner): use new created ormer for transaction
2020-01-03 11:23:54 +08:00
He Weiwei
dc2d950172
fix(scanner): use new created ormer for transaction
...
Use new created ormer for transaction in SetDefaultRegistration
Closes #10284
Signed-off-by: He Weiwei <hweiwei@vmware.com>
2020-01-03 02:19:53 +00:00
Daniel Jiang
dd80db67c1
Merge pull request #10364 from reasonerjt/disable-token-service-xsrf-1.10
...
Disable XSRF check for /service/token - cherry pick to 1.10
2019-12-28 00:05:41 +08:00
stonezdj(Daojun Zhang)
6647a274f1
Merge pull request #10358 from reasonerjt/tokenreview-onboard-1.10
...
Onboard user when doing token review - cherrypick to 1.10
2019-12-27 17:19:05 +08:00
danfengliu
e0b4620838
Merge pull request #10359 from danfengliu/cherry-pick-Go-Into-Repo-refector
...
[Cherry-pick to 1.10.0] Refect keyword of Go Into Reop
2019-12-27 16:55:03 +08:00
Daniel Jiang
1d0c61a6da
Disable XSRF check for /service/token
...
This commit disables XSRF check for "service/token" so that when
containerd sends `POST` it will not return 403 and containerd can
fallback to `GET` to complete the workflow.
Fixes #10305
Signed-off-by: Daniel Jiang <jiangd@vmware.com>
2019-12-27 14:25:17 +08:00
danfengliu
b79a251918
Refect keyword of Go Into Reop
...
Signed-off-by: danfengliu <danfengl@vmware.com>
2019-12-27 13:37:35 +08:00
Daniel Jiang
94a3da33e6
Onboard user when doing token review
...
This commit will make the "tokenreview" security filter onboard
user if the request carries a valid token. If the "skipsearch" flag in
http_auth setting is set to false the onboard will fail.
Signed-off-by: Daniel Jiang <jiangd@vmware.com>
2019-12-27 13:29:21 +08:00
jwangyangls
9755d879db
Merge pull request #10306 from jwangyangls/tanslation-modify-retag-replication
...
[Cherry-pick]Translation modification of replication and tag in Chinese mode
2019-12-25 14:50:46 +08:00
Yogi_Wang
c937e0a6bf
Translation modification of replication and tag in Chinese mode
...
1.replicaiton ==> 复制
2.tag ==> tag
3.retag ==> tag拷贝
Signed-off-by: Yogi_Wang <yawang@vmware.com>
2019-12-18 16:13:31 +08:00
Wenkai Yin(尹文开)
ae034185eb
Merge pull request #10258 from reasonerjt/stastic-api-group-member-1.10
...
Stastics API should handle group members - cherrypick to 1.10
2019-12-16 15:46:51 +08:00
Steven Zou
eccc89a37e
doc[compatibility]:remove not evaluated scanners
...
all the scanner listed in the compatibility doc should be evaluated
2019-12-16 14:59:14 +08:00
xaleeks
2c2032b401
Merge pull request #10270 from steven-zou/doc/compatibility
...
[CHERRY-PICK-1.10.0]:doc[compatibility]:add compatibility doc ref in the README
2019-12-16 14:45:25 +08:00
Steven Zou
163ba2c7b1
doc[compatibility]:add doc ref in the README
...
- refer the harbor compatibility doc in the README
- add .md suffix to the README file under api/harbor
Signed-off-by: Steven Zou <szou@vmware.com>
2019-12-16 14:09:16 +08:00
Steven Zou
2c284d0608
doc[compatibility] provide compatibility doc
...
- list all the supported replicaiton adapters
- list all the verified OIDC providers including the ones verified by the end users
- list all the pluggable scanners
Signed-off-by: Steven Zou <szou@vmware.com>
2019-12-16 14:06:35 +08:00
Daniel Jiang
3cc9b42b68
Stastics API should handle group members
...
statistic API use security Context to list project rather than calling
projectmanager directly, such that the group membership will be taken
into account.
fixes #10230
It should be cherry picked to 1.9.x and 1.10.x branches
Signed-off-by: Daniel Jiang <jiangd@vmware.com>
2019-12-13 17:55:21 +08:00
xaleeks
c614c165fa
Merge pull request #10212 from ninjadq/update_doc_of_migration_110
...
[doc] Update doc for migration
2019-12-12 16:39:02 +08:00
DQ
fce32fba0e
[doc] Update doc for migration
...
Migration guild is a lit bit confusion
Add copy after migrate config file
Signed-off-by: DQ <dengq@vmware.com>
2019-12-12 13:15:11 +08:00
Will Sun
44b9805536
Merge pull request #10220 from AllForNothing/release-1.10.0
...
Add links to view doc for scanners ui
2019-12-11 15:51:55 +08:00
sshijun
890c6ac6c8
Add links to view doc for scanners ui
...
Signed-off-by: sshijun <sshijun@vmware.com>
2019-12-11 13:23:33 +08:00
Steven Zou
af73efb042
Merge pull request #10210 from steven-zou/chore/clear_scanner_specs_1.10
...
