Commits · 88ae9c458c87f6373b74b549ae16f8468e872972 · CSAN / Csan

07 Apr, 2020 12 commits
- Update tags related APIs (#11435) · 88ae9c45
  Wenkai Yin(尹文开) authored Apr 07, 2020
```
* Update tags related APIs

1. Remove API for listing tags of repository
2. Add API for listing tags of artifact
3. Support filter artifact by tag name
Signed-off-by: Wenkai Yin <yinw@vmware.com>

* [OCI] modify artifact tag name check
1. switch api get tag list
2. modify artifact tag name check
Signed-off-by: Yogi_Wang <yawang@vmware.com>
Co-authored-by: Yogi_Wang <yawang@vmware.com>
```
  88ae9c45
- Merge pull request #11428 from ninjadq/fix_container_unhealth · e064bd4c
  Daniel Jiang authored Apr 07, 2020
```
Fix container unhealth
```
  e064bd4c
- Merge pull request #11467 from heww/fix-issue-11131 · dd95866e
  He Weiwei authored Apr 07, 2020
```
fix(scan): dump nil slice of vulnerabilities as empty slice in report
```
  dd95866e
- Merge pull request #11463 from ywk253100/200407_copy · 5d55bd1d
  Wenkai Yin(尹文开) authored Apr 07, 2020
```
Update the logic of copy artifact
```
  5d55bd1d
- fix(scan): dump nil slice of vulnerabilities as empty slice in report · e1ab30da
  He Weiwei authored Apr 07, 2020
```
Closes #11131
Signed-off-by: He Weiwei <hweiwei@vmware.com>
```
  e1ab30da
- Merge pull request #11460 from heww/merge-scan-report · 8ddfe2d0
  He Weiwei authored Apr 07, 2020
```
feat(scan): merge reports for image index
```
  8ddfe2d0
- Merge pull request #11459 from heww/scan-cleanup · 43df7b25
  He Weiwei authored Apr 07, 2020
```
refactor: cleanup unused code about scan
```
  43df7b25
- Fix health check url · 4a836ea9
  DQ authored Apr 04, 2020
```
health check url should depend on internal https
Signed-off-by: DQ <dengq@vmware.com>
```
  4a836ea9
- Update the logic of copy artifact · 9bfabff4
  Wenkai Yin authored Apr 07, 2020
```
1. Copy artifact will not return 409 anymore.
2. Make sure the tags of source artifact exist in the target artifact
Signed-off-by: Wenkai Yin <yinw@vmware.com>
```
  9bfabff4
- feat(scan): merge reports for image index · 6b066bad
  He Weiwei authored Apr 07, 2020
```
1. Merge the scanning reports of referenced artifacts for image index.
2. Add artifact info for report.
Signed-off-by: He Weiwei <hweiwei@vmware.com>
```
  6b066bad
- Merge pull request #11438 from ywk253100/200402_replication · b819e7ae
  Wenkai Yin(尹文开) authored Apr 07, 2020
```
Support replication between Harbor 2.0 and 1.x
```
  b819e7ae
- Merge pull request #11406 from reasonerjt/reenable-token-auth-for-cli-new · db10720e
  Daniel Jiang authored Apr 07, 2020
```
Reenable token auth for cli
```
  db10720e
06 Apr, 2020 8 commits
- refactor: cleanup unused code about scan · 69ca7a0d
  He Weiwei authored Apr 06, 2020
```
1. Cleanup unused code about clair.
2. Cleanup unused definitions in legacy_swagger.yaml about scan.
Signed-off-by: He Weiwei <hweiwei@vmware.com>
```
  69ca7a0d
- Merge pull request #11397 from ywk253100/200402_chart_api · 80027c3b
  He Weiwei authored Apr 07, 2020
```
Add a seperated swagger file for chart API
```
  80027c3b
- Merge pull request #11446 from heww/fix-swagger-yaml · af552258
  He Weiwei authored Apr 06, 2020
```
fix(swagger): make json as default response
```
  af552258
- Merge pull request #11427 from wy65701436/fixes-11280 · e6f96e2a
  Wenkai Yin(尹文开) authored Apr 06, 2020
```
Add trace information into internal error
```
  e6f96e2a
- Merge pull request #11445 from wy65701436/remove-count-quota · a63cc5c9
  Wenkai Yin(尹文开) authored Apr 06, 2020
```
deprecate quota count on artifact
```
  a63cc5c9
- deprecate quota count on artifact · 44825e81
  wang yan authored Apr 06, 2020
```
Fixes #11241

1, remove count quota from quota manager
2, remove count in DB scheme
3, remove UI relates on quota
4, update UT, API test and UI UT.
Signed-off-by: wang yan <wangyan@vmware.com>
```
  44825e81
- Add a seperated swagger file for chart API · 8f8b4d5e
  Wenkai Yin authored Apr 02, 2020
```
Add a seperated swagger file for chart API as these APIs have no version
Signed-off-by: Wenkai Yin <yinw@vmware.com>
```
  8f8b4d5e
- fix(swagger): make json as default response · 0a1730ed
  He Weiwei authored Apr 06, 2020
```
Signed-off-by: He Weiwei <hweiwei@vmware.com>
```
  0a1730ed
04 Apr, 2020 5 commits
- Add proxy cert file to jobservice when https enabled · cdb675bf
  DQ authored Apr 03, 2020
```
jobservice may request via absolute path of url to harbor
Signed-off-by: DQ <dengq@vmware.com>
```
  cdb675bf
- Add SAN to gencert script · 23ed189e
  DQ authored Apr 03, 2020
```
add localhost and 127.0.0.1 to SAN
Signed-off-by: DQ <dengq@vmware.com>
```
  23ed189e
- Make sure middleware handle scanner-pull claim for v2token · e8f98259
  Daniel Jiang authored Apr 05, 2020
```
Signed-off-by: Daniel Jiang <jiangd@vmware.com>
```
  e8f98259
- Support replication between Harbor 2.0 and 1.x · 8f11cb7f
  Wenkai Yin authored Apr 04, 2020
```
Fixes #11374, fixes #11302, support replication between Harbor 2.0 and 1.x by providing versioning adapter
Signed-off-by: Wenkai Yin <yinw@vmware.com>
```
  8f11cb7f
- Merge pull request #11389 from wy65701436/fix-dao-ut · 9ca87b85
  Wenkai Yin(尹文开) authored Apr 04, 2020
```
fix artifact dao UT issue
```
  9ca87b85
03 Apr, 2020 11 commits

