v7.25.0

Download

Pelican v7.25.0

This release introduces an embedded OAuth2 issuer as the OA4MP alternative third-party copy enabled by default for origins, a web read-only mode for servers, and periodic encrypted database backups. It also includes a broad set of improvements to the client, UI, director reliability, security, and federation operations.

Breaking Changes & Upgrade Notes for Admins

[Cache]: [Admin Action Required] Override the new storage-health defaults on caches: set Monitoring.StorageWarningThreshold: 92 and Monitoring.StorageCriticalThreshold: 97. The defaults added in #3241 (80/90) sit below typical cache purge watermarks, causing the Director to filter the cache before it can purge. The knobs were unhidden in #3453; defaults will be fixed in a follow-up release.
[Origin]: Hardened the POSC plugin to prevent startup across filesystem boundaries in #3269; Added POSC bypass filter for monitoring paths in #3297

New Features and Enhancements

[Origin]: POSIX origins now validate filesystem permissions against namespace capabilities at startup in #2881
[Origin]: Added an embedded OAuth2 issuer in #3151
[Origin]: Third-party copies are now enabled in origins out-of-the-box in #3148
[Origin]: Integrated the N2N plugin to automatically map FederationPrefix to StoragePrefix for XRootD storage backends in #3111
[Servers]: Added periodic SQLite database backups with compression and encryption in #3154
[Servers]: Added a web read-only mode (Server.WebReadOnly) to restrict mutating operations via the web UI in #3205
[Client]: Improved object ls output with sorted entries, terminal-aware column formatting, and clear directory distinction in #3250
[Director]: Director redirect information is now probabilistically added to plugin output class ads in #3177
[Registry]: Displayed registration type explicitly in Registry’s WebUI in #3218
[Origin/Cache]: Presented the registered server name provided in Origin and Cache’ WebUI #3220

Bugs Fixed

[Client]: The client now accurately reports when a token is not sent in #3223
[Client]: Preserved PreferredCaches ordering against responsiveness-based reordering in sortAttempts in #3253
[Client]: Fixed token discovery logic in #2846
[Client]: Fixed checksum verification for mismatched algorithm types in #3174
[Director]: The Director no longer stats more caches than it intends to provide for sorting in #3179
[Cache]: Caches now always use the federation host for the metadata discovery endpoint in #3268
[Cache]: Disabled client x509 by default, as most CAs will no longer issue certificates with both client/server auth in the EKU #3202
[Origin]: Fixed Globus origin to correctly handle non-existent directories in #3186, rejected multiple exports #3170, and OAuth flow requires Server.EnableUI = true #3144
[Origin]: StoragePrefix and FederationPrefix are no longer validated the same way in #3267
[Servers]: Configuration values marked as hidden are now hidden in the config editor webUI in #3222
[Servers]: Downtime scheduling now prevents an end time before the start time in #3243

New Contributors

@Macman1234 made their first contribution in #3098

Full Changelog: https://github.com/PelicanPlatform/pelican/compare/v7.24.3...v7.25.0

Changelog

4af7489c69d0366f5de029a895e161ae3c4c1633 Bump versions to v7.25.0-rc.4
b18db8afaaf516092b4e5e9646b2cd18dfc5d302 Patch PR #3312: Restore sssd-client in non-OSDF Origin images
8a0100d9433aafc11a90f88fee7d88815e9243c7 Patch PR #3426: Fix SSH backend "missing port in address" error when origin runs on default HTTPS port 443
fc6b13ea33a57e1fd08289dc4b9049c33c9d50ca Patch PR #3438: Mitigate storage perm check false positives on stat-unfriendly mounts

Changelog

569203c190dc041c6af7822d02e69e441140c6f2 Bump versions for v7.25.0-rc.3 release candidate
3825dcce877df254ad7043bbd0d9a0ebde9345c6 Commit generated docs
d7804190cefb0a0a48553ba7e1e39737df28348b Fix broken derived code (no angle brackets)
87fa1d584f92970ed79b4e96bc161e5aee9f9dfe Hide rclone and SSH origin from docs navigation while keeping pages reachable
e216c6091d4cd6a7485cd743e9e3c7f1e6aae880 Patch PR #3389: Patch built-in issuer refresh token expiration fix
c86d51515506b99cd1654d84de4c32de852cf788 Patch PR #3399: Patch bug fix for client's ability to stochastically request Director redirect info
6d2411514b95550a9937920ef8505304363f8927 Patch PR #3402: Patch to hide docs for non-functioning features
1771d8cb3fc74ac9db2dcb02d3d9903dd7a3db8f Revert "Patch PR #3402: Patch to hide docs for non-functioning features"

See what gets patched into this RC in https://github.com/PelicanPlatform/pelican/issues/3354

Changelog

9472596f80474843a55208e0befeebd88bd702c4 Add ADIOS configuration parameters
2485d3476a3223114182a1357ce62a5507c4d3f7 Add ADIOS origin export validator
56462aeb28ef2724a71521d0c890ab8e9599d760 Add storage.create scope to TestCLIAsyncGet token
7189a13ab2986dc5666dacf728d1995fb9d2f95c Check w.Write return values in ADIOS integration tests
db58504316a8332b0740080bf8b3386fa0e599fd Define ADIOS storage type constant
110e16cf837a250d9566844c16d5cdf98c3a38e8 Do not use an external container image layer cache
89f1bdadb47384fade4dbbcaa7c3446413d70183 Fix syntax error due to a cherry-pick
91bf51f989fe363a5c1e8e9225411bbbfa4f24ee Implement ADIOS WebDAV backend
7f3c2d698018201c582cc0f434c959e95033b3de Replaces the the service URL with the proper probe URL
457633e2e6da6bc9c018784a99650e11beb27342 Tighten auth
f53f44af7c1f8fbf70819efe97628519060ba648 Update directory listing title assertions to match actual output
656ec0f14772d169bd272e9fa530646ae19ee507 Update test
d0dce7ebd875b05c417b8ea9d15e1d13757ad1fc Update tests
db51c0f5915a803e7538c72f9df6c7730f78489a Update version to 7.25.0-experimental.10
ff1c1f35a4ff7551a0d4832c5a405e0e0ad59bc3 Update version to v7.25.0-experimental.9
f08642e6e50daecb6fc9d62cd538ae4d99484476 Updated version number in web-ui and goreleaser
b1db579af386a3832e4d776f2c890d2fc4193628 Updated version to match tag
481b401df8d76446b744950f0f937620601dca78 Wire ADIOS backend into origin server
92ae6ba064a32f96fad9442d303b5a53683e7383 fix: update goreleaser config for v2.5.1-pro API compatibility

This patch RC resolves a known vulnerability. It also installs the multiuser plugin from osg-testing repo to fix segfault.

Changelog

68516a2d993cdbb82f2e8013f003ed0c7b056f73 Update version to v7.25.0-experimental.9

What's Changed

Adios backend origin by @turetske in https://github.com/PelicanPlatform/pelican/pull/3265

Full Changelog: https://github.com/PelicanPlatform/pelican/compare/v7.25.0-experimental.8...v7.25.0-experimental+ADIOS.backend

Changelog

7765e0aa4ea0734c4e219ab8090564a9b3d3c0eb Add more thorough support for eviction and purge management

Changelog

2e8b57f2aeb0e8c03835ba33d4ebbc10876b2cbf Add sorting to UsageCounter
1b49fb4bd696c8f6e3429f4f0be29433b8d70f09 Allow retry of concurrent MKCOL
259129ec86a3df680c44e1b174d396b6b9c0e47b Invalidate token caches on namespace changes
ad0cba608a07095d4afddeeb829da5e3383451fd Make log level tests more robust
fa5594681d9385aaea4d41dd36d7610179835429 Refactor usage to consistently use on-disk usage, not content length

