primal/athens
1
0
Fork 0
mirror of https://github.com/gomods/athens synced 2026-02-03 11:00:32 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,023 Commits 29 Branches 34 Tags
71119f8fcf6e31d8acc3faca502ff1765019183f
Commit Graph

1023 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Nicholas Wiersma
71119f8fcf feat: support GitHub App authentication (#1988) 
Adds support for using GitHub Apps as a form of authentication
v0.15.3 		2024-10-21 18:14:34 +00:00
Nicholas Wiersma
2712e2ef17 fix: go in docker failing (#1989) 
Co-authored-by: Matt <matt.ouille@protonmail.com>
 2024-10-07 21:22:53 +02:00
Radon Rosborough
74b3cf5082 Document log level format (#1982) 
Specify log levels that can be configured with Athens explicitly in the documentation.
v0.15.2 		2024-09-30 12:23:00 +02:00
Matt
0092d3a118 Upgrade to Go 1.22 toolchain (#1987) 
Upgrades to the Go 1.22 toolchain. Upgrades golangci-lint to 1.61.0 and disables some new linters.

---------

Co-authored-by: Nicholas Wiersma <nick@wiersma.co.za>
 2024-09-28 05:51:14 +00:00
Taylor Chen
3856c6feee add timeout to vcsLister.List() (#1986) 2024-09-20 08:19:47 +02:00
Matt
6f1346fdb9 Fix: Change goreleaser flag from --rm-dist to --clean (#1984) 
Fixing a release with maintainer permissions
v0.15.1 		2024-09-08 21:27:48 -07:00
Balazs Sandor
70ee634a80 Add http body to list handler on error (#1974) 
Mimic responses to that of proxy.golang.org when a list fails to produce a result.
v0.15.0 		2024-09-09 03:23:40 +00:00
yueluhuan
34002b8408 Switch from ADAL to AzIdentity, Add Azure Storage Token Refresh, and Update Golang Version (#1977) 
Uses the new Azure Identity package for current support. Support automated Azure storage token refresh. Sets the default value of Athens storage account key and Azure managed identity resource id should be empty.
 2024-09-09 03:03:26 +00:00
sb464f
86c8a4fc4c Fix helm install command in docs (#1981) 2024-08-27 16:10:04 +02:00
yueluhuan
1e39c23d72 Add aad auth option when using azure storage account (#1973) 
Support managed identity authentication in Azure Blob Storage.
 2024-07-14 18:21:31 -07:00
dependabot[bot]
a1e728e5be update-github-action(deps): bump docker/build-push-action from 5 to 6 (#1971) 
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 5 to 6.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v5...v6)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-24 06:20:11 +02:00
dependabot[bot]
72603ea459 update-github-action(deps): bump goreleaser/goreleaser-action (#1969) 
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 5 to 6.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](https://github.com/goreleaser/goreleaser-action/compare/v5...v6)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-10 07:01:19 +02:00
Matt
bde4952614 Set correct content type and send once (#1965) 
Set correct Content-Type headers on each endpoint rather than on the router. The router would, at times, send two Content-Type headers and other times just send the wrong one.
v0.14.1 		2024-06-02 19:49:36 +00:00
Derek Buitenhuis
0ef761cc8b gcp/saver: Only return errors.KindAlreadyExists if all three exist (#1957) 
* gcp/saver: Only return errors.KindAlreadyExists if all three exist

In #1124, a GCP lock type was added as a singleflight backend. As part of this work, the GCP backend's Save() was made serial, likely because moduploader.Upload requires a call to Exists() before it, rendering the GCP lock less useful, by doubling the calls to GCS.

However, by doing this, the existence check was now only checking the existence of the mod file, and not the info or zip. This meant that if during a Save, the zip or info uploads failed, on subsequent rquests, that when using the GCP singleflight backend, Athens would assume everything had been stashed and saved properly, and then fail to serve up the info or zip that had failed upload, meaning the cache was in an unhealable broklen state, requiring a manual intervention.

To fix this, without breaking the singleflight behavior, introduce a metadata key that is set on the mod file during its initial upload, indicating that a Stash is still in progress on subsequent files, which gets removed once all three files are uploaded successfully, which can be checked if it it is determined that the mod file already exists. That way we can return a errors.KindAlreadyExists if a Stash is in progress, but also properly return it when a Stash is *not* currently in progress if and only if all three files exist on GCS, which prevents the cache from becoming permanently poisoned.

One note is that it is possible the GCS call to remove the metadata key fails, which would mean it is left on the mod object forever. To avoid this, consider it stale after 2 minutes.

---------

Signed-off-by: Derek Buitenhuis <derek.buitenhuis@gmail.com>
Co-authored-by: Matt <matt.ouille@protonmail.com>
 2024-06-02 19:32:54 +00:00
Joey Hills
c1891f148e Created a test script to that can be run in 'make test-e2e' and 'make (#1966) 
Fixes end-to-end docker compose tests
 2024-06-02 12:21:53 -07:00
Yong Zhang
0e1af85c0b Fix AWS default credentials (#1963) 
Fix a bug where default credentials were erroneously cleared out, which broke several implementations.
 2024-05-22 19:15:48 -07:00
dependabot[bot]
87ebcbeb92 update-github-action(deps): bump golangci/golangci-lint-action (#1962) 
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 5 to 6.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/v5...v6)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-05-13 06:45:58 +02:00
dependabot[bot]
426fd24457 update-go-pkg(deps): bump github.com/unrolled/secure (#1955) 
Bumps [github.com/unrolled/secure](https://github.com/unrolled/secure) from 0.0.0-20181221173256-0d6b5bb13069 to 1.14.0.
- [Release notes](https://github.com/unrolled/secure/releases)
- [Commits](https://github.com/unrolled/secure/commits/v1.14.0)

---
updated-dependencies:
- dependency-name: github.com/unrolled/secure
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
v0.14.0 		2024-04-29 22:00:03 -07:00
dependabot[bot]
7c1518da9d Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc from 0.25.0 to 0.46.0 (#1901) 
* Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc

Bumps [go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc](https://github.com/open-telemetry/opentelemetry-go-contrib) from 0.25.0 to 0.46.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-go-contrib/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-telemetry/opentelemetry-go-contrib/compare/zpages/v0.25.0...zpages/v0.46.0)

---
updated-dependencies:
- dependency-name: go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

* Update packages that depend on otel

* Use same version for etcd packages

---------

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Matt Ouille <matt.ouille@protonmail.com>
 2024-04-29 05:27:27 +00:00
dependabot[bot]
26385d22ba update-github-action(deps): bump golangci/golangci-lint-action (#1956) 
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 4 to 5.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/v4...v5)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-04-29 06:56:05 +02:00
Vanes Angelo
900cb4f7c1 Upgrade to AWS SDK v2 (#1938) (#1950) 
Upgrades the AWS SDK to v2. AWS S3 bucket urls will now error if they are not prefixed with a schema (example: https://).
 2024-04-28 21:38:42 -07:00
Matt
c35b50f2f3 Docs overhaul (#1954) 
Hugo is upgraded to a modern version, the reboot of the original theme is used, and links are replaced or removed. The readme is updated to state our utility in the first sentence. References to vGo and other old terminology has been moved to "modules" and more modern terminology.
 2024-04-23 08:15:36 +02:00
Matt
78daa574e9 Add logging configuration docs (#1952) 
We should do our best to disambiguate CloudRuntime and logging parameters.
 2024-04-21 11:29:42 -07:00
dependabot[bot]
ae36734542 build(deps): bump golang.org/x/net from 0.22.0 to 0.23.0 (#1946) 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.22.0 to 0.23.0.
- [Commits](https://github.com/golang/net/compare/v0.22.0...v0.23.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Matt <matt.ouille@protonmail.com>
 2024-04-20 13:00:39 -07:00
Matt
359c119441 Add an introduction page as the home page (#1945) 
A default homepage is baked into the server that uses the request host address, or in HTTP 2 the authority. This includes ports. It also checks for schema. The values are used to indicate to users how to configure their go env

