NVSHAS-9915: Show scan result from harbor scanner module in Neuvector UI.

Author: xingzhang-suse

admin/src/main/scala/com/neu/api/policy/PolicyApi.scala

@@ -328,6 +328,15 @@ class PolicyApi(resourceService: PolicyService) extends BaseApi {
                 }
               }
             } ~
+            path("fed-repo") {
+              get {
+                parameter(Symbol("fed_repo")) { fedRepo =>
+                  Utils.respondWithWebServerHeaders() {
+                    resourceService.getFederatedRepoScanRegistrySummary(tokenId, fedRepo)
+                  }
+                }
+              }
+            } ~
             path("image") {
               get {
                 parameter(Symbol("name"), Symbol("imageId"), Symbol("show").?) {

admin/src/main/scala/com/neu/service/policy/PolicyService.scala

@@ -669,6 +669,16 @@ class PolicyService() extends BaseService with DefaultJsonFormats with LazyLoggi
     )
   }
 
+  def getFederatedRepoScanRegistrySummary(tokenId: String, fedRepo: String): Route = complete {
+    logger.info("Getting federated scan registry summary")
+    RestClient.httpRequestWithHeader(
+      s"${baseClusterUri(tokenId)}/$scanRegistryPath/$fedRepo/images",
+      GET,
+      "",
+      tokenId
+    )
+  }
+
   def getImageScanReport(
     tokenId: String,
     name: String,

admin/webapp/websrc/app/app.component.ts

@@ -18,6 +18,9 @@ import { AuthService } from '@common/services/auth.service';
 import { SummaryService } from '@services/summary.service';
 import { CommonHttpService } from '@common/api/common-http.service';
 import { SettingsService } from '@services/settings.service';
+import { MultiClusterService } from '@services/multi-cluster.service';
+import { Cluster, ClusterData } from '@common/types';
+import { MapConstant } from '@common/constants/map.constant';
 
 @Component({
   selector: 'app-root',
@@ -37,7 +40,8 @@ export class AppComponent implements OnInit {
     private translatorService: TranslatorService,
     private summaryService: SummaryService,
     private authService: AuthService,
-    private commonHttpService: CommonHttpService
+    private commonHttpService: CommonHttpService,
+    private multiClusterService: MultiClusterService
   ) {
     this.win = GlobalVariable.window;
     this.initTimer = new Date().getTime();
@@ -85,6 +89,27 @@ export class AppComponent implements OnInit {
   }
 
   ngOnInit() {
+    this.multiClusterService.getClusters().subscribe({
+      next: (data: ClusterData) => {
+        GlobalVariable.isMaster =
+          data.fed_role === MapConstant.FED_ROLES.MASTER;
+        GlobalVariable.isMember =
+          data.fed_role === MapConstant.FED_ROLES.MEMBER;
+        GlobalVariable.isStandAlone = data.fed_role === '';
+        //get the status of the chosen cluster
+        const sessionCluster = this.localStorage.get(
+          GlobalConstant.LOCAL_STORAGE_CLUSTER
+        );
+        const clusterInSession = sessionCluster
+          ? JSON.parse(sessionCluster)
+          : null;
+        if (clusterInSession) {
+          GlobalVariable.isRemote = clusterInSession.isRemote;
+        } else {
+          GlobalVariable.isRemote = false;
+        }
+      },
+    });
     document.addEventListener('click', e => {
       const target = e.target as HTMLElement;
       if (

admin/webapp/websrc/app/common/constants/path.constant.ts

@@ -149,4 +149,5 @@ export class PathConstant {
   public static NOTIFICATION_PERSIST_URL = 'notification/accept';
   public static REMOTE_REPO_URL = 'remote_repository';
   public static SCANNED_ASSETS_URL = 'scanned-assets';
+  public static SCANNED_FED_REPO = 'scan/registry/fed-repo';
 }

admin/webapp/websrc/app/common/services/multi-cluster.service.ts

@@ -6,6 +6,7 @@ import { PathConstant } from '@common/constants/path.constant';
 import { Router } from '@angular/router';
 import { SESSION_STORAGE, StorageService } from 'ngx-webstorage-service';
 import { BehaviorSubject, Observable, Subject } from 'rxjs';
+import { tap } from 'rxjs/operators';
 import { Cluster, ClusterData, ClusterSummary } from '@common/types';
 import { GlobalVariable } from '@common/variables/global.variable';
 import { TranslateService } from '@ngx-translate/core';
@@ -32,11 +33,13 @@ export interface Cluster2Join {
   master_port: string;
 }
 
