docker
/
docker-py
mirror of https://github.com/docker/docker-py.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Don't break when parsing unknown config keys 

Signed-off-by: Joffrey F <joffrey@docker.com>
This commit is contained in:
Joffrey F 2016-02-08 17:54:14 -08:00
parent 575305fdba
commit dc198be26c
2 changed files with 48 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

23
docker/auth/auth.py
View File

@ -46,7 +46,7 @@ def resolve_repository_name(repo_name):
def resolve_index_name(index_name): def resolve_index_name(index_name):
index_name = convert_to_hostname(index_name) index_name = convert_to_hostname(index_name)
if index_name == 'index.'+INDEX_NAME: if index_name == 'index.' + INDEX_NAME:
index_name = INDEX_NAME index_name = INDEX_NAME
return index_name return index_name
@ -102,12 +102,14 @@ def encode_header(auth):
return base64.urlsafe_b64encode(auth_json) return base64.urlsafe_b64encode(auth_json)
def parse_auth(entries): def parse_auth(entries, raise_on_error=False):
""" """
Parses authentication entries Parses authentication entries
Args: Args:
entries: Dict of authentication entries. entries: Dict of authentication entries.
raise_on_error: If set to true, an invalid format will raise
InvalidConfigFile
Returns: Returns:
Authentication registry. Authentication registry.
@ -115,6 +117,19 @@ def parse_auth(entries):
conf = {} conf = {}
for registry, entry in six.iteritems(entries): for registry, entry in six.iteritems(entries):
if not (isinstance(entry, dict) and 'auth' in entry):
log.debug(
'Config entry for key {0} is not auth config'.format(registry)
)
# We sometimes fall back to parsing the whole config as if it was
# the auth config by itself, for legacy purposes. In that case, we
# fail silently and return an empty conf if any of the keys is not
# formatted properly.
if raise_on_error:
raise errors.InvalidConfigFile(
'Invalid configuration for registry {0}'.format(registry)
)
return {}
username, password = decode_auth(entry['auth']) username, password = decode_auth(entry['auth'])
log.debug( log.debug(
'Found entry (registry={0}, username={1})' 'Found entry (registry={0}, username={1})'
@ -170,7 +185,7 @@ def load_config(config_path=None):
res = {} res = {}
if data.get('auths'): if data.get('auths'):
log.debug("Found 'auths' section") log.debug("Found 'auths' section")
res.update(parse_auth(data['auths'])) res.update(parse_auth(data['auths'], raise_on_error=True))
if data.get('HttpHeaders'): if data.get('HttpHeaders'):
log.debug("Found 'HttpHeaders' section") log.debug("Found 'HttpHeaders' section")
res.update({'HttpHeaders': data['HttpHeaders']}) res.update({'HttpHeaders': data['HttpHeaders']})

29
tests/unit/auth_test.py
View File

@ -433,3 +433,32 @@ class LoadConfigTest(base.Cleanup, base.BaseTestCase):
self.assertEqual(cfg['Name'], 'Spike') self.assertEqual(cfg['Name'], 'Spike')
self.assertEqual(cfg['Surname'], 'Spiegel') self.assertEqual(cfg['Surname'], 'Spiegel')
def test_load_config_unknown_keys(self):
folder = tempfile.mkdtemp()
self.addCleanup(shutil.rmtree, folder)
dockercfg_path = os.path.join(folder, 'config.json')
config = {
'detachKeys': 'ctrl-q, ctrl-u, ctrl-i'
}
with open(dockercfg_path, 'w') as f:
json.dump(config, f)
cfg = auth.load_config(dockercfg_path)
assert cfg == {}
def test_load_config_invalid_auth_dict(self):
folder = tempfile.mkdtemp()
self.addCleanup(shutil.rmtree, folder)
dockercfg_path = os.path.join(folder, 'config.json')
config = {
'auths': {
'scarlet.net': {'sakuya': 'izayoi'}
}
}
with open(dockercfg_path, 'w') as f:
json.dump(config, f)
self.assertRaises(
errors.InvalidConfigFile, auth.load_config, dockercfg_path
)