HomeDevCentral
Diffusion Nasqueron private Docker registry API b7927f6e3017

Don't accept initial / as container name
b7927f6e3017
Actions

Description

Don't accept initial / as container name

Summary:
The Docker registry allows to use /foo or foo as container name.

This is a dubious comfort feature, but it would be nice if queries
like %2Ftmp (/tmp URL encoded) doesn't have a lot of chance to
succeed: even if the API is intended to expose metadata of a
filesystem without any secret, it could theoretically be deployed
into environment where filesystem can expose secrets.

Test Plan: Browse {{URL}}/docker/registry/repository/%2Ftmp/

Reviewers: dereckson

Reviewed By: dereckson

Differential Revision: https://devcentral.nasqueron.org/D1879

Details

Provenance
derecksonAuthored on Oct 10 2018, 23:43
derecksonPushed on Oct 10 2018, 23:46
Reviewer
dereckson
Differential Revision
D1879: Don't accept initial / as container name
Parents
rAPIREG16138497d33a: Tweak path to mount the microservice at an API end point
Branches
Unknown
Tags
Unknown

Changes (1)

PathSize
src/

rAPIREGb7927f6e3017

View Options

src/registry.rs

Loading...
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator