Commits · 3775509ce5a45f01f8f7e7b6c348a906b64a700e · CSAN / Csan

07 Apr, 2020 23 commits
- Update APIs to only accept encoded repository name · 3775509c
  Yogi_Wang authored Apr 07, 2020
```
Signed-off-by: Yogi_Wang <yawang@vmware.com>
```
  3775509c
- Update APIs to only accept encoded repository name that contains slash · 7188e015
  Wenkai Yin authored Apr 04, 2020
```
Update APIs to only accept encoded repository name that contains slash
Signed-off-by: Wenkai Yin <yinw@vmware.com>
```
  7188e015
- Merge pull request #11382 from ywk253100/200331_security_context · 42801b76
  Wenkai Yin(尹文开) authored Apr 07, 2020
```
Remove "GetMyProjects" and "GetProjectRoles" in the interface "security.Context"
```
  42801b76
- Remove "GetMyProjects" and "GetProjectRoles" in the interface "security.Context" · 0a372a85
  Wenkai Yin authored Apr 01, 2020
```
Fixes #11125, remove "GetMyProjects" and "GetProjectRoles" in the interface "security.Context"
Signed-off-by: Wenkai Yin <yinw@vmware.com>
```
  0a372a85
- Merge pull request #11477 from ninjadq/add_trivy_miss_entrypoint · 83f46869
  Qian Deng authored Apr 07, 2020
```
Add missiong entrypoint file for trivy-adapter
```
  83f46869
- Add missiong entrypoint file for trivy-adapter · 6ae1b1dc
  DQ authored Apr 07, 2020
```
Signed-off-by: DQ <dengq@vmware.com>
```
  6ae1b1dc
- Add spaces (#11471) · 1c8d5c6d
  Qian Deng authored Apr 07, 2020
```
Fix typo of spaces cause failure
Signed-off-by: DQ <dengq@vmware.com>
```
  1c8d5c6d
- Merge pull request #11468 from wy65701436/remove-count-quota-code · 3f567514
  He Weiwei authored Apr 07, 2020
```
remove the chart handling in quota
```
  3f567514
- Merge pull request #11469 from ninjadq/clean_up_migrator · 5bcd015d
  Daniel Jiang authored Apr 07, 2020
```
Remove migrator flags in script
```
  5bcd015d
- Update tags related APIs (#11435) · 88ae9c45
  Wenkai Yin(尹文开) authored Apr 07, 2020
```
* Update tags related APIs

1. Remove API for listing tags of repository
2. Add API for listing tags of artifact
3. Support filter artifact by tag name
Signed-off-by: Wenkai Yin <yinw@vmware.com>

* [OCI] modify artifact tag name check
1. switch api get tag list
2. modify artifact tag name check
Signed-off-by: Yogi_Wang <yawang@vmware.com>
Co-authored-by: Yogi_Wang <yawang@vmware.com>
```
  88ae9c45
- Merge pull request #11428 from ninjadq/fix_container_unhealth · e064bd4c
  Daniel Jiang authored Apr 07, 2020
```
Fix container unhealth
```
  e064bd4c
- remove the chart handling in quota · a96d2f37
  wang yan authored Apr 07, 2020
```
1, remove the chartmuseum controller
2, doesn't handle chartrepo url in v2 middleware
Signed-off-by: wang yan <wangyan@vmware.com>
```
  a96d2f37
- Merge pull request #11467 from heww/fix-issue-11131 · dd95866e
  He Weiwei authored Apr 07, 2020
```
fix(scan): dump nil slice of vulnerabilities as empty slice in report
```
  dd95866e
- Remove migrator flags in script · 1ae50b8d
  DQ authored Apr 07, 2020
```
Because migrator tool removed
Signed-off-by: DQ <dengq@vmware.com>
```
  1ae50b8d
- Merge pull request #11463 from ywk253100/200407_copy · 5d55bd1d
  Wenkai Yin(尹文开) authored Apr 07, 2020
```
Update the logic of copy artifact
```
  5d55bd1d
- fix(scan): dump nil slice of vulnerabilities as empty slice in report · e1ab30da
  He Weiwei authored Apr 07, 2020
```
Closes #11131
Signed-off-by: He Weiwei <hweiwei@vmware.com>
```
  e1ab30da
- Merge pull request #11460 from heww/merge-scan-report · 8ddfe2d0
  He Weiwei authored Apr 07, 2020
```
feat(scan): merge reports for image index
```
  8ddfe2d0
- Merge pull request #11459 from heww/scan-cleanup · 43df7b25
  He Weiwei authored Apr 07, 2020
```
refactor: cleanup unused code about scan
```
  43df7b25
- Fix health check url · 4a836ea9
  DQ authored Apr 04, 2020
```
health check url should depend on internal https
Signed-off-by: DQ <dengq@vmware.com>
```
  4a836ea9
- Update the logic of copy artifact · 9bfabff4
  Wenkai Yin authored Apr 07, 2020
```
1. Copy artifact will not return 409 anymore.
2. Make sure the tags of source artifact exist in the target artifact
Signed-off-by: Wenkai Yin <yinw@vmware.com>
```
  9bfabff4
- feat(scan): merge reports for image index · 6b066bad
  He Weiwei authored Apr 07, 2020
```
1. Merge the scanning reports of referenced artifacts for image index.
2. Add artifact info for report.
Signed-off-by: He Weiwei <hweiwei@vmware.com>
```
  6b066bad
- Merge pull request #11438 from ywk253100/200402_replication · b819e7ae
  Wenkai Yin(尹文开) authored Apr 07, 2020
```
Support replication between Harbor 2.0 and 1.x
```
  b819e7ae
- Merge pull request #11406 from reasonerjt/reenable-token-auth-for-cli-new · db10720e
  Daniel Jiang authored Apr 07, 2020
```
Reenable token auth for cli
```
  db10720e
06 Apr, 2020 8 commits
- refactor: cleanup unused code about scan · 69ca7a0d
  He Weiwei authored Apr 06, 2020
```
1. Cleanup unused code about clair.
2. Cleanup unused definitions in legacy_swagger.yaml about scan.
Signed-off-by: He Weiwei <hweiwei@vmware.com>
```
  69ca7a0d
- Merge pull request #11397 from ywk253100/200402_chart_api · 80027c3b
  He Weiwei authored Apr 07, 2020
```
Add a seperated swagger file for chart API
```
  80027c3b
- Merge pull request #11446 from heww/fix-swagger-yaml · af552258
  He Weiwei authored Apr 06, 2020
```
fix(swagger): make json as default response
```
  af552258
- Merge pull request #11427 from wy65701436/fixes-11280 · e6f96e2a
  Wenkai Yin(尹文开) authored Apr 06, 2020
```
Add trace information into internal error
```
  e6f96e2a
- Merge pull request #11445 from wy65701436/remove-count-quota · a63cc5c9
  Wenkai Yin(尹文开) authored Apr 06, 2020
```
deprecate quota count on artifact
```
  a63cc5c9
- deprecate quota count on artifact · 44825e81
  wang yan authored Apr 06, 2020
```
Fixes #11241

1, remove count quota from quota manager
2, remove count in DB scheme
3, remove UI relates on quota
4, update UT, API test and UI UT.
Signed-off-by: wang yan <wangyan@vmware.com>
```
  44825e81
- Add a seperated swagger file for chart API · 8f8b4d5e
  Wenkai Yin authored Apr 02, 2020
```
Add a seperated swagger file for chart API as these APIs have no version
Signed-off-by: Wenkai Yin <yinw@vmware.com>
```
  8f8b4d5e
- fix(swagger): make json as default response · 0a1730ed
  He Weiwei authored Apr 06, 2020
```
Signed-off-by: He Weiwei <hweiwei@vmware.com>
```
  0a1730ed
04 Apr, 2020 5 commits
- Add proxy cert file to jobservice when https enabled · cdb675bf
  DQ authored Apr 03, 2020
```
jobservice may request via absolute path of url to harbor
Signed-off-by: DQ <dengq@vmware.com>
```
  cdb675bf
- Add SAN to gencert script · 23ed189e
  DQ authored Apr 03, 2020
```
add localhost and 127.0.0.1 to SAN
Signed-off-by: DQ <dengq@vmware.com>
```
  23ed189e
- Make sure middleware handle scanner-pull claim for v2token · e8f98259
  Daniel Jiang authored Apr 05, 2020
```
Signed-off-by: Daniel Jiang <jiangd@vmware.com>
```
  e8f98259
- Support replication between Harbor 2.0 and 1.x · 8f11cb7f
  Wenkai Yin authored Apr 04, 2020
```
Fixes #11374, fixes #11302, support replication between Harbor 2.0 and 1.x by providing versioning adapter
Signed-off-by: Wenkai Yin <yinw@vmware.com>
```
  8f11cb7f
- Merge pull request #11389 from wy65701436/fix-dao-ut · 9ca87b85
  Wenkai Yin(尹文开) authored Apr 04, 2020
```
fix artifact dao UT issue
```
  9ca87b85
03 Apr, 2020 4 commits