Changelog

137b9e9ad2f6adbd039b32ea0124e60da2129089 Add tests for SetBrokerURL
fbb7ea441dc9751b96e3a1be8639e796f3ab642f "Silence usage" for 'pelican token' commands
99ab90b4a86a69c36cec12c6acb538b164dc805b A helper func to consolidate the common logics in Server APIs - Also improve the registration deletion API to check the renaming server entry in a race condition-free way
6eccefa4cb0ab9be2291703dbc8067d79882051c A safer approach to handle server-set downtimes prior to 7.22 - Build a UUID set from federationDowntimes - Strip any downtimes synchronized by Registry already, from the downtimes provided by server ad
b19bd01ab4421ed139a202b83ffecfcd74e3b817 A third attempt at cleaning up Windows ordering issues
a0271d5d0ca7a4f53ae04b50e6064edbd69137bd API endpoint to get server local metadata
b737260d65314c714601b91ca91921c6140174f6 Account for cache usage at object creation time
6fc2312e04bcd6e3831c83b4910f872c2f2cf85c Actually capture "trace" level logs in 'initFilterLogging' and 'SetLogging'
1409b95aaa4c3323c7fa3e6a1bc50b504c0e0324 Actually start broker if the broker is enabled in the director
0bc9695e389d6ae35d34a90f49a0131c889341fb Add 'info' sub-command and backup metadata
6df3d5e6bcca27344fee93ec3da854adfb4160ac Add 'tls: unexpected message' as a retryable error on an idle connection
f66796a06627760cd32680553c96afe0e1cfb520 Add @williamnswanson's language tweaks to Docker persistence docs
e583ad2b74956a3f526ed0d8763058638d40497b Add AI-generated planning document for client_api server.
cad2b928830892a30a7e18148bd739a2f056f27d Add Adaptive Sort knob and touch up other constants
9a53ecf39999d5e6c1c865144ebc3fee0616878b Add CLI documentation generator
981352d7e290296b833a27e649a4473410bdbeea Add CLI for introspection of the cache contents
c092c27fd40e0fdb3b26b99f7f16f597631cac07 Add CacheHit field to developer data
edc55528d3c9a47fd383906db8a5104b33fc74f4 Add ChecksumMismatchError comment to IsRetryable
fb67b8e22111fd4c943ae3c37aa983905a31d703 Add ClassAd configuration support for client
51e5dce9cf97f5746963fd63525ea112664768c8 Add Client.EnableOverwrites parameter and implement overwrite mode
6150e0f8c0b42612db326e76f7abba9413af5ecc Add Contact.ConnectionSetup error type (code 3006)
6c3134bab12c47269c99d372390eabf9208e68e2 Add Copilot instructions for Pelican repository
b60e16bc2bf94a827064dd2343ae47c239f5af55 Add DELETE endpoints for swagger
f5b853ada2eeffb778cfc5e0406447562b30b1a2 Add DELETE endpoints for users and groups
938f10e30b1069de55ea1562aa537493075a675b Add Dark Mode in Fixed State
fd8f0b96503103c7d25cbd7d9f105237b0ceb4f0 Add Depth to allowed headers
a7f9853f004e0b1348c954064d747c5bbf76409c Add Documentation for Error Codes
015b6f9c3393fc2b9257116c7f5ea07463c574ae Add E2E test to assert that stats are being produced and metrics are being updated
dac40338cf655fbb90ff984190a2351a40a58ae2 Add E2E tests for Pelican metrics
3255db5aaf908a24c357cc744f74364825be8ec2 Add GetEnvVarName() method to all parameter types
e47c1bce6902ca7e7f708cc3e6079695d0a8fc4f Add GitHub OAuth2 authentication support
05a7c1a362759ab8f9d5e42e5cb34d1d6cdab97d Add GitHub action to check for large objects in PRs
8c8843e4fed8fafad532a8e674989c80af981cfb Add GitHub organization support for group-based authorization
bd27df380051d4b2f51401c1f037ded1f58e52b7 Add Group UI
86fecb86c813c71238dc9913864ea467a3559995 Add HTCondor integration test and update Dockerfile
da4a50784d05209678b24438818dfe93883f0802 Add Logging.Cache.Lotman parameter and plumb into xrootd config
cb304d0fe0ea4ae7afd1ca6e0be28904f9ad5e95 Add More Descriptive Confirmation Text
934a87a999fd52f94d064b568402036e39493925 Add NPM formatter Move hooks to different stages
de687e3915b6fe567d34cb8468aa6863a74a4466 Add OAuth2 client management API.
f50a058125ee8ca88794ff52bc3b3121cea20782 Add PROPFIND to accepted CORS request Methods
bd6a250b0baa620c2f1579a3e1e84895989521fb Add Panic level mapping for consistency with other logging configs
46315f03db03c07d41786d4ada544d07eb46c0e9 Add Plugin.DirectorDecisionPercentage configuration parameter
e7c9cd1242eb572c877c20a4f70eb26d92bb0d5f Add Property Based Tests for HA Directors
69c635ee41e45d86765dffba9853e07001ea6bca Add RFC 7592 support, allowing detection of validity of clients
f15c1d1e585a7362bd0a122b3e6a3231838896e8 Add SSH storage to the supported cases
9d24fdd7d15bea27db9a11c22c61d34da71869d8 Add TestAllocateMemoryError and update errorAccum tests
300d4dc693a5f3fe6378a216e4ff413863a2cf13 Add Transfer.ChecksumMismatch error type and standardize Transfer exit codes
80e968318c261a361952cac7fd4aae602a818a7f Add --direct flag to the command line
84338c99078975eb8c8f29718a12322bf672103e Add Server.EnablePKCS11 config param
31b142ab5cb522b9c72c529e24035b391262c561 Add Server.EnablePKCS11 setter and update package-lock.json
5701b3e809b4751b2c0e317f7bcfbad613dfad33 Add a few eye relief whitespaces for config print commands
0e2dc1d82c070bde04457ebb3288c56d492f6e0d Add a helper function and struct for capability name conversion - When an Origin/Cache running Pelican before v7.22.0, they are advertising with the old names. This commit converts them into the new ones
6c6ecd3061485e0e0c7def407b39ab6544ed2507 Add a regression test ensuring path.Clean is always present in the authz code
5bcc2ba89ee084a138b69e0e7c3be14803c2863d Add action to check if the current branch is rebased on main
4816bbd3f49ca4e0a053fc7c1e2b4029a475ac2b Add additional CAs to the trust store when containers start up
8327b9aede50d0fa1acc30e218ab9ab6f1fb1d00 Add additional comments based on reviewer feedback
d843c4a9d332f7bbc108c5478699b0ecd872b2e2 Add additional docs related to bootstrapping config location to params page
891e998b9b56092074435ab9b0bcd99fcc64fd2d Add address file functionality to write server addresses after startup
b5806967a7c3dd974ab44ddb56342581fe524c6c Add advanced section on Pelican's authz systems
d8d80d86496be6af75ea4426a6ed6d74de3c0492 Add alice user to pelican-dev container for multi-user testing
29986c21590e471de10f5c724b79b4384b43d5f9 Add alice user to pelican-test container
b9cad33cda31c77398a5e2083a75a3e74482c66c Add an --inplace flag to object sync and get
dcae926813df8f16308584104126cd8722712bd1 Add analyze-tests job
4a6e380d9465ab2fb05a40306ce2058cebe5045e Add audience verification for the POSIXv2 origin
044ef06f950d6376784f273ae8371c2bda12233e Add back in generated params that were lost in rebase
cfbda66425c3f5ebe66f2eb6482d31cc76548c6a Add back logging under trace level
9702b720af67c713696c7243c279057157aa55d9 Add basic unit tests that would have caught TTLCache key mismatch
7617e37a60bfc51cc8b66c4889f27a83045e7890 Add basic user docs for working with protected data (tokens)
d3cd6c2d2f88fbde7e4b00816f646ef0f65395f0 Add bootstrap support for gotestsum installation
c7166bfb037c93416a14c35eeb94ccb69084ad51 Add callback mechanism for runtime parameter changes
2b3d7a2048437f99fc350dce6572300f2d48d3f2 Add cleanup function and properly set command args
a9e084e89001fbaa0f1675e5b6fbbf41d1a23311 Add client defaults
f419e5baedcdc185a518af78285470470838aabf Add comprehensive documentation for Pelican HTTP headers
c2db839c6bb40bce3690fca9b7d007566e57f027 Add comprehensive persistent data documentation for Docker containers
d760b29373152ce1619e4cd5e6ecb45e631e50d3 Add comprehensive status-code tests for download/upload
cb2a26b6b4667f48f235c91d3a219092deda9ca3 Add comprehensive tests for InvalidByteInChunkLengthError wrapping
08083da4215ead5dcbf69c98bb7d4bdb1777605f Add comprehensive tests for new features
8132b3a677d4e869c860923817f7aca7ba4bfccf Add comprehensive unit tests for wrapDownloadError
4499ca654d062f0bdbd8c601c2b240ab0dadeae6 Add conda-forge installation documentation
72676a959ea8b6f64b8ef6bb850435bc970989ff Add configuration parameters for auto shutdown - Also set the defaults
8249a252448fa879255ae00a4c82a51e12ae5c42 Add control for user to choose sort
f12ae1a30d6ab6ef928192320277e7cbd9d54fae Add control for user to choose sort
8528cb984f3e19ef5b58a8b02cf7e2edbc52d5c1 Add devcontainer configuration for GitHub Codespaces and VS Code Dev Containers
dd03fd8c4549c5252e5a3126349f3ea87b84e741 Add docker-compose method for developing website
81583684171a4cbae223d8dd5f63144026c1c770 Add docker-compose method for developing website
a0014ebcfea6eb928ccbef84bda8448980531053 Add docs for Key Auto-Generation, Multiple Keys and Key Replacement
a7738cd0280ddd2449a7a88a10996c96f94b502a Add documentation
fea862300fc8c8bcf65d3dd638d47f197c2d9a53 Add documentation pages for Error Codes
d2d4527b3bfca0d92e92efc60f2ea01129a75a29 Add e2e integration test for POSC origin
69372ab9d16751cd828a0bdbe0d2e083ecbccd6b Add e2e test
39795aaee809a4e7c93797f14ed69e67b8208207 Add extensive Globus and WebDAV E2E tests
c3a2457c013ee8773c3f31f1e829852c1b6ff74f Add finite timeout to connect test
51153be8145bde40b09b6dbef87ffce1fdd71e8d Add forgotten go generate outputs
11b30ef9cdf225dad577ef6464d1efb637ec75ae Add gotestsum and logrus test hook for cleaner test output
fbf4d728c88ade5e8fca7d04d40646aa048082bd Add header response timeout to the list of retryable WebDAV errors
4fee278f19c7f8798e100e611e6280c509fd1e53 Add health check for available free space
e81d2c426009b701d5cf2f1eee5133996ab09a4d Add helper text to user form inputs
9d954268b6e830559874baa3b515b1c4f50ba2e2 Add human-readable String() method to improve log message
375e21c59c97db382287f969d0bb21c5a57ca77c Add implementation of disk usage monitor
0758f6169f369b9fe6f3d173f0039b3a8897ef37 Add in the identity module; new umask test
0eeca0652f3ece0b9905a7d72ccd31c2d351aa1f Add in typing
9cf9f38f0cb0185eeb95fac8e5689cfd10566a42 Add initial documentation for the SSH backend
8eda24d55703305c075e0789f422a1bbcdee805e Add integration test for GetEnvVarName with viper
7ac2e2b2e2ea196efcc6c83ced1b322467ff329e Add integration test for site-local cache
ac589fb926327806393fc1bd688781787fe223d5 Add introspect commands to documentation
e34f47a0b8e76bd042149797d5a1a5c4abc1ccdb Add io.FS interface implementation for Pelican client
c41bca01f70c8947491e012f1b2220a0be2c09c3 Add io.Writer/Reader support to TransferEngine
ffb7f9f0b05c8e88d1d5d82f409b5633b262f71c Add issuer to user table, integrate with existing groups code
06df2606e245aad55b7d8981353446610f87414e Add knob to disable client X509 in Caches, error if enabled with bad cert
eb153e814fe2c885d80a34d6b649507b884f45f2 Add link to Worldwide LHC Computing Grid in WLCG Profile
e09812e0c322db323f26f53bb8bc8eb1da479d13 Add links to OSDF sysadmin docs
58301aa7a64b4c480be37ffb05cb5e8087315f74 Add metric to detect attempts to get fed info from Director
ee839342c15a6f3b9238c0c5fac05bedb3c60034 Add missed tests
bc0926a6bf3805ac811f2cc4bae18676d0270e53 Add missing Origin disk usage calculation defaults
5caeefedbcd7a753836066816422728825562e81 Add missing POSIXv2 configuration file for origin_serve tests
2e6cd1e6b4bcdbf035b6a5731d4f005c659821ff Add missing config params in the example
dcf82dd68ee4dff3bb607a1855fd34f14333db3c Add missing file
2a222d6396d6d121fe5f17a2f296074429e9051a Add missing return
3b51e1ed78515cda71e5ef8aa2771dfd6c9b5f6b Add missing ssh-auth auto-generated commands reference page
9a6ba3e0da73ff06bdf4bc5373e24df0b3d5fed4 Add missing storage health consumption health param defaults
b2fed86495d7add2f4459a4d2825ef3ea9f35dee Add more docs review feedback, touch up some language
13f55bd15ba8a28373552f73f7c6980bdf8b2c73 Add more logging for failures to understand CI issues
119800c01cf386ffa90193879b92d07f84c704d2 Add new "tunneling" mode to SSH backend; various quality-of-life fixes
5dc8f02ec7d2a1fc2d5500a1905022a87519f331 Add new 'Cache.EnableSiteLocalMode' config knob
d7e8a68c69b60ae4a87d8313be2f2625a8aacf0b Add new auto-generated documentation for the rclone sub-command
939bba20ece35dd7395111b5d01649ddddec5a95 Add new client API for asynchronous client execution
2d12d8683f29001c46dd68b4b26ef90c877d74fe Add new documentation pages
76edea849efdbdbfb447ee676531101db1356df7 Add new fields to AuthorizationTemplateForm.tsx
86b9fa423b600681a7a2d558a48c8dd915f10092 Add new fields to AuthorizationTemplateForm.tsx
0f088e3db2af3c023aeadc88583c4bf47778a3e3 Add new fields to AuthorizationTemplateForm.tsx
0cc9a26bc20620f5190121748af78b7f9fee30b6 Add new fields to AuthorizationTemplateForm.tsx
1c6026a3b84c32fde304a64c71e3349a7bd53bee Add new introspection / cache interaction APIs
53f041ae0574caf40d59d6a4d3d8895b75b7a630 Add origin/cache-set downtimes back to server ad - We should not provide 95% info in server ad but hide the remaining 5%
0ff80984e3cd7376937f3f9abe0c1b6e2fc0f6fd Add other backends (HTTP/WebDAV, Globus, S3/blob) to internal Pelican
e3cd87f8058db6e6bf023ec12b354e48668a729a Add param that disables Director's hosting of federation metadata
812dd6b357ad5b502fc9d61fa7e7df856f18ac92 Add path sanitization to prevent relative directory attacks (..)
08476bde9798035e7321252720eaf753fa8cf731 Add pelican credentials token setup command with credential file support
2551f8ef88bc4da6e5c81790a14ad5ce704bf230 Add periodic SQLite database backup with compression and encryption
957ebdf1cc78046c590ccbbb84e20f3eaaf2b273 Add periodic metadata comparison loop
fbdb1025667ffc3a64a1851a6b079d9d90e72eda Add placeholder
6fa1eaa06c2966c1c692d39e71dd522e0076a421 Add placeholder to Dockerfile
331c8464fb4b2737fb2f4d624a68991c74e4760c Add pre-commit documentation to CONTRIBUTE.md
911bbbc8fae0322ae5c2f29b57510ca8b0e66d0e Add pre-commit/GHA linting rules for markdown (one sentence per line)
dbb3fed63d0a1938d9d0b709eea3cb2ea072b713 Add quick reference table for essential volume mounts
263198ee7a342b53552c1200cf0103b298bb2b91 Add range-reader tests
29fcbca403e8ebabc543268aab9ed9eda8efe525 Add recipe of getting the public JWKS key from the private key
4940a96be60292983f0d76cf162ab7ea1e3b5766 Add regenerated error_codes.go file
4e2d6b73fc175832d20f75d2113df3786b9fe7ac Add remote path to all transfer attempt URLs
0022aba33bce4b386e10d359b0755373218806c0 Add retry logic for PROPFIND idle connection errors
2af1503380b139da9d59e7e750b2cf0199cbc4b6 Add retry on a HTTP 400
ac76b68523827867949265edb0cb79b53fd05c94 Add runtime-configurable annotations for parameters
ec0434b2ce9d418766814b160287bf1cc1b8d6c8 Add scheduled macOS/Windows test workflows; extract scripts
97f6e30c56da233224291e695c42d0f3b73f0f43 Add server ID to local DB's downtimes table
04c8bb1e6840b5e7ee0b85a6ce3347fb15384115 Add server lookup by prefix and return server ID from registry
90871696f6a64f22866a48a9998304238eabf29d Add single-object groups/users APIs and update members behavior
3fcb51fce8ca6fac5fc3e2fe9c3aa6ded460ca59 Add support for --dry-run in the CLI
d5e7c01b750cda5915d4077e9594dc19e18fe588 Add support for COPY verb for POSIXv2
3e6a5ac4b63ad061cd9737e4b12b6bca93c06e56 Add support for JSON-based output
2f798fab1813ec9eba70f32b4614447c14473959 Add support for disabling direct reads
c3713cdaeff0964a0fb7fac0035c3251e2ec455a Add support for issuer-per-namespace
35cb879d46864856b40438455b242e1e7dc1d2ff Add support for multi-bucket backends
c9e767631edd41de7d92906d7a840d28f2b73ed0 Add support for prestage async command
ddb01fbe6b08fd11e75a6fdffe54271777e606f8 Add support for prestaging API in the cache
5a1b3b5e236f00b7681fa95cfa0456ef5570c83e Add support for setup of rclone
6a46f695744673dd0c1ef4762dd280fe8bfc7f23 Add support for the registration access token (RAT) on the client side
2b0f116ee0ddb5818e0f54158b99c739f01c4d7b Add temporary log level change feature - core implementation
60b2406edd63130816bb62a61f5cac366f028d23 Add test failure analysis for JUnit artifacts
4e350cb846a5332cf291230b79d01efa6e8b44ea Add test for preferred cache env var
dc487c146cc356143ee72e0270fd4b74eb50d218 Add test for proxy connection error wrapping
cc2db7bca97d229b0fc2ff98965b30c72f9f15d7 Add tests for HTTP status code error handling in federation metadata discovery
dd1b352e2caa6bcd3a783c460e94753d0f4d7d5e Add tests for NetworkResetError wrapping
88a2e75e489ce750d1e194b4906a9ea61d880776 Add tests for function without them
8058c8e1b43f706e5e2257384aa365396e527efd Add tests for the OIDC discovery handlers
8bc890a9ccf7c7c9acaaa7feb4326ec42ee000c2 Add third-party-copy (HTTP COPY) support to the client library
b3b04c90bbf81ff6005128e16b6776b2e54ca776 Add tracking for consecutive auth failures in Client - Retry up to 3 times before giving up
703237eff8b1f40a7c7f2889f6ccda637dc124a1 Add transfer error infor when director can't be contacted and when a local file can't be found
b5ef1ad4e49a4b95591841dc3e19bb553de5e0fa Add unit test coverage for the directory listing
5b128d2ea8b1d9afbc71875ed9a26aab6dc0dec8 Add unit test that fails if deprecated config replacement lives in defaults yamls
0c2cdc2d32796d43df89375553de6951fcb8257a Add unit tests for TPC (monitorTPC, mock HTTP COPY server) and integration tests
60a441463f8c7550c16b2b24f1c6a0df807ea8b2 Add unit tests for apikey command
c5b73b1004d19be36789429a1092addd815c39fa Add unit tests for tokens
e2ae9ea01c4479b0d52c0881777ad7aa180cef23 Add user and group update functions
3bc139f406fa61f3d6a666850b90ee91f952139a Add util functions for temp file names
a62dbd69e75fa6442807e6e8886337f96c7aa5e3 Add xrdhttp-pelican to the GitHub Action install script for OS X
a02cd07ae3e1afcd72b3cd2e31474165959bcf87 Add xrootd-style monitoring packets for the POSIXv2-style origin
88f104ddfc729f44ef203589b9bf6d9931958389 Added a counter to mark skipped uploads due to 403 errors
a7b9e8bbcb9c019a92606dd78a3ced7571d1bb16 Added a fix to a test that wasn't using windows seperators
513a13a4f891b4503b453750d732539e856a4058 Added a guard on the defer close to check for nil watcher
529f43d99a033eeb85424402bcf44d3062ca9dbb Added a test for downloadObject directory permissions
f7bebb8b9380b779fd040d3c10ac82623abe2a99 Added comments to verifier and checked for empty collection id
81b9ce6b2ddfddc317e25faec62687f9653fbf6b Added depth limited recursive listings
6900761283706942aae8981a27caad321d6e78f2 Added foreign key reference to group members table
d3cf5b66cce84c452bd1f0f467bbb1c91fd00caa Added missing case where we fail early, but after director contact
f51cfbfd38c3da8f6b83209c4d92b134385e0300 Added more details for metrics
be09e17247601317c85d4cbf86dfd2d3909d1956 Added new error codes:
a78abfbe0081ffc92e1d664c988725e17b50c030 Added test coverage for new endpoints and behavior
4e01fac510429f64e9a74e89894099ffc652c934 Added test to verify expected cache invalidation
051e73d041a7c8166c03b272b446b6c744138a77 Added testing for recursive listings
2e16aeee9cb8793fc099ecbfbb47e4ced3cc0396 Added tests for CheckAdmin function
f9560443d513a000a0fe6402a49ffb7252b20469 Added tests for new sync functionality
203ad4161f8eef35b1bef3f3060adc101ebda21a Added tests for temp file creation and cleanup
c16d37bb3d46b42c9c2d4521a114173375bb7ca4 Additional Windows fixes
688f244f54ac5a60bb264bc5a956368b0d0dc50e Additional missed v1.25 references
4ae1e61439024f80c1e2d65aea0d0fde0945ce10 Address PR feedback: checksums, token handling, refactoring, and tests
a3b6e58eeb7d11f297bec2007f5247157893848f Address PR feedback: fix copyright year, use config utilities, extract downtime check helper
ba097136901e20878b1e2946d4e45365cfd25f65 Address PR feedback: improve log messages and skip tests during active downtime
8cb85aa3aa12d26f2d275be1483fe1db9a47eecb Address PR review
c40d93f59800f63c9159664f96d147de62a791e8 Address PR review and other updates
cbb15d12b3acafeb2b85e4334526fd5228d5dc01 Address PR review feedback for POSC integration
f0ea166c00849f09057b35201b9e355c61a737f2 Address PR review feedback: improve formatting, clarity, and best practices
48f8cad7ac6e025b99e3b81c95220c69075c34cb Address PR review feedback: wrap init error, add DEK zeroing, SQLite integrity check, timestamp consistency, and server type comment
4c571f4e18cc550c2564c20b0e40c0df010d67bc Address PR reviews
7e592f4045971cb484560612871ab67b6e6d720d Address PR reviews
033e0e1a82413633d978a6c8f17fae1d40c8723b Address all code review feedback - refactor transfer handling
df9a29e175595521c203571d4a89dcd7c16c9158 Address code review feedback
c44ef2eec0d05b494802618ff9706f862bb9d4a4 Address code review feedback
b24f0ef963897fa095e97305895f580efc1d5d43 Address code review feedback
f28ecf78f273bd40576ea80d5d7c1a2f6a94e8c2 Address code review feedback: extract TTL cache option and improve error message
ed6168f9ad6aeef425730f3306797b09d7f74d4f Address code review feedback: fix trailing newline, improve architecture-agnostic paths, and simplify instructions
83092256f1f2184f9aec02582afe98de5abf5e39 Address comments from code review.
0e95857d0cb823486d828812cca88dc6665cd0ea Address copilot code review comments
8acc545611757faf646c05a12b77a37023a1f860 Address forgotten comment update
a131950b30c2aac17b3a864395f4ecf54bafc7d9 Address pre-commit errors
6213d6937bcc29969dff53ebad64223f73612bf0 Address review comments
117365eb764e4dcd2c8ed3a7a97605e3efe6a955 Address review comments
83cfb7517b95376c1de55db93db36910c859e355 Address review comments to split content-vs-object size
8e741c74d2a8208005d1447e9f0ff4e465ce29b7 Address review comments: visibility, copyright, and refactoring
e618e382568450a031637a269938365eb211884a Address review feedback
1828a55eea99607f50a692e7cddaf10cd86e52a7 Address review feedback
a3764581cf9b16694474db82ac5485542d4c52c7 Address review feedback -- update code comment
3b017744f64583ab62bd2ab57a29d3564f54dc2d Address review feedback on AGENTS.md
894da1385865a17e379da4d8ee1e7d25df053825 Address review feedback on test and client code
8f8aa24e9c08a7c1d9e9636cfbb1bd42251904a3 Address review feedback: move gotestsum to system location and add logging hooks to federation tests
4627f23bd0dd9a081250cda0b9e1a38a6970cf81 Address reviewer comments
18f60994ebda056c56bd8e553437fd8be78b21ae Address reviewer comments
afa87673573874bf7317466a4d27cace08bc1ff9 Addressed PR comments
c68bc6cf602110c1bb58d56908b74344f457e2b3 Addressed PR review requests
83c732773a2897c9321e17acb2ce37dbf462afce Adjust fed token dirs and their perms - Setup the permanent and temporary directory for the federation token file and sets proper perms. - The permanent directory is always owned by xrootd user. - In normal mode, the temporary directory is owned by the root. While in drop privileges mode, it is owned by the pelican user. - This commit is updated after the changes in #3081 to catch up the fixes in the set defaults process
4026f0e1f41146f0eb7ee4deccbd2094b332a1e0 Adjust fed token test to reflect that fed root is used as issuer
5e0c2d680447b6ac87b3b61e11ca3b8a1203e6a6 Adjust federation discovery so we always find a federation host
57ab3f6289293cc8348c5ff6ead5ad9147064ad0 Adjust foreign key relations
b3bdc51d09789c5c07154f2836fa46e487128d44 Adjust help text w.r.t. Globus OAuth2 callback URLs
6e1ab481009672dbc442afd0cc1edd2341cd533a Adjusted NewFedTest to have OIDC files for the registry
40f4681e90721551ca40743cd6d27e19ed2c1443 Adjusted a test to account for the change in error wrapping
61bb7781a59e55f7d1837832c49c5404768253e1 Adjusted tests that now have changed due to the iota changes
9878146b0cd7695bdb84695deffdbda9d9562c2c Adjusted tests to work with the error_codes.go
1f31110d22810df4a374c88aa2658c435d782ee9 Adjusted tests with registry serve to use OIDC
5e01b7734618d0660f391ed28ccfcbc6a09c1e7e Adjusted the get_put_test to use OIDC for the registry
c6f39cc33ff8587741a52e0dd5e3797738ee6539 Adjusts the http tests to use PelicanError
058ecee381c0b42812d6d850a0d94043517a774d Align all local metadata with its counterpart in Registry - sync the exact metadata from Registry - update unit tests
daab6af41570be09fbbd7e0bda3164df7ed49893 Allow a few retries for object age to appear
07bcd87be09562ee8670ec05526920939a8dda1d Allow admins to add/remove members in any group (#3049)
7e38a1fcb34a7e541261307f9a6adab2dddf7db8 Allow passing of GORELEASER_CURRENT_TAG env down through containers
8b2f9637725f1b33a8e76211355224acf07339ef Alphabetize Xrootd components in parameters.yaml
74d8be966008a44c26095a2cb66175654cab97f7 Also serve openid-configuration from the test server to avoid race condition from updating to the director
fd06c456b3ac50a3287e2ae9c46a2305e807fd00 Always require fed discovery and provide unit tests for discoverFederationImpl
6857da958e2516bb9906b6a8a662c1c7a32eb581 Always set listings for service-generated authfiles
884dab374ec6e86b7eceb6cca02be7bfcf128478 Always use param package to get config names
cd219ffd46cb8d42d99ab83b709fad02398d924a Append a foreign-keys parameter to the DSN at initialization
c77138a7539bca3828c9b805273f2e8734dc8e0f Apply suggestions from code review
a405125f8d1e8a065123fe93d186e22fd4e3cc95 Apply suggestions from code review
7352b9e3915a13eea89f81c92076a11e92518a9d Apply suggestions from code review
e1f94cbde0b4a46a16b6c2b4652a4cd78a1d7350 Apply suggestions from code review
581a610f1a3a7aef921f6d60ce81cb1bf47f5b85 Apply suggestions from code review
60635e371b14c5e9074254d93e935d105c41c62e Appropriately wraps missing token errors
9b7685d86eee24f843801e8886a9a3e32e40c669 Assorted clean-up of scheduled tests infrastructure
139ab9a73f44aad1f9f0e0956b0c9f5246dae14a Assume missing Depth header indicates a stat
49eff4c7f88c3e9c4a63c60f06091c1d5f735a7b Attempt to add a form for the storage directories
63118d84ab5f817f896ec6a4069b8628eb47b3f8 Auto-shutdown on stale authfile/scitokens.cfg - A new state to track the result of authfile/scitokens.cfg update - A new health component OriginCache_ConfigUpdates to report the result of authfile/scitokens.cfg update to Prometheus
a73c6109bb010a7ef66d2240eb566bddca427165 Autofill Security Contact If From Origin
9a52f51b936b31a6a553d787feddb28e5bcb30e6 Autofill Security Contact If From Origin
6f3aa9c2f9e78a4df7c8caf183bbb8278dbb0a2c Automate startup of the client-agent server
79b2957b31d9a62157687bcc3b2ea150157c97e2 Automatically cleanup the stale entries in the servers and services tables - They are caused by the damaged foreign key constraint in services table and we didn't update webUI to use server deletion API in time. - See https://opensciencegrid.atlassian.net/browse/OPS-438
bb94460b3cc858089292ddbb47b729b7beb2adef Automatically refresh the namespaces when scitokens.cfg changes
9b1c5118189355248db6bb3f3b88e80b757eb739 Autopopulate Federation Information with discoveryUrl Contents
08b936386d60ff8b1381ee57e60a5668d0e54584 Avoid panic when DB is not yet initialized
1b11126031f22bcc7a78d4c412a30e23b4246206 Avoid potential panic in prometheus if xrootd decrements destructions
bd1f4a3bcb7b018e62b1df9b08037f611550b6e6 Avoid shadow err in broker test triggering races
5e7aa23f60c130aa1c7304849cfca11306691511 Avoid shutdown errors from killing the test
704cff0fbefc917d8f43f8b3f4390396a9f9d376 Avoid triggering a redirect (which can cause a second use of one-shot connection)
dcae737bf7b224e321e0582b3ec4cad5893f5d75 Bad pelican url now wrapped as a SpecificationError
13968f0a8996e55e40900efce3c499e06f0e3a6f Be consistent about choice of TTLCache keys in Director stat utilities
5c25640e33afe455b796321bb8c64ad38674cc66 Be consistent in authfile ordering example
1229cdc2ad5a2e091e201d4941179ef72479630f Begin drafting troubleshooting guide
987c5df903fb7cf5e21bf7aa7a9fe2e4a605e4e9 Bring down xrootd metrics logging to trace
e3deab26d9fea9cf4b03a00794b80d1ed4894e1f Build Pelican using the most recent version of the toolchain
13dbf34296a058c6439246d66df38187fedb95d9 Build params after upstream overhauls to param package
1e9d4a550b627c1d60d56c54604bdaafa6a4ca79 Bump XRootD version to 5.9.1
723268fafca6ae5701a45cb9e0989caf1d3a909c Bump XRootD version to 5.9.1-1.3 to pick up the full PKCS#11 support
ab222afb27f15e3aef8b6177a50ef4d374ed4d22 Bump golanci-lint version to try for golang v1.25 support.
5bfa551aec17b930d2267664bd3ec4af019a4cb6 Bump next from 15.5.3 to 15.5.7 in /web_ui/frontend
7df1ccad2df397250ebbdfe13ee36cf883468813 Bump osx installer
30d99d56b39828534b3a4ae97d62bd1e6d6dff33 Bump test timeout to 1s from 200ms
702a15ffa72fa649601e9bfc3d4fd9d90b98c36c Bump version of xrootd-s3-http to v0.6.2
fca9d7b59a1adcbb5730bde425ef018e2d245710 Bump version of xrootd-s3-http to v0.6.3
ee3ffb95d7c920f2f47715078ffcb1752bf2440f Bump version to 0.6.4
38ec12c5fd22f734aa9fefe4c7b060e7e988007b Bump version, build from source, and pull in libraries in osx installer
d0acf5ffa520ce6a5dd4dcbf9c91fd3a16bed78b Bump xrdcl-pelican to v1.6.2
0d2c3639f592f86b2e185198acf7e2b86e1c9b6e Bump xrootd-s3-http version
f03f3f4dea0cea30c5bf8f2a89efd65b8c2029af Bump xrootd-s3-http version to 0.5.3
021826fbc01d4cb1dd0f1000e5e271ef2e311a2d Cache PKCS11 Info and harden socket lifecycle
4cbd6fbc6e46f1e319b5acf3a47cf96647365da4 Cache director lookups
c8eee05f4907ff5fc086cb0b9d0dcfec939dbac8 Calculate the file stat in memory
c6ce903e839d726563bc52294a45d7e51ebacf4c Capture timeout config at launch time of LaunchXrootdMaintenance - avoiding Viper race issues
a7d5097380b60afebba6ae75f425c54a16a1c1e6 Centralize the incorrect‑password handler - Swap repeated password‑error blocks to helper calls
98c02320c6190e9ff4122c76f726b481b95e20a5 Change XRootD release
a26210f01ce05f5ec46d425b4f59e94a17a9cb47 Change command to apikey and prevent never expiring tokens
b1690f06ba38047c75de1b373c18111a2d46e0a0 Change error handling to proceed with tests when downtime check fails, add comprehensive unit tests
b0a40117199d260cbae4e0ac97a138fe634be02e Change language to refer to a 'mint issuer', not a 'get issuer'
f1c00fc838c8b53b1fa64ee5f003cdc68ae7385b Change ordering of loading POSIX OSS plugins
528ced2dda571a57b431475b7bb731bb17efc49a Change param name to Server.AdminGroups
59f2fc7bfac168f5fc5bda7149882e1c091b629e Change the blocking channel send to a non-blocking send - Use a select statement with a default case - Ensure that after the first shutdown signal is sent successfully, subsequent attempts to send (from rapid maintenance cycles) don't block
f1a78b4569f09cc49497c8133dce692af9be6ded Change to expected FileNotFoundError
