DQ
f70339870a
Enhance: Create shared to store shared ca
...
this shared ca will mount to all harbor components
Signed-off-by: DQ <dengq@vmware.com>
2020-04-28 02:58:11 +08:00
Ziming Zhang
257924856c
fix(retention) fix empty pull time log
...
Signed-off-by: Ziming Zhang <zziming@vmware.com>
2020-04-26 11:56:26 +08:00
Daniel Jiang
f2d5f4e256
Merge pull request #11628 from reasonerjt/doc-refactor-master
...
Refactor the structure of docs directory
2020-04-24 22:45:40 +08:00
jwangyangls
0460e40a28
Merge pull request #11680 from jwangyangls/200421-fix-issue-2.0
...
[Fixed] Fix issue #11334 #11252 #11191
2020-04-24 17:46:22 +08:00
Will Sun
ae9f8f6d5d
Merge pull request #11717 from AllForNothing/testing-3
...
Fix bugs for testing kick 3
2020-04-24 17:43:58 +08:00
AllForNothing
432f5512d8
Fix bugs for testing kick 3
...
Signed-off-by: AllForNothing <sshijun@vmware.com>
2020-04-24 17:11:34 +08:00
Yogi_Wang
7bb7c2c868
[Fixed] Fix issue #11334 #11252 #11191
...
Signed-off-by: Yogi_Wang <yawang@vmware.com>
2020-04-24 16:38:59 +08:00
Qian Deng
f59d0737cd
Merge pull request #11688 from ninjadq/remove_mtls_config_option
...
Hidden veriify client cert verfiy option
2020-04-24 10:50:34 +08:00
Daniel Jiang
b140a58a9a
Merge pull request #11693 from reasonerjt/admin-check-userExistence
...
Allow sys admin to call /c/UserExists
2020-04-24 00:55:26 +08:00
Daniel Jiang
447ec13527
Allow sys admin to call /c/UserExists
...
The commit fix a regression introduced by #11672 which impacts admin
adding new users.
When admin is creating new users, /c/UserExists is called by UI. We must
allow it called by admin when self-registration is turned off.
Signed-off-by: Daniel Jiang <jiangd@vmware.com>
2020-04-23 11:40:54 +08:00
DQ
599ca98c09
Hidden veriify client cert verfiy option
...
Remove to avoid replication access core from external_url issue
Signed-off-by: DQ <dengq@vmware.com>
2020-04-23 10:14:36 +08:00
Will Sun
7d784ef02f
Merge pull request #11674 from AllForNothing/more-ut
...
Add more UT
2020-04-22 17:13:20 +08:00
Daniel Jiang
4a292bf1ab
Merge pull request #11346 from reasonerjt/rm-notary-signer-certs
...
Remove the certs of notary signer
2020-04-21 15:17:17 +08:00
Wang Yan
619345200f
Bump up clair version to v2.1.2 ( #11675 )
...
Clair v2.1.2 has been released to fix the RHEL updater issue.
https://github.com/quay/clair/releases/tag/v2.1.2
Signed-off-by: wang yan <wangyan@vmware.com>
2020-04-21 15:11:25 +08:00
Ziming Zhang
41e8bb91ce
fix some cicd problems
...
Signed-off-by: Ziming Zhang <zziming@vmware.com>
2020-04-21 14:34:45 +08:00
Daniel Jiang
2ecf0425a4
Remove the certs of notary signer
...
Since `prepare` generates the certs as needed during installation, these
certs should not exist in the repo.
Signed-off-by: Daniel Jiang <jiangd@vmware.com>
2020-04-21 13:20:19 +08:00
Daniel Jiang
4c41ac81d9
Merge pull request #11672 from reasonerjt/restrict-userexists
...
Enable userExists only when self-registration is turned on.
2020-04-21 13:19:20 +08:00
mmpei
4b6196a00d
fix slack rate limit issue ( #11623 )
...
Signed-off-by: peimingming <peimingming@corp.netease.com>
2020-04-21 11:44:58 +08:00
AllForNothing
0c5d3cc899
Add more UT
...
