github/zot
1
0
Fork 0
mirror of https://github.com/project-zot/zot.git synced 2026-06-18 13:37:57 +08:00
Code Issues Packages Projects Releases Wiki Activity
1,372 Commits 38 Branches 132 Tags
029f6f0a292bcaf2fc4029a2c22435f7e499bcc7
T
Clone
Open with VS Code Open with VSCodium
Download ZIP Download TAR.GZ Download BUNDLE
Andrei Aaron 029f6f0a29 fix: configure cookie Secure flag based on TLS configuration (#3482) 
Make the Secure flag for session cookies configurable based on Zot's
TLS settings. This allows cookies to work properly when Zot is
accessed over HTTP (without TLS).

Changes:
- Add SecureSession field to AuthConfig to allow explicit control
- Add UseSecureSession() method that returns true when TLS is
  configured, or uses SecureSession setting if provided
- Update saveUserLoggedSession() to accept and use secure parameter
- Add tests for UseSecureSession() in config_test.go
- Enhance authn tests to verify cookie Secure flag behavior
- Fix TestAuthnSessionErrors by creating new client without cookies

The logic is:
- If TLS is configured, cookies always have Secure=true
- If TLS is not configured but SecureSession is explicitly set,
  use that value
- Otherwise, default to Secure=false for HTTP-only deployments

Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com>
2025-10-27 17:21:21 +02:00
.github
chore: fix dependabot alerts (#3477)
2025-10-22 09:46:03 +03:00
.zap
feat(ui): update zui version (#2162)
2024-01-17 17:22:33 +02:00
build
feat(freebsd): add support native freebsd container images (#3256)
2025-08-03 08:58:30 -07:00
cmd
fix: migrate to Go module v2 for proper semantic versioning (#3462)
2025-10-16 22:43:47 -07:00
demos
feat(sync): use regclient for sync extension (#2903)
2025-04-15 16:58:15 -07:00
docs
swagger: rename 'docs/' to 'swagger/'
2021-10-21 13:46:14 -07:00
errors
fix: parse public key as fallback for certificate for bearer authentication (#3180)
2025-06-04 08:53:44 +03:00
examples
feat(sessions): add support for remote redis session store (#3345)
2025-10-05 10:13:38 +03:00
pkg
fix: configure cookie Secure flag based on TLS configuration (#3482)
2025-10-27 17:21:21 +02:00
scripts
feat(events): add events extension (#3045)
2025-05-02 12:30:06 -07:00
swagger
fix: migrate to Go module v2 for proper semantic versioning (#3462)
2025-10-16 22:43:47 -07:00
test
fix: minor fixes based on intermittent test failures (#3465)
2025-10-19 17:59:32 -07:00
.gitattributes
build(deps): bump all dependencies (#2532)
2024-08-02 14:23:53 -07:00
.gitignore
fix: migrate from github.com/rs/zerolog to golang-native log/slog (#3405)
2025-10-03 12:34:03 -07:00
CODE_OF_CONDUCT.md
doc: add a CODE_OF_CONDUCT.md
2020-12-15 11:20:45 -08:00
codecov.yml
refactor(metadb): improve UX by speeding up metadb serialize/deserialize (#1842)
2023-10-30 13:06:04 -07:00
CODEOWNERS
add a CODEOWNERS file
2022-05-04 11:52:28 -07:00
COMPARISON.md
move references to zotregistry.io and project-zot
2021-12-05 10:52:27 -08:00
CONTRIBUTING.md
build: fix container image targets (#1856)
2023-10-04 09:12:56 -07:00
go.mod
chore: fix dependabot alerts (#3477)
2025-10-22 09:46:03 +03:00
go.sum
chore: fix dependabot alerts (#3477)
2025-10-22 09:46:03 +03:00
golangcilint.yaml
fix: migrate to Go module v2 for proper semantic versioning (#3462)
2025-10-16 22:43:47 -07:00
LICENSE
fix: license copyright update (#3167)
2025-05-25 11:57:49 +03:00
MAINTAINERS.md
docs: fix CNCF related documentation (#1099)
2023-01-10 15:52:11 -08:00
Makefile
fix: zot version broken after switching to /v2 (#3479)
2025-10-22 10:25:47 -07:00
NOTICE
docs: fix copyright related info for cncf onboarding (#1117)
2023-01-17 15:43:45 -08:00
README_fuzz.md
Add fuzz tests for storage_fs (#601)
2022-07-27 20:37:55 +03:00
README.md
fix: migrate to Go module v2 for proper semantic versioning (#3462)
2025-10-16 22:43:47 -07:00
SECURITY.md
chore: update support matrix
2024-03-14 09:43:42 -07:00
THIRD-PARTY-LICENSES.md
chore: fix dependabot alerts (#2645)
2024-09-09 18:32:57 -07:00
tools.go
chore(trivy): update trivy version and enforce OCI compliant repo names in local image storage (#1068)
2023-01-18 08:24:44 -08:00
zot.go
zot: initial commit
2019-06-21 15:29:19 -07:00

README.md

zot

build test nightly jobs codecov conformance CodeQL CII Best Practices OpenSSF Scorecard Go Reference FOSSA Status

zot: a production-ready vendor-neutral OCI image registry - images stored in OCI image format, distribution specification on-the-wire, that's it!

Documentation for zot is located at: https://zotregistry.dev

Code of conduct details are here.

License

FOSSA Status

Reference in New Issue View Git Blame Copy Permalink
S
Description
No description provided
distribution-spechelmkubernetesocioci-distributionopencontainerszot
Readme Apache-2.0 867 MiB
Languages
Go 93.6%
Shell 5.8%
Makefile 0.4%