Fixes date (quay#1212) (quay#1221)

stevsmit · Steven Smith · web-flow · commit f666037273bd · 2025-02-24T16:09:35.000-05:00
Co-authored-by: Steven Smith &lt;stevsmit@stevsmit-thinkpadt14gen4.remote.csb&gt;
diff --git a/api/master.adoc b/api/master.adoc
@@ -108,6 +108,20 @@ include::modules/robot-account-permissions-api.adoc[leveloffset=+3]
 include::modules/deleting-robot-account-api.adoc[leveloffset=+3]
 //search
 include::modules/search-api.adoc[leveloffset=+2]
+//sec-scan
+include::modules/security-scanning-api.adoc[leveloffset=+2]
+//superuser
+include::modules/superuser-manage-api.adoc[leveloffset=+2]
+include::modules/creating-user-account-quay-api.adoc[leveloffset=+3]
+include::modules/deleting-user-cli-api.adoc[leveloffset=+3]
+include::modules/managing-organization-superuser-api.adoc[leveloffset=+3]
+include::modules/listing-repos-superuser-api.adoc[leveloffset=+3]
+include::modules/managing-organization-quota-superuser-api.adoc[leveloffset=+3]
+include::modules/managing-user-quota-superuser-api.adoc[leveloffset=+3]
+include::modules/retrieving-build-info-superuser-api.adoc[leveloffset=+3]
+
+
+include::modules/managing-service-keys-api.adoc[leveloffset=+3]
 
 // team member management?
 include::modules/managing-team-members-api.adoc[leveloffset=+3]
diff --git a/modules/listing-repos-superuser-api.adoc b/modules/listing-repos-superuser-api.adoc
@@ -0,0 +1,54 @@
+[id="listing-logs-superuser-api"]
+= Listing logs as a superuser with the {productname} API
+
+{productname} superusers can list usage logs for the current system.
+
+.Procedure
+
+* Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#listalllogs[`GET /api/v1/superuser/logs`] endpoint to list the usage logs for the current system:
++
+[source,terminal]
+----
+$ curl -X GET \
+  -H "Authorization: Bearer <bearer_token>" \
+  "https://<quay_server>/api/v1/superuser/logs?starttime=<start_time>&endtime=<end_time>&page=<page_number>&next_page=<next_page_token>"
+----
++
+.Example output
++
+[source,terminal]
+----
+{"start_time": "Mon, 17 Feb 2025 19:29:14 -0000", "end_time": "Wed, 19 Feb 2025 19:29:14 -0000", "logs": [{"kind": "login_success", "metadata": {"type": "quayauth", "useragent": "Mozilla/5.0 (X11; Linux x86_64; rv:134.0) Gecko/20100101 Firefox/134.0"}, "ip": "192.168.1.131", "datetime": "Tue, 18 Feb 2025 19:28:15 -0000", "namespace": {"kind": "user", "name": "quayadmin", "avatar": {"name": "quayadmin", "hash": "6d640d802fe23b93779b987c187a4b7a4d8fbcbd4febe7009bdff58d84498fba", "color": "#f7b6d2", "kind": "user"}}}], "next_page": "gAAAAABntN-KbPJDI0PpcHmWjRCmQTLiCprE_KXiOSidbGZ7Ireu8pVTgGUIstijNhmiLzlAv_S3HOsCrKWnuBmoQYZ3F53Uxg=="}
+----
+
+* Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#getregistrysize[`GET /api/v1/superuser/registrysize/`] end point to obtain information about the size of the registry:
++
+[source,terminal]
+----
+$ curl -X GET \
+  -H "Authorization: Bearer <bearer_token>" \
+  "https://<quay_server>/api/v1/superuser/registrysize/"
+----
++
+.Example output
++
+[source,terminal]
+----
+{"size_bytes": 0, "last_ran": null, "running": false, "queued": false}
+----
+* Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#getregistrysize[`POST /api/v1/superuser/registrysize/`] end point to define registry size information:
++
+[source,terminal]
+----
+$ curl -X POST "https://quay-server.example.com/api/v1/superuser/registrysize/" \
+  -H "Authorization: Bearer <ACCESS_TOKEN>" \
+  -H "Content-Type: application/json" \
+  -d '{
+    "namespace": "<namespace>",
+    "last_ran": 1700000000,
+    "queued": true,
+    "running": false
+  }'
+----
++
+This command does not return output in the CLI.
diff --git a/modules/managing-organization-quota-superuser-api.adoc b/modules/managing-organization-quota-superuser-api.adoc
@@ -0,0 +1,69 @@
+[id="managing-organization-quota-superuser-api"]
+= Managing organization quota with the {productname} API
+
+Quota can be managed with the {productname} API with superuser admin privileges. These endpoints allow superusers to manage quota policies for all organizations within the registry.
+
+.Procedure
+
+. Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#createuserquotasuperuser[`POST /api/v1/superuser/organization/{namespace}/quota`] API endpoint to create a quota policy for an organization:
++
+[source,terminal]
+----
+$ curl -X POST "https://quay-server.example.com/api/v1/superuser/organization/<namespace>/quota" \
+  -H "Authorization: Bearer <ACCESS_TOKEN>" \
+  -H "Content-Type: application/json" \
+  -d '{
+    "limit_bytes": 10737418240
+  }'
+----
++
+.Example output
++
+[source,terminal]
+----
+"Created"
+----
+
+. Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#listuserquotasuperuser[`GET /api/v1/superuser/organization/{namespace}/quota`] API endpoint to obtain information about the policy, including the quota ID:
++
+[source,terminal]
+----
+$ curl -X GET "https://quay-server.example.com/api/v1/superuser/organization/<namespace>/quota" \
+  -H "Authorization: Bearer <ACCESS_TOKEN>"
+----
++
+.Example output
++
+[source,terminal]
+----
+[{"id": 2, "limit_bytes": 10737418240, "limit": "10.0 GiB", "default_config": false, "limits": [{"id": 1, "type": "Reject", "limit_percent": 90}], "default_config_exists": false}]
+----
+
+. Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#changeuserquotasuperuser[`PUT /api/v1/superuser/organization/{namespace}/quota/{quota_id}`] API endpoint to change the quota policy:
++
+[source,terminal]
+----
+$ curl -X PUT "https://quay-server.example.com/api/v1/superuser/organization/<namespace>/quota/<quota_id>" \
+  -H "Authorization: Bearer <ACCESS_TOKEN>" \
+  -H "Content-Type: application/json" \
+  -d '{
+    "limit_bytes": <NEW_QUOTA_LIMIT>
+  }'
+----
++
+.Example output
++
+[source,terminal]
+----
+{"id": 2, "limit_bytes": 10737418240, "limit": "10.0 GiB", "default_config": false, "limits": [{"id": 1, "type": "Reject", "limit_percent": 90}], "default_config_exists": false}
+----
+
+. Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#deleteuserquotasuperuser[`DELETE /api/v1/superuser/organization/{namespace}/quota/{quota_id}`] API endpoint to
++
+[source,terminal]
+----
+$ curl -X DELETE "https://quay-server.example.com/api/v1/superuser/organization/<namespace>/quota/<quota_id>" \
+  -H "Authorization: Bearer <ACCESS_TOKEN>"
+----
++
+This command does not return output in the CLI.
diff --git a/modules/managing-organization-superuser-api.adoc b/modules/managing-organization-superuser-api.adoc
@@ -0,0 +1,70 @@
+[id="organization-manage-api"]
+= Managing organizations as a superuser with the {productname} API
+
+Superusers have the ability to list, change, and delete organizations by using the {productname} API.
+
+.Procedure
+
+* Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#listallorganizations[`GET /api/v1/superuser/organizations`] endpoint to list all organizations:
++
+[source,terminal]
+----
+$ curl -L -X GET \
+  -H "Authorization: Bearer <bearer_token>" \
+  "https://<quay_server>/api/v1/superuser/organizations?name=<organization_name>"
+----
++
+.Example output
++
+[source,terminal]
+----
+{"organizations": [{"name": "fed_test", "email": "fe11fc59-bd09-459a-a21c-b57692d151c9", "avatar": {"name": "fed_test", "hash": "e2ce1fb42ec2e0602362beb64b5ebd1e6ad291b710a0355f9296c16157bef3cb", "color": "#ff7f0e", "kind": "org"}, "quotas": [{"id": 3, "limit_bytes": 10737418240, "limits": []}], "quota_report": {"quota_bytes": 0, "configured_quota": 10737418240, "running_backfill": "complete", "backfill_status": "complete"}}, {"name": "test", "email": "new-contact@test-org.com", "avatar": {"name": "test", "hash": "a15d479002b20f211568fd4419e76686d2b88a4980a5b4c4bc10420776c5f6fe", "color": "#aec7e8", "kind": "org"}, "quotas": [{"id": 2, "limit_bytes": 10737418240, "limits": [{"id": 1, "type": "Reject", "limit_percent": 90}]}], "quota_report": {"quota_bytes": 0, "configured_quota": 10737418240, "running_backfill": "complete", "backfill_status": "complete"}}]}
+----
+
+* Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#changeorganizatio[`PUT /api/v1/superuser/organizations/{name}`] endpoint to change or update information for an organization:
++
+[source,terminal]
+----
+$ curl -X PUT \
+  -H "Authorization: Bearer <bearer_token>" \
+  -H "Content-Type: application/json" \
+  -d '{
+        "email": "<contact_email>",
+        "invoice_email": <boolean_value>,
+        "invoice_email_address": "<invoice_email_address>",
+        "tag_expiration_s": <expiration_seconds>
+      }' \
+  "https://<quay_server>/api/v1/superuser/organizations/<organization_name>"
+----
++
+.Example output
++
+[source,terminal]
+----
+{"name": "test", "email": "new-contact@test-org.com", "avatar": {"name": "test", "hash": "a15d479002b20f211568fd4419e76686d2b88a4980a5b4c4bc10420776c5f6fe", "color": "#aec7e8", "kind": "org"}, "quotas": [{"id": 2, "limit_bytes": 10737418240, "limits": [{"id": 1, "type": "Reject", "limit_percent": 90}]}], "quota_report": {"quota_bytes": 0, "configured_quota": 10737418240, "running_backfill": "complete", "backfill_status": "complete"}}
+----
+
+* Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#deleteorganization[`DELETE /api/v1/superuser/organizations/{name}`] endpoint to delete and organization:
++
+[source,terminal]
+----
+$ curl -X DELETE \
+  -H "Authorization: Bearer <bearer_token>" \
+  "https://<quay_server>/api/v1/superuser/organizations/<organization_name>"
+----
++
+This command does not return output in the CLI.
+
+* Use the link:[``] endpoint to
++
+[source,terminal]
+----
+
+----
++
+.Example output
++
+[source,terminal]
+----
+
+----
diff --git a/modules/managing-service-keys-api.adoc b/modules/managing-service-keys-api.adoc
@@ -0,0 +1,107 @@
+[id="service-key-manage-api"]
+= Managing service keys as a superuser with the {productname} API
+
+Superusers have the ability to create, list, change, and delete service keys by using the {productname} API. 
+
+.Procedure
+
+* Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#createservicekey[`POST /api/v1/superuser/keys`] endpoint to create a service key:
++
+[source,terminal]
+----
+$ curl -X POST \
+  -H "Authorization: Bearer <bearer_token>" \
+  -H "Content-Type: application/json" \
+  -d '{
+        "service": "<service_name>",
+        "expiration": <unix_timestamp>
+      }' \
+  "<quay_server>/api/v1/superuser/keys"
+----
++
+.Example output
++
+[source,terminal]
+----
+{"message":""}
+----
+
+* Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#approveservicekey[`POST /api/v1/superuser/approvedkeys/{kid}`] endpoint to approved a service key:
++
+[source,terminal]
+----
+$ curl -X POST \
+  -H "Authorization: Bearer <bearer_token>" \
+  -H "Content-Type: application/json" \
+  -d '{
+        "notes": "<approval_notes>"
+      }' \
+  "https://<quay_server>/api/v1/superuser/approvedkeys/<kid>"
+----
++
+This command does not return output in the CLI.