Signed-off-by: AllForNothing <sshijun@vmware.com>
2020-04-21 09:54:32 +08:00
jonasrosland
48966f4364
Move 1.10 docs into the main docs folder
...
Signed-off-by: jonasrosland <jrosland@vmware.com>
2020-04-21 00:29:25 +08:00
Daniel Jiang
b52a698469
Rename the folder name for docs to be published on webite
...
Signed-off-by: Daniel Jiang <jiangd@vmware.com>
2020-04-21 00:29:24 +08:00
Daniel Jiang
201955c2fb
Enable userExists only when self-registration is turned on.
...
Signed-off-by: Daniel Jiang <jiangd@vmware.com>
2020-04-21 00:17:12 +08:00
Wang Yan
ff2a7e61c9
fix catalog api issue ( #11666 )
...
The v2 catalog API needs to filter out the empty repository and the repository which artifacts are all with no tags.
1,In v2.0.0, Harbor does not delete repository even there is no artifact, it's different with v1.10.0
2, Compares with docker distribution, it doesn't return the respository with untagged images.
Signed-off-by: wang yan <wangyan@vmware.com>
2020-04-20 23:37:16 +08:00
Daniel Jiang
b747fdb68d
Merge pull request #11660 from ninjadq/add_tls_12_min_version_for_registry
...
Add tls 12 min version for registry
2020-04-20 22:43:52 +08:00
DQ
e0b98685f3
Add comments for new tls transport
...
To explain why use this to avoid replication hang forever issue
Signed-off-by: DQ <dengq@vmware.com>
2020-04-20 19:19:15 +08:00
DQ
b728f04d0a
Fix tls min version for registry
...
cert,key,mintls should in the same context
Signed-off-by: DQ <dengq@vmware.com>
2020-04-20 19:19:15 +08:00
danfengliu
dbc1f17919
Merge pull request #11667 from danfengliu/clean-gitaction-and-add-tag-for-pytest
...
Clean up gitaction env and add tag for pytest
2020-04-20 18:49:13 +08:00
danfengliu
fdded0744a
Clean up gitaction env and add tag for pytest
...
1. Add docker prune cmd to release some space;
2. Add tag for pytest in case of debugging requirement;
3. Replace image to smaller size in robot account pytest;
Signed-off-by: danfengliu <danfengl@vmware.com>
2020-04-20 18:19:28 +08:00
jwangyangls
e93bd75d38
Merge pull request #11649 from jwangyangls/fix-signed-issue
...
[Fixed] Fix issue when delete signed tag
2020-04-17 16:54:42 +08:00
Yogi_Wang
cd98a7a9b6
[Fixed] Fix issue when delete signed tag
...
Signed-off-by: Yogi_Wang <yawang@vmware.com>
2020-04-17 16:04:16 +08:00
Steven Zou
3b0b9f3c7d
Merge pull request #11645 from ninjadq/avoid_default_transport_https_bug
...
Fix: Default Transport HTTP2 related hang issue
2020-04-17 15:44:52 +08:00
jwangyangls
981cae9f11
Merge pull request #11648 from jwangyangls/add-sign-pop-when-delete
...
[feat] Add pop up command when delete signed tag
2020-04-17 13:14:19 +08:00
Yogi_Wang
6f54262889
[feat] Add pop up command when delete signed tag
...
Signed-off-by: Yogi_Wang <yawang@vmware.com>
2020-04-17 12:45:57 +08:00
DQ
53111d1d16
Fix: Default Transport HTTP2 related hang issue
...
Create a transport the same as default except forceattempthttp2
Signed-off-by: DQ <dengq@vmware.com>
2020-04-17 11:36:02 +08:00
danfengliu
62c56d76b1
Merge pull request #10499 from danfengliu/add-upgrade-verification
...
Add robot-account verification for upgrade test
2020-04-16 22:58:40 +08:00
Danfeng Liu (c)
1cc5d0261b
Add robot-account verification for upgrade test
...
