Grzegorz Bizon
4726ff9dbe
Add test example for invalid registry access request
2017-03-31 12:37:44 +02:00
Grzegorz Bizon
60cdd2bcc8
Add specs for container repository factory method
2017-03-31 12:27:05 +02:00
Grzegorz Bizon
cf042068b5
Do not allow registry requests for invalid repositories
2017-03-30 15:41:51 +02:00
Grzegorz Bizon
7d3d1ec5a7
Create container repository on successful push auth
...
Because we do not have yet two way communication between container
registry and GitLab, we need to eagerly create a new container
repository objects in database. We now do that after user/build
successfully authenticates a push action using auth service.
2017-03-30 15:24:46 +02:00
Grzegorz Bizon
4407d3cf19
Add comment to container registry auth service
...
Comment explains why we still have authentication without user object
there. The legacy authentication mechanism should be removed in 10.0.
2017-03-29 14:01:05 +02:00
Grzegorz Bizon
3bfc05be5e
Use container repository path inside auth service
2017-03-29 13:02:46 +02:00
Grzegorz Bizon
01d159b409
Rename container image model to container repository
2017-03-23 14:00:41 +01:00
Grzegorz Bizon
4005eb6436
Fix communication between GitLab and Container Registry
2017-03-23 11:41:16 +01:00
Grzegorz Bizon
896b13b929
Refactor splitting container image full path
...
[ci skip]
2017-03-22 16:07:27 +01:00
Andre Guedes
c64d36306c
Makes ContainerImages Routable
...
Conflicts:
db/schema.rb
2017-03-21 14:43:49 +01:00
Grzegorz Bizon
c5912ecd73
Merge branch 'master' into feature/multi-level-container-registry-images
...
* master: (1327 commits)
Merge branch 'render-json-leak' into 'security'
Merge branch 'ssrf' into 'security'
Merge branch 'ssrf' into 'security'
Merge branch 'fix-links-target-blank' into 'security'
Merge branch '28058-hide-emails-in-atom-feeds' into 'security'
Fix karma test
Reset filters after click
Handle Route#name being nil after an update
Only add frontend code coverage instrumentation when generating coverage report
fix recompile assets step in 9.0 upgrade guide to use yarn
Undo explicit conversion to Integer
Make level_value accept string integers
Make feature spec more robust
Removed d3.js from the main application.js bundle
Extend compound status for manual actions specs
Update css to be nice and tidy.
Fix pipeline status for transition between stages
add an index to the ghost column
Return 404 in project issues API endpoint when project cannot be found
Improve rename projects migration
...
Conflicts:
doc/ci/docker/using_docker_build.md
spec/lib/gitlab/import_export/all_models.yml
2017-03-21 14:22:56 +01:00
Douwe Maan
b7d8df503c
Enable Style/MutableConstant
2017-02-23 09:31:56 -06:00
Andre Guedes
e4fa80f3b6
Fixes broken and missing tests
2017-02-22 11:30:11 -03:00
Andre Guedes
dcd4beb8eb
Multi-level container image names backend implementation
...
- Adds Registry events API endpoint
- Adds container_images_repository and container_images models
- Changes JWT authentication to allow multi-level scopes
- Adds services for container image maintenance
2017-02-22 11:29:06 -03:00
Adam Pahlevi
a0586dbc16
replace `find_with_namespace` with `find_by_full_path`
...
add complete changelog for !8949
2017-02-03 07:14:04 +07:00
Alejandro Rodriguez
32042ef56a
Merge branch 'unauthenticated-container-registry-access' into 'security'
...
Restore unauthenticated access to public container registries
Fixes https://gitlab.com/gitlab-org/gitlab-ce/issues/24284
See merge request !2025
Signed-off-by: Rémy Coutable <remy@rymai.me>
2016-11-09 12:28:29 +01:00
Douwe Maan
b0bf92140f
Merge branch 'fix-unathorized-cloning' into 'security'
...
Ensure external users are not able to clone disabled repositories.
