mirror of
https://github.com/project-zot/zot.git
synced 2024-12-30 22:34:13 -05:00
5a3fac40db
- using secrets manager for storing public keys and certificates
- adding a default truststore for notation verification and upload all certificates to this default truststore
- removig `truststoreName` query param from notation api for uploading certificates
(cherry picked from commit eafcc1a213
)
Signed-off-by: Andreea-Lupu <andreealupu1470@yahoo.com>
139 lines
3.7 KiB
Go
139 lines
3.7 KiB
Go
package meta
|
|
|
|
import (
|
|
"github.com/aws/aws-sdk-go-v2/service/dynamodb"
|
|
"go.etcd.io/bbolt"
|
|
|
|
"zotregistry.io/zot/errors"
|
|
"zotregistry.io/zot/pkg/api/config"
|
|
"zotregistry.io/zot/pkg/log"
|
|
"zotregistry.io/zot/pkg/meta/boltdb"
|
|
mdynamodb "zotregistry.io/zot/pkg/meta/dynamodb"
|
|
mTypes "zotregistry.io/zot/pkg/meta/types"
|
|
)
|
|
|
|
func New(storageConfig config.StorageConfig, log log.Logger) (mTypes.MetaDB, error) {
|
|
if storageConfig.RemoteCache {
|
|
dynamoParams := getDynamoParams(storageConfig.CacheDriver, log)
|
|
|
|
client, err := mdynamodb.GetDynamoClient(dynamoParams)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return Create("dynamodb", client, dynamoParams, log) //nolint:contextcheck
|
|
}
|
|
|
|
params := boltdb.DBParameters{}
|
|
params.RootDir = storageConfig.RootDirectory
|
|
|
|
driver, err := boltdb.GetBoltDriver(params)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return Create("boltdb", driver, params, log) //nolint:contextcheck
|
|
}
|
|
|
|
func Create(dbtype string, dbDriver, parameters interface{}, log log.Logger, //nolint:contextcheck
|
|
) (mTypes.MetaDB, error,
|
|
) {
|
|
switch dbtype {
|
|
case "boltdb":
|
|
{
|
|
properDriver, ok := dbDriver.(*bbolt.DB)
|
|
if !ok {
|
|
panic("failed type assertion")
|
|
}
|
|
|
|
return boltdb.New(properDriver, log)
|
|
}
|
|
case "dynamodb":
|
|
{
|
|
properDriver, ok := dbDriver.(*dynamodb.Client)
|
|
if !ok {
|
|
panic("failed type assertion")
|
|
}
|
|
|
|
properParameters, ok := parameters.(mdynamodb.DBDriverParameters)
|
|
if !ok {
|
|
panic("failed type assertion")
|
|
}
|
|
|
|
return mdynamodb.New(properDriver, properParameters, log)
|
|
}
|
|
default:
|
|
{
|
|
return nil, errors.ErrBadConfig
|
|
}
|
|
}
|
|
}
|
|
|
|
func getDynamoParams(cacheDriverConfig map[string]interface{}, log log.Logger) mdynamodb.DBDriverParameters {
|
|
allParametersOk := true
|
|
|
|
endpoint, ok := toStringIfOk(cacheDriverConfig, "endpoint", log)
|
|
allParametersOk = allParametersOk && ok
|
|
|
|
region, ok := toStringIfOk(cacheDriverConfig, "region", log)
|
|
allParametersOk = allParametersOk && ok
|
|
|
|
repoMetaTablename, ok := toStringIfOk(cacheDriverConfig, "repometatablename", log)
|
|
allParametersOk = allParametersOk && ok
|
|
|
|
manifestDataTablename, ok := toStringIfOk(cacheDriverConfig, "manifestdatatablename", log)
|
|
allParametersOk = allParametersOk && ok
|
|
|
|
indexDataTablename, ok := toStringIfOk(cacheDriverConfig, "indexdatatablename", log)
|
|
allParametersOk = allParametersOk && ok
|
|
|
|
apiKeyTablename, ok := toStringIfOk(cacheDriverConfig, "apikeytablename", log)
|
|
allParametersOk = allParametersOk && ok
|
|
|
|
versionTablename, ok := toStringIfOk(cacheDriverConfig, "versiontablename", log)
|
|
allParametersOk = allParametersOk && ok
|
|
|
|
userDataTablename, ok := toStringIfOk(cacheDriverConfig, "userdatatablename", log)
|
|
allParametersOk = allParametersOk && ok
|
|
|
|
if !allParametersOk {
|
|
panic("dynamo parameters are not specified correctly, can't proceede")
|
|
}
|
|
|
|
return mdynamodb.DBDriverParameters{
|
|
Endpoint: endpoint,
|
|
Region: region,
|
|
RepoMetaTablename: repoMetaTablename,
|
|
ManifestDataTablename: manifestDataTablename,
|
|
IndexDataTablename: indexDataTablename,
|
|
UserDataTablename: userDataTablename,
|
|
APIKeyTablename: apiKeyTablename,
|
|
VersionTablename: versionTablename,
|
|
}
|
|
}
|
|
|
|
func toStringIfOk(cacheDriverConfig map[string]interface{}, param string, log log.Logger) (string, bool) {
|
|
val, ok := cacheDriverConfig[param]
|
|
|
|
if !ok {
|
|
log.Error().Str("field", param).Msg("parsing CacheDriver config failed, field is not present")
|
|
|
|
return "", false
|
|
}
|
|
|
|
str, ok := val.(string)
|
|
|
|
if !ok {
|
|
log.Error().Str("parameter", param).Msg("parsing CacheDriver config failed, parameter isn't a string")
|
|
|
|
return "", false
|
|
}
|
|
|
|
if str == "" {
|
|
log.Error().Str("field", param).Msg("parsing CacheDriver config failed, field is empty")
|
|
|
|
return "", false
|
|
}
|
|
|
|
return str, ok
|
|
}
|