containers
/
automation-tests
mirror of https://github.com/containers/automation-tests.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
automation-tests/cmd/podman
History
Valentin Rothberg dc80267b59 compat handlers: add X-Registry-Auth header support 
* Support the `X-Registry-Auth` http-request header.

 * The content of the header is a base64 encoded JSON payload which can
   either be a single auth config or a map of auth configs (user+pw or
   token) with the corresponding registries being the keys.  Vanilla
   Docker, projectatomic Docker and the bindings are transparantly
   supported.

 * Add a hidden `--registries-conf` flag.  Buildah exposes the same
   flag, mostly for testing purposes.

 * Do all credential parsing in the client (i.e., `cmd/podman`) pass
   the username and password in the backend instead of unparsed
   credentials.

 * Add a `pkg/auth` which handles most of the heavy lifting.

 * Go through the authentication-handling code of most commands, bindings
   and endpoints.  Migrate them to the new code and fix issues as seen.
   A final evaluation and more tests is still required *after* this
   change.

 * The manifest-push endpoint is missing certain parameters and should
   use the ABI function instead.  Adding auth-support isn't really
   possible without these parts working.

 * The container commands and endpoints (i.e., create and run) have not
   been changed yet.  The APIs don't yet account for the authfile.

 * Add authentication tests to `pkg/bindings`.

Fixes: #6384
Signed-off-by: Valentin Rothberg <rothberg@redhat.com>
 		2020-05-29 15:39:37 +02:00
..
common Add support for `readonly` option to --mount 2020-05-26 16:05:11 -04:00
containers container stats: fix --no-stream race 2020-05-27 13:51:48 +02:00
generate Added new flags to 'podman generate systemd' to change the unit name prefix 2020-05-22 18:38:39 +02:00
healthcheck Fix errors found when comparing podman v1 --help versus V2 2020-05-04 14:16:34 -04:00
images compat handlers: add X-Registry-Auth header support 2020-05-29 15:39:37 +02:00
inspect enable inspect tests 2020-04-29 07:25:31 +02:00
manifest compat handlers: add X-Registry-Auth header support 2020-05-29 15:39:37 +02:00
networks Remove github.com/libpod/libpod from cmd/pkg/podman 2020-05-21 12:09:01 -04:00
parse Enables port test 2020-05-06 16:06:41 -04:00
play compat handlers: add X-Registry-Auth header support 2020-05-29 15:39:37 +02:00
pods Add --format to pod inspect 2020-05-27 09:48:38 +03:00
registry default to tunnel without ABISupport tag 2020-05-08 11:09:48 -04:00
report Provide a json variable pointing to a configured json API 2020-04-21 07:56:10 -07:00
system Attempt to turn on build_without_cgo tests 2020-05-22 12:56:19 -04:00
utils And system prune feature for v2. 2020-05-01 13:57:16 -04:00
validate V2 enable ps tests 2020-04-29 15:51:37 -07:00
volumes And system prune feature for v2. 2020-05-01 13:57:16 -04:00
README.md [CI:DOCS] Bring README.md up to date 2020-05-01 11:22:39 -07:00
auto-update.go auto-update: support authfiles 2020-05-12 10:20:48 +02:00
diff.go V2 enable ps tests 2020-04-29 15:51:37 -07:00
inspect.go enable inspect tests 2020-04-29 07:25:31 +02:00
login.go Fix handling of overridden paths from database 2020-05-08 09:27:39 -04:00
logout.go Fix handling of overridden paths from database 2020-05-08 09:27:39 -04:00
main.go add {generate,play} kube 2020-05-06 17:08:22 +02:00
root.go compat handlers: add X-Registry-Auth header support 2020-05-29 15:39:37 +02:00
syslog_linux.go Fix build on OS X 2020-05-20 18:24:56 -04:00
syslog_unsupported.go Fix build on OS X 2020-05-20 18:24:56 -04:00

README.md

Podman CLI

The following is an example of how to add a new primary command (manifest) and a sub-command (inspect) to the Podman CLI. This is example code, the production code has additional error checking and the business logic provided.