+
+* Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/{producty}/html-single/red_hat_quay_api_guide/index#listservicekeys[`GET /api/v1/superuser/keys`] endpoint to list service keys:
++
+[source,terminal]
+----
+$ curl -X GET \
+  -H "Authorization: Bearer <bearer_token>" \
+  "https://<quay_server>/api/v1/superuser/keys"
+----
++
+.Example output
++
+[source,terminal]
+----
+{"keys":[{"approval":{"approval_type":"ServiceKeyApprovalType.AUTOMATIC","approved_date":"Mon, 20 Jan 2025 14:46:01 GMT","approver":null,"notes":""},"created_date":"Mon, 20 Jan 2025 14:46:01 GMT","expiration_date":"Wed, 05 Feb 2025 22:03:37 GMT","jwk":{"e":"AQAB","kid":"<example>","kty":"RSA","n":"<example>"},"kid":"7fr8soqXGgea8JqjwgItjjJT9GKlt-bMyMCDmvzy6WQ","metadata":{"created_by":"CLI tool"},"name":"http://quay-server.example.com:80","rotation_duration":null,"service":"quay"}]}
+----
+
+* Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#getservicekey[`GET /api/v1/superuser/keys/{kid}`] endpoint to retrieve information about a service account by its kid:
++
+[source,terminal]
+----
+$ curl -X GET \
+  -H "Authorization: Bearer <bearer_token>" \
+  "https://<quay_server>/api/v1/superuser/keys/<kid>"
+----
++
+.Example output
++
+[source,terminal]
+----
+{"approval":{"approval_type":"ServiceKeyApprovalType.AUTOMATIC","approved_date":"Mon, 20 Jan 2025 14:46:01 GMT","approver":null,"notes":""},"created_date":"Mon, 20 Jan 2025 14:46:01 GMT","expiration_date":"Wed, 05 Feb 2025 22:03:37 GMT","jwk":{"e":"AQAB","kid":"7fr8soqXGgea8JqjwgItjjJT9GKlt-bMyMCDmvzy6WQ","kty":"RSA","n":"5iMX7RQ_4F_zdb1qonMsuWUDauCOqEyRpD8L_EhgnwDxrgMHuOlJ4_7sEOrOa3Jkx3QhwIW6LJCP69PR5X0wvz6vmC1DoWEaWv41bAq23Knzj7gUU9-N_fkZPZN9NQwZ-D-Zqg9L1c_cJF93Dy93py8_JswWFDj1FxMaThJmrX68wBwjhF-JLYqgCAGFyezzJ3oTpO-esV9v6R7skfkaqtx_cjLZk_0cKB4VKTtxiy2A8D_5nANTOSSbZLXNh2Vatgh3yrOmnTTNLIs0YO3vFIuylEkczHlln-40UMAzRB3HNspUySyzImO_2yGdrA762LATQrOzJN8E1YKCADx5CQ"},"kid":"7fr8soqXGgea8JqjwgItjjJT9GKlt-bMyMCDmvzy6WQ","metadata":{"created_by":"CLI tool"},"name":"http://quay-server.example.com:80","rotation_duration":null,"service":"quay"}
+----
+
+* Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#updateservicekey[`PUT /api/v1/superuser/keys/{kid}`] endpoint to update your service key, such as the metadata:
++
+[source,terminal]
+----
+$ curl -X PUT \
+  -H "Authorization: Bearer <bearer_token>" \
+  -H "Content-Type: application/json" \
+  -d '{
+        "name": "<service_key_name>",
+        "metadata": {"<key>": "<value>"},
+        "expiration": <unix_timestamp>
+      }' \
+  "https://<quay_server>/api/v1/superuser/keys/<kid>"
+----
++
+.Example output
++
+[source,terminal]
+----
+{"approval":{"approval_type":"ServiceKeyApprovalType.AUTOMATIC","approved_date":"Mon, 20 Jan 2025 14:46:01 GMT","approver":null,"notes":""},"created_date":"Mon, 20 Jan 2025 14:46:01 GMT","expiration_date":"Mon, 03 Mar 2025 10:40:00 GMT","jwk":{"e":"AQAB","kid":"7fr8soqXGgea8JqjwgItjjJT9GKlt-bMyMCDmvzy6WQ","kty":"RSA","n":"5iMX7RQ_4F_zdb1qonMsuWUDauCOqEyRpD8L_EhgnwDxrgMHuOlJ4_7sEOrOa3Jkx3QhwIW6LJCP69PR5X0wvz6vmC1DoWEaWv41bAq23Knzj7gUU9-N_fkZPZN9NQwZ-D-Zqg9L1c_cJF93Dy93py8_JswWFDj1FxMaThJmrX68wBwjhF-JLYqgCAGFyezzJ3oTpO-esV9v6R7skfkaqtx_cjLZk_0cKB4VKTtxiy2A8D_5nANTOSSbZLXNh2Vatgh3yrOmnTTNLIs0YO3vFIuylEkczHlln-40UMAzRB3HNspUySyzImO_2yGdrA762LATQrOzJN8E1YKCADx5CQ"},"kid":"7fr8soqXGgea8JqjwgItjjJT9GKlt-bMyMCDmvzy6WQ","metadata":{"created_by":"CLI tool","environment":"production"},"name":"quay-service-key-updated","rotation_duration":null,"service":"quay"}
+----
+
+* Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#deleteservicekey[`DELETE /api/v1/superuser/keys/{kid}`] endpoint to delete a service key:
++
+[source,terminal]
+----
+$ curl -X DELETE \
+  -H "Authorization: Bearer <bearer_token>" \
+  "https://<quay_server>/api/v1/superuser/keys/<kid>"
+----
++
+This command does not return output in the CLI.