-@Injectable()
+@Injectable({ providedIn: 'root' })
 export class MultiClusterService {
   public clusterName: string = '';
   public clusters: Cluster[] = [];
   public primaryClusterRestVersion: string = '';
+  private memberSubject = new BehaviorSubject<any>(null);
+  public member$: Observable<any> = this.memberSubject.asObservable();
   private _clusterSwitchedEvent = new Subject();
   private _clusterRefreshEvent = new Subject();
   private _manageClusterEvent = new Subject();
@@ -98,7 +101,9 @@ export class MultiClusterService {
   }
 
   getClusters(): Observable<any> {
-    return GlobalVariable.http.get(PathConstant.FED_MEMBER_URL);
+    return GlobalVariable.http
+      .get(PathConstant.FED_MEMBER_URL)
+      .pipe(tap(member => this.memberSubject.next(member)));
   }
 
   getRemoteSummary(id): Observable<any> {

admin/webapp/websrc/app/common/services/registries.service.ts

@@ -259,4 +259,12 @@ export class RegistriesService {
       })
       .pipe();
   }
+
+  getFederatedRepoScanRegistrySummary(fedRepo: string) {
+    return GlobalVariable.http
+      .get<AllScannedImages>(PathConstant.SCANNED_FED_REPO, {
+        params: { fed_repo: fedRepo },
+      })
+      .pipe();
+  }
 }

admin/webapp/websrc/app/common/types/registries/registries.ts

@@ -120,6 +120,7 @@ export interface Summary {
   ignore_proxy: boolean;
   use_proxy: boolean;
   isAllView?: boolean;
+  isFedRepo?: boolean;
 }
 
 interface RegistryType {

admin/webapp/websrc/app/frame/header/header.component.ts

@@ -28,7 +28,7 @@ import { AuthUtilsService } from '@common/utils/auth.utils';
 import { CommonHttpService } from '@common/api/common-http.service';
 import { AuthService } from '@services/auth.service';
 import { SettingsService } from '@services/settings.service';
-import { switchMap } from 'rxjs/operators';
+import { switchMap, take } from 'rxjs/operators';
 import { FrameService } from '../frame.service';
 
 @Component({
@@ -70,6 +70,7 @@ export class HeaderComponent implements OnInit, OnDestroy {
   private _getRebrandCustomValuesSubscription;
   private _clusterNameSubScription;
   public isAuthReadConfig: boolean = false;
+  member$ = this.multiClusterService.member$;
 
   @ViewChild('fsbutton', { static: true }) fsbutton;
 
