Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

DescriptionURIMethodRequest ParametersRequest BodyResponse Body

Authorization Request

https://docs.docker.com/registry/spec/auth/jwt/

https://tools.ietf.org/html/rfc6750#section-3

/bearerTokenGETservice, scope--BearerToken
Add a commit to an external repository. (Also changes modifiedBy, modifiedOn for the entity.)/entity/{id}/dockerCommitPOST--DockerCommit--
Get the commits for a repository./entity/{id}/dockerCommitGET----DockerCommitList
Get the DockerRepository for a commit./entity/dockerDigest/{digest}GET----DockerRepositoryGet Docker password for a Docker registry. (System will generate automatically.)/dockerPasswordGETregistryHost--Password
Invalidate password for a Docker registry./dockerPasswordDELETEregistryHost----

...

Details

Authorization Request

...

If the repository is not represented in Synapse then deny the request, else answer the authorization question using the ACL associated with the project which is the prefix of requested repository.  (Note:  We can leverage existing Governance mechanisms by requiring 'download' access level in order to 'pull' a repository.)

...

  • OK to have a Docker-Synapse password different from the user's Synapse password (or API key)? Answer:  YES
  • Is it OK for Docker Repo's to have Folders as parents or just Projects?

...

  •  Answer:  JUST PROJECTS