Chore/clear scanner specs 1.10
2019-12-10 18:54:34 +08:00
Steven Zou
07dbbf1023
doc[api spec]:rename folder name to
...
Signed-off-by: Steven Zou <szou@vmware.com>
2019-12-10 14:20:54 +08:00
Steven Zou
828c7c082d
doc[scanner]:clear scanner spec related
...
- remove the scanner open API spec from api folder
- update README doc to remove the API reference
Signed-off-by: Steven Zou <szou@vmware.com>
2019-12-09 18:56:11 +08:00
Will Sun
9efe8b47d7
Merge pull request #10174 from AllForNothing/release-1.10.0
...
Improve ui for project config page
2019-12-06 14:59:28 +08:00
sshijun
414bc1a8cc
Improve ui for project config page
...
Signed-off-by: sshijun <sshijun@vmware.com>
2019-12-06 13:54:10 +08:00
Wang Yan
6b84b62f75
Merge pull request #10155 from bitsf/upgrade_clair_1.10
...
[cherry-pick] upgrade clair to v2.1.1
2019-12-06 11:48:42 +08:00
Wang Yan
2e2c849aa6
Merge pull request #10165 from ywk253100/191205_sort_1.10
...
Sort the tag before returning the list when calling API
2019-12-06 11:37:51 +08:00
Wenkai Yin(尹文开)
6287a9f26e
Merge pull request #10152 from wy65701436/fix-10092
...
improve pulling vulnerable images warning message
2019-12-06 11:18:16 +08:00
stonezdj(Daojun Zhang)
5da568cf12
Merge pull request #10156 from reasonerjt/rm-authproxy-case-sensitive-v1.10
...
Get rid of case-sensitivity in authproxy setting -- Cherrypick to v1.10
2019-12-06 10:40:03 +08:00
jwangyangls
9f66682fa0
Merge pull request #10151 from jwangyangls/fix-bug-1.10-issue
...
[cherry-pick]Fix bug in master about 1.10
2019-12-06 10:07:35 +08:00
Will Sun
46e004b167
Merge pull request #10144 from AllForNothing/release-1.10.0
...
Modify ui to fix some bugs(cherry-pick #10143 )
2019-12-06 09:09:39 +08:00
Wenkai Yin
0e821a9237
Sort the tag before returning the list when calling API
...
Sort the tag before returning the list when calling API list tag API
Signed-off-by: Wenkai Yin <yinw@vmware.com>
2019-12-05 19:54:11 +08:00
sshijun
ef8041511d
Modify ui to fix some bugs
...
Signed-off-by: sshijun <sshijun@vmware.com>
2019-12-05 18:28:01 +08:00
He Weiwei
91af4f2413
chore(scanner): upgrade clair scanner to 1.0.1 ( #10148 )
...
Signed-off-by: He Weiwei <hweiwei@vmware.com>
2019-12-05 17:52:16 +08:00
Yogi_Wang
3071926f75
Fix bug in master about 1.10
...
Signed-off-by: Yogi_Wang <yawang@vmware.com>
Signed-off-by: Yogi_Wang <yawang@vmware.com>
2019-12-05 16:41:31 +08:00
danfengliu
cc66b0f44d
Merge pull request #10153 from danfengliu/cherry-pick-internal-registry
...
[Cherry-Pick-To-1.10] Add local registry for nightly quotas test
2019-12-05 15:03:40 +08:00
Daniel Jiang
8d3df218d9
Get rid of case-sensitivity in authproxy setting
...
This commit removes the attribute to control case-sensitivity from
authproxy setting.
The result in token review status will be used as the single source of
truth, regardless the case of the letters in group names and user names.
Signed-off-by: Daniel Jiang <jiangd@vmware.com>
2019-12-05 14:49:41 +08:00
Ziming Zhang
2b378899df
upgrade clair to v2.1.1
...
Change-Id: Idb2ad0470a51666d75895d8c5e68d80a67e05276
Signed-off-by: Ziming Zhang <zziming@vmware.com>
2019-12-05 14:28:32 +08:00
Danfeng Liu (c)
bfc5c28fde
As we like to use a local registry for nightly quotas test, so that the sample image will not be update without noticed, so modify quotas test case to use local image for pulling.
...
Signed-off-by: Danfeng Liu (c) <danfengl@vmware.com>
2019-12-05 14:00:24 +08:00
wang yan
1ea5ed0381
improve pulling vulnerable images warning message
...
To make the message more friendly and readable for the end-user
Signed-off-by: wang yan <wangyan@vmware.com>
2019-12-05 11:36:04 +08:00
Daniel Jiang
bd28ad1ae7
Merge pull request #10132 from reasonerjt/authproxy-server-setting-v1.10
...
Support pinning to authproxy server's cert - Cherrypick to 1.10
2019-12-04 22:58:53 +08:00
Daniel Jiang
8329c209db
Support pinning to authproxy server's cert
...
This commit add an attribute to configurations, whose value is the
certificate of authproxy server. When this attribute is set Harbor will
pin to this cert when connecting authproxy.
This value will also be part of the response of systemInfo API.
This commit will be cherrypicked to 1.10 and 1.9 branch.
Signed-off-by: Daniel Jiang <jiangd@vmware.com>
2019-12-04 16:10:45 +08:00