Of course, this won't work on all installations - especially enterprise ones. For that, we've introduced ATHENS_HOME_TEMPLATE_PATH as an environment variable along with HomeTemplatePath in the config. This value defaults to /var/lib/athens/home.html but can be configured to any location that Athens can reliably read from. This is a Go HTML template so it should use Go HTML template formatting and logic.
 2024-04-20 00:19:34 -07:00
dependabot[bot]
8d9b7676fd update-go-pkg(deps): bump github.com/aws/aws-sdk-go (#1942) 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.44.220 to 1.51.21.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.44.220...v1.51.21)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-04-16 19:24:54 -07:00
Marcel
f969e03904 Remove hard coded values from SystemD Unit and installation (#1874) 
Removes hardcoded values form our supplied SystemD Unit file and the installation script. Users, prior to installation, will need to ensure that their user, group, and permissions settings of where Athens stores data are correct.

Co-authored-by: Manu Gupta <manugupt1@gmail.com>
Co-authored-by: Matt <matt.ouille@protonmail.com>
v0.13.3 		2024-04-13 14:42:47 -07:00
kkHAIKE
81415839ba Fix an issue where contexts are not copied correctly (#1941) 
Fix an issue in the Stasher where contexts between the request and log entry are not copied correctly.

Co-authored-by: ouyangxu <ouyangxu@bilibili.com>
 2024-04-13 13:35:25 -07:00
kkHAIKE
a5277a3e7a Use errors.AsErr to extract and detect errors.Error (#1936) 
Switches from using errors.Is() to errors.As() so the error context is passed correctly.
 2024-04-09 14:25:00 -07:00
Matt
a32e5f0a42 Upgrade logrus from 1.7.0 => 1.9.3 (#1934) 
Logurs prior to 1.9.3 is subject to https://nvd.nist.gov/vuln/detail/CVE-2023-0056
 2024-04-04 15:07:09 -07:00
dependabot[bot]
46f5731608 update-go-pkg(deps): bump github.com/stretchr/testify (#1933) 
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.4 to 1.9.0.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.8.4...v1.9.0)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-04-01 09:09:07 +02:00
JJ
0459b3b180 Fix repeated word in README.md (#1932) 
Removes a duplicated word in the README.
 2024-03-31 21:48:44 -07:00
Matt
b9c8fb7f8a Rework logging defaults (#1927) 
Changes default logger back to plain.
v0.13.2 		2024-03-27 17:48:10 -07:00
dependabot[bot]
b72f01b7bc update-go-pkg(deps): bump github.com/lib/pq from 1.10.7 to 1.10.9 (#1923) 
Bumps [github.com/lib/pq](https://github.com/lib/pq) from 1.10.7 to 1.10.9.
- [Release notes](https://github.com/lib/pq/releases)
- [Commits](https://github.com/lib/pq/compare/v1.10.7...v1.10.9)

---
updated-dependencies:
- dependency-name: github.com/lib/pq
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-03-26 06:11:05 +02:00
tanx
c072f6089a Update mongodb driver (#1928) 
Updates the MongoDB driver
 2024-03-25 15:39:14 -07:00
Matt
08520bf894 Add log formatting settings (#1926) 
Adds a log format setting as ATHENS_LOG_FORMAT that can be either plain or JSON when CloudRuntime is none (the default). Does not break or change any existing behavior.
 2024-03-21 09:07:39 -07:00
Matt
9f6009b76d Use quotes for docker-compose args (#1925) 2024-03-20 06:42:37 +02:00
Chris Kuehl
3f3fb9b758 Fix Markdown link in Storage docs (#1922) 
Fix incorrectly formatted Markdown link in storage docs.
 2024-03-19 17:38:40 -07:00
dependabot[bot]
d877af2099 update-go-pkg(deps): bump go.etcd.io/etcd/api/v3 from 3.5.9 to 3.5.12 (#1919) 
Bumps [go.etcd.io/etcd/api/v3](https://github.com/etcd-io/etcd) from 3.5.9 to 3.5.12.
- [Release notes](https://github.com/etcd-io/etcd/releases)
- [Commits](https://github.com/etcd-io/etcd/compare/v3.5.9...v3.5.12)