Add trace information into internal error · 8bd2dc63

wang yan authored Apr 02, 2020



Fixes #10839
Add a StackTrace func in to Error, and log it when Harbor gets a internal
Signed-off-by: wang yan <wangyan@vmware.com>

8bd2dc63

fix(vulnerable,middleware): improve vulnerable middleware (#11407) · bd6c2f88

He Weiwei authored Apr 04, 2020



1. Prevent the pull action when scan report status is not successfuly.
2. Bypass the checking when no vulnerabilities not found.
3. Improve the returned message when prevented the pull action.

Closes #11202
Signed-off-by: He Weiwei <hweiwei@vmware.com>

bd6c2f88

Reenable token auth for cli · 08f9ffa0

Daniel Jiang authored Apr 03, 2020

Docker CLI fails if it's not logged in upon seeing "basic" realm challenging while pinging the "/v2" endpoint. (#11266)
Some CLI will send HEAD to artifact endpoint before pushing (#11188)(#11271)

To fix such problems, this commit re-introduce the token auth flow to the CLIs.

For a HEAD request to "/v2/xxx" with no "Authoirzation" header, the v2_auth middleware populates the
"Www-Authenticate" header to redirect it to token endpoint with proper
requested scope.

It also adds security context to based on the content of the JWT which has the claims of the registry.
So a request from CLI carrying a token signed by the "/service/token" will have proper permissions.
Signed-off-by: Daniel Jiang <jiangd@vmware.com>

08f9ffa0

Merge pull request #11408 from jwangyangls/nightly-case-trivy-3 · 616c2d9e
danfengliu authored Apr 03, 2020
```
[Test Case] Add nightly case for CVE
```
616c2d9e
Merge pull request #10349 from danfengliu/add-remove-into-notary-guide-doc · 542fefb9
xaleeks authored Apr 03, 2020
```
Add notary remove part in notary_guide.md
```
542fefb9

[Test Case] Add nightly case for CVE · 2610fe53

Yogi_Wang authored Apr 02, 2020


1. add nightly case for cve
2. change translate words
Signed-off-by: Yogi_Wang <yawang@vmware.com>

2610fe53

Fix merge scan summary (#11392) · e9543a1e

He Weiwei authored Apr 03, 2020



* fix(scan): fix ScanStatus when merge NativeReportSummary

1. Running and success status is high priority when merge ScanStatus of
NativeReportSummary, otherwise chose the bigger status.
2. Merge scan logs of referenced artifacts when get the scan logs of
image index.

Closes #11265
Signed-off-by: He Weiwei <hweiwei@vmware.com>

* fix(portal): fix the annotation for the scan completed percent in scan overview
Signed-off-by: He Weiwei <hweiwei@vmware.com>

e9543a1e

Add notary remove part in notary_guide.md · 0afb52b5
danfengliu authored Dec 26, 2019
```
Signed-off-by: danfengliu <danfengl@vmware.com>
```
0afb52b5
Merge pull request #11409 from heww/fix-issue-11367 · f14a16be
Qian Deng authored Apr 03, 2020
```
fix(prepare): not accpet items of false value in external_redis
```
f14a16be

fix(prepare): not accpet items of false value in external_redis · 77a8c320

He Weiwei authored Apr 03, 2020



Item in yaml without value will be as None in python, which will make
the password of redis as `None` in `get_redis_configs`. This fix will
not accept items of `false value` in `external_redis` configurations.

Closes #11367
Signed-off-by: He Weiwei <hweiwei@vmware.com>

77a8c320

Merge pull request #11276 from mmpei/offical-webhook-slack-fix · 2783fd09
Wenkai Yin(尹文开) authored Apr 03, 2020
```
fix webhook slack test error
```
2783fd09

02 Apr, 2020 4 commits

Merge pull request #11400 from heww/fix-issue-11391 · c0246e21
He Weiwei authored Apr 02, 2020
```
fix(log): correct file and line when use logger
```
c0246e21
fix webhook slack test error · 59246580
peimingming authored Mar 25, 2020
```
Signed-off-by: peimingming <peimingming@corp.netease.com>
```
59246580

fix(log): correct file and line when use logger · 207463e9

He Weiwei authored Apr 02, 2020



1. When use the helper functions of log pkg, the depth is 4 to get the
correct file and line.
2. Whe use the default logger of log pkg, the depth is 3 to get the
correct file and line.

Closes #11391
Signed-off-by: He Weiwei <hweiwei@vmware.com>

207463e9

Merge pull request #11393 from AllForNothing/improve-webhook · 2c355290
Will Sun authored Apr 02, 2020
```
Improve webhook UI according to the UX
```
2c355290