Add trace information into internal error · 8bd2dc63

wang yan authored Apr 02, 2020



Fixes #10839
Add a StackTrace func in to Error, and log it when Harbor gets a internal
Signed-off-by: wang yan <wangyan@vmware.com>

8bd2dc63

fix(vulnerable,middleware): improve vulnerable middleware (#11407) · bd6c2f88

He Weiwei authored Apr 04, 2020



1. Prevent the pull action when scan report status is not successfuly.
2. Bypass the checking when no vulnerabilities not found.
3. Improve the returned message when prevented the pull action.

Closes #11202
Signed-off-by: He Weiwei <hweiwei@vmware.com>

bd6c2f88

Reenable token auth for cli · 08f9ffa0

Daniel Jiang authored Apr 03, 2020

Docker CLI fails if it's not logged in upon seeing "basic" realm challenging while pinging the "/v2" endpoint. (#11266)
Some CLI will send HEAD to artifact endpoint before pushing (#11188)(#11271)

To fix such problems, this commit re-introduce the token auth flow to the CLIs.

For a HEAD request to "/v2/xxx" with no "Authoirzation" header, the v2_auth middleware populates the
"Www-Authenticate" header to redirect it to token endpoint with proper
requested scope.

It also adds security context to based on the content of the JWT which has the claims of the registry.
So a request from CLI carrying a token signed by the "/service/token" will have proper permissions.
Signed-off-by: Daniel Jiang <jiangd@vmware.com>

08f9ffa0

Merge pull request #11408 from jwangyangls/nightly-case-trivy-3 · 616c2d9e
danfengliu authored Apr 03, 2020
```
[Test Case] Add nightly case for CVE
```
616c2d9e