a47acad160301a4b51d31ded8d4a65a987d840fa Check TLS credential files permissions in drop-privs mode - When drop privileges is enabled, check the pelican user can read TLS credentials. - If it doesn't, shut down the program with an error message to prompt the admin to manually change the perms. - Pelican won't automatically change them because these files are usually mounted from outside filesystem. Pelican can't change their perms. - Note that XRootD does not need direct access to these files as Pelican copies them to a runtime location. - Skip this check on Windows because few Pelican server is running on Windows. syscall.Stat_t only exists on Unix-like systems (Linux, macOS). On Windows, it doesn't exist and causes a compile-time error.
83440e954f915ac192f5ded05b12bd70bd9378b5 Check error on additional 'param.Set'
0fe2ac3263dac1b02e3c5ad9b207b79cd4080704 Check errors coming from 'param.Set()'
4e0a0b3d85e530113bd0b4dcf15dafaab13397a5 Check local filesystem before contacting director
f04b8fb218ccd274a84ff6f1a885e55974cb5186 Check the approval status of the server with multi services during auto-registration - If the server has multiple service registrations, check if any of them is approved. If not, return an error. - Use config param to prevent checking the approval in non-prod env
22abe93f17b2983c275a5c8121e4211057219d2c Check the documentation for OSDF's default parameters
e814bebb1c25b8d59889f241fea4187ebb1e07de Checkpoint: address first round of human review items
f189510fb5c1daa4b6d3a6d3da4988b097937c0d Chunk objects across multiple local files; tweak transfers
ba17c2479604195f1b4e3d9863ddc9a48ad20857 Clarified disabled test message and changed error code
f6c4d94cc5381da38b0bc144ff5f840ffd6d0977 Clarify authfile ordering example
5b7adc1b806e42aacb26a187b7c9909d3919e31f Clarify comments
8197052428c673234ca3a21a09bdcfd726618a08 Clarify non-root user information in README
b9a6f47917c7926081ce17b746ce268b0ea3dc8a Clarify the TLS cert filepath in drop privs mode - No matter in normal or drop-privileges mode, the TLS certificate file used by XRootD is always runtimeXRootD/copied-tls-creds.crt. The other file runtimeXRootD/pelican/copied-tls-creds.crt is just an intermediate product in drop privileges mode
959a62496a1ac495274780bdb332d59c43a4272b Clarify user-created configuration files in Copilot instructions
3aac34d1aaf5d9e61b9f66e79538a03ff3431d60 Classified errors when local stat fails on upload
cb2ff1ca2ffddc23145b1ec0b0b75abeb2bbf94c Clean generated URL paths
87d67f29bffceb01ef42d510e8877e2cf44f2693 Clean up a few error messages/small issues that caught my eye
90f8971aef0745e1494d8d8039b090c42a597b81 Clean up and document OA4MP QDL scripts
43c39d985a37b90aaf82fd76788ff0dd86aecc71 Clean up and document the list of ignored files for image builds
f582758e244269212db6f774f24b51815d98b657 Clean up deprecation handling for Xrootd.Port
d90a1abed7f2a4d06c9d90d2f327ec5e5964e470 Clean up pet peeves I noticed while fixing logging bug
ba8c7057212a31bd613c412d825f90aa430c5847 Clean up some outdated info in the Docker docs page
6be8ac1fc17ea007ff770c454f617b7e15ffb38d Clean up vars/files that are no longer used
df3ed3d9fdc2334053f0b86ea924ce7ec2d79fc4 Clean up white space
53f297b4b275920701fbf273f1c93219a4df3921 Clean up whitespace formatting in test helper function
e26f3b67f70eb0579ec2b5358b880d83ae1da85f Clean-up testing workflows in GitHub Actions
9ed00b20438876d34b07fa59663b2e66c6b61247 Clean-up the config for 'typos'
bf41a7fb11aae85edcc4b5cf96b22ae9441c8eb0 Cleaned up user extraction from bearer token
a667373d2c6dfee5fb0f0c7af3cabe8c57fb40ce Cleanup AI slop
0e55d30ed070632dc8aca42ef26e1f4db1b238a2 Cleanup of error handling around expired tokens and federation token failures
7f8803ca8e02c2646896d9e4fde6b7a3fee475c3 Cleanup pre-commit/linter issues
b76f514c34520e49d08b2c6a6c32dca661ef5dd0 Cleanup shared-vs-regular authorization
de43c23870890498a90d40145e53cea49bf75f84 Cleanup stat_test to avoid shellcheck issues
4304afbc7e33d1d1b3a19b7e040ee540056bfa49 Cleanup tests after modifying discovery process
b68a03fd63da38c66897615f2aab6bee4ae03ebc Cleanup to use type-safe param name getter
bc5e0fab8cf433d67a0942fb4b6e250423b3c755 Cleanup unused metrics and unit tests
b7766870560b07aa0ac89d3417fe923447b3afb1 Clear broker state between test runs
5b915c0702ac379f373ba62246c633be76e4d32f Client modifications needed for the local cache
350af60bafd52f17c45a4d0cc01ac6887d96f64a Client.PreferredCaches now can use a comma as seperator
5de4ce32fab9223d0866d89212ae647fedd6efeb Common Broker URL getter for Origin and Cache - Checks Origin.EnableBroker or Cache.EnableBroker and sets the broker URL appropriately
3dc865e12c21887a94c7736bcc03c8df114e3fb4 Compute appropriate upload and download URLs based on redirector base
fbc2e9f6a8ab8470d22a38b7076fdf7dcd7ed359 Configure setup-go to check for the latest patch release
e0bccacb803756cdb27642f3c515f2c7feffccb4 Configure xrootd: run with pkcs11 helper when enabled - Plumb PKCS#11 helper-derived env vars (P11_KIT_SERVER_ADDRESS, OPENSSL_CONF), and stop injecting a client key file into XRootD when the helper is active - Right before we render the XRootD template, ConfigXrootd now rewrites xrdConfig.Server.{TLSCertificateChain, TLSKey} fields -- When PKCS#11 is off, both fields are set to the same runtime file (which still contains cert+key), so the template produces the same path it used to. -- When PKCS#11 is on, Server.TLSCertificateChain stays pointed at the runtime cert file (no key), while Server.TLSKey is swapped out for the pkcs11 URI (pkcs11:...). That URI needs to reach XRootD so it can use the engine to sign with the helper. -- Note: the template sees whatever is in the XrootdConfig struct at render time, not the raw config parameter. - Unit test: assert the runtime file only contains cert material when pkcs11 signing is active
3c589c1d1c322bac2a07d4f1769ba098143ed467 Consistency and transaction conflict fixes
d2292e077e89d793d003a378f1de439207297d7b Consolidate config init between client and server
3252d38b3d34c49c6f197c5b02f78b01e30b5841 Continue despite director failure
fc09b450d4ea169ea8b95b2335576097513b9d88 Convert additional scripts to new random port mechanism
e6407f18129c28f40e4c7cbeee768750518180cb Convert issuer to user Next.JS instead of rendering HTML
8361df102e32ea71650cae6cb936259813678200 Convert pelican configuration to be thread-safe on mutation
db91765cc46c646e1915f3e794adcf276ff8996d Convert unneeded warning to debug statment
b6da3cfa2fc043ee69eb92fde42ce538996ba6f1 Correct CORS documentation to match actual code
938cac8fd56a8a1e03c35233d3277b24a1c4b874 Correct cache usage statistics
991c4989a05f380c2ac19e84ae1c2fdc074f9bd7 Correctly classify response header timeout errors
728b0d0fa2497d8db0088f5e3fcc16fb091926fe Correctly clean up progress bars for completed transfers
e12980acca470736dec40053da0d9a65d863224a Create api-key command
e2e09fc184b0980457e84c9bd64ecb9546ca5bdb Create new migration for users and groups
b657781de7ea789d8d1a6f71d3b998dad775a2ae Create some simple visualizations from the failures
3cb130dd3296423267e3130bc46fe4f3cb594bed DB updates - Add server_id to downtimes table - Rename the service_names table into server_names for proper semantics. See the definition of server, service, ... https://github.com/orgs/PelicanPlatform/discussions/2445#discussioncomment-13621390
fe6e1dd3e387f0db77063357573347c1b62b5538 Deduplicate site-local docs mentions of pulling from Origins
fe843700584861ea70432771973fce09e6601574 Deprecate Debug param and map old behavior into Logging.Level
f5443632c35872ff6b28c806676100d5e24572f1 Deprecate various 'DbLocation' params
b0406ccb72d5e6719f7694eb9a724834ac109868 Developer helper: if S3 plugin isn't available, auto-skip tests
e0987f3cb33c7f5c0a2a3d050e275b5707dd490a Director carries server IDs through ads - Propagates serverId in ad responses, and extends the e2e test to supply IDs.
2a8169b4e75b308fc7cddfbddbdf08df0f04d1e6 Director should provide typical headers for /pelican/monitoring namespace
8858a2d176e4f48aa9110f7a55a7933a0a368541 Disable Broker for site-local caches
85040662e534b9a1dd9528cf4919313e6710e1f4 Disable Director Tests for site-local caches
0035b18a00abef053766e9133420e5bed7f17f75 Disable cache testing if requested; reduces test noise
4337430c583ee4ac9a8b0578ba75adb97591528f Disable noisy tests to make failures understandable
33b35ec6f98e2af25af92b83ccc24cbb62cf7a1c Disable select POSIXv2 tests on Windows
be06f339af2296f7b74abd49485a192a8397f158 Disable touch on hit in namespace keys TTL cache
1e8d9b94de982b6aad00caac192ba622bab1f36e Display all servers' downtime on Director; Backward compatibility for downtime entries set by Registry before v7.22
025225dd9a9106accf0f339b237e70340d9262fd Display metadata discrepancy alert on webUI
737ff8c8520a3a7092bcb8c105b1c4e5acaba1e5 Do NOT disable TLS verification
960080cc8246a844274434890c15d6defd795369 Do not add global transform at the hook level
a455b051d267671593d577ee422e43c6d6f9f4fe Do not configure OA4MP if it's not the used issuer implementation.
a4d9d9a824841b475f78b39708d20cf3c6dd9fd4 Do not log the refresh token received by the client
35fafd9b497a640207812812dbca3a9b4f7d0a3e Do not publicly document parameters that no one should be setting
130360497fe5f8e5ea8b91e8e77c1b09472d7016 Docs for GitHub OAuth
1a41a49e265463b0eab47b7e0cf7c7e1c81ed5c0 Docs for using PKCS#11 to complete the TLS key sign
46b492fc61a48715d137b804d36d625ca00d7266 Document downtime operations for server admin
ef1348ca65f122f48b06fcde6dfe05eb974c0111 Document how to test changes on your own fork
7337131a282a5ec39153d54221ef5d59c4b66e15 Don't advertise caches running in site-local mode
bb4957bd274d47a322938036f10c5f883b311735 Don't apply one-sentence-per-line rule to .mdx
bb40d63d3d6ef1c8a490ca2fc8671f35da6954a9 Don't build package from source
dbb68da1b5d923a0ec2a8305395fe972a13f7aef Don't build test for windows
d17a2e0990c886e0e3a5f3b4433b9d619c8c42a8 Don't check Origin configuration while configuring XRootD if Cache
d19c6c8cb153b5a2d061f3a52f3a896cf5820fff Don't reference nonexistent CLI flag in help text
3391573f5e4d975aff3f6c3dc44d5b2c235b6c13 Don't try to delete /dev/null
f676114f33c616ebcbee5dd99fb9beecbd1c0b23 Don't warn about multi-prefix broker config if broker isn't configured
a6b4082306732089e3782542c3bf2e40ce487d03 Downloads without --inplace will save to a temp file before renaming
ea0118fb1b7e930ee1d9a65e9ce04233d8371705 Drop StatusCodeError fallback from IsRetryable
c54f450737c05f4f3c6b29aeb323ca1bdd9e3731 Drop redundant endpoint that exposes registered server's JWKS
a1d3f56d67e8058405b4dc9908a5caf24b064bec Drop redundant server jwks getter - Registry uses a resolver RegisterServerJWKSResolver() for in-process key lookups, avoiding HTTP round-trips and import cycles. - It's unnecessary to have another fallback HTTP-based key fetching logic fetchRegisteredServerJWKS(), because in this case, only Registry server needs to lookup key. It should not do it by sending a HTTP request to itself.
201acedb15a03b370ab0a21371a257569e1a794f E2E test update
d8399b3835847822acef60715d954fe322130b4c Emit output when there are no failures, use PEP 8-style comments
cd7aba9e4d0f426829a280c50e388c54f9e2abc3 Enable Director federation metadata hosting in test that relies on it
c38ff55e06db678f87d45db1a49c8ae0fb4f9089 Enable Director to scrape brokered Origins.
15a576bc8150b132025b71f11d685819b74cdb45 Enable POSC plugin integration
2b953cc8ba27613e51afa153a2743b04b0bdb4ee Enable and wire PKCS#11 helper for origin/cache - Start helper early in origin_serve.go and cache_serve.go; auto-disable with WARN if deps missing.
40681b378372ea7702fcbfc5db6c6bb62bad1e3e Enable checksumming on write
bb2cfd693c3a2fc71c70ea2239a830bd856cbf09 Enable scitoken debugging to understand Mac OS X failure
e01e6a29edbee8be7fcdecfa913d1290d82d5c2c Enable the build and test workflow to push images to non-Pelican repos
d3671752c427b8a28d67e007d2d1f596f58f9089 Enable third-party copies for origins
86c3eb4d2804e61d65925627e96f915b5585a921 Enhance devcontainer configuration with port attributes, workspace folder, and YAML extension
ae5bf5569acc2868579e66fea5c2379ee9c53e9f Ensure BadgerDB is shutdown before the directory is deleted
d491ffa3bf5656f572567758741dd1be96148f8c Ensure consistent use of require/assert
a31ddf2e761c57e59de0a715813fefe43f2ac812 Ensure goroutine always shuts down cleanly when the context is done
6522dcf33950ccb99ab25307083787f75a461a98 Ensure restrictive permissions are set for the OpenSSL config file at the time of creation
19be478a581ad9489410e0a8b83c994603356fb1 Ensure symlinks do not permit access outside the tree
1c1731994f013e89280f520a7c68965484b774d2 Ensure that setup actions install the intended versions
8fd96a518369a4dae7d10161951c206cea7f27a6 Ensure that stat routines do not block on sending to buffered channels
c5a283830ad9514e96679bbddd65c8f18e2cea01 Ensure that tls.AlertErrors are not classifieds as certifcate errors
171b9d653ca6979144a3f026832a65e510f5d388 Ensure various tests are cleaned up to avoid leaking state
0912d1237aef8d6901fe76b15bf131970fe0db39 Ensure writer is drained before we close the adapter.
dd735f5af3f3ccbfb669926d124544c5f283e66a Even when a server-set downtime is already tracked in Registry (federationDowntimes), we should still check if there's an active downtime for this server and ensure filteredServers is updated immediately
b9b03b028dbde1d78d1bf7886827b695725a5635 Exclude more files from Docker's build context
855577c514cfb8911b5852acc7949776e6e1570f Expanding structure of guide; in-progress
61cb28ae2472afd62275a34a9cd8c2fc3dbda080 Explicitly remove lr privileges for a namespace when it's write-only
e3450743287595b7122214d8c972e2a47984dd89 Expose registered server public keys for the new token issuer type RegisteredServer
0369484d47540c8ebea9370969f0e491a98c04e6 Extract UserId and OIDCSub from tokens in all verification paths
555b33af7432dbbdf15d836fa4a029e4a4f25b5f Extract the Provider/Engine mode detection into a helper function - And unit tests
867fd5359d5525e55e771b7ad869058581edfbf4 Extract wrapDownloadError function from download loop
2d04631e842f1d2cf5f78aff6ca7a13589e78bd0 Extracted the Director test cycle logic into a helper function
728878eca1d28b25e9697cda81cb9f68a8a79b02 Factor out the path manipulation logic
5ad99fd2bc05873810b7490bb3b2167c8290f23e Fail fast when an issuer returns a credential without the required scope - prevent the client from stashing unusable tokens and re-entering the auth loop
b0a0a10164dbd33eee5a1bd556cdb63f03a083b2 Failsafe mechanism to the self-test metric (OriginCache_XRootD) - If the last health update for OriginCache_XRootD is older than maxAge, mark this component Critical to surface stale or missing self-tests.
1476769a3a1315316db416ddf09b2df94071925f Fall back to system config location for non-root users if user config not provided
