upstream/harbor
1
0
Fork 0
mirror of https://github.com/goharbor/harbor synced 2025-04-04 20:27:27 +00:00
Code Issues Packages Projects Releases Wiki Activity
12,359 Commits 58 Branches 324 Tags 347 MiB
main
Commit Graph

12359 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Kostiantyn Yevchuk
9283e762b5
Bump golang.org/x/oauth2 from v0.25.0 to v0.27.0 (#21757) 
bump x/oauth2 to 0.27.0

Signed-off-by: Kostiantyn Yevchuk <kostiantyn.yevchuk@gmail.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
 2025-03-25 10:20:33 +00:00
Wang Yan
68fb789354
update robot log level (#21778) 
fix #21762

Signed-off-by: wang yan <wangyan@vmware.com>
 2025-03-25 07:14:53 +00:00
dependabot[bot]
9dcf96f8d0
chore(deps): bump github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 in /src (#21769) 
chore(deps): bump github.com/golang-jwt/jwt/v5 in /src

Bumps [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) from 5.2.1 to 5.2.2.
- [Release notes](https://github.com/golang-jwt/jwt/releases)
- [Changelog](https://github.com/golang-jwt/jwt/blob/main/VERSION_HISTORY.md)
- [Commits](https://github.com/golang-jwt/jwt/compare/v5.2.1...v5.2.2)

---
updated-dependencies:
- dependency-name: github.com/golang-jwt/jwt/v5
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-25 06:10:43 +00:00
Wang Yan
af4c123f5f
update oidc login log level (#21775) 
Signed-off-by: wang yan <wangyan@vmware.com>
 2025-03-25 04:01:04 +00:00
Ian Seyer
0a5ade8faa
Suppress aborthandler (#21479) 
* chore(deps): bump go.opentelemetry.io/otel from 1.31.0 to 1.32.0 in /src (#21162)

Bumps [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go) from 1.31.0 to 1.32.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.31.0...v1.32.0)

---
updated-dependencies:
- dependency-name: go.opentelemetry.io/otel
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: miner <yminer@vmware.com>
Signed-off-by: ianseyer <iseyer@cloudflare.com>

* Suppresses net.http/abortHandler panic

Signed-off-by: ianseyer <iseyer@cloudflare.com>

---------

Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: ianseyer <iseyer@cloudflare.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: miner <yminer@vmware.com>
Co-authored-by: ianseyer <iseyer@cloudflare.com>
Co-authored-by: Daniel Jiang <jiangd@vmware.com>
 2025-03-24 14:14:42 +00:00
Dee Kryvenko
87b9751d1c
Fix token service returning empty token on tls certificate issue without any error (#20081) 
Signed-off-by: Dee Kryvenko <dee@selfcloud.tech>
Co-authored-by: Wang Yan <wangyan@vmware.com>
Co-authored-by: Orlix <7236111+OrlinVasilev@users.noreply.github.com>
Co-authored-by: Vadim Bauer <vb@container-registry.com>
 2025-03-24 13:14:59 +00:00
dependabot[bot]
ca825df27f
chore(deps): bump helm.sh/helm/v3 from 3.17.0 to 3.17.2 in /src (#21745) 
Bumps [helm.sh/helm/v3](https://github.com/helm/helm) from 3.17.0 to 3.17.2.
- [Release notes](https://github.com/helm/helm/releases)
- [Commits](https://github.com/helm/helm/compare/v3.17.0...v3.17.2)

---
updated-dependencies:
- dependency-name: helm.sh/helm/v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Orlix <7236111+OrlinVasilev@users.noreply.github.com>
 2025-03-24 10:11:45 +00:00
dependabot[bot]
7d1726afd6
chore(deps): bump golang.org/x/net from 0.34.0 to 0.37.0 in /src (#21744) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.34.0 to 0.37.0.
- [Commits](https://github.com/golang/net/compare/v0.34.0...v0.37.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-24 11:33:40 +02:00
dependabot[bot]
3d21dd29f1
chore(deps): bump golang.org/x/net from 0.34.0 to 0.36.0 in /src (#21731) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.34.0 to 0.36.0.
- [Commits](https://github.com/golang/net/compare/v0.34.0...v0.36.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-03-24 06:59:45 +00:00
Zhaoxinxin
c806b7e787
fix: Remove top error message about no README or license (#21754) 
fix: Remove top error message about no README or license

Signed-off-by: zhaoxinxin <1186037180@qq.com>
 2025-03-24 13:56:46 +08:00
Wang Yan
b6c083d734
fix logout redirect (#21765) 
For the default redirection, to the sign page.

Signed-off-by: wang yan <wangyan@vmware.com>
 2025-03-21 11:10:32 +00:00
dependabot[bot]
bcfc1d8179
chore(deps): bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp from 0.57.0 to 0.60.0 in /src (#21716) 
chore(deps): bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp

Bumps [go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp](https://github.com/open-telemetry/opentelemetry-go-contrib) from 0.57.0 to 0.60.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go-contrib/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-telemetry/opentelemetry-go-contrib/compare/zpages/v0.57.0...zpages/v0.60.0)

---
updated-dependencies:
- dependency-name: go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
 2025-03-21 08:58:37 +00:00
Wang Yan
4f56f5d278
redirect to the sign-in page (#21764) 
If redirect to the root page, harbor UI will redirect to the OIDC login page automaticlly.

Signed-off-by: wang yan <wangyan@vmware.com>
 2025-03-21 16:20:50 +08:00
Chlins Zhang
b37da544d2
fix: limit the file size of the cnai model processor (#21759) 
Signed-off-by: chlins <chlins.zhang@gmail.com>
 2025-03-21 15:17:31 +08:00
dependabot[bot]
8081d52c09
chore(deps): bump github.com/volcengine/volcengine-go-sdk from 1.0.180 to 1.0.185 in /src (#21717) 
chore(deps): bump github.com/volcengine/volcengine-go-sdk in /src

Bumps [github.com/volcengine/volcengine-go-sdk](https://github.com/volcengine/volcengine-go-sdk) from 1.0.180 to 1.0.185.
- [Release notes](https://github.com/volcengine/volcengine-go-sdk/releases)
- [Commits](https://github.com/volcengine/volcengine-go-sdk/compare/v1.0.180...v1.0.185)

---
updated-dependencies:
- dependency-name: github.com/volcengine/volcengine-go-sdk
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: miner <yminer@vmware.com>
 2025-03-20 07:53:56 +00:00
Prasanth Baskar
747aac043d
Fix Password Validation in UI (#21697) 
fix(UI): password validation

Signed-off-by: bupd <bupdprasanth@gmail.com>
 2025-03-20 06:38:29 +00:00
dependabot[bot]
1102585cce
chore(deps): bump golang.org/x/time from 0.9.0 to 0.11.0 in /src (#21715) 
Bumps [golang.org/x/time](https://github.com/golang/time) from 0.9.0 to 0.11.0.
- [Commits](https://github.com/golang/time/compare/v0.9.0...v0.11.0)

---
updated-dependencies:
- dependency-name: golang.org/x/time
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
 2025-03-20 05:52:40 +00:00
Daniel Jiang
1277755ca5
Bump up trivy and trivy-adapter to the latest RC tag (#21741) 
Signed-off-by: Daniel Jiang <daniel.jiang@broadcom.com>
 2025-03-18 15:22:24 +00:00
Wang Yan
a16caa5ab7
update golang to v1.23.7 (#21749) 
Signed-off-by: wang yan <wangyan@vmware.com>
 2025-03-18 18:52:02 +08:00
Chris Girard
c2098f2ba3
fix: fix replication of multiple projects with numeric names (#21474) 
Explicitly mark project names as strings

This keeps the server from parsing all-numeric project names as integer
values which it does not like.

Signed-off-by: Chris Girard <cgirard@mirantis.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
 2025-03-18 17:06:35 +08:00
Zhaoxinxin
6b2e6ba20c
Feat: artifact adds AI Model type (#21691) 
feat: artifact adds model type

Signed-off-by: zhaoxinxin <1186037180@qq.com>
 2025-03-18 08:17:22 +00:00
Wang Yan
723d37e1be
fix i18n issue (#21748) 
Signed-off-by: wang yan <wangyan@vmware.com>
 2025-03-18 15:36:13 +08:00
Wang Yan
5960bc8fb2
oidclogout (#21718) 
* oidclogout

enable oidc session logout

1, give the option of logging out user session from OIDC provider.
2, try best to log out the user offline session if the offline_access in the scope.

Signed-off-by: wang yan <wangyan@vmware.com>
 2025-03-18 11:52:35 +08:00
Prasanth Baskar
816667c794
Fix: Copy Pull Button Overlap with Tag Immutable Label (#21720) 
fix: copy button overlap with tag immutable

- fix copy button overlap with tag immutable label on artifact-tag
component
- update css to fix this issue

Signed-off-by: bupd <bupdprasanth@gmail.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
 2025-03-17 10:15:23 +00:00
Prasanth Baskar
3407776e38
Add Lint Check for Copyright Headers in UI (#21692) 
add lint check for headers in UI

Signed-off-by: bupd <bupdprasanth@gmail.com>
 2025-03-14 12:39:18 +00:00
Prasanth Baskar
393db991dc
Replace Vmware to goharbor (#21696) 
replace vmware with goharbor in src/portal

