Commit Graph

11644 Commits

Author SHA1 Message Date
Shijun Sun
a21ef51ce4
Add OIDC group filter input (#17752)
Signed-off-by: AllForNothing <sshijun@vmware.com>

Signed-off-by: AllForNothing <sshijun@vmware.com>
2022-11-11 09:50:02 +08:00
Chlins Zhang
77df4d92fd
feat: support customize registry http client timeout (#17768)
Support override the registry http client timeout from env `REGISTRY_HTTP_CLIENT_TIMEOUT` (in minutes), the timeout is 30 minutes by default.

Signed-off-by: chlins <chenyuzh@vmware.com>
2022-11-09 17:20:47 +08:00
Yang Jiao
e2e8f00f35
Remove email config testcases (#17763)
Because the email config page has been removed #17711

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-11-08 15:55:22 +08:00
Shijun Sun
87005f32d9
Improve css for tags column (#17734)
Signed-off-by: AllForNothing <sshijun@vmware.com>

Signed-off-by: AllForNothing <sshijun@vmware.com>
2022-11-07 16:49:41 +08:00
MinerYang
f20a2e433f
bump up golang to 1.19.3 (#17751)
Signed-off-by: yminer <yminer@vmware.com>

Signed-off-by: yminer <yminer@vmware.com>
2022-11-04 16:17:11 +08:00
erismaster
ec7717e23b
Add JFrog Artifactory As Supported Proxy-Cache Registry Source (#17738)
Add JFrog Artifactory As Supported Proxy-Cache

Enables the support of JFrog Artifactory as a source for proxy-cache. I
have tested this with a local build and was able to proxy images just
fine.

Signed-off-by: Derrik Campau <dcampau@vmware.com>

Signed-off-by: Derrik Campau <dcampau@vmware.com>
2022-11-04 12:50:34 +08:00
Orlix
2eac7c1bea
Fix wording in harbor issue template (#17749)
Signed-off-by: OrlinVasilev <ovasilev@vmware.com>

Signed-off-by: OrlinVasilev <ovasilev@vmware.com>
Co-authored-by: OrlinVasilev <ovasilev@vmware.com>
2022-11-04 08:22:17 +08:00
Wang Yan
4fb0a19efb
add cli randomly for empty update (#17740)
give an random cli secret when client gives empty update.

Signed-off-by: Wang Yan <wangyan@vmware.com>

Signed-off-by: Wang Yan <wangyan@vmware.com>
2022-11-03 21:04:29 +08:00
Shijun Sun
10cb2fd2c7
Update the way for generating new cli secret (#17744)
Update the way for refreshing cli-secret

Signed-off-by: AllForNothing <sshijun@vmware.com>

Signed-off-by: AllForNothing <sshijun@vmware.com>
2022-11-03 21:04:04 +08:00
Shijun Sun
93ac2e8111
Remove email config page (#17711)
Signed-off-by: AllForNothing <sshijun@vmware.com>

Signed-off-by: AllForNothing <sshijun@vmware.com>
2022-11-03 14:48:06 +08:00
stonezdj(Daojun Zhang)
39ca918ffe
Add jobservice monitoring api list pool, worker and stop running task (#17658)
Add REST API to list job pool, worker, stop running task

  Add jobservice handler to retrieve configuration
  Add RBAC for jobservice monitoring dashboard
  Add REST API to list pool, worker and stop running task

Signed-off-by: stonezdj <stonezdj@gmail.com>

Signed-off-by: stonezdj <stonezdj@gmail.com>
2022-11-03 10:47:40 +08:00
Chlins Zhang
e81067badb
fix: cherry pick 262 sql for migrations (#17735)
Signed-off-by: chlins <chenyuzh@vmware.com>
2022-11-03 10:05:46 +08:00
Shijun Sun
4206ec8ab1
Add triggers and filters check for target changing under push mode (#17731)
Signed-off-by: AllForNothing <sshijun@vmware.com>

Signed-off-by: AllForNothing <sshijun@vmware.com>
2022-11-02 15:34:34 +08:00
MinerYang
1f05dcdcda
bump up golang.org/x/crypto to v0.1.0 (#17691)
Signed-off-by: yminer <yminer@vmware.com>

Signed-off-by: yminer <yminer@vmware.com>
2022-11-02 14:55:38 +08:00
Orlix
17bfd43a72
Add FOSSA badge and licence analysis (#17656)
Signed-off-by: OrlinVasilev <ovasilev@vmware.com>

Signed-off-by: OrlinVasilev <ovasilev@vmware.com>
Co-authored-by: OrlinVasilev <ovasilev@vmware.com>
2022-11-02 11:01:43 +08:00
dependabot[bot]
f359d49ebd
Bump mheap/github-action-required-labels from 1 to 2 (#17682)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-01 12:02:12 +02:00
Chlins Zhang
bf4cfe9e1e
fix: add human friendly message when export cve job failure (#17726)
Add human friendly when export CVE in the condition of empty CSV file,
because this file will be stored as system artifact and pushed to
distribution, but it will leads to error when push empty blob to S3
storage driver.

