Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Skip Loginview create when credentials already exist #275

Open
wants to merge 10 commits into
base: main
Choose a base branch
from
Open

Skip Loginview create when credentials already exist #275

wants to merge 10 commits into from

Conversation

qcserestipy
Copy link
Contributor

Fixes #267

Check for Existing Credentials and Bypass Login View Creation

  1. Implemented a verification step to detect existing Harbor credentials in the current configuration.
  2. If valid credentials are found, the creation of a new login view is skipped.
  3. Enhances login efficiency by reusing stored credentials and reducing unnecessary prompts.

ToDo: Add base64 encoding for password in config file?

@qcserestipy
Added check for existing credentials in present config for login; Ski…
e64411f 
…p login view creation if some credentials exist

Signed-off-by: Patrick Eschenbach <[email protected]>
@qcserestipy
Added config and data path management description to readme
06a2f14 
Signed-off-by: Patrick Eschenbach <[email protected]>
@qcserestipy
Added harbor-config docs; Add
8d2ab1f 
ed config behavior to login docs

Signed-off-by: Patrick Eschenbach <[email protected]>
@qcserestipy
Added pwd encryption and key ring usage. The encryption key is stored…
2557f1d 
… in the keyring with a specified user and service

Signed-off-by: Patrick Eschenbach <[email protected]>
@qcserestipy
Fix: compare existing pwd hash with encrypted pwd
9fcfa2d 
Signed-off-by: Patrick Eschenbach <[email protected]>
@qcserestipy
Fix: Ineffective use of err in view.go
c8b098e 
Signed-off-by: Patrick Eschenbach <[email protected]>
@qcserestipy
Copy link
Contributor Author

To resolve the failing tests I will introduce a mock Keyring since the container has no keyring.

@qcserestipy
Added interface for keyring provider; added mockKeyRing provider; Add…
2df9adc 
…ed test for encryption functions; Updated config and login tests with mock key ring provider

Signed-off-by: Patrick Eschenbach <[email protected]>
@qcserestipy
Merged changes from upstream main
3d8ad3a 
Signed-off-by: Patrick Eschenbach <[email protected]>
@qcserestipy
Explicitely set mock keyring in sub tests
ad6b66d 
Signed-off-by: Patrick Eschenbach <[email protected]>
@qcserestipy
Explicitely set mock keyring in sub tests
9db88f1 
Signed-off-by: Patrick Eschenbach <[email protected]>
@qcserestipy qcserestipy changed the title !WIP: Skip Loginview create when credentials already exist Skip Loginview create when credentials already exist Dec 4, 2024
@Vad1mo Vad1mo requested a review from bupd December 10, 2024 14:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Vad1mo Vad1mo Vad1mo approved these changes

@bupd bupd Awaiting requested review from bupd

Assignees

@bupd bupd

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Storing Plaintext in Config Files is Insecure
3 participants
@qcserestipy @Vad1mo @bupd