diff --git a/modules/managing-user-quota-superuser-api.adoc b/modules/managing-user-quota-superuser-api.adoc
@@ -0,0 +1,69 @@
+[id="managing-user-quota-superuser-api"]
+= Managing user quota with the {productname} API
+
+As a superuser, you can manage user quota for specified organizations.
+
+.Procedure
+
+. Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#createorganizationquotasuperuser[`POST /api/v1/superuser/users/{namespace}/quota`] endpoint to create a quota policy for specific users within an organization:
++
+[source,terminal]
+----
+$ curl -X POST "https://quay-server.example.com/api/v1/superuser/users/<username>/quota" \
+  -H "Authorization: Bearer <ACCESS_TOKEN>" \
+  -H "Content-Type: application/json" \
+  -d '{
+        "limit_bytes": <QUOTA_LIMIT>
+      }'
+----
++
+.Example output
++
+[source,terminal]
+----
+"Created"
+----
+
+. Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#listorganizationquotasuperuser[`GET /api/v1/superuser/users/{namespace}/quota`] endpoint to return a list of a user's allotted quota:
++
+[source,terminal]
+----
+$ curl -X GET "https://quay-server.example.com/api/v1/superuser/users/<username>/quota" \
+  -H "Authorization: Bearer <ACCESS_TOKEN>"
+----
++
+.Example output
++
+[source,terminal]
+----
+[{"id": 6, "limit_bytes": 10737418240, "limit": "10.0 GiB", "default_config": false, "limits": [], "default_config_exists": false}]
+----
+
+. Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#changeorganizationquotasuperuser[`PUT /api/v1/superuser/users/{namespace}/quota/{quota_id}`] endpoint to adjust the user's policy:
++
+[source,terminal]
+----
+$ curl -X PUT "https://quay-server.example.com/api/v1/superuser/users/<username>/quota/<quota_id>" \
+  -H "Authorization: Bearer <ACCESS_TOKEN>" \
+  -H "Content-Type: application/json" \
+  -d '{
+    "limit_bytes": <NEW_QUOTA_LIMIT>
+  }'
+----
++
+.Example output
++
+[source,terminal]
+----
+{"id": 6, "limit_bytes": 10737418240, "limit": "10.0 GiB", "default_config": false, "limits": [], "default_config_exists": false}
+----
+
+. Use the link:https://docs.redhat.com/en/documentation/red_hat_quay/3.13/html-single/red_hat_quay_api_guide/index#deleteorganizationquotasuperuser[`DELETE /api/v1/superuser/users/{namespace}/quota/{quota_id}`] endpoint to delete a user's policy:
++
+[source,terminal]
+----
+$ curl -X DELETE "https://quay-server.example.com/api/v1/superuser/users/<username>/quota/<quota_id>" \
+  -H "Authorization: Bearer <ACCESS_TOKEN>"
+----
++
+This command does not return output in the CLI. 
diff --git a/modules/retrieving-build-info-superuser-api.adoc b/modules/retrieving-build-info-superuser-api.adoc
diff --git a/modules/superuser-manage-api.adoc b/modules/superuser-manage-api.adoc
