centersl/docker-docs
1
0
Fork 0
mirror of https://github.com/docker/docs.git synced 2026-04-05 18:58:55 +07:00
Code Issues Packages Projects Releases Wiki Activity
1,338 Commits 56 Branches 28 Tags
e77db8a308dd94b9ef90303e2ee8f39c19c3b566
Commit Graph

177 Commits

Author SHA1 Message Date
Jessica Frazelle
a64db12c04 change url from jfrazelle/go to docker/go 
Signed-off-by: Jessica Frazelle <acidburn@docker.com>
 2016-01-26 08:43:38 -08:00
David Lawrence
d38d7ceb89 moving checksum after role in urls. We're breaking with spec for an easier to manage filename system 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2016-01-24 10:38:55 -08:00
David Lawrence
adfbe6938e cleaning up logging 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2016-01-24 10:38:55 -08:00
David Lawrence
27961b010e negative tests for get by checksum 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2016-01-24 10:38:55 -08:00
David Lawrence
4738760794 get by checksum 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2016-01-24 10:38:55 -08:00
David Lawrence
6f7acb6ddf adding server logic for clients to request consistent TUF files 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2016-01-24 10:38:55 -08:00
Ying Li
200fefbff8 EmptyRepo needs to take a GUN in order to generate a valid cert. 
Signed-off-by: Ying Li <ying.li@docker.com>
 2016-01-18 10:46:06 -08:00
Ying Li
0bbf979cf4 Change testutils.EmptyRepo() to use a cert as the root.json root key. 
This involves making it use ECDSA keys since we can't generate ED25519 certs.

Signed-off-by: Ying Li <ying.li@docker.com>
 2016-01-15 19:11:17 -08:00
Riyaz Faizullabhoy
8d0ff6c996 Pass original invalid version storage error details into standardized errors 
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
 2016-01-14 09:57:36 -08:00
Diogo Mónica
e8e4155005 Merge pull request #438 from endophage/db_sha256_column 
adding sha256 column to tuf_files database table
 2016-01-13 15:48:29 -08:00
HuKeping
5968823ace Log: improve error logging 
When pushing an image to Distribution server with Notary enabled at the
first time, client will try to get the root.json and it will fail since
there is nothing in Notary yet.

This patch enhances the error message by adding the error detail.
- "404 GET notary-distribution:5678/busybox:root"

Signed-off-by: Hu Keping <hukeping@huawei.com>
 2016-01-13 10:33:14 +08:00
David Lawrence
5a9e06fe5c adding sha256 column to tuf_files database table 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2016-01-11 17:31:01 -08:00
Ying Li
cf4b77b760 Revert "switching out to consistently use canonical json for all marshalling of TUF data" 
This reverts commit f417c834c4.

Signed-off-by: Ying Li <ying.li@docker.com>
 2016-01-08 14:53:09 -08:00
David Lawrence
11795a4573 rename data.ValidRoles to data.BaseRoles 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2016-01-07 17:38:52 -08:00
David Lawrence
d52dbde683 removing the ability to configure role names. It adds a lot of complexity without adding much value. If somebody wants custom role names they can implement it at the display level 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2016-01-07 17:38:05 -08:00
David Lawrence
f417c834c4 switching out to consistently use canonical json for all marshalling of TUF data 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2016-01-06 11:15:27 -08:00
Riyaz Faizullabhoy
dbb8c1065f use path instead of filepath to express TUF roles 
Signed-off-by: Riyaz Faizullabhoy <riyaz.faizullabhoy@docker.com>
 2016-01-04 16:23:02 -08:00
David Lawrence
e516dd88f2 cleaning up tests by converting t.Fatal to assert.___ 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-23 09:41:03 -08:00
Ying Li
2900423fa2 Minor error message changes 
Signed-off-by: Ying Li <ying.li@docker.com>
 2015-12-22 16:29:28 -08:00
Ying Li
7592a029ef Do not create the delegation metadata when the delegation is created. 
Only create it when a target is added to it, or other delegations
are added to it, or when getting a child delegation.

