Infrastructure/zot - SudoVanilla Ark

940 commits 11 branches 111 tags 210 MiB

Author SHA1 Message Date

Author	SHA1	Message	Date
Andreea Lupu	5a3fac40db	feat: upload cosign public key and notation certificates to cloud (#1744 ) - using secrets manager for storing public keys and certificates - adding a default truststore for notation verification and upload all certificates to this default truststore - removig `truststoreName` query param from notation api for uploading certificates (cherry picked from commit `eafcc1a213`) Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>	2023-09-08 10:03:58 +03:00
peusebiu	c6b822f3dd	refactor(authz): use a struct for user access control info operations (#1682 ) fix(authz): fix isAdmin not using groups to determine if a user is admin. fix(authz): return 401 instead of 403 403 is correct as per HTTP spec However authz is not part of dist-spec and clients know only about 401 So this is a compromise. Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>	2023-09-01 11:13:53 -07:00
LaurentiuNiculae	9e38ca51e3	feat(pagination): move pagination and sorting image summary results after conversion (#1637 ) fix(config): check for config media type when pushing to repodb Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>	2023-07-31 22:16:09 +03:00

Andreea Lupu

5a3fac40db

feat: upload cosign public key and notation certificates to cloud (#1744 )

- using secrets manager for storing public keys and certificates
- adding a default truststore for notation verification and upload all certificates to this default truststore
- removig `truststoreName` query param from notation api for uploading certificates


(cherry picked from commit eafcc1a213)

Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>

2023-09-08 10:03:58 +03:00

peusebiu

c6b822f3dd

refactor(authz): use a struct for user access control info operations (#1682 )

fix(authz): fix isAdmin not using groups to determine if a user is admin.
fix(authz): return 401 instead of 403

403 is correct as per HTTP spec
However authz is not part of dist-spec and clients know only about 401
So this is a compromise.

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>

2023-09-01 11:13:53 -07:00

LaurentiuNiculae

9e38ca51e3

feat(pagination): move pagination and sorting image summary results after conversion (#1637 )

fix(config): check for config media type when pushing to repodb

Signed-off-by: Laurentiu Niculae <niculae.laurentiu1@gmail.com>

2023-07-31 22:16:09 +03:00

Renamed from pkg/meta/dynamodb/dynamo_test.go (Browse further)

3 commits