Signed-off-by: bupd <bupdprasanth@gmail.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
 2025-03-14 19:34:57 +08:00
Prasanth Baskar
b5b1d45413
Add Missing Headers in UI part 3 (#21695) 
add missing headers in UI part 3

Signed-off-by: bupd <bupdprasanth@gmail.com>
 2025-03-14 10:16:54 +00:00
Prasanth Baskar
4f3aa2e437
Add Missing copyright headers in src/portal part 2 (#21694) 
add missing headers part 2

Signed-off-by: bupd <bupdprasanth@gmail.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
 2025-03-14 17:38:58 +08:00
Prasanth Baskar
f0c1e8f4b3
Add Missing copyright headers in src/portal (#21693) 
add missing copyright headers to files in UI

Signed-off-by: bupd <bupdprasanth@gmail.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
 2025-03-14 15:30:37 +08:00
Wang Yan
6dd75c7b57
consume the downstream distribution (#21733) 
Signed-off-by: wang yan <wangyan@vmware.com>
 2025-03-13 16:00:31 +08:00
Wang Yan
e8a045ff1f
fix issue 20828 (#21726) 
* fix issue 20828

fix #20828

Does not fire event only when the current project is a proxy-cache project and the artifact already exists.

Signed-off-by: wang yan <wangyan@vmware.com>
 2025-03-13 14:16:46 +08:00
Chlins Zhang
d9e71f9dfc
feat: implement the CNAI model processor (#21663) 
feat: implement the AI model processor

Signed-off-by: chlins <chlins.zhang@gmail.com>
 2025-03-13 02:04:45 +00:00
stonezdj(Daojun Zhang)
20658181ad
Change audit log label (#21703) 
Add more description for update user operation change password or set sys admin

Signed-off-by: stonezdj <stone.zhang@broadcom.com>
 2025-03-12 05:56:38 +00:00
Prasanth Baskar
caaad52798
Update UI version in package.json to v2.13.0 (#21606) 
update version to 2.13.0

Signed-off-by: bupd <bupdprasanth@gmail.com>
Co-authored-by: miner <yminer@vmware.com>
 2025-03-11 09:15:21 +00:00
miner
229a27ff41
add prepare migration script for 2.13.0 (#21680) 
Signed-off-by: yminer <miner.yang@broadcom.com>
 2025-03-11 07:48:22 +00:00
miner
3b8c18fd26
update tlsOptions for external redis (#21681) 
Signed-off-by: yminer <miner.yang@broadcom.com>
Co-authored-by: yminer <miner.yang@broadcom.com>
 2025-03-10 11:45:18 +00:00
Daniel Jiang
e40db21681
Add PKCE support for OIDC authentication (#21702) 
Fixes #19393

By default Harbor will generate a pkce code and use it in the
authentication flow to interact with OIDC provider.
Per OAuth spec, this should not break the flow for the OIDC provider that does not support PKCE
The code_challenge_method is hard coded to SHA256 for security reason,
and we may consider add more settings in future based on feedbacks.

Signed-off-by: Daniel Jiang <daniel.jiang@broadcom.com>
 2025-03-10 16:41:14 +08:00
miner
fef95244fc
remove redis sentinel patch from builder (#21679) 
Signed-off-by: yminer <miner.yang@broadcom.com>
Co-authored-by: yminer <miner.yang@broadcom.com>
Co-authored-by: Wang Yan <wangyan@vmware.com>
 2025-03-04 15:19:05 +08:00
Prasanth Baskar
8419bb6beb
Revamp Copy Pull Command (#21155) 
* update copy pull command in artifact tags page

* This commit moves "Copy Pull Command" button inside the table
* and add a separate column for better usability

Signed-off-by: bupd <bupdprasanth@gmail.com>

* add user preferences component

* This Commit adds Preferences in navbar
* Updates the navbar

Signed-off-by: bupd <bupdprasanth@gmail.com>

* add container runtime to preference settings

Signed-off-by: bupd <bupdprasanth@gmail.com>

* fix: lint & rebase

Signed-off-by: bupd <bupdprasanth@gmail.com>

* update pull cmd for tag

Signed-off-by: bupd <bupdprasanth@gmail.com>

* update copy pull command for digest

Signed-off-by: bupd <bupdprasanth@gmail.com>

* fix tests

Signed-off-by: bupd <bupdprasanth@gmail.com>

* add toast message on copy pull command

Signed-off-by: bupd <bupdprasanth@gmail.com>

* add top copy button

Signed-off-by: bupd <bupdprasanth@gmail.com>

* add test for preference settings component

Signed-off-by: bupd <bupdprasanth@gmail.com>

* fix lint

Signed-off-by: bupd <bupdprasanth@gmail.com>

* update comments and nits

Signed-off-by: bupd <bupdprasanth@gmail.com>

* update pull cmd prefix name

* Updates title of preference settings
* Updates container runtime to pull cmd prefix

Signed-off-by: bupd <bupdprasanth@gmail.com>

* extend copy pull command with custom prefix

* This commit adds custom as dropdown option
* add custom_runtime localstorage variable for the pull prefix
* fix artifact list tab styles
* align copy icon in artifact tag list tab

Signed-off-by: bupd <bupdprasanth@gmail.com>

* minor fix

* allow only lowercase alphabets

Signed-off-by: bupd <bupdprasanth@gmail.com>

* remove unused copy pull command in i18n

* removes unused in copy_pull_command in i18n in all languages

Signed-off-by: bupd <bupdprasanth@gmail.com>

* remove commented line

Signed-off-by: Prasanth Baskar <bupdprasanth@gmail.com>

* fix es-es-lang

Signed-off-by: bupd <bupdprasanth@gmail.com>

---------

Signed-off-by: bupd <bupdprasanth@gmail.com>
Signed-off-by: Prasanth Baskar <bupdprasanth@gmail.com>
Co-authored-by: Vadim Bauer <vb@container-registry.com>
 2025-03-03 13:50:05 +01:00
stonezdj(Daojun Zhang)
b9528d8deb
Adjust the audit_log_ext column size to keep align with audit_log table (#21678) 
Signed-off-by: stonezdj <stone.zhang@broadcom.com>
 2025-02-27 10:17:04 +00:00
miner
5c39e76ac4
prepare redis tls config (#21667) 
add prepare for redis tls config

Signed-off-by: yminer <miner.yang@broadcom.com>
 2025-02-27 17:38:08 +08:00
miner
351783aebe
remove version info for anonymous users (#21672) 
Signed-off-by: yminer <miner.yang@broadcom.com>
Co-authored-by: yminer <miner.yang@broadcom.com>
 2025-02-26 17:17:49 +08:00
miner
9e84d03720
add redis tls support for core&jobservice (#21654) 
Signed-off-by: yminer <miner.yang@broadcom.com>
 2025-02-25 07:09:36 +00:00
stonezdj(Daojun Zhang)
4cd06777c0
Fix issue with user create/delete/update event (#21651) 
Signed-off-by: stonezdj <stone.zhang@broadcom.com>
 2025-02-25 03:42:48 +00:00
stonezdj(Daojun Zhang)
e5e131845e
Add OIDC login event (#21650) 
Signed-off-by: stonezdj <stone.zhang@broadcom.com>
 2025-02-21 10:18:51 +00:00
Lichao Xue
b837bbb716
support to audit logs (#21377) 
Signed-off-by: Lichao Xue <lichao.xue@broadcom.com>
Co-authored-by: Lichao Xue <lichao.xue@broadcom.com>
 2025-02-21 13:44:48 +08:00
stonezdj(Daojun Zhang)
45659070b7
Update purge audit to purge both audit_log_ext and audit_log (#21608) 
Fix integration issue with UI

Signed-off-by: stonezdj <stone.zhang@broadcom.com>
 2025-02-18 09:45:46 +00:00
dependabot[bot]
add0b600e1
chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.31.0 to 1.34.0 in /src (#21465) 
chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp

Bumps [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp](https://github.com/open-telemetry/opentelemetry-go) from 1.31.0 to 1.34.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.31.0...v1.34.0)

---
updated-dependencies:
- dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-02-16 09:07:52 +00:00
dependabot[bot]
42f86f8c4e
chore(deps): bump helm.sh/helm/v3 from 3.16.2 to 3.17.0 in /src (#21468) 
Bumps [helm.sh/helm/v3](https://github.com/helm/helm) from 3.16.2 to 3.17.0.
- [Release notes](https://github.com/helm/helm/releases)
- [Commits](https://github.com/helm/helm/compare/v3.16.2...v3.17.0)

---
updated-dependencies:
- dependency-name: helm.sh/helm/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: miner <yminer@vmware.com>
 2025-02-14 17:52:39 +08:00
dependabot[bot]
db017f0dae
chore(deps): bump github.com/volcengine/volcengine-go-sdk from 1.0.177 to 1.0.180 in /src (#21613) 
chore(deps): bump github.com/volcengine/volcengine-go-sdk in /src

Bumps [github.com/volcengine/volcengine-go-sdk](https://github.com/volcengine/volcengine-go-sdk) from 1.0.177 to 1.0.180.
- [Release notes](https://github.com/volcengine/volcengine-go-sdk/releases)
- [Commits](https://github.com/volcengine/volcengine-go-sdk/compare/v1.0.177...v1.0.180)

---
updated-dependencies:
- dependency-name: github.com/volcengine/volcengine-go-sdk
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: miner <yminer@vmware.com>
 2025-02-14 07:44:25 +00:00