See items below for details on building, installing, contributing to Podman:

Adding a new command podman manifest

$ mkdir -p $GOPATH/src/github.com/containers/libpod/cmd/podmanV2/manifests

Create the file $GOPATH/src/github.com/containers/libpod/cmd/podmanV2/manifests/manifest.go

package manifests

import (
    "github.com/containers/libpod/cmd/podman/registry"
    "github.com/containers/libpod/cmd/podman/validate"
    "github.com/containers/libpod/pkg/domain/entities"
    "github.com/spf13/cobra"
)

var (
    // podman _manifests_
    manifestCmd = &cobra.Command{
        Use:               "manifest",
        Short:             "Manage manifests",
        Args:              cobra.ExactArgs(1),
        Long:              "Manage manifests",
        Example:           "podman manifest IMAGE",
        TraverseChildren:  true,
        RunE:              validate.SubCommandExists, // Report error if there is no sub command given
    }
)
func init() {
    // Subscribe command to podman
    registry.Commands = append(registry.Commands, registry.CliCommand{
        // _podman manifest_ will support both ABIMode and TunnelMode
        Mode:    []entities.EngineMode{entities.ABIMode, entities.TunnelMode},
        // The definition for this command
        Command: manifestCmd,
    })
}

To "wire" in the manifest command, edit the file $GOPATH/src/github.com/containers/libpod/cmd/podmanV2/main.go to add:

package main

import	_ "github.com/containers/libpod/cmd/podman/manifests"

Adding a new sub command podman manifests list

Create the file $GOPATH/src/github.com/containers/libpod/cmd/podmanV2/manifests/inspect.go

package manifests

import (
    "github.com/containers/libpod/cmd/podman/registry"
    "github.com/containers/libpod/pkg/domain/entities"
    "github.com/spf13/cobra"
)

var (
    // podman manifests _inspect_
    inspectCmd = &cobra.Command{
        Use:     "inspect IMAGE",
        Short:   "Display manifest from image",
        Long:    "Displays the low-level information on a manifest identified by image name or ID",
        RunE:    inspect,
        Annotations: map[string]string{
            // Add this annotation if this command cannot be run rootless
            // registry.ParentNSRequired: "",
        },
        Example: "podman manifest inspect DEADBEEF",
    }
)

func init() {
    // Subscribe inspect sub command to manifest command
    registry.Commands = append(registry.Commands, registry.CliCommand{
        // _podman manifest inspect_ will support both ABIMode and TunnelMode
        Mode:    []entities.EngineMode{entities.ABIMode, entities.TunnelMode},
        // The definition for this command
        Command: inspectCmd,
        // The parent command to proceed this command on the CLI
        Parent:  manifestCmd,
    })

    // This is where you would configure the cobra flags using inspectCmd.Flags()
}

// Business logic: cmd is inspectCmd, args is the positional arguments from os.Args
func inspect(cmd *cobra.Command, args []string) error {
    // Business logic using registry.ImageEngine()
    // Do not pull from libpod directly use the domain objects and types
    return nil
}

Helper functions

The complete set can be found in the validate package, here are some examples:

  • cobra.Command{ Args: validate.NoArgs } used when the command does not accept errors
  • cobra.Command{ Args: validate.IdOrLatestArgs } used to ensure either a list of ids given or the --latest flag
  • cobra.Command{ RunE: validate.SubCommandExists } used to validate a subcommand given to a command
  • validate.ChoiceValue used to create a pflag.Value that validate user input against a provided slice of values. For example: 
    flags := cobraCommand.Flags()
created := validate.ChoiceValue(&opts.Sort, "command", "created", "id", "image", "names", "runningfor", "size", "status")
flags.Var(created, "sort", "Sort output by: "+created.Choices())