---
updated-dependencies:
- dependency-name: go.etcd.io/etcd/api/v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-03-14 02:36:28 -07:00
dependabot[bot]
334dfdea82 update-go-pkg(deps): bump github.com/stretchr/testify (#1918) 
Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.1 to 1.8.4.
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](https://github.com/stretchr/testify/compare/v1.8.1...v1.8.4)

---
updated-dependencies:
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-02-26 06:46:53 +02:00
dependabot[bot]
ee327f59d8 update-go-pkg(deps): bump github.com/gorilla/mux from 1.6.2 to 1.8.1 (#1917) 
Bumps [github.com/gorilla/mux](https://github.com/gorilla/mux) from 1.6.2 to 1.8.1.
- [Release notes](https://github.com/gorilla/mux/releases)
- [Commits](https://github.com/gorilla/mux/compare/v1.6.2...v1.8.1)

---
updated-dependencies:
- dependency-name: github.com/gorilla/mux
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-02-19 06:52:22 +02:00
dependabot[bot]
e9a5c4f5aa update-github-action(deps): bump golangci/golangci-lint-action (#1915) 
Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 3 to 4.
- [Release notes](https://github.com/golangci/golangci-lint-action/releases)
- [Commits](https://github.com/golangci/golangci-lint-action/compare/v3...v4)

---
updated-dependencies:
- dependency-name: golangci/golangci-lint-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-02-12 10:45:04 +02:00
Darryl Blake
a340d6d81e chore: fix broken links to 'absolutely everybody' blog post (#1914) 2024-02-07 11:23:11 +02:00
Mike Seplowitz
cffffc024e Send standard logger's output to logrus (#1912) 2024-02-05 10:30:40 +02:00
dependabot[bot]
2ac4289974 build(deps): bump golang.org/x/crypto from 0.14.0 to 0.17.0 (#1907) 
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.14.0 to 0.17.0.
- [Commits](https://github.com/golang/crypto/compare/v0.14.0...v0.17.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: DrPsychick <drpsychick@drsick.net>
v0.13.1 		2024-01-04 13:04:18 +01:00
dependabot[bot]
3164fe6914 update-github-action(deps): bump docker/build-push-action from 4 to 5 (#1906) 
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 4 to 5.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](https://github.com/docker/build-push-action/compare/v4...v5)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: DrPsychick <drpsychick@drsick.net>
 2024-01-04 12:44:11 +01:00
dependabot[bot]
f4239d5b28 update-github-action(deps): bump github/codeql-action from 2 to 3 (#1905) 
Bumps [github/codeql-action](https://github.com/github/codeql-action) from 2 to 3.
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](https://github.com/github/codeql-action/compare/v2...v3)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: DrPsychick <drpsychick@drsick.net>
 2024-01-04 12:09:44 +01:00
Mike Seplowitz
7284004d05 Set up and use logrus logger in main (#1819) 
* Set up and use logrus logger in main

Also return errors more consistently from other functions.

* Updated wording styles

* Prefer human-readable descriptions to method names
* Wrapped errors use gerund forms, e.g. "doing x: %w"
* Log traces start with a capital letter

* Fix style on standard log failure cases

---------

Co-authored-by: Manu Gupta <manugupt1@gmail.com>
 2024-01-04 11:11:29 +01:00
Michel Loiseleur
43d56f07f6 fix: arm64 build (#1911) 2024-01-03 16:16:08 +01:00
wozz
3af0d009a8 singleflight go commands (#1877) 
* singleflight go commands

* Apply suggestions from code review

Co-authored-by: Brendan Le Glaunec <brendan@glaulabs.com>

---------

Co-authored-by: michael-wozniak <michael.wozniak@snapchat.com>
Co-authored-by: Brendan Le Glaunec <brendan@glaulabs.com>
 2023-12-21 15:37:36 +02:00