@@ -284,102 +285,98 @@ export class HeaderComponent implements OnInit, OnDestroy {
     });
   }
   getClusters() {
-    this.multiClusterService
-      .getClusters()
-      .pipe()
-      .subscribe({
-        next: (data: ClusterData) => {
-          this.clusters = data.clusters || [];
-          //get primary cluster's rest_version
-          const primaryCluster = this.clusters.find(
-            cluster =>
-              cluster.clusterType === GlobalConstant.CLUSTER_TYPES.MASTER
-          );
-          this.primaryClusterRestVersion = primaryCluster
-            ? primaryCluster.rest_version
-            : '';
-          this.multiClusterService.primaryClusterRestVersion =
-            this.primaryClusterRestVersion;
-          //init the cluster role
-          this.isMemberRole = data.fed_role === MapConstant.FED_ROLES.MEMBER;
-          this.isMasterRole = data.fed_role === MapConstant.FED_ROLES.MASTER;
-          this.isStandaloneRole = data.fed_role === '';
-          GlobalVariable.isMaster = this.isMasterRole;
-          GlobalVariable.isMember = this.isMemberRole;
-          GlobalVariable.isStandAlone = this.isStandaloneRole;
-
-          const resource = {
-            multiClusterOp: {
-              global: 2,
-            },
-            manageAuth: {
-              global: 3,
-            },
-            multiClusterView: {
-              global: 1,
-            },
-          };
-
-          this.isAllowedToRedirectMultiCluster =
+    this.member$.pipe(take(1)).subscribe({
+      next: (data: ClusterData) => {
+        this.clusters = data.clusters || [];
+        //get primary cluster's rest_version
+        const primaryCluster = this.clusters.find(
+          cluster => cluster.clusterType === GlobalConstant.CLUSTER_TYPES.MASTER
+        );
+        this.primaryClusterRestVersion = primaryCluster
+          ? primaryCluster.rest_version
+          : '';
+        this.multiClusterService.primaryClusterRestVersion =
+          this.primaryClusterRestVersion;
+        //init the cluster role
+        this.isMemberRole = data.fed_role === MapConstant.FED_ROLES.MEMBER;
+        this.isMasterRole = data.fed_role === MapConstant.FED_ROLES.MASTER;
+        this.isStandaloneRole = data.fed_role === '';
+        GlobalVariable.isMaster = this.isMasterRole;
+        GlobalVariable.isMember = this.isMemberRole;
+        GlobalVariable.isStandAlone = this.isStandaloneRole;
+
+        const resource = {
+          multiClusterOp: {
+            global: 2,
+          },
+          manageAuth: {
+            global: 3,
+          },
+          multiClusterView: {
+            global: 1,
+          },
+        };
+
+        this.isAllowedToRedirectMultiCluster =
+          this.authUtilsService.getGlobalPermissionDisplayFlag(
+            'multi_cluster'
+          ) ||
+          (isAuthorized(GlobalVariable.user.roles, resource.multiClusterOp) &&
+            data.fed_role !== MapConstant.FED_ROLES.MASTER);
+
+        //get the status of the chosen cluster
+        const sessionCluster = this.localStorage.get(
+          GlobalConstant.LOCAL_STORAGE_CLUSTER
+        );
+        const clusterInSession = sessionCluster
+          ? JSON.parse(sessionCluster)
+          : null;
+        if (clusterInSession) {
+          this.isOnRemoteCluster = clusterInSession.isRemote;
+          GlobalVariable.isRemote = clusterInSession.isRemote;
+        } else {
+          GlobalVariable.isRemote = false;
+        }
+
+        if (GlobalVariable.isMaster) {
+          this.isAllowedToOperateMultiCluster =
+            isAuthorized(GlobalVariable.user.roles, resource.manageAuth) ||
             this.authUtilsService.getGlobalPermissionDisplayFlag(
               'multi_cluster'
-            ) ||
-            (isAuthorized(GlobalVariable.user.roles, resource.multiClusterOp) &&
-              data.fed_role !== MapConstant.FED_ROLES.MASTER);
-
-          //get the status of the chosen cluster
-          const sessionCluster = this.localStorage.get(
-            GlobalConstant.LOCAL_STORAGE_CLUSTER
-          );
-          const clusterInSession = sessionCluster
-            ? JSON.parse(sessionCluster)
-            : null;
-          if (clusterInSession) {
-            this.isOnRemoteCluster = clusterInSession.isRemote;
-            GlobalVariable.isRemote = clusterInSession.isRemote;
+            );
+          if (clusterInSession !== null) {
+            this.selectedCluster = clusterInSession;
           } else {
-            GlobalVariable.isRemote = false;
+            this.selectedCluster = this.clusters.find(cluster => {
+              return cluster.clusterType === MapConstant.FED_ROLES.MASTER;
+            });
           }
+        }
 
-          if (GlobalVariable.isMaster) {
-            this.isAllowedToOperateMultiCluster =
-              isAuthorized(GlobalVariable.user.roles, resource.manageAuth) ||
-              this.authUtilsService.getGlobalPermissionDisplayFlag(
-                'multi_cluster'
-              );
-            if (clusterInSession !== null) {
-              this.selectedCluster = clusterInSession;
+        if (GlobalVariable.isMember) {
+          this.isAllowedToOperateMultiCluster =
+            isAuthorized(
+              GlobalVariable.user.roles,
+              resource.multiClusterView
+            ) ||
+            this.authUtilsService.getGlobalPermissionDisplayFlag(
+              'multi_cluster'
+            );
+          this.clusters.forEach(cluster => {
+            if (cluster.clusterType === MapConstant.FED_ROLES.MASTER) {
+              this.primaryMasterName = cluster.name;
             } else {
-              this.selectedCluster = this.clusters.find(cluster => {
-                return cluster.clusterType === MapConstant.FED_ROLES.MASTER;
-              });
+              this.managedClusterName = cluster.name;
             }
-          }
-
-          if (GlobalVariable.isMember) {
-            this.isAllowedToOperateMultiCluster =
-              isAuthorized(
-                GlobalVariable.user.roles,
-                resource.multiClusterView
-              ) ||
-              this.authUtilsService.getGlobalPermissionDisplayFlag(
-                'multi_cluster'
-              );
-            this.clusters.forEach(cluster => {
-              if (cluster.clusterType === MapConstant.FED_ROLES.MASTER) {
-                this.primaryMasterName = cluster.name;
-              } else {
-                this.managedClusterName = cluster.name;
-              }
-            });
-          }
+          });
+        }
 
-          this.multiClusterService.dispatchGetClustersFinishEvent();
-        },
-        error: error => {
-          this.clustersError = true;
-        },
-      });
+        this.multiClusterService.dispatchGetClustersFinishEvent();
+      },
+      error: error => {
+        this.clustersError = true;
+      },
+    });
   }
 
   redirectCluster(cluster: Cluster) {