Signed-off-by: chlins <chenyuzh@vmware.com>
2022-11-01 15:04:07 +08:00
Shijun Sun
0edc01a395
Add copy_by-chunk checkbox for replication rule (#17617)
Signed-off-by: AllForNothing <sshijun@vmware.com>

Signed-off-by: AllForNothing <sshijun@vmware.com>
2022-11-01 12:33:40 +08:00
Chlins Zhang
c330b8c63a
feat: introduce the copy by chunk for replication (#17602)
1. Add sql migration to alter replication policy table
2. Implement the PullBlobChunk and PushBlobChunk for the underlying v2 registry client
3. Update image transfer logic to support copy by chunk
4. Update the replication policy API handler

Signed-off-by: chlins <chenyuzh@vmware.com>
2022-11-01 11:19:17 +08:00
shuyang
b91a97dd62
Fix broken links in CONTRIBUTING.md (#17718)
Signed-off-by: shuyang <21193371+94rain@users.noreply.github.com>

Update CONTRIBUTING.md

Signed-off-by: shuyang <21193371+94rain@users.noreply.github.com>

Signed-off-by: shuyang <21193371+94rain@users.noreply.github.com>
2022-10-31 16:50:10 +08:00
MinerYang
b193f3f717
bump up github.com/prometheus/client_golang to v1.13.0 (#17688)
Signed-off-by: yminer <yminer@vmware.com>

update
2022-10-31 16:46:50 +08:00
Chlins Zhang
1a1a6d2fd2
feat: log completion message when database migrated (#17684)
Signed-off-by: chlins <chenyuzh@vmware.com>
2022-10-31 10:45:05 +08:00
stonezdj(Daojun Zhang)
3050e856d9
Add check when adding project member (#17701)
Signed-off-by: stonezdj <stonezdj@gmail.com>

Signed-off-by: stonezdj <stonezdj@gmail.com>
2022-10-28 15:06:27 +08:00
MinerYang
6f4d84ecdb
bump up golang.org/x/text to v0.4.0 (#17689)
bump up golang.org/x/text tp v0.4.0

Signed-off-by: yminer <yminer@vmware.com>

Signed-off-by: yminer <yminer@vmware.com>
2022-10-27 13:19:57 +08:00
MinerYang
c5417a2d00
bump up helm.sh/helm/v3 (#17698)
bump helm.sh/helm/v3 to achieve the purpose of bump up github.com/docker/cli indirectly

Signed-off-by: yminer <yminer@vmware.com>

Signed-off-by: yminer <yminer@vmware.com>
2022-10-27 13:19:09 +08:00
MinerYang
6b8cdc03c1
bump up golang to 1.19.2 (#17694)
Signed-off-by: yminer <yminer@vmware.com>

Signed-off-by: yminer <yminer@vmware.com>
2022-10-26 20:28:19 +08:00
Shengwen YU
0acfbdc7a1
feat: bump TRIVYVERSION to v0.32.1 and bump TRIVYADAPTERVERSION to v0.30.2 (#17681)
Signed-off-by: Shengwen Yu <yshengwen@vmware.com>

Signed-off-by: Shengwen Yu <yshengwen@vmware.com>
2022-10-25 14:26:53 +08:00
Eng Zer Jun
cd0fa06a32
test: use T.Setenv to set env vars in tests (#17670)
This commit replaces `os.Setenv` with `t.Setenv` in tests. The
environment variable is automatically restored to its original value
when the test and all its subtests complete.

Reference: https://pkg.go.dev/testing#T.Setenv
Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>

Signed-off-by: Eng Zer Jun <engzerjun@gmail.com>
2022-10-25 10:56:26 +08:00
dependabot[bot]
2295c0ac60
Bump github/codeql-action from 1 to 2 (#17639)
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 1 to 2.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v1...v2)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-24 21:12:45 +08:00
dependabot[bot]
b1c1c16fa5
Bump actions/setup-node from 1 to 3 (#17641)
Bumps [actions/setup-node](https://github.com/actions/setup-node) from 1 to 3.
- [Release notes](https://github.com/actions/setup-node/releases)
- [Commits](https://github.com/actions/setup-node/compare/v1...v3)

---
updated-dependencies:
- dependency-name: actions/setup-node
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-24 21:12:03 +08:00
dependabot[bot]
0696d7c6e7
Bump docker-practice/actions-setup-docker from 0.0.1 to 1.0.11 (#17661)
Bumps [docker-practice/actions-setup-docker](https://github.com/docker-practice/actions-setup-docker) from 0.0.1 to 1.0.11.
- [Release notes](https://github.com/docker-practice/actions-setup-docker/releases)
- [Changelog](https://github.com/docker-practice/actions-setup-docker/blob/master/CHANGELOG.md)
- [Commits](https://github.com/docker-practice/actions-setup-docker/compare/0.0.1...1.0.11)