32b4b231ef66e8fcab248810755dd91fe129f54b Fallback to in-process memory if the kernel session keyring is unavailable
88b05ff8117b38a7b79423466faf515d2ef2fb32 Federation metadata comparison core logic
c2f6ee9c7b4680c60584a7295e995467e7e6cd53 Federation's broker url should not set to itself by default - If the default broker url is set, the federation discovery won't overwrite it with federation's broker url - Only Director run the broker. Setting it here would prevent federation discovery from populating the correct broker URL for caches/origins joining an existing federation.
b6ea046d98455571d201dac3c06d7f110fe8dbeb Filter log lines from the client in the same manner as the servers
1d0ca53913420c224b79a236f54392a5e121cb57 Filter workflow runs to main branch only
2f62e937ca3fc5acefeee58e279b9780ec2fa437 Finish structure, adding todos
dd778ac859fc7115b017b098991fba0c69a1c0cc Finishing draft
90241f318b50c5e30762eb25428aae64a1a44bd5 First pass at site-local cache docs
cd07f627ce407b04de9b1ed46daf03430052a327 Fix "Check Go Generate" CI error
c8605d197b940ed7e20fc7b056b7fbe08001752d Fix "easy" tests that failed upon requiring fed discovery
9825aeff5eed7b272b9d413a1211e12d261f4d52 Fix 'config/config.go::GetEffectiveLogLevel()' to work with "Trace"
d898b8ceed60679ee32849f486d2d9eda8939966 Fix ConnectionSetupError to preserve underlying error When ECONNRESET/ECONNABORTED occurs during HTTP body reading ConnectionSetupError was created without preserving the original error. This prevented errors.Is() from detecting ECONNRESET through the error chain, breaking NetworkResetError detection.
2065bd7b3c7223867d8370a3df046c703e08852e Fix E2E tests for SSH
fbb99458a5c135617144b0adba2479bcfbc984d9 Fix HA Director Fowarding Loop for 3+ Directors
dc90efbada8b45de685e66ab12cc90bec4f21451 Fix HTB cancellation test
a4344c37fee69613e2fc81246c34235f66057388 Fix HTCondor plugin error reporting and improve filesystem error handling
85bb7a10c2e4c2d92bd9d1a43afc162cf88df85c Fix Linter
c15e3557f529d0727850a7fcd6e2eee8244506d1 Fix OSX Installer
96a94b4afae7311fd1f080ccde4102f349952a4b Fix PR validation workflow to detect keyword-based issue links
afcaed66b0990091a38125ca226b3221a048659a Fix TestHTCondorPlugin so that it can run as root
aafcf3b55044494b5889f35bba2888e6d38ef472 Fix TestTLSCertificateError to match actual error handling behavior
efff8da9649011bff6d319d2e333d56b19cf5748 Fix URL cleaning post-rebase
4359b4d53898c4e56f509da481f3527e8ea77ed3 Fix Windows build failure; remove unnecessary chmod
7b4c718abdde89328586696e36ea6c7b01c990e4 Fix a few small pet peeves in cmd/root.go
4a951f5773b42b2646d8f341e7d59e140e024209 Fix accounting in unit test
87f48f4e1d5fe798ad01507947d03ba083c8b1a4 Fix additional instances of 'log.GetLevel' that broke after using global 'trace'
5e0d9655778fcc1ceea2a296e1780f7ed3c977ac Fix authorization errors in POSIXv2
ee4697cc59efadecb212e3961042b989a7feca5b Fix bad Callout type
98a27d19bdee4a8d13f112634ef5d60189028c3a Fix bad copilot tests
a06fc5fd9a057f7a1e1818e6e63ec5a895eb0e78 Fix bandit, pylint, and mypy issues in analyze_junit_results.py
b162e1b1b8b494e8ec0c45677e30eeab52d93a7e Fix bash formatting for Pixi command
27c057b8ec9c7c2c01d3365b4a1ebf4b13c873b4 Fix binary transfer detection
750b1d15938eb1bf048baf194fbe654d58b26958 Fix broken links
1efb054ac0678003185519d064dca330ceeb5121 Fix bug in sorting function
6a8d607f87869836453a485e0eff99daceb9724e Fix bug that prevented Origins with Logging.Level: Warn from starting
088217e13dd2d3536b553beac140aed9e0d65266 Fix bugs in PelicanFS and improve testing
5dbda1c5b7fca9ad71e5f3d5783d5452ee753f4a Fix bugs in server metadata getter - Use a callback function RegisteredServerJWKSResolver to inject a registry-provided JWKS resolver to token package, avoiding cycle import in registry and token packages - Update checkRegisteredServer to use the resolver first, falling back to the HTTP fetch helper - Update the registry side to register its resolver with the new API name
fa237ccb85a4d5087eb720eb5e6e63f185364d7f Fix bugs that prevents origin from updating its own downtime - Registry admin edits to server-owned downtimes remain blocked
3796bc1e887926aecf924babc1490f56d214da25 Fix build issue in E2E test
a2320a1ac1dc0a002fe18ed6f635b116e453e9d2 Fix build issues from new signature
edd44c664aa829dc35b1270ea7dcfef75919afa0 Fix cache usage underflow bug
6c616a727b553097a3d632aed7149c09bcf6d6a2 Fix cache's self-test error in drop privileges mode
d59fc5af67e2b2b4a8bc29cc936afea2c8cb2303 Fix calculation of upload URLs; make checksums respect os.Root
e02b60d763fcc9d25f1f1833d89acb95abc83e97 Fix checksum logic
ec18146b75d0101b582c3731e4ab9174619877a3 Fix checksum verification for mismatch algo types
ad2fe0b47250766f55dee4c5e8b5c45855c90534 Fix client tests that needed to manage some aspects of discovery
902483937f8f73b089401acfd794beb8d6135dd3 Fix code review issues: srcToken URL, HEAD status check, channel buffering
e42e334b73a79f7acfe01196e56acdc4ac8daf2d Fix concurrent map access in removeBufferedHook
68dedf972861a75757721b666b844f7d915d0879 Fix config bug related to origin/cache fed tokens
a4e4c92929164ba3cf8b0434c689e56f9e3bd3be Fix config/logging bug related to changed default log levels
11588e6ff19feeb82bc3c5bf2e796aad9f844bea Fix configuration of Multiuser plugin
4f3fdab88c133427c2dfec24a8665bc633078195 Fix deadlock in the HTB implementation
4f846346b5c30d2bbb7e1326d05ed96b4f90a9ca Fix director discovery tests whose err conditions are no longer triggerable
7432c8fc2f6d512739ae111851675b0903bca126 Fix director tests to fetch server ads from TTL cache instead of using static copy
83a2bdc3b8c15b6bee8d8efc037da74176393174 Fix directory intialization and OSX installer
cd771bd69c3180dcf27170da43aa446c16373153 Fix docs build issue -- no FAQ in main
7b68122d0936199995d7766f4d1d327613936011 Fix docs typos: Pelcian --> Pelican
e74275d1934ea53a2cae403eb37f7290f9211d5e Fix documentation issues from code review
f0f252416cb27a5098ffb44aa6f6e1be45de7ad7 Fix double hyphen formatting in client docs Additional Flags section
9e216175ebd782761b55534bc9fe3a11e0376a4f Fix downtime check logic to match existing pattern and remove trailing whitespace
eeba454a59278f6c5bd9e3907d5d47a67da14746 Fix error message
091959bab75afb7dbde26f066beae5b98419fba9 Fix expected error message
184606f574d43d2190fd3639b072fa27d871e59b Fix failed unit test - Configure Federation.DiscoveryUrl by using the new helper function test_utils.MockFederationRoot(t, nil, nil) introduced by PR #2747 - Use federation's discovery URL as token issuer for Director/Federation tests
59359073bd2a70383b5b01e3603125ee0c4d6c2f Fix failing unit tests
ce1e94eed37e247ebff5db75cf8f11588becb3a7 Fix federation issuer hostname in example scitokens config
2f450604868c3f3c862bacadd90ec89db7d4ea82 Fix final code review issues
6a5bc6a6e987a4dfa76a88438e632da59274ca02 Fix flag formatting in origin and cache documentation pages
d589d46e314272eb15a6de070c98d51c74bda7c9 Fix flakey tests
3da9c2187e28094ad3d45d732492143666270cc4 Fix flaky authfile test
89d5509249f85637fd7bc641246ab3cb8301d7f5 Fix for additional unit test failures
6a508c2f083a0388d286ae8371414753156b918b Fix formatting for deprecated metrics section
d4f83772e8fdaf9917abb97fd9bfc3c1475d6217 Fix generation of test URL for the apiclient
5377537020e8b85b1bacf38b67790ceafd851426 Fix go generate issues
6bceabff412bb8b33deae7ec4b57bf2ad98f3009 Fix gofmt formatting in handle_http.go
db0d5cc03e8b32f6b93735df5b2fba1eaed27b95 Fix gotestsum PATH issue in GitHub Actions workflows
d9a27219f825cec4433ad0e6c8a97a058e4fff64 Fix groups/users migrations
7553d6fa36427b8fbe49bc72a452ceaa0d4cb20c Fix how the client prints diagnostic version information
c7d2968088ca4727c3c862eab72970e2797136f6 Fix http.Transport copy-by-value causing race conditions
9bc4cc32a587c17d9f0bab439e28787e64dbae5a Fix idle test timeout
8dac50286374036676b037770931335c35038bea Fix issue found by linter
e4c80b3543c2bc4a7c08bad87d0a1a06e2d7711f Fix issues caused by rebase
bd7fedb0b0156174b5821d31b638ca6babd86c29 Fix items from code review
b48751681b7e817960c33f34eaa45496e7440a29 Fix linter
86d9a19e24929e853a2e7906128218478efacb52 Fix linter error
9e4d4b98c3e3e512ad06483421008ac79b990ffe Fix linter error
52228ebacb6797a5dea7e8c124c9a8b29883aff1 Fix linter errors
6b1ff7795dc7ce88ce4fc1788fb8a0cc3089e322 Fix linter errors
bbcecc678a733ce7b5979216aaa95ade850152bf Fix linter issue
04abc8745da1e74fe9ba052bc1f85a1011454c75 Fix linter issues
3929533c63a14bfe5dc050995be34f166b0b01b3 Fix linter issues: remove trailing whitespace and update object_put.go to use addQueryParam
b3e27ffe6e6d96f019ee1e536aa9293db2dc8f0f Fix local cache test
093584e1458c6ed699a2399ab9d4cfb8c6fe72ab Fix lotman test that did not assume discovery
127926869593529fe53a307b5ab5e2dd34c5fb37 Fix markdown linter error: restore missing 'alice' in README
af413912f24f03444a7c28a6c904074aaf1faa6c Fix minor potential integer overflow issues
97985a557c2f1907782abf8ee5297a507c896c62 Fix missed linter item
139c92c7d4d1da7caaff25a398913a7a9e7a655d Fix modest build failures due to rebase
cbad691df6e30ec9f2e83280c4d1b89be0ef9749 Fix name of TLS certificate parameter
a03daf7d35da028158540931c52400ab0130a111 Fix new markdown formatting linter error
7f18828f6aa29a0a08c1f4fba83ab9cefd4366bf Fix observed unit test failures
b91b2c0a2b53b8465744e9ef223ff685564b5a75 Fix page name
67df10c0668c3a84a00619f34f079b6fdf3d9c2f Fix param accessor usage in SetServerDefaults to read from viper instance
5e59247d4654c1fc64cd765b1d9c73c46660cef1 Fix parameters.yaml validation errors
aecd9708874d9805761980a49a3b39df0a004f85 Fix parameters.yaml, which did not include "cache" as affected comp for authfile
17b85cb867a265ef0fe0ada0fbea4bd5952e7346 Fix pending request with new channel-based design
94c46954b3054a68615a05b2a13201f2aa205fab Fix pixi exec command syntax
c1a0fa097718f63f03fa3e7f9f096720093c8e2e Fix pointer issue
997e5534bd763335d0157330a45431b611aae1fb Fix race condition in TestDirectorRegistration and goroutine leaks
6568534069006dde890349438fcf772f500d0513 Fix race condition in director advertise shutdown
5ec2e85a29c8ffef9dee85499f2b3f744c2595f9 Fix race condition in stat_test.sh by adding retry logic for 429 status codes
d090d0464419bc3967ced5a2cc14639cd9dcb87d Fix race condition in tests that registered t.TempDir() after registering cleanup cancel
5a37a8e1d7f606408213af4c03c8717130855c05 Fix race conditions in logging
0171df9eedb46155a596de1e67f0aac89189bec5 Fix race conditions with metadata registration
33c0cb69b44553cabbb7187c6692dc2325931661 Fix race when setting global federation info
96e7054aa448f0853ca0bf2d9dd446e950e62263 Fix range read; minio on mac
3831cfd8020cd7fb6d232025c98b316f8ff3c48f Fix setting of content-length on chunked-encoded responses
4a75f8f0f3cd0d6d6ab52a1748d67ef959c8257c Fix shadowing of ctx variable
1b3bf3a86fb3db5e3f095a4e530dba7c2d4dc6ac Fix shell compatibility in CONTRIBUTE.md symlink commands
27dc329b126edd0f8807f2e7515300c15a4b6c6e Fix site local cache test
b808980f3f51f9b81cd816071e4c69b593be9476 Fix small fed discovery bug that caught my eye
e3dbb0b1fe168194aaef08321977f86e93f81502 Fix some golangci-lint issues
2b2a1282be3bc69ac74e79cb5af84cc91903b440 Fix sort algs test to use server URL for avail map lookups
85747de05a9a49fb996afe30001ab822170aa546 Fix spelling error
dc1f55b54898e28a297439195503d0df0479ce6a Fix sporadic TestBrokerApi failure by polling for broker readiness
16ec843c117005e470d46871f33589c6b0cdf880 Fix sporadic TestBrokerApi failure by polling for broker readiness
a6770b486cee60de3d28e98cd5216ee47fa4d373 Fix sporadic origin test failures by using random port binding
6b310e0c9c449678cd7fe338ee20479cb22a79e5 Fix sporadic test failure due to Windows timer jitter
d47843b65f578dd76df49fafa764b35ed5f94037 Fix sporadic test failures from context deadline exceeded during shutdown
efdc169814b775d576579c6c449c9babca7d72de Fix storage health check status tracking
827bb79258ccd4362fda3636a7461450de40e519 Fix swagger docs
9d51b2a16d28a5472f216695fbebe5beae132ac6 Fix syntax issues
ea818ec858981ec7c4c92fa989a2954126cc5741 Fix test and implementation of fallback to "prestage by download"
fa3bd51a96ef9e75a781789dc486c5e349afc461 Fix test imports and simplify InvalidPath test
41b0008ead7164cb45ff2b4133cb98ae12e714b3 Fix tests - allow local and regular cache to serve in the same process
b74680bf98f63cd7fe6bdfff30401a3f5e674616 Fix tests and add user id response to create a user
198a2a9ff03d7db1ba11722e81202f7510089eca Fix tests and if/else handling
8395c202559b76ae286f07ca4aeaa0326f6a8cd7 Fix tests that were missed due to os.Exit() calls
35b7f24e3f9f16793a1e29d48993210f29318b0d Fix tests to reflect new namespace-specific issuer
048793b7cc0200ac6e94bdfc880688685f4506ee Fix the permission and ownership setting for Globus access token file
a972f1920280913d28f1cfa49c5aed10d2152c59 Fix time unit mismatch and use IndefiniteEndTime constant in downtime check
691a82c6bea41ac2405f4b190ea86d8c6fd76703 Fix timeout error check and fix error wrapping
ef673c363a13ab231c66e07fc1c70871a4afee8d Fix timeout of prestage
b2c616d01bee2f592c0f2df74e7e362be64bac70 Fix token tests and token accetability requirements
c1bc7d685f0cdafe4c7efcfc7c512927c791f9ec Fix trailing slash in unit test for root
6b362bdf9e7aee1f853c74f1b0a0a3c4f53b559e Fix transaction conflicts on hot keys
1b2da04ec0c9149c795eb895955a3a1ab82f69b4 Fix type in docs
13dd62a8b79ab20b503640c278691b2bc77c5a99 Fix typo
36ad4ed38e5ff894ad02e3a42ee1a36a955d0b30 Fix typo in cache documentation (the the -> to the)
0159fdc202ac0fd4d710cee8ffbb22e7e3a2d84e Fix typos in api error messages
9492db0819e69a6bfd16b3faf02de04ec94c3769 Fix typos/grammar
08797fc3e222a8d220c25dd34fb167f6b88f7932 Fix unit test failures.
c1522e76cf745175e9f91ac4c428af286805754a Fix unit test failures:
7f9e6cfcaac770276e6737d00be6abf740203c25 Fix unknown config key warning tests
138602df61692d47f250c7ab99f10f562de26f5c Fix unstable test - Set values after InitServer to avoid being overwritten by Viper defaults - Viper parameters are designed to parse string representations of durations - Set a test-local buffered config.ShutdownFlag to avoid blocking due to multiple sends; removed the forwarder goroutine
de9db62e300bd3f62b41afbdc44d7a54d4451288 Fix unstable test on GitHub Action - Use non-blocking forward so helper never stalls - Call cancel() and egrp.Wait() before the temp dir is removed
cf3dbcd642d5595e4371f569f682d498688311f3 Fix use of PROPFIND against director for stat
5123dbdb9326b7359f1511c27ca6efc69d616b30 Fix user identity resolution to use OIDC identifiers
71257975b067eec8865071126c25872e71c87852 Fix wlcg.groups to include groups with collection ACLs
0ac83597684125072418a384029d480a171f180f Fix xroot scitokens test that was missing an issuer
f63e7af19970dca6934c5deb3d8a456b6abd0b44 Fix: Preferred caches not respected when director caches respond faster
