zot/pkg/extensions at 4fcd1079f704c845fd6c8876c5ab9e977286da86 - zot

github/zot

mirror of https://github.com/project-zot/zot.git synced 2026-06-17 21:17:58 +08:00

Files

T

Andrei Aaron 05823cd74f redis driver for blob cache information and metadb (#2865 )

* feat: add redis cache support

https://github.com/project-zot/zot/pull/2005
Fixes https://github.com/project-zot/zot/issues/2004

* feat: add redis cache support

Currently, we have dynamoDB as the remote shared cache but ideal only
for the cloud use case.
For on-prem use case, add support for redis.

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>

* feat(redis): added blackbox tests for redis

Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>

* feat(redis): dummy implementation of MetaDB interface for redis cache

Signed-off-by: Alexei Dodon <adodon@cisco.com>

* feat: check validity of driver configuration on metadb instantiation

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>

* feat: multiple fixes for redis cache driver implementation

- add missing method GetAllBlobs
- add redis cache tests, with and without mocking

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>

* feat(redis): redis implementation for MetaDB

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>

* feat(redis): use redsync to block concurrent write access to the redis DB

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>

* feat(redis): update .github/workflows/cluster.yaml to also test redis

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>

* feat(metadb): add keyPrefix parameter for redis and remove unneeded method meta.Crate()

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>

* feat(redis): support RedisCluster configuration and add unit tests

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>

* feat(redis): more tests for redis metadb implementation

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>

* feat(redis): add more examples and update examples/README.md

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>

* feat(redis): move option parsing and redis client initialization under pkg/api/config/redis

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>

* chore(cachedb): move Cache interface to pkg/storage/types

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>

* feat(redis): reorganize code in pkg/storage/cache.go

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>

* feat(redis): call redis.SetLogger() with the zot logger as parameter

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>

* feat(redis): rename pkg/meta/redisdb to pkg/meta/redis

Signed-off-by: Andrei Aaron <aaaron@luxoft.com>

---------

Signed-off-by: Ramkumar Chinchani <rchincha@cisco.com>
Signed-off-by: Petu Eusebiu <peusebiu@cisco.com>
Signed-off-by: Alexei Dodon <adodon@cisco.com>
Signed-off-by: Andrei Aaron <aaaron@luxoft.com>
Co-authored-by: a <a@tuxpa.in>
Co-authored-by: Ramkumar Chinchani <rchincha@cisco.com>
Co-authored-by: Petu Eusebiu <peusebiu@cisco.com>
Co-authored-by: Alexei Dodon <adodon@cisco.com>

2025-01-30 11:00:52 -08:00

config

feat(sync): add tag excludeRegex filter (#2906 )

2025-01-26 10:29:02 -08:00

imagetrust

redis driver for blob cache information and metadb (#2865 )

2025-01-30 11:00:52 -08:00

lint

feat: add support for docker images (#2714 )

2024-10-31 09:44:04 +02:00

monitoring

ci(deps): upgrade golangci-lint (#2556 )

2024-07-29 10:32:51 -07:00

scrub

feat: add support for docker images (#2714 )

2024-10-31 09:44:04 +02:00

redis driver for blob cache information and metadb (#2865 )

2025-01-30 11:00:52 -08:00

sync

fix(sync): fixed harbor authentication issues on _catalog endpoint (#2891 )

2025-01-30 09:40:24 -08:00

_zot.md

refactor(extensions)!: refactor the extensions URLs and errors (#1636 )

2023-08-02 21:58:34 +03:00

extension_image_trust_disabled_test.go

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187 )

2024-01-31 20:34:07 -08:00

extension_image_trust_disabled.go

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187 )

2024-01-31 20:34:07 -08:00

extension_image_trust_test.go

redis driver for blob cache information and metadb (#2865 )

2025-01-30 11:00:52 -08:00

extension_image_trust.go

redis driver for blob cache information and metadb (#2865 )

2025-01-30 11:00:52 -08:00

extension_metrics_disabled.go

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187 )

2024-01-31 20:34:07 -08:00

extension_metrics.go

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187 )

2024-01-31 20:34:07 -08:00

extension_mgmt_disabled.go

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187 )

2024-01-31 20:34:07 -08:00

extension_mgmt.go

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187 )

2024-01-31 20:34:07 -08:00

extension_scrub_disabled.go

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187 )

2024-01-31 20:34:07 -08:00

extension_scrub.go

ci(deps): upgrade golangci-lint (#2556 )