---
updated-dependencies:
- dependency-name: docker-practice/actions-setup-docker
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-24 16:36:02 +08:00
dependabot[bot]
321c19b40f
Bump actions/checkout from 2 to 3 (#17660)
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-24 16:35:32 +08:00
Yang Jiao
f147af91c8
Add export CVE UI testcase (#17672)
1 Add CVE function verification
2 Add content validation of exported CSV file

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-10-21 18:42:08 +08:00
Gaius
81f618fb9a
feat: optimize return value in pkg modifier (#17655)
Signed-off-by: Gaius <gaius.qi@gmail.com>
2022-10-21 15:38:39 +08:00
Maksym Trofimenko
486bdb6b99
Fix redirect url redirect_url when OIDC auth mode is enabled (#17628)
* fix redirect url for OIDC auth mode

Signed-off-by: Maksym Trofimenko <maksym@container-registry.com>

* portal lint_fix

Signed-off-by: mtrofimenko <gtpoxa@gmail.com>

* make linter happy

Signed-off-by: mtrofimenko <gtpoxa@gmail.com>

Signed-off-by: Maksym Trofimenko <maksym@container-registry.com>
Signed-off-by: mtrofimenko <gtpoxa@gmail.com>
Co-authored-by: Maksym Trofimenko <maksym@container-registry.com>
2022-10-21 14:38:13 +08:00
Shijun Sun
c4146667f1
Remove validator for username claim input (#17663)
Signed-off-by: AllForNothing <sshijun@vmware.com>

Signed-off-by: AllForNothing <sshijun@vmware.com>
2022-10-20 15:46:03 +08:00
Orlix
180bcd1bf1
Add labeling for dependa bot PRs (#17662)
Co-authored-by: OrlinVasilev <ovasilev@vmware.com>
2022-10-20 09:16:24 +03:00
Yang Jiao
180a967416
Remove singularity testcase (#17664)
Singularity has been renamed to Apptainer

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-10-20 09:54:51 +08:00
dependabot[bot]
65a8649d49
Bump codecov/codecov-action from 1 to 3 (#17640)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-18 15:32:15 +03:00
dependabot[bot]
9663bf9f03
Bump actions/stale from 5.0.0 to 6.0.1 (#17638)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-10-18 15:31:11 +03:00
Vincent Ni
9c0275deb6
Fix ecr authorization token issue (#17645)
Signed-off-by: Vincent Ni <kangqini@amazon.com>
2022-10-18 11:09:58 +08:00
stonezdj(Daojun Zhang)
b6bdb4b57f
Add default project when pulling from dockerhub without project name (#17537)
Check project is default project format in dockerhub
 Redirect blob/manifest request to default url
 Fixes #12719

Signed-off-by: stonezdj <stonezdj@gmail.com>

Signed-off-by: stonezdj <stonezdj@gmail.com>
2022-10-17 17:37:44 +08:00
Gaius
25a42af277
test: add GetRedisURL to tests redis pkg and fix hardcoded redis url (#17581)
Signed-off-by: Gaius <gaius.qi@gmail.com>
2022-10-17 17:21:37 +08:00
Yang Jiao
7bbefca8c2
Add scan data export API test case (#17603)
1. Add export scan data API test case
2. Add get scan data export execution list test case
3. Add get scan data export execution test case
4. Add download scan data test case

Signed-off-by: Yang Jiao <jiaoya@vmware.com>

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-10-17 13:25:03 +08:00
Orlix
159169227b
Add dependabot.yaml to enable PRs (#17620)
We need dependabot enabled to get higher score on the OSSF scorecard
https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool
and here https://clomonitor.io/projects/cncf/harbor

Signed-off-by: OrlinVasilev <ovasilev@vmware.com>

Signed-off-by: OrlinVasilev <ovasilev@vmware.com>
Co-authored-by: OrlinVasilev <ovasilev@vmware.com>
2022-10-10 16:52:07 +08:00
Vincent Ni
805a36e7f0
Fix Replication to Cross-account AWS ECR (#17583)
Replication to Cross-account AWS ECR
2022-09-30 09:07:47 +02:00
Shijun Sun
cf5197246a
Fix message processing issue (#17609)
Signed-off-by: AllForNothing <sshijun@vmware.com>

Signed-off-by: AllForNothing <sshijun@vmware.com>
2022-09-29 11:12:11 +08:00
Shijun Sun
303133f695
Improve auth check guard service (#17605)
Signed-off-by: AllForNothing <sshijun@vmware.com>

Signed-off-by: AllForNothing <sshijun@vmware.com>
2022-09-28 17:05:25 +08:00
Shijun Sun
90fe39684b
Refresh config every time entering the configuration page (#17600)
Signed-off-by: AllForNothing <sshijun@vmware.com>

Signed-off-by: AllForNothing <sshijun@vmware.com>
2022-09-27 16:04:02 +08:00
Yang Jiao
c1c1aaf612
Add audit log forward UI testcase (#17591)
Verify that the audit log forward function is correct.

Signed-off-by: Yang Jiao <jiaoya@vmware.com>
2022-09-27 10:46:16 +08:00