github/zot
1
0
Fork 0
mirror of https://github.com/project-zot/zot.git synced 2026-06-17 12:58:02 +08:00
Code Issues Packages Projects Releases Wiki Activity
1,504 Commits 38 Branches 132 Tags
7ceb01dcffe0f82467776fcb78abc3df5450a101
T
Clone
Open with VS Code Open with VSCodium
Download ZIP Download TAR.GZ Download BUNDLE
Andrei Aaron 7ceb01dcff fix(auth): add workaround for Docker client auth with mixed anonymous policies (#3868) 
* fix(auth): add workaround for Docker client auth with mixed anonymous policies

Docker client fails to authenticate to protected repositories when basic auth
(htpasswd/LDAP) is used with mixed access policies (some repos anonymous,
some requiring auth). This happens because Docker determines whether to send
credentials based on the /v2/ response - if it returns 200, Docker assumes
no auth is needed anywhere.

Add `forceDockerClientAuth` config option that, when enabled, forces 401 on
/v2/ for Docker clients, triggering Docker's authentication flow.

This workaround only affects Docker clients (detected via User-Agent).
Podman and other OCI-compliant clients are unaffected.

Refs: https://github.com/opencontainers/wg-auth/blob/main/docs/implementations/moby.md

Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com>

* feat: remove ForceDockerClientAuth flag and use only authz policies to determine the docker specific behavior

Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com>

---------

Signed-off-by: Andrei Aaron <andreifdaaron@gmail.com>
2026-04-17 09:10:02 +03:00
.github
fix(ci): pass GITHUB_TOKEN explicitly to oras login in sync-trivy step (#3961)
2026-04-12 11:17:41 +03:00
.zap
feat(ui): update zui version (#2162)
2024-01-17 17:22:33 +02:00
build
fix(build): upgrade zot runtime base image to distroless debian13 (#3791)
2026-02-12 13:22:55 +02:00
cmd
feat(zb): list tests, test regex filter, docs update (#3884)
2026-03-21 11:43:17 +02:00
demos
feat(sync): use regclient for sync extension (#2903)
2025-04-15 16:58:15 -07:00
docs
swagger: rename 'docs/' to 'swagger/'
2021-10-21 13:46:14 -07:00
errors
feat: support pushing multiple tags for a single manifest (#3885)
2026-03-29 21:13:24 +03:00
examples
feat(api): add repository quota enforcement middleware (#3923)
2026-04-13 23:18:34 +03:00
pkg
fix(auth): add workaround for Docker client auth with mixed anonymous policies (#3868)
2026-04-17 09:10:02 +03:00
scripts
feat(events): add events extension (#3045)
2025-05-02 12:30:06 -07:00
swagger
feat: support pushing multiple tags for a single manifest (#3885)
2026-03-29 21:13:24 +03:00
test
feat(api): add repository quota enforcement middleware (#3923)
2026-04-13 23:18:34 +03:00
.gitattributes
build(deps): bump all dependencies (#2532)
2024-08-02 14:23:53 -07:00
.gitignore
fix: migrate from github.com/rs/zerolog to golang-native log/slog (#3405)
2025-10-03 12:34:03 -07:00
.golangci.yaml
feat: support pushing multiple tags for a single manifest (#3885)
2026-03-29 21:13:24 +03:00
CODE_OF_CONDUCT.md
doc: add a CODE_OF_CONDUCT.md
2020-12-15 11:20:45 -08:00
codecov.yml
refactor(metadb): improve UX by speeding up metadb serialize/deserialize (#1842)
2023-10-30 13:06:04 -07:00
CODEOWNERS
docs: update maintainers and codeowners info (#3502)
2025-10-31 12:47:10 -07:00
COMPARISON.md
move references to zotregistry.io and project-zot
2021-12-05 10:52:27 -08:00
CONTRIBUTING.md
build: fix container image targets (#1856)
2023-10-04 09:12:56 -07:00
go.mod
chore: fix dependabot alerts (#3968)
2026-04-15 07:42:32 +03:00
go.sum
chore: fix dependabot alerts (#3968)
2026-04-15 07:42:32 +03:00
LICENSE
fix: license copyright update (#3167)
2025-05-25 11:57:49 +03:00
MAINTAINERS.md
docs: update maintainers and codeowners info (#3502)
2025-10-31 12:47:10 -07:00
Makefile
build: bump zui version to commit-1c8e5ef (#3932)
2026-04-06 00:43:16 -07:00
NOTICE
docs: fix copyright related info for cncf onboarding (#1117)
2023-01-17 15:43:45 -08:00
README_fuzz.md
Add fuzz tests for storage_fs (#601)
2022-07-27 20:37:55 +03:00
README.md
fix: migrate to Go module v2 for proper semantic versioning (#3462)
2025-10-16 22:43:47 -07:00
SECURITY.md
chore: update support matrix
2024-03-14 09:43:42 -07:00
THIRD-PARTY-LICENSES.md
chore: fix dependabot alerts (#2645)
2024-09-09 18:32:57 -07:00
tools.go
chore: update golangci-lint and fix all issues (#3575)
2025-11-22 23:36:48 +02:00
zot.go
zot: initial commit
2019-06-21 15:29:19 -07:00

README.md

zot

build test nightly jobs codecov conformance CodeQL CII Best Practices OpenSSF Scorecard Go Reference FOSSA Status

zot: a production-ready vendor-neutral OCI image registry - images stored in OCI image format, distribution specification on-the-wire, that's it!

Documentation for zot is located at: https://zotregistry.dev

Code of conduct details are here.

License

FOSSA Status

Reference in New Issue View Git Blame Copy Permalink
S
Description
No description provided
distribution-spechelmkubernetesocioci-distributionopencontainerszot
Readme Apache-2.0 804 MiB
Languages
Go 93.6%
Shell 5.8%
Makefile 0.4%