mirror of
https://github.com/goharbor/harbor.git
synced 2024-12-25 01:58:35 +01:00
a087ba02e3
This commit updates `prepare` and templates to populate the credential for registry for basic authentication. A temporary flag `registry_use_basic_auth` was added to avoid breakage. It MUST be removed before the release. Signed-off-by: Daniel Jiang <jiangd@vmware.com>
67 lines
2.4 KiB
Python
67 lines
2.4 KiB
Python
import os, copy, subprocess
|
|
|
|
from g import config_dir, templates_dir, DEFAULT_GID, DEFAULT_UID, data_dir
|
|
from utils.misc import prepare_dir
|
|
from utils.jinja import render_jinja
|
|
|
|
|
|
registry_config_dir = os.path.join(config_dir, "registry")
|
|
registry_config_template_path = os.path.join(templates_dir, "registry", "config.yml.jinja")
|
|
registry_conf = os.path.join(config_dir, "registry", "config.yml")
|
|
registry_passwd_path = os.path.join(config_dir, "registry", "passwd")
|
|
registry_data_dir = os.path.join(data_dir, 'registry')
|
|
|
|
levels_map = {
|
|
'debug': 'debug',
|
|
'info': 'info',
|
|
'warning': 'warn',
|
|
'error': 'error',
|
|
'fatal': 'fatal'
|
|
}
|
|
|
|
|
|
def prepare_registry(config_dict):
|
|
prepare_dir(registry_data_dir, uid=DEFAULT_UID, gid=DEFAULT_GID)
|
|
prepare_dir(registry_config_dir)
|
|
|
|
if config_dict['registry_use_basic_auth']:
|
|
gen_passwd_file(config_dict)
|
|
storage_provider_info = get_storage_provider_info(
|
|
config_dict['storage_provider_name'],
|
|
config_dict['storage_provider_config'])
|
|
|
|
render_jinja(
|
|
registry_config_template_path,
|
|
registry_conf,
|
|
uid=DEFAULT_UID,
|
|
gid=DEFAULT_GID,
|
|
level=levels_map[config_dict['log_level']],
|
|
storage_provider_info=storage_provider_info,
|
|
**config_dict)
|
|
|
|
|
|
def get_storage_provider_info(provider_name, provider_config):
|
|
provider_config_copy = copy.deepcopy(provider_config)
|
|
if provider_name == "filesystem":
|
|
if not (provider_config_copy and ('rootdirectory' in provider_config_copy)):
|
|
provider_config_copy['rootdirectory'] = '/storage'
|
|
if provider_name == 'gcs' and provider_config_copy.get('keyfile'):
|
|
provider_config_copy['keyfile'] = '/etc/registry/gcs.key'
|
|
# generate storage configuration section in yaml format
|
|
storage_provider_conf_list = [provider_name + ':']
|
|
for config in provider_config_copy.items():
|
|
if config[1] is None:
|
|
value = ''
|
|
elif config[1] == True:
|
|
value = 'true'
|
|
else:
|
|
value = config[1]
|
|
storage_provider_conf_list.append('{}: {}'.format(config[0], value))
|
|
storage_provider_info = ('\n' + ' ' * 4).join(storage_provider_conf_list)
|
|
return storage_provider_info
|
|
|
|
|
|
def gen_passwd_file(config_dict):
|
|
return subprocess.call(["/usr/bin/htpasswd", "-bcB", registry_passwd_path, config_dict['registry_username'],
|
|
config_dict['registry_password']], stdout=subprocess.DEVNULL, stderr=subprocess.STDOUT)
|