3e70ac29ec6098d73828bdba491f71142b975e53 Fix: Windows directory cleanup and timer granularity
6188ac5384411d19b6c08171188d15f55ff34e01 Fix: pass CA certificate
ac23d7c6c1515a4cf9edeb34d5a9a18637b61bfa Fixed a minor loggin issues in the tests
97be4c98bced7bee609dd314880b1447a8b1be0f Fixed an issue where Cache.DirectorTest is not enabled by default
8fb97574aa099a3d969d75e9a0603abc4acf4c71 Fixed capitalization in error message
9e21f422bd9c26d8979a088b93264a27be5f5042 Fixed links and removed the index page
9c2cdf3cba0c4c03dca1ece458597ad20a1c9cb6 Fixed race conditions and added authorization overrides
c1949e6f91a3daaffe71ecce88dc4b132a4f0a91 Fixed time skew tests
cd36c2f777b797afab9fc065dd02ec580e4eb5fc Fixed unwrapped error in plugin_test.go
6595826522a67a847e5c6a6ef172b6ad8e90ca31 Fixes due to my prompts to Copilot; other minor clean up
a55fce79e363810f8b357b3986ce9272dadf109d Fixes from code review
eadec486cd9e660dbdd13726922a3778c70c56be Fixes from the second round of human review
f566b51955be00a003a84e6b03f90d7e744b26fa Fixup Group Typing
551ed3f14bfb9928a0c3a8e0d3093cd6be76c60d Fixup NPM Packages
081bbbdb2181396f0d8e9d411a00213561089b1a Fixup copyright dates
5cd39b0d4dfd648d9151a3949003c150d58d1ba2 Fixup minor lint/test failures
42e62662b15d3751f9579517c0ce91062ce68afc Fixup package-lock.json
d0f62ae22c3beb7dfc3eff568adb975580ed1a75 Fixup package-lock.json
3a747a0b2348efac6c799a6a25af4500eb005e07 Fixup redirection when returning from login
83037464457097bdda4daf099e9662fc911f51e8 Fixup redirection when returning from login
09f6e50707cd19c1a12a646443dfd517fde97ed8 Fixups from review
0e0bbd43f464526306fec1552e8aeba3d8a69f04 Foreign Keys Unit test - Verify that using FKs parameter in DSN in InitSQLiteDB func actually enforces FK constraints
d78b5dd9bba00870de1f32e02680f2b1b420cd03 Format Fix
99a792869dab01a9f681ec5673c23502bc6215d6 Format Fix
5b7f0c7ed63f553f33c0a1744ef419652be51196 Format fix
fb5f73a739ba55dc540852cd0de8c5b082c46db5 Free space in the GitHub Action runner before building images
324c740588c528a3e93bc20fa4bca13b8860dd5c Further comment the QDL scripts that Pelican relies upon
8a7f75e8fcdfec32233efaf42fa9de3bac658ed3 Generate new config parameter for admin groups
b959dc7815f26f4b5a5bec2e36af2e0853e21986 Generate place holder before running go generate
64490972f411a70afcb19aa748498104e5948c9d Get normalized Fed discovery endpoint from config, not unnormalized value from param
f32915969c789e972823be6127bf23e6396fdf44 Get rid of deprecated capability names in API response
941b0cfbb9dc94a60ea4db3853893a83742247eb GetOIDCSupportedScopes() should fall back to the value of OIDC.Scopes when OIDC metadata discovery fails. - To support OAuth2-only providers like GitHub.
b99624807f6ba98ef3a3d6f249a74102e4c41f19 Give 'Logging.Level' a default: none label in parameters.yaml
9ae72dfb743f58b858e004283126874ffa639ab6 Give a busy cache more time to respond with a gateway timeout
ea69f0d0af3114851ca02029a3ba912f4661dab4 Globus-XRootD config passthrough done
5c8a023e3a19218d143b77d3982640f3a8cb1923 Globus-XRootD config passthrough done
08893a06121c8949bf82f95dce22205b9632bd94 Granular downtime scopes
3fd148a636354f3b5eb559e68ffabfb52e21e683 Group/fold npm build output in GitHub Actions workflows
93eb22dede5bfac9514bbfa76d55fb1f57b98346 HTTP Endpoint Tests to simulate /rules and /alert - Removed the simple unit tests earlier because they are covered by the new comprehensive tests
219c5c50f09c400e52868caebc227b2e7a5075f4 Handcraft expired token
40585f834e046d157a36e6e06d053a02b04256c9 Handle Globus directories properly - In config.go, the Origin_GlobusConfigLocation directory (/run/pelican/xrootd/origin/globus) was being added to pelicanDirs and created with pelican user ownership. This caused all parent directories (/run/pelican, /run/pelican/xrootd, /run/pelican/xrootd/origin) to be created with pelican ownership before CheckXrootdEnv() ran, which couldn't fix them because config.MkdirAll() returns early for existing directories, causing the XRootD RunLocation is not owned by xrootd but pelican user and group - Origin.GlobusConfigLocation should be accessed by both pelican and xrootd user, to allow: 1. XRootD to read token files (*.tok, *.transfer.tok) at runtime, to authenticate requests to the Globus API 2. Pelican to write (create/update) token files, see persistToken() - How to let xrootd read the tokens after drop-privileges? The setgid bit is applied to Origin_GlobusConfigLocation/tokens to inherit the directory's group on files created in the directory
60353f6175676d45049f1e688451630c5853aa52 Handle an edge case for fed-in-a-box - Because in fed-in-a-box, the registry and origin share the same SQLite database, the mirrored POST reaches the registry first, inserts the downtime, and then the origin’s local insert hits the unique downtimes.uuid constraint. The new logic in HandleCreateDowntime keeps the insert, but when GORM throws a "UNIQUE constraint faile" error, we update its metadata (primarily created/updated-by), and persist the changes
53d072998876791ce72ee739c201ed5b5a592f4f Handle per-role XRootD restart info
a44209ad7a4ea678002acf9bc1af17f4f58f6701 Handle race condition in registration deletion - This guarantees the server is only deleted if no services remain at that time, even if a new registration is added concurrently.
b0014d986c865b811109c2dc2fd13d8b04599c3c Handle status-code errors via Pelican wrappers
733c17d90a6a20226b30dadce03295b4bfe901d5 Handle subtle WebDAV/filesystem interactions
b82d485ed3e32c51519c3a3a34ee6991c366dcfe Hard drop Shoveler.StompPassword
dfc250cbf64d613a48318839abc0fa5ae22bd17a Have CreateTransferError use client.IsRetryable
3cc1c61ba70a492282c06dacb8cb1024e378f2ab Have XrdCl debug settings match ours
8468afdc5285c6ca3f237ae1e16afbbd22ed59b7 Have a separate timeout context for the shutdown and helper run
c0cf61572a3f17121e9c582b08ac7757700c5365 Have alternate approach to checking cache existence.
db9b20cf8e432dc02b2d89e22e1658613e10149d Have director advertise support for PROPFIND
fe7617574f4d66dc30c645381e398811d0f7ca9e Have gotestsum silence most of the tests; only print on failure
f3c4be6648d6d670ab57fbdd5949311b0b608bac Have more realistic unit test overrides
da93b8b22d2f4be556a5d0bd1368fdcffa7856f6 Heed the warning in 'SetServerDefaults' docstring
b8dc9f1b44d98f04c84689d0cab4e5061edff20c Human reviewed fixes for the TPC mode
2de17815b7afd90a42f853f0aa97ece860207c0e Human reviews for the OAuth2 issuer
c664ebf5626c8724f495208dad60442ee2503e04 ID validation
f9c0eb9525f9888d6959686df5d4c8cda727d4b6 Images: Pin xrdhttp-pelican to a specific version
93f0347fb5681c7d4e370da1ed27e3d90a87e66a Images: bump xrdhttp-pelican version and release to 0.0.8-1
7addfe58c0ee058a2b852bfd9a9db53ac2f36393 Implement Permission Denied error
4ef0208999caeae87a736559337f22f193fe5977 Implement XRootD restart/reconfig functionality
de4c3f1f6c7f21d067d9bf4cb2ac64f8465dd896 Implement generate command
773176069587f9251a8a6090e1ed344b8610c789 Implement phase 2 - CLI integration
230f6506dbfead169255382fb446ca2ed9d79723 Implement rate limiter and Prometheus metrics for POSIXv2
fd0c59894c818e8e324ff31ab01a952f4f931498 Improve Downtime UI
8f3cdabe225509eb611828872b7197761244776b Improve Downtime UI
1f61ba33771865526b9e71886cf90c6ea0ae676f Improve Downtime UI
a97681fa50156e3e25ac8849cd8e9264e2f58508 Improve Downtime UI
0626001d1c968a05ecfe1e8e0dea5d085262f9a9 Improve Downtime UI
f37aa8db7e7696f9d8e638ce003df5a00babc2d1 Improve Downtime UI
66f928581e05e7c01070a17dd9001a6081d7480c Improve Downtime UI
79d9b84314963563ff09f3292f039f94f599c7af Improve Downtime UI
663c3eadd840990b864f52792fd5d08ca4b5f617 Improve Downtime UI
2a89622931ec234c190817852e099a97aaf8d126 Improve PKCS#11 helper wiring and logging
c58ff00744a0e33bff2e8c23bea2cb9ea902c6b0 Improve PKCS#11 in Pelican
99dfa403f93858c379461d1c8badeea25eb719f6 Improve doc description of Origin.EnableAtomicUploads
9d1a996748eff96154d91e69b30da05297148f46 Improve documentation clarity: add verification steps and update devcontainer comments
22ae5f67f39c022555d680474c37c17c011d927e Improve downtime API
ba4b924e0e3a6da1d69bb3c8939da9cfad5737cf Improve error handling
4b99de0a362370878bfa0a2904f00be31eeffc7d Improve error message
7303385157c440288c845a85d432d7557f01fdb2 Improve isolation between unit tests
9856c160527bf2aef80e4e7534e95d183d07a6cf Improve language in docs
81f551a18ab955409e644f5b4d47f7486b595c0f Improve p11proxy cleanup and logging - Since the Proxy handles its own cleanup internally via the context, there's no need for the caller to pass in an errgroup to manage cleanup goroutines - Made the entire Stop() method idempotent by adding a stopped flag and mutex, so multiple calls to Stop() won't cause issues - Made socket file removal idempotent by checking if the error is "file not exists" before logging a warnin - Added special handling for EOF errors in the p11proxy handler. During shutdown, when connections are closed, EOF errors are expected and should not be logged as warnings
f3427e24fbb5b635265d669e66e046eb9cdcecaf Improve site-local cache E2E script to run on Mac OS X
24718c92dd33a8179eb247064cba51aeb1323737 Improve test clean up and logs
b40f7e66de5735c6bee6ff90a700b083e45f7b03 Improve the error messages for when the user provides a bad password
f8f070c53c3fb284ac3f052c883c3dfe8983d309 Improve the federation test for broker
1bef3c0b3fabc95863fe5cb13cd859ea97751ebf Improve the logging content to give user concise information
14f7eb54fa66f443aea4463c7ad63d9d6b57c118 Improvements from human review
d752c87e7d360764385a316526353d4252246e40 Include director decision info in plugin transfer ClassAd
668fa834dd727dd491a037ef1b4abbd1f05b0326 Incorporate William's feedback RE site-local docs ordering
c35ade3f0a62d1a508da390d834484bc41e6b251 Incorporate feedback from review
9f0e66f0510ac56b6cc28fdce269bffb3dac0446 Incorporate server id in server ad
9385c4c5d4dae039fb5067c06ea3d3a84ad3f875 Initial plan
851daca19e0b8542dfef63b0336e69026d5bfd5d Initial plan
14f0b662042ce24ac8d156708ea9dc97d378a3c0 Initial plan
a6d1e57082471b6d3bd592c72b2f004d56f0fc54 Initial plan
09f6c60e291b048c35be0bbe7e8ddf0f8137f32f Initial plan
91a9211e88dd990d53b6bb485f444cfaf363d88d Initial plan
360d99aef227db60515ab70efde7214dc81a9ba3 Initial plan
affce4154fe9adc349a20dffc0e01bae7ed91c61 Initial plan
6f62e110c0e446afe2276888548d5036c11894d3 Initial plan
9cd79f21a0ee3f99a7a52eb0c360be27c8108ffb Initial plan
7d47e1bef84ca9173c61210547538bb905a50618 Initial plan
c1cdf11e1f5eba5bef675ebabc9b12b8403c3545 Initial plan
552c87f175bb310ae3d2da448abc2891e76dd901 Initial plan
cfec4be98c053efc4c7fac1c8fe1faa928b1c664 Initial plan
bde3da9b8eeafcc0f04078cfc19685d364d9ec6a Initial plan
8e9bdddc408b91dd551fee1311da960e9a894fe7 Initial review round of embedded fosite issuer
da3d4befb9d3bd7c7e9c6b21bf1b182a3e16292f Initial version of the multiuser origin
a0bda085fae2fa3ecf02ad7c2ac7e24912e6fd99 Install additional packages into the dev container image
5659c267337ffea6419f68129c88aa01d3216d64 Install go-p11-kit package
ad2ef52f921d39c8e5038a61199d1ad2f638d803 Integrate N2N plugin to map FederationPrefix to StoragePrefix for XRoot storage backends
913bca28f59a55e61de31f49007725829dd181b5 Introduce 'client_default' & 'server_default' in parameters.yaml
952ec737a6d03122d77d3027db3faab6eed0318e Keep env prefix as pelican
921f8b48ce0aafdc5461e4e32da2fcf6e96a5ec7 Keep the table schema, map go struct to table
62eb382ace55ef0aa7cf04addb487d20ca374855 Lay the foundation for using go.mod to define the Go toolchain version
faea00fb65ff176fef83daed916c9b7bb2888873 Lint
998a78a9a40fc07ccec429552f3d7b5b7cf66404 Lint
140747c3ef49f3bdfa3c8b736b606db6efad78ec Lint
a2b92c7bd7410752ed1c48830adb45a20f0f4486 Lint
b7d77d4037c2489ec3390eb59907cdb27c30838b Lint
19fa7e8d790f176c7b68aa075921c4de6d58baf5 Lint
dbb2d42e8d7f76156086e99b2e357a18c84d35c5 Lint
569859de8e120f5e576121b1017e20e136dfe1c6 Lint
94d5e661966f5f7eb959bc777268b32306bb160d Lint
b7a8f4a131ceff0e780d51f7f6844ddc505ca3e9 Load and activate both the default and pkcs11 providers
31d07167214b8282572af849378ecc297f7ef4d8 Log polish - pass request ID all the way through
03ff2824e07ef90cba42d798971cd4a9c962e26e Log the ID token received by the server
3b443c11cbec26e3e9093a2fe2d4e04cd7ec78b6 Maintenance on the "go generate" action
1ffd5be979c701bfdb475ad0dd2a2cc13ad72738 Maintenance on the CodeQL action
d412ecd306568bbf1335ee570515969e24f1d654 Maintenance on the Linux testing action
116c391439d2af6bba8fe05abef0f70ea65df94e Maintenance on the linter action
f05d5ac46ef7076b4a1c6fddc5815253116178e4 Maintenance on the non-Linux tests
233756d1e70ac06564a476322469d9876ce993fb Maintenance on the parameters.yaml validation action
2764e1984ae70b8368b4bd65524f99e213f90763 Maintenance on the release actions
caeff38f04c891c1b72ed5d18adab606baeeca2d Major refactor of pelican_fs.go addressing all code review feedback
8cb0db0d11b7670be307bb8fef2d3077b4ee4941 Make 'web_ui/frontend/out/placeholder' part of repo to avoid build issues
a11a2c92c050bb4d445905b09821dcb2215cf0b5 Make HTCondor plugin world-executable for unit test
e118e8148101ba7df305a06016ffce169adfefcd Make OIDC scopes configurable
5059f41ff7944c27a529e7ca1ca8aacc032ec4e7 Make Origin/Cache downtime operations independent of Registry's immediate acknowledgement - Before: If Registry was unreachable, the entire downtime operation initiated by the Origin/Cache admin would fail - After: Even Registry's immediate acknowledgement fails, Origin/Cache completes the local operation, logs a warning, and relies on periodic server advertisements to sync with Registry
d0ea46ee697c2707f28502562e67b3f887eb9ab9 Make Prometheus data retention policy configurable
914ebb6dbd9547b83e8a89dc38c2eab0036af396 Make an embedded issuer per export
bcb6e8b12adb40e1d80d23d714fa0f42d567743c Make common test db migration pattern a function
ccb95f9e7d60331632ebb636c244f52187ff2b65 Make concurrency param validation consistent
e6070caadeab7ecba9c8d5a96d463238cd00fde1 Make credentials always sent as HTTP Basic auth
4548f64a282e45210fe2472c66ddf5123610205e Make failure to parse EKU a fatal error
617a95b9cf5e4760597b2716bc766b243cb50e60 Make groups param required
526ca82d5c8ef17f446ed3ff0ea2f35fcd53dcef Make helper function small, pure and side-effect free - applyDowntimeFilters now takes the current downtime filter, detail info snapshots and returns fresh copies instead of mutating globals
62c0b7d983bd03f0337f43145c9d542c44e263f7 Make pelican_url module thread-safe and reset between unit tests
f3f18b6ae8b2b59f4af8388beee1a4cc7baa1198 Make sure runtime dir is not the global one for tests
2fe50c167333f4202983378a14bdeb3cfdc9299c Make sure server/transfer manager can shutdown background threads
bddb9697f4db46ade5000076c820edd6ba5e822c Make the sql query more robust
dbffa830970498547e0339a3dfaf9486b6869dc9 Make tls.AlertError retryable