Closes https://gitlab.com/gitlab-org/gitlab-ce/issues/23788
See merge request !2017
Signed-off-by: Rémy Coutable <remy@rymai.me>
2016-11-09 12:27:17 +01:00
Kamil Trzcinski
137a801615
Be nice to Docker Clients talking to JWT/auth
2016-09-27 16:59:05 +02:00
Kamil Trzcinski
cf6a35f09a
Improve JwtController implementation
2016-09-20 19:15:13 +02:00
Kamil Trzcinski
9d8afa222c
Improve code comments
2016-09-16 12:46:33 +02:00
Kamil Trzcinski
e941365f3b
Rename capabilities to authentication_abilities
2016-09-16 11:12:21 +02:00
Kamil Trzcinski
9d1ccd2ad3
Fix existing authorization specs
2016-09-15 13:49:11 +02:00
Kamil Trzcinski
6b381f3fdf
Use `build_read_container_image` and use `build_download_code`
2016-09-15 10:34:53 +02:00
Kamil Trzcinski
571226f166
Make result to return project and capabilities granted
2016-09-13 15:27:05 +02:00
Kamil Trzcinski
505dc808b3
Use a permissions of user to access all dependent projects from CI jobs (this also includes a container images, and in future LFS files)
2016-09-13 13:30:26 +02:00
Grzegorz Bizon
1cf164f14a
Fix private method visibility in container registry
2016-07-19 15:12:06 +02:00
Valery Sizov
3baed8cb6d
Services: code style fixes, minor refactoring
2016-07-06 20:58:43 +03:00
Kamil Trzcinski
7b0e2bbc80
Fix the use of CurrentSettings in ContainerRegistryAuthenticationService
2016-05-31 13:48:05 +02:00
Kamil Trzcinski
846d111f1d
Add Application Setting to configure Container Registry token expire delay (default 5min)
2016-05-31 13:23:13 +02:00
Kamil Trzcinski
7ec1fa212d
Make authentication service for Container Registry to be compatible with < Docker 1.11
2016-05-30 16:57:39 +02:00
Kamil Trzcinski
646018a40e
Fix the CI login to Container Registry (the gitlab-ci-token user)
2016-05-23 00:34:51 +02:00
Kamil Trzcinski
4474eab4f6
Fix container deletion permission issue
2016-05-20 18:43:11 -05:00
Kamil Trzcinski
23d1c45410
Fix 401 message
2016-05-16 17:12:45 -05:00
Kamil Trzcinski
938d5b6fe4
Fix http status codes for container registry authentication service
2016-05-15 10:46:54 -05:00
Kamil Trzcinski
3d18b3a0e7
Merge branch 'docker-registry' into docker-registry-view
2016-05-15 08:53:18 -05:00
Kamil Trzcinski
dfd0e2450a
Improve authentication service specs
2016-05-15 08:52:26 -05:00
Kamil Trzcinski
b575b2f1ef
Fix Container Service full access token
2016-05-15 08:47:48 -05:00
Kamil Trzcinski
f63b6fc297
Merge branch 'docker-registry' into docker-registry-view
2016-05-14 18:23:55 -05:00
Kamil Trzcinski
f4f9184a01
Rename JWT to JSONWebToken
2016-05-14 18:23:31 -05:00
Kamil Trzcinski
5c19476286
Merge branch 'docker-registry' into docker-registry-view
2016-05-14 14:28:08 -05:00
Kamil Trzcinski
715a8cfa2f
Fix authentication service
2016-05-14 14:27:56 -05:00
Kamil Trzcinski
9eeea4245b
Merge branch 'docker-registry' into docker-registry-view
2016-05-14 14:23:00 -05:00
Kamil Trzcinski
d40bd7419f
Fix authentication service
2016-05-14 14:22:45 -05:00
Kamil Trzcinski
654d5ad3f4
Merge branch 'docker-registry' into docker-registry-view
2016-05-14 11:15:33 -05:00
Kamil Trzcinski
63cdf1aeb0
Use Auth::ContainerRegistryAuthenticationService
2016-05-14 11:11:48 -05:00