1. Add Clair should be default scanner in upgrade test;
2. Add tag retention verification in upgrade test;
3. Add tag retention verification in upgrade test;
4. Add tag Immutability verification in upgrade test;
5. Add webhook verification in upgrade test;
6. Add CVE whitelist in upgrade test;
Signed-off-by: Danfeng Liu (c) <danfengl@vmware.com>
2020-04-16 22:16:33 +08:00
Qian Deng
9c7caddeae
Merge pull request #11635 from hyy0322/set-root-password-never-expire
...
fix: set root password never expire
2020-04-16 22:05:10 +08:00
Maosheng Ren
89e9ea0145
Merge pull request #11636 from danielpacak/bump_up_trivy_adapter_to_0.9.0
...
chore(trivy): Bump up trivy adapter to 0.9.0
2020-04-16 16:16:50 +08:00
Wenkai Yin(尹文开)
e3cbfac0cc
Fix bug for replicating chart triggered by event ( #11578 )
...
Use the new event model to fix bug for replicating chart triggered by event
Signed-off-by: Wenkai Yin <yinw@vmware.com>
2020-04-16 16:15:21 +08:00
Wang Yan
790064df2e
fix notification policy ugrade issue ( #11627 )
...
Fixes #11624
All of the existing policies created v1.10 has no name, it fails the upgrade process.
When to set the unique constraint for policy name, the empty can be seen as duplicated key.
ERROR: could not create unique index "notification_policy_name_key"
DETAIL: Key (name)=() is duplicated.
Signed-off-by: wang yan <wangyan@vmware.com>
2020-04-16 14:53:58 +08:00
Daniel Pacak
5c3abee135
chore(trivy): Bump up trivy adapter to 0.9.0
...
- Vendor the latest Trivy release 0.6.0
- Configure TLS 1.2 as min version when TLS is enabled
- Add more tracing to adapter config to facilitate troubleshooting
Resolves : #11544
Signed-off-by: Daniel Pacak <pacak.daniel@gmail.com>
2020-04-16 08:40:27 +02:00
Daniel Jiang
4327f22641
Merge pull request #11638 from ninjadq/inject_external_ca_to_trivy
...
Fix cert issue of trivy
2020-04-16 14:06:24 +08:00
DQ
42c1095216
Fix cert issue of trivy
...
Trivy can't access harbor from external if https enabled so inject cert to trivy container trust
Signed-off-by: DQ <dengq@vmware.com>
2020-04-16 10:52:03 +08:00
danfengliu
516cc61fbf
Merge pull request #11637 from jwangyangls/fix-switch-scanner-issue
...
nightly move switch scanner case to mutiple-scanner file
2020-04-16 10:49:00 +08:00
He Weiwei
9fe893af91
Merge pull request #11634 from heww/bump-up-clair-adapter
...
chore(clair): bump up clair adapter version to 1.0.2
2020-04-16 10:09:22 +08:00
Yogi_Wang
589d05a894
nightly move switch scanner case to mutiple-scanner file
...
Signed-off-by: Yogi_Wang <yawang@vmware.com>
2020-04-16 10:05:08 +08:00
Yiyang Huang
4598f52057
fix: set root password never expire
...
Signed-off-by: Yiyang Huang <huangyiyang@caicloud.io>
2020-04-16 00:15:28 +08:00
Wang Yan
8a0e8627ff
replace pkg errors with lib errors ( #11605 )
...
Fixes #9704
As we do want to unify error handling, so just decreprates pkg errors, use lib/errors instead for Harbor internal used errors model.
1, The lib/errors can cover all of funcs of pkg/errors, and also it has code attribute to define the http return value.
2, lib/errors can give a OCI standard error format, like {"errors":[{"code":"UNAUTHORIZED","message":"unauthorized"}]}
If you'd like to use pkg/errors, use lib/errors instead. If it cannot meet your request, enhance it.
Signed-off-by: wang yan <wangyan@vmware.com>
2020-04-15 22:41:45 +08:00
He Weiwei
355c16943c
chore(clair): bump up clair adapter version to 1.0.2
...
Signed-off-by: He Weiwei <hweiwei@vmware.com>
2020-04-15 14:07:46 +00:00
Will Sun
205e3a969f
Merge pull request #11621 from AllForNothing/gc-ui
...
Modify gc ui
2020-04-15 22:01:59 +08:00