95992ab7aa384631c165008741d3426922f062db Make xrootd/pelican user UID:GID in images configurable
ce87362268c259915bdb6f38c9cbc609dcffcbd2 Map new fields from API (IsOrigin/IsCache) into existing db fields
1ca263d46e85a46acb23d82e191ca38c8182f00a Markdown formatting action is redundant and not needed
7acc5b85eb3b78b6e81a272e4d4891b13aa88163 Merge remote-tracking branch 'origin/group-ui' into group-ui
602aaa383841128cf71b38074a580a401b021f5c Merge remote-tracking branch 'origin/main' into copilot/allow-mutable-configuration
e8d90db3d5c91ae186e9a733400e0338280c0d37 Migrate plugin and plugin tests to new classads library
7aa82d353490d0007426cc4ed5686b8ef3ed5f45 Migrate ports back to being random free ones
36f9708695aada67d0000330c00a433743f76975 Migrate terminology from 'client api' to 'client agent'
6b93b1134bf263320102b866d95c0439e44fd147 Minor fixes for CI tests
324f3834802cf57fc374c31e59ca484c658d5742 Minor fixes post-major rebase
e225580ab3c009176f27c776351406e42a86b3d4 Minor fixup to creating the SSSD user
1b61acedaf6ed8c3386ea94ea70ccbfdda8642c0 Minor grammar/typo fix
615d4296a091ce04a9add9ba447f69c86d2e76d0 Minor optimizations to facilitate repeated container image builds
f1a00686b1427e2f6757a22c05d607de2ba03e82 Minor semantic fix for docs
337a4d318f10e72789151eed23f8b45b340a7f1a Mirror the downtimes to Registry if they are set by Orign/Cache - including CREATE/PUT/DELETE handlers - Mint a new token for all these mirroring ops
5e1041074a12db1fb7ca7c36d8fd1dec1612bc9e Misc linter and Windows fixes
b83fd39f6d0b38b6b17fe820dc693ffdb2a0f4fa Modify test and swagger docs
e33218e0f67243024687005d9f8cda1eca22897e More aggressively flush in-progress operations
fac4d0b908c933e7a9395f2555d3137b7a0a9e15 More linting
d6a2a2b7025428c4fd92158477d707b1bb4e604c More linting
8a438931ff3d6f3452e3549c18b294a622c61238 More restructure; add Getting Help page
bf0135468b60d1f54718a3cc61d6ae16c995cc27 Move Cache.ClientStatisticsLocation configuration after the runtime directories are initialized
0c1c2184843ec88ef7fbdd963a54f5258594efca Move PELICAN_MAXMINDKEY config handling into config package and deprecate
79e9626941b9afedb742a1b335e5b71abfa7d9c7 Move ResetTestState from defer into t.Cleanup to avoid race with goroutines
60aafca6fbcaf72bffbc83823931c57246b97d64 Move address file to runtime directory instead of config directory
06dde4e736af99c22ee62e0b15f1ccac3d081f6d Move address file write before dropping privileges - In drop-privileges mode the process runs as the unprivileged user after dropPrivileges() and can no longer write to RuntimeDir (e.g. /run/pelican), which caused "permission denied" when writing the address file and a fatal startup error. - This is safe because Server_ExternalWebUrl, Origin_Url, and Cache_Url are not set or changed after the drop in LaunchModules.
3c3a9eb7f22397031949c1dbd83e1436861040ff Move broker listener startup after initial advertisement - LaunchBrokerListener() have to read the metadata, which is acquired through the advertisement
9471b3ef3a72fbc4e0d41e75b69ed5a12e1bbcca Move broker metrics to a shared location - The broker is now used by both the Origin and Cache services. This commit moves its metrics to a common location so they can be accessed by both, rather than being coupled to the Origin.
643a3f78b43a577d4cb36db45448bd0c0597b736 Move cache monitoring and reduce chatty logging
879d22f92859afe4e97ce139dd5bf037b72d13cb Move configuration and validation to config/config.go
1c5033caa96dd9a40e9d77c9533ea8eaf2eb10f5 Move error message down
f44236dae63880063355709932ccccb7c8ebf7c6 Move metadata to top of page
6aa35796a56e9dc76ba72121954321bbc84c0062 Move metadata to top of page
a50db1af8c99168c574d3d3072b37156b9f4880c Move pelican url logic up to resolve test failures
f18b2a54ff0deec3c5f342385c7060db896f73ba Move utilites out of cmd/director.go
033a6d5dd9ae503e7b31e5309e89274cea29c57b Move validateServerType() to config package - To group relevant funcs together and improve reusability
43a87f5dd7a24988624d27daaaa85a7e98276aa0 Moved common code into addDataToClassAd
42b06eca5e1ef1b288eeace731300adeff6083b0 Moved errors into their proper location
6859fa75bde458566da55b3527961e3787b2a877 Moved iota enums into different const blocks
9c192c1f45aedaf071f305903ee612f3607b8009 New ChecksumMissing Error
e0e439e6a5b54c50afe5935907ac986c050a0f12 New federation test for Cache with Broker enabled - The test verifies that: 1. The cache broker metric collector exists 2. The cache broker is properly enabled 3. The broker listener starts up successfully 4. The cache polls the broker endpoint (visible in logs) 5. Broker metrics can be incremented
0466ec1361bd045da2929de303222e4f7f03c80d Next round of human-reviewed changes
acf33bf6a52fa2ef979f3619062d3f4c510e9f20 Next round of improvements for POSIXv2
16622d9936adddc40dd75ed46dbd0bfa8add771f No longer set Origin/Cache-originated downtimes on DIrector through server ads
f34f67ddb78a336e324e14d4f578b5bb61d75f8e Now closes the fp before renaming (requried for windows)
aedbe14d0ecb8a039fe6bbe15ebf6e525022f51f Now proccesses upload - object already exists errors
586835a0ae28c8b653e05666d1842e9fdfb6aa8c Now wraps metadata discovery errors with PelicanErrors
fdfa7bc08b5368c00546667755e4b0ae672e8f40 On synced upload, 403 errors are considered a skip
9c99db34e11127b42b8c7b5f585d43bb3875da4c One sentence per line and one line per sentence for params documentation
78df796e22e3003ca195de22b30b030ef8126b2a Only add 'alice' user once
e17bc387c89300029e74bbf25fb9821193771188 Only list the approved servers
b97001762d2029d3773e027b572f9bd05db707fc Only throw an overwrite error when syncing is not enabled
c738d083bb579a7d85d4a0563c3c0fbf96321c0f Only warn about missing pkcs11 bits if this feature was explicitly requested
21de0db9b64162d5d669e0060f53d0ae4c04f0b2 Origin and Caches now check for a minimum xrootd version before starting
269669911eb1d5fa49545c8b1121da2e51fde423 Origin use registered prefix when polling broker
f7159d55b82470f5eda307411d0d1d79b3aa6375 Overhaul token acceptance search
b01ab3fed62d7a86b0d7839869a0654fd44690a2 PKCS11 integration strategy update
66ab0fca0442f13bf7a647ed5e634d0b5870b976 Panic if we can't restore credentials to the correct state
c975450a2fdb192c689239fcc1f4d9c438661673 Phase 3 of transfer agent - persist current queue into a local DB.
fe5987c57daf92afd157a0a069fef3a08a7a8b99 Plumb director decision info through the client layer
dfbcc229d1c2a1f9a514b2009c7fb581822f981e Point federation-based monitoring scitokens cfg at Federation issuer
ac322a474f67339f288ac7a3e5b52f2487e59ca6 Polish GitHub OAuth docs
3b6dcc3087120982ee1cc7161cc466826df13101 Post-rebase fixups
f7b102ce5d05d55da720bdc6fa398036bebe355d Prefer 'npm ci' to 'npm install' in GitHub Actions
b2a7d8a3da10ad5edafba6a3a7162b6501c20225 Prefer human-readable OIDC claims for username display (#3044)
9e5d1aa98f1e5f0d76c609139ffe716e74985ce7 Preserve the misspelled metric name for backwards compatibility
4cfa81118287c69971b951f842b86f8d40df0cbe Pretty print times in locale
c00263ca75ed506da537b5b9ed310e25f22b023e Prevent background goroutine from reading TLS hello from cache
b10d55d0aa73cef92a805ce6421fb1cd1ecf2b06 Prevent killing PID 1 and set test to dummy PIDs
8108d1822419c13825c6e952734d033b0b52e24b Process all downtimes in a single loop for both display and filtering - get rid of the unnecessary "runningServers" variable - It's ok to add non-running servers to filteredServers, which has no effect if the server isn't in serverAds. Those entries just sit there unused until the server comes online
aedffe700ab596849e2b63c57faa1156eb1356b7 Properly wrap errors
9097b7697fc2ffcd441b4ddfd173d04deb1d6834 Provide E2E integration test for xrootd monitoring
a9d714d994e0cc86aedbc2c53b26b07e0dc1d206 Provide a env var switch to quickly test POSIXv2 backend
5e5b333bf929b5f980a8ad45344997bc73cc24a5 Provide accurate endTime for the shutdown downtime, and scopes required by downtime CLI
c96b47155290fbe28b78e9571b3c0ab3a782a83d Provide an E2E cache test for offline origins
abdcb263044ab0857373710ac1b6b70341fe8091 Push per-test logging setup across the project
9e7b1ed4c55db594e72162af742f86ecbda95c67 Put POSC behind a feature flag
b7792e93d42dd4a3c35a99c88c46a9ae17b7c82c Re-generate params after rebase
97831b5295f7ca8e82e2350aa9b193d8e19b78e7 Rebase and regenerate docs code
17856f7842b58921f039cc5600c5fd68f06827ab Rebase changes onto latest main after PR #2832 consolidation
8cdcd972e8791f0cb98cf2b3858b2555dd29b617 Rebased on main
1066560a630520ae5aa95b57eaaa726584883fae Reconfigure global fed info object during fed tests
94a6989faf534f285109673ce31e06b89cd1ddd2 Record the server ID along with the server name in local DB
6de06d3106d369764ecc97acc54d6d25202584f5 Redact URLs with the regex replacement
58cf9e6e6fb8dfece76494bdb57ab8998068b9af Refactor GetServerMetadata according to the review feedback. - The function now returns a server_structs.ServerRegistration struct to represent metadata, instead of individual strings. This makes it more extensible for future additions without changing the function signature. - Other minor changes
463e24fbb63f413f9b9afa38caf1387886d40e6a Refactor PR to use new restart code and avoid direct use of viper
4cf2f635abce6e3c384c6083ef77a0c1a9bc5998 Refactor config_test.go to avoid globals
96072559d205f00f859d1e43530951236e6a9863 Refactor runDirectorTestCycle to consolidate duplicate logics - Instead of having duplicate healthTestUtils setting blocks in success/failure branches, now it just has one setter - Similarily, single call to reportStatusToServer, testStatusMetric, and reportStatusMetric - The overall flow: 1. Run the Director-test 2. Determine status/message based on result 3. Update healthTestUtils once 4. Call reportStatusToServer once 5. Record metrics once - Also address the review comment: safely build the error message, only appending testErr.Error() if testErr is not nil
ecfc2922c18f3b9785a0d6205193eb9b3343baa8 Refactor and Improve Upload_TempLocation and StoragePrefix validation
d43d2f1f6c557e7e6f74d3e9a3cb6e2342e17c53 Refactor broker callback initialization
aff026204a7a30a9056a3ba3ccb1c532e1553dbe Refactor client
613a054b8374f9900e93ddc2fd9310f295c57e70 Refactor command to use predefined structs
cb0e8734caba85cb029b273476dbb79a808e165c Refactor env var config test to use table style
39bc769f31994928aa7368c573898d86f1a4ce50 Refactor query param handling, use actual getCmd in tests, add prefercached conflict check
1e2646bf761947d8355f6791011617edc967692a Refactor rate-limiting implementation and metrics
b92407187a66d889d84c3e64d4bbf26281816eee Refactor test mocking to use package-level variable
06b37012a4e38a748f10bea868b8f9a094699917 Refactor the restart test to avoid polling for failure twice
58ff4344706ecd46598a352b7ef941eacf5aa272 Refactor to avoid reflection in recovery
d4c59d9746ea0c4ddba69714ea7b103f8a851d7c Refactored createTransferError
1be22d7e6ee69756a6c4cf848db1ca2616972e5d Refactored tests guided by reviewer comments
8077a92edd2be0bfc257ae8faf66ed60d60d88d7 Reject UploadTempLocation under StoragePrefix at startup
9dc24a700f11bfe44fff0d99c6c79c6888693573 Remove 'Content-Disposition: attachment' header from Origins
592ca220bc20bb87c2e428ca947dd51b3761b1d1 Remove InvalidByteInChunkLengthError fallback from IsRetryable
fab211980c0bb4675f5dc31e5bbe35b222e87202 Remove XRootD prefix test
5a47a576c527e15934be86bfbc9ba09f5acb7dde Remove --enablerepo=osg-development
c9d9eea0cf5929464b43689ef1214548ac74d983 Remove database mover code - Registry DB migration (to pelican.sqlite) was completed in v7.19
3434ede9fc33707241a566fca39db741a1f72db9 Remove deprecated configs in drop privileges process
fb1f75d94643722799aae5b2cb8cb339a044deb2 Remove devel/debug print statement
694ae0d602ec9aebeee8ea71049baabc9dfda38f Remove duplicate SetServerDefaults call
b9b5bf1c59147ebc4e23c434957851a0c7172a0e Remove duplicate build of pelican binary
f9bfec1ea98de2a462a68ab1ce807c2ab871deba Remove generated tag
d23c42fadd328e9f096a148c698fd6d5cadbb0d2 Remove hand-created token; force CLI to create one
38b5272e166bf8fc9b036579cc5ccd3be381e9bd Remove legacy classads package
8a9cfdceb8ae98bdb2098db07b53fb4836bb21e8 Remove merge conflict markers from osx_install.sh
ea3ddcf854aa7f568d1bcc1c02d28e6d57adc607 Remove old Federation URL
dc4f636c8e679da887520a674ea9484bc4569980 Remove pixi installation instructions
41293640e8c2d8982466b41b1095bd15f90807c7 Remove placeholder tests and add GitHub OAuth2 config example
bdfc6e4f0ce3824699d8fc4233985df18e0fbe36 Remove rebase commands
5f3c99ed61b2ae8415636a080743c556a706b0de Remove redundant NetworkResetError check from IsRetryable
92c3e905142c5c717e8303efef081a17451c15c5 Remove redundant assertions in unit tests
e21803fe2a666de8204cb8ce0be9d811031d456e Remove redundant file The content of this removed file is moved to the docs at /pelican/docs/app/federating-your-data/orig in/page.mdx
e4d4e436040d47e8507225762a73246e3c4d52e4 Remove temp file logic and just delete on failure
500172a3600be4e273f27fc9febc44914e092f56 Remove test environment code: this affects the prune test (requiring it to complete in <1s to succeed)
f718fb46ba45189aa95c7ab36ac99a2ab856b0ba Remove the Director-test support for Origin < v7.7
016e83d59284744ac1f9cb7d389cab418cc9debf Remove trailing whitespace in AGENTS.md
19ef0587541e19a674d00cbe57ad6820feb79c3e Remove unecessary heirarchy and make dropdown titles lower case
ac574f5f603c3a9771f5b3f020d59254ece5f793 Remove unnecessary ExpandPath to avoid tilde being significant
f2a80282cc07e54cae7f16a9a2758733c2f153ca Remove unnecessary metrics path check
570d39cc7e5b384e2441dcc2e4d6c6c7baa6f9c4 Remove unused default setting
962b967ce657291efc2be6f94b2b6e2a09772666 Remove unused function
9ceebf2f570a62738b2a426a3af7b73ae7219c4d Remove unused functionality from the entrypoint script
8abdcb8f20a0bf37d42e9c27e7239883e4b7f7f8 Remove unused isDowntimeActive function to fix linter errors
cdc2894af8635015857441a69fa20f7771fc957f Remove unused patch file
d02f623434dee1e0a8cceaee090429f387cef30f Remove use of viper according to new parameter setting
24e866893ad8ef8da0d384f4b1c734bac0f375fb Remove user usage
782a062976751e716eec8d7bee6df1fd6b4b2a5c Remove username update logic and update error message in CreateUser
3ae406e4c47ccc5ca3924a4a15293e705332ca7d Remove warnIssuerKey and relevant vars
a03fc861cbd09e7fb928ac38dd0c7bb5a765caaa Remove warning about creating private key at designated path
44ca0b85c1e919a00ad527acc7e29e7d457cf81b Remove workflow steps that were accidentally re-added
8986e6cd72277bd96ef632df001b59191d883a05 Removed Origin.EnableUI
ca05c80eb86a2e2c90780781e9d31f170849645f Removed extra comments from isRetryable function
5c6c2a96c3f6989df3558c3bc59f04f85dd44371 Removed incorrect catch all and added clarifying comment
0cd29328195f182f87025533259feeefbf467642 Removed outputting of the password location
6b51337cd9b51fe75b49827c59debb20d51ce0de Removed param.Server_EnableUI check
d7d6ba75a2c08b8a2dc843f0ccb20f584f3bd25e Removed redundant OIDC check
49702e1ce7618cfb70e02e3096da803b6e1de429 Removed redundant go vet check
d51e688659f6dd4f86e65b1edf4722ea6d59d918 Removed redundant language in error description
f1aa5db9c2c508945229dee52cb1855424eca7bc Removed version.go and version_test.go from windows builds
0b39e97fdb73b05cfa9dfa8ee4c905b5e7ae20da Rename the config file for typos
61910e4ecfb70349dcc63499834b95d074f3f15e Replace use of raw integers for rates with a proper type
adcc8f4eae3b7f3f52518982b70468ee98e7db55 Replaces pelican generate keygen with pelican key create - Change the narrative to prompt user to use IssuerKeysDirectory by default
61bed0b5dda9c8f5c9283466dcc49c6bef7c700f Require the xrdhttp-pelican >= 0.0.10 RPM for pelican-server (#3086)
a992c5e6d697f6eb33fa0a35adf92de4062bab42 Reset additional state between tests
d0407e2bbec90b7227cabfd22b3a2761c3db3a22 Reset command state between subtests to fix test failures
e76464c4f78e3dcb59a88fa35cc5cc0915cfaf2f Restore a few comments that were accidentally deleted during refactor
861dafc3c57388c1a30c666b1dc77ef506d4b8a2 Restore pixi installation instructions with correct commands
b7646e1ecc029312494bf65b673297a201da3f86 Restore the exclusion on 'node_modules' for cache keys
41a17ee2389b9112f45b66c34352a786767c6df9 Restructure FAQ section
1238103f59990759b714c0bbdd049737c06757bf Return error whenever Director test report fails
77479b55747b200102f74ed736150a86e86b1284 Return failed server deletion error msg
9926119c8e56eb7345815db95fe801a3d83e9677 Return the checksums available to the cache in the digest header
57e3bb826ca90cf12c457b05616c02dc6be6809e Revert "Bump version of xrootd-s3-http to v0.6.2"
0cfabbefd112dcd9d891855305d50ee087a4e499 Revert "Handle legacy Capability name gracefully"
0e9824043c7d233e446ef16e840602dc49d1272e Revert "Remove osg-development from installation repos"
7a73f79d070b09152213355cbe2836332bb31fe0 Revert "Remove database mover code"
007d7578cdcf2221a4db934b64c3c421526b2416 Revert the stopgap build fix from #3069
42280a77b1823e1fbb013f5ec9de03b8de9a917b Revert unnecessary approval check
e971c9ef537a79ca2130ccc33bf5d7d49347df77 Review param usage in client_agent
22ff4ecd873992f819b342f49658d3856f753637 Revise Testing section for clarity
e097e62f191c9a0ec5eec331a472a6b2b844b160 Revise the error message to reflect all possible reasons - Also wrap it in a Pelican Error Type
75558e627a131f7bc92099120ba38c9316b25a8f Revive the rate-limited filesystem post-rebase
5f565103acea5d9ab19dc2cdb0a38ebfbea823a6 Rework scope calculation and integrate scope checking in collections routes
6d689ef052f9531dfbd58e3866e79ece4f2891ee Reworked the validation
0d69507b4c6ef27fabf9bad97aecae8474aedbd1 Rewrite of the local cache
8da771d8930180bf55ec581d6d1d3b5e8da3c628 Rough draft of troubleshooting for functioning Origin access but no Cache access
14e0af7c5cf803bc04917f438e550494314efb77 Round of review fixes
141b2d47e56e0692a014e7659a73b1412f427e00 Rule out the stale entries associated with a non-existent registration in the services table - Typically caused by the foreign key constraint is not enforced in the services table.
984e22161d6772d2235a408521fb26a51de384f2 Run Prettier via GitHub Actions
40af0bd7a9703a0e568f9d89857d844668826550 Run go generate
0632947ef4549c3381947d380bc84f27b4b08dac Run go mod tidy to catch updates of net package
16f4f8d7216c22db1dc2a82cf27d4299a70a1813 Run gofmt on test file
d48eb9bb97f2b5890f28571bbdf5429210d466f8 Run gofmt to fix formatting issues in director/monitor.go
2de2e4da305389e5e7ad9033f0ab6eb91a2e1ec2 Run markdown formatting on all markdown files
c704413846e57b3c22486c794c372a2d0077a2d0 Run the 'geoquery' script through standard Python tools
aa558b9781d21346832b4228e9636337dbc588f2 SQLite driver-specific Foreign-key constraint activation
99f2ab090fa49cd5a5e94ccaeafa65361dca7347 Semantic changes
a2052350412324f40918d5c80d13ae8f4cc7da56 Semantic improvements
63018fb337251aa9d5351520f4991b47d52ec3da Server approval status check - When auto-registration happens, Registry checks if the request sender is the owner of the server name it claims. This commit ensure that it is checking against an approved server name
1858b1d00a168a8cde117e483ffed33870bc7aad Server.EnableUI now only enabled the web ui
32d3245b3748500a647d1a3b5d29e708e33deb58 Set downtime token's audience and check it - Let this token explicitly target Registry’s host:port
571a3452f4ee29e463eff286e027c82fd0af8b2f Set monitoring scopes only for admins (#2767)
3a96b291be2d5eb5f72023b1f73096adbd19c0b6 Set proper perms for openssl-pkcs11.cnf
b9044944497d3a7e8208edbb0b98f637fc5024bd Set socket's perms and group
5bf296e9d29c63e46e6e6051975e7d1fabef6cef Set user and userid in auth
1f79a94b25575bdcf26ab010b4042cc402494b53 Setup pre-commit to use Python 3.13 in the dev container
e792fae803aa1f905f8db36f3b975e9bc0819607 Similarly remove Content-Disposition from Caches
f83699b14ab48b7a35de524349971d782df9e455 Simple linter fixes
e5b65bcee388f8774519ba311426ee688926f46e Simple unit tests to verify two new Prometheus stubs - stubs for /rules and /alerts endpoints
553adecf00363df846cdc4f7ad7d4af47b97e949 Simplify OIDC username claim resolution in generateUserGroupInfo
9bfc2183ddeb7c7811b92d9055bcb6347d147072 Simplify the capability names logic in webUI - Update the names in Capabilities interface - Conversion is done in backend, so the frontend doesn't need to map the old names to new ones
35e371828bf4dc652a13e26673cbe4ea8ab5dc08 Simplify volume mount documentation per review feedback
75d93f4bd9dc7ce40d9682ebf66bae29ca6049db Site-local caches should query Director for Caches, not Origins
b37bd190be44b65687fe364805b934360c43dfd8 Skip registration for caches running in site-local mode
875d6a34ca16611d9f6fee152493fbe23c24020f Skip test if user is not present
ef12d803b555ce78d858fc49fd7f6c8a1018f813 Skip test of directory listings at cache - hit an xrdcl-pelican bug
5018795a1c71754ab18d74f69fb772c3a7318a77 Some Python packages build C/C++ libraries on install
62675f0c0141fb46e5d263369153364fa0d00508 Split default log levels for clients/servers
f3db1d2f5d6319b2f6ea0f870b5009b53f2d37dd Split out group members into users table and add QOL for group management
2ad3afb0b27c1e93cb676fb98c101ac1260c9661 Split updateDowntimeFromRegistry into smaller helper functions
38cbb857458a008991a773836c4ed102a2aa85a7 Stub implementations for two prometheus endpoints
a5de1f43b3a28088979a94354f455a5b1608dceb Support director only broker usage
88ab3af1990e53107b64d0bab744dc620239026f Support parsing the >- syntax for string slices
65ea2917a7cac5cba83601122776346a25379b2a Suppress query logs on Origin/Cache initial startup - GORM would generate a log for each DB query, no matter success (level: debug) or failure (level: error) - However, when the user starts an Origin/Cache for the first time, the DB is empty so the DB query will definitely get a "record not found" error - This error will be logged by GORM by default as an error log. But this may be misleading for the user because this is an expected behavior. The "record not found" is already handled by the subsequent code. - So this commit aims to suppress query logs on these two DB operations to avoid confusions.
bdd2e29fa787b44a7fe9a4c191eb2cf35abdb221 Swagger docs for Server APIs
46b1cfbbd5907b4b1125638346b6a14edb13e49a Switch 'object rm' to 'object delete' in token docs
95b3c1d7d5e4fd3819e398eae40d56e0700b0dc7 Switch from OSG 24 to OSG 25 to better match other practice
7f6863858a87c55d5ffaa3412b9df09b55ba16af Switch to AGENTS.md format for AI agent instructions
ca72245b34c88173eca4ae9e22576845942cb58a Switch to installing the pelican-server binary in all server images
431366fed73719b631b24d691d2e4a5a9853d222 Switch to stdlib for user detection to fix GHA
4348f3eaed19e024e53bbb672009ca73df91d916 Switch to useApiSWR hook to auto handle errors - Refactor getFederationDiscrepancy to use useApiSWR hook - Switch direct useSWR call to useApiSWR, which will automatically display alerts when API calls fail, just like other APIs. So there is no need to manually handle errors
d10bb5aab4dd955f113f2714a07d7d55de0a5e31 Sync the JWKS URI - So the JWKS URI federation discovery endpoint and what's in Pelican process' global federation metadata pelican_url.FederationDiscovery - In discoverFederationImpl, fedInfo.JwksUri will first fill with the value of the Federation.JwkUrl config param. If it is not set, that function will probe Discovery Endpoint to get the jwks_uri there. At last, if fedInfo.JwksUri is still empty, it will fallbacks to Director's externalUrl + "/.well-known/issuer.jwks"
3571a0f8fbbdce8ef7e16ed975f08966b142b64b Take the r/w lock now that we modifying pb.status
a359c1e26798928ea7c0d4bae492c3ffcd4dc0f7 Temporarily disable the warning threw to the user when they use IssuerKey - because Facilitation team and Integration team think this is not user-friendly
c6715921a7e50936b13bf2e23146745158407c83 Test object path update - we don't want to use the old test object /ospool/uc-shared/public/OSG-Staff/validation/test.txt anywhere in our codebase. The new path we should use for this kind of testing is /pelicanplatform/test/hello-world.txt.
6a96d30cfacdc8724ede886daf65ea6293434754 Test the new retry logic - It can only tolerant 3 failures before giving up. It returns error when the failure count is greater than 3
fe9ef67956637bd4f3c7ce0cb3bcf4684cf388d2 Test the token scope validation
8b0c2891c8137d7df506219bd6625207cacd8e02 Tests no longer use linux specific paths
13ad9a8039ed37deecef0a54b98a8a2844770b70 Tests that build Pelican and don't need VCS info should make that explicit
2c1c95de0d3d8a476a54790f81c9cc03b6d8c7b1 Tidy up PID/lockfile usage to avoid races and stale files
0899c1ff79dc79385f8eee4d9831144241b55b48 Tidy up and send output to the GitHub Action summary
a5eed7667c0b40cbd86574218e2250e9302d88a2 Tidy up pet peeves in init_server_creds.go
f7e07c9865a25a1c8d5ab052bf3df0b3af30810f Token updates: add registered server issuer verification - Add the RegisteredServer issuer type, JWKS lookup by server ID, and unit coverage for the new auth flow.
c7275b1d6081bf68214cc665857d129eb3194cbb Touch up comments/documentation for 'xroot' storage backend
2c7f72a51ce9c760f4d88db3e63ff87cffc3fd68 TransferResponse now handles StoppedTransferErrors
e606c6f684c8dae41b4fe2fe2449d324ada8a4fb Transform redirect info to classad
3b135204dd98b01fd07ccd49c73891d32fdbbc7a Trigger degraded state with a configurable ratio of server concurrency
1059ec12dcf4c64264aa048ba8c306eabcf01fe9 Trigger site-local cache test in GHA
82a54c99769b4a9a0ebfb054e5c7d07a21b0033d Try adding placeholder from generate package
5ab2c385ea58b2f55bb863c61f7a150e68baeb7e Try switching from 'issuers' to 'authorization servers' in authZ docs
1ba6be1ea9ed3cf2d3dbc391655b8f88eff3346d Try switching the DB interaction to GORM
ccc95c596f5925a8a7fdbe3dbb8a4baea12b2b19 Try to make persistence test more robust, protecting against race conditions.
05549b0efeb1441d5e9cf5e8e8552c3e722302fe Trying to fix actions
431c7406034ebbf29e04af675ae2c136b2a5146a Tune up stat test script to work with address file
f7cc62f31a33cb36c26435e36b28570456bceabe Tuneup after invoking the set-logging-level from my terminal
188f86d422f29eb103a45937404743e73f441f6e Unify minio startup scripts
8518df8c5a8647c44355b6f8b34e97ed4c0cc1c0 Unit test fixes - particularly around chunk-encoded files
ef55cd1ba41b448aa157a2cd2e5806141ec15283 Unit test for runtime namespace ads change triggers config files update - Test that scitokens.cfg and authfile are actually updated when namespace ads change during runtime - It simulates runtime by invoking the same write functions the maintenance loop uses.
d8c02d8ae35878c5cf274605bfe8cf948b29ff40 Unit tests - TestAutoShutdownOnStaleAuthfile: forces repeated Authfile failures, sets a tiny Xrootd.ConfigUpdateFailureTimeout, launches maintenance, and asserts a shutdown is requested via config.ShutdownFlag. - TestConfigUpdatesHealthOKWhenFresh: configures valid inputs so both emitters succeed repeatedly, launches maintenance, then asserts metrics.OriginCache_ConfigUpdates is OK.
618a6550017d3e49bef52a6c1acbc90cf1ffe53b Unit tests and comments amendment
c9a2ab8a008eb4d242370c5183f40091ca418d3d Unit tests for metadata discrepancy checking logics
be535eb0245657bea7b20bf855852734fa7ab5b0 Unwrap Pelican error message, fixes pelican test errors
17c2d5dd6090c50c0102dca9123f07e4505bcdfa Update 'golang.org/x/crypto' after a user reported a CVE
3d7dbdb3f063728cdde4772f08fa98a0d1dbab45 Update .gitignore
306c3273e7aeff6762dd244400bcd5a714256758 Update API json keys
14eb948fa01ed8cc1c8de4615961d06890a78861 Update Auth Template
30e2b927987fb99110fed5312b703f97aab9d09d Update COPY support to catch up with the rest of the HTTP client
00259d8d7ee21e147bbdd7711d475e7b25bae785 Update Cache Broker connection counter - This mirrors the origin implementation and allows tracking of cache broker connections
96163268c8eba3f6aee21a3df4d40229ddd64f25 Update Downtimes for new Server Concept
2341deecdace99da4fb6189487be5764dbd0daa9 Update Downtimes for new Server Concept
88e1a1339388bd71e51c001e8da10aa0b6b37d53 Update Downtimes for new Server Concept
4d2c65b79fe5f19f6aef58a1b09fb76d23050dc3 Update Downtimes for new Server Concept
4de265765d69767cc755ebddae06b2a1e1028d14 Update GoReleaser config to not use deprecated options
c7fb4a343d4d207ad1775c84130bbf770f120397 Update IsRetryable to handle wrapped ConnectionSetupError
4908367c47b2dd5f8db5b165453cf5ff47e8939a Update OpenAPI documentation with new user and group API endpoints
42cbd249f844a8c3818ae8ba57146990f0853532 Update Prometheus Docs
7ae5686db7584bc999154a711b6b3904ccce869e Update Registration Deletion
72862a384aab8fb630544fdb7817db43a6b11dc0 Update X-Pelican-Broker description to clarify connection reversing purpose
2ca9ea2f82c9621b3e6da2f935ce08d0c7818c8e Update _meta.js
80a967fa9ab58040bce96ec27a0315bc4b0debb5 Update _meta.js
7e72921eca4fc3e16f6bab6ef7858005c1bbaf4a Update a few internal uses of 'param.Debug` to instead use 'Logging.Level'
1f2f83fd0dcc7db29fa20960eb4f4bf8f93f569e Update actions to run on experimental builds as well.
1421b49f917cc6562608f031dcebd97a21766df4 Update and re-organize OA4MP-related resources
d171abf1c4f26150e3ae33d53b69bc54e1d08322 Update authenticated block to not render content you aren't auth'd for
81bb63d4db8b609a2a75eafe7251988b3923b689 Update authenticated block to not render content you aren't auth'd for
56fe0cb4c9abeb47adbabe576d88327f43113f3c Update authfile generation to work with more 'privileges'
0d9645d76785701ef3939b914010b439273c3282 Update classads library
b987c4384ca29e754e53eb7d13fa6b6a2f2b4e19 Update collections commands and improve error handling
075f19729508514c6ca6c13fc2ee558473d3f203 Update container to 1.25 as well
4891b6ea1beea0bccd2b71f6f93e4e8ba9afe34a Update container to 1.25 as well
ceba9edc7ba82fce7c71c725da