Signed-off-by: Ying Li <ying.li@docker.com>
 2015-12-18 16:37:24 -08:00
David Lawrence
d3a54cab25 the empty string should be used in delegation Paths to indicate a role can sign anything 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-18 16:10:43 -08:00
David Lawrence
f72f799806 fixing up ListTargets and GetTargetByName to process prioritized roles more efficiently 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-17 14:56:05 -08:00
David Lawrence
4a9ebb8bc8 adding test for ListTargets with delegation 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-17 10:09:34 -08:00
David Lawrence
e0dd8c82bf removing TODO for delegated roles on server 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-16 22:00:58 -08:00
David Lawrence
ad0582ae9c test that a child role gets removed from the update if it doesn't exist in the parent 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-16 19:27:04 -08:00
David Lawrence
a27e4f7471 moving comment about sorting for clarity 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-16 16:44:12 -08:00
David Lawrence
38d2175087 tests for new validation code 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-16 15:06:48 -08:00
David Lawrence
63ecf5f92f server side delegations support in validation and snapshot generation 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-16 15:06:05 -08:00
David Lawrence
8bca542c17 restructuring validateUpdate to get rid of prepRepo 
removing attempt in server/snapshot/snapshot.go to regenerate
metadata for roles in snapshot.

Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-11 16:20:20 -08:00
David Lawrence
03aa3509bd fixing bugs raised by @mtrmac 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-11 15:06:24 -08:00
Diogo Mónica
ec78a03045 Merge pull request #356 from HuKeping/refactor-mainhandler 
Refactor a little to reduce indentation
 2015-12-11 11:46:26 -08:00
Miloslav Trmač
da7c87f9dc Fix (make vet) 
server/handlers/default_test.go:353: GetCurrent passes Lock by value: handlers.failStore contains github.com/docker/notary/server/storage.MemStorage contains sync.Mutex
tuf/store/httpstore_test.go:208: github.com/docker/notary/tuf/validation.ErrBadRoot composite literal uses unkeyed fields

Signed-off-by: Miloslav Trmač <mitr@redhat.com>
 2015-12-11 19:59:16 +01:00
HuKeping
b78823e5c3 Refactor a little to reduce indentation 
Signed-off-by: Hu Keping <hukeping@huawei.com>
 2015-12-11 15:48:09 +08:00
Ying Li
6aa114a49f Fix all instances where 'propagate' was mispelled as 'propogate' 
Signed-off-by: Ying Li <ying.li@docker.com>
 2015-12-10 15:12:05 -08:00
Ying Li
20f5b5f3b2 Ensure that the server produces errors the client can parse. 
Signed-off-by: Ying Li <ying.li@docker.com>
 2015-12-09 16:48:09 -08:00
Ying Li
fb9afbc5d8 Server propogates validation failures in the 400 response. 
Previously, it just said that the update was invalid, but not why.

Signed-off-by: Ying Li <ying.li@docker.com>
 2015-12-09 15:10:17 -08:00
Ying Li
3aa13e6645 Move validation errors to tuf, since that is the expected server interface. 
Also make the validation errors serializable as JSON.

Signed-off-by: Ying Li <ying.li@docker.com>
 2015-12-09 14:04:44 -08:00
Ying Li
4208945fc1 Move the notary errors HTTP errors into the server package. 
Signed-off-by: Ying Li <ying.li@docker.com>
 2015-12-09 11:22:49 -08:00
Ying Li
45c740b6b8 Add an invalid update error to the server errors. 
This would represent a validation error on the updates, as opposed to
a malformed upload error.

Signed-off-by: Ying Li <ying.li@docker.com>
 2015-12-09 11:16:35 -08:00
Ying Li
d59ae2d90f Add the handler for GET-ting a snapshot key. 
Signed-off-by: Ying Li <ying.li@docker.com>
 2015-12-07 15:13:58 -08:00
David Lawrence
eb75898c43 fix roleExpired varname, it shadowed a func name 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-07 14:44:11 -08:00
David Lawrence
fb76bca9f0 adding comment to snapshot key insert race condition test per @cyli's request 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-07 12:55:09 -08:00
David Lawrence
09a6fa07a1 some tests for the handlers 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-07 12:55:09 -08:00
David Lawrence
91c9b61edb update GetHandler to use new snapshot code 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-07 12:55:09 -08:00
David Lawrence
844c1872c4 adding tests for server/snapshot/snapshot.go 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-07 12:55:09 -08:00
David Lawrence
b0c7ef5b88 addressing @cyli's comments 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-07 12:55:09 -08:00
David Lawrence
cae5940c70 generate snapshots server side 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-07 12:55:09 -08:00
David Lawrence
064e37560e adding tests for role based key support on server 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-03 13:58:25 -08:00
David Lawrence
e20773f2b1 renaming TimestampKey and ErrTimestampKeyExists to just Key and ErrKeyExists 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-03 11:25:45 -08:00
David Lawrence
c2c474b9c6 generalize notary server key storage to be able to handle any role, not just timestamps 
Signed-off-by: David Lawrence <david.lawrence@docker.com> (github: endophage)
 2015-12-03 11:25:45 -08:00