2024-07-29 10:32:51 -07:00

extension_search_disabled.go

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187 )

2024-01-31 20:34:07 -08:00

extension_search.go

chore: update ui version (#2827 )

2024-12-14 11:58:04 -08:00

extension_sync_disabled.go

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187 )

2024-01-31 20:34:07 -08:00

extension_sync.go

feat(sync): support for periodic repo sync in scale-out cluster (#2424 )

2024-05-31 09:25:34 -07:00

extension_ui_disabled.go

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187 )

2024-01-31 20:34:07 -08:00

extension_ui_test.go

ci(deps): upgrade golangci-lint (#2556 )

2024-07-29 10:32:51 -07:00

extension_ui.go

fix(headers): set Cross-Origin-Resource-Policy header for UI requests (#2883 )

2025-01-17 10:50:58 +02:00

extension_userprefs_disable.go

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187 )

2024-01-31 20:34:07 -08:00

extension_userprefs_test.go

ci(deps): upgrade golangci-lint (#2556 )

2024-07-29 10:32:51 -07:00

extension_userprefs.go

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187 )

2024-01-31 20:34:07 -08:00

extensions_lint_disabled.go

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187 )

2024-01-31 20:34:07 -08:00

extensions_lint.go

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187 )

2024-01-31 20:34:07 -08:00

extensions_test.go

ci(deps): upgrade golangci-lint (#2556 )

2024-07-29 10:32:51 -07:00

get_extensions_disabled_test.go

ci(deps): upgrade golangci-lint (#2556 )

2024-07-29 10:32:51 -07:00

get_extensions.go

refactor: rename go module from zotregistry.io/zot to zotregistry.dev/zot (#2187 )

2024-01-31 20:34:07 -08:00

README_imagetrust.md

feat: upload cosign public key and notation certificates to cloud (#1744 )

2023-09-08 10:03:58 +03:00

README_mgmt.md

chore: update image-spec and dist spec to 1.1.0 (#2255 )

2024-02-20 13:27:21 +02:00

README_userprefs.md

refactor(extensions)!: refactor the extensions URLs and errors (#1636 )

2023-08-02 21:58:34 +03:00

README.md

fix: metrics should be protected behind authZ (#1895 )

2023-10-20 10:33:26 +03:00

README.md

Adding new extensions

As new requirements come and build time extensions need to be added, there are a few things that you have to make sure are present before commiting :

files that should be included in the binary only with a specific extension must contain the following syntax at the beginning of the file :

//go:build sync will be added automatically by the linter, so only the second line is mandatory .

NOTE: the third line in the example should be blank, otherwise the build tag would be just another comment.

//go:build sync
// +build sync

package extensions
...................

when adding a new tag, specify the new order in which multiple tags should be used (bottom of this page)
for each and every new file that contains functions (functionalities) specific to an extension, one should create a corresponding file that must contain the exact same functions, but no functionalities included. This file must begin with an "anti-tag" (e.g. // +build !sync) which will include this file in binaries that don't include this extension ( in this example, the file won't be used in binaries that include sync extension ). See extension-sync-disabled.go for an example.
each extension is responsible with implementing authorization for newly added HTTP endpoints. zot will provide the necessary data, including user permissions, to the extension, but actual enforcement of these permissions is the responsibility of each extension. Each extension http.Handler has access to a context previously populated by BaseAuthzHandler with relevant user info. That info has the following structure:
```
type AccessControlContext struct {
  // read method action
  ReadGlobPatterns map[string]bool
  // detectManifestCollision behaviour action
  DmcGlobPatterns map[string]bool
  IsAdmin         bool
  Username        string
  Groups          []string
  }
```
This data can then be accessed from the request context so that every extension can apply its own authorization logic, if needed .
when a new extension comes out, the developer should also write some blackbox tests, where a binary that contains the new extension should be tested in a real usage scenario. See test/blackbox folder for multiple extensions examples.
newly added blackbox tests should have targets in Makefile. You should also add them as Github Workflows, in .github/workflows/ecosystem-tools.yaml
with every new extension, you should modify the EXTENSIONS variable in Makefile by adding the new extension. The EXTENSIONS variable represents all extensions and is used in Make targets that require them all (e.g make test).
the available extensions that can be used at the moment are: sync, search, scrub, metrics, lint, ui, mgmt, userprefs, imagetrust . NOTE: When multiple extensions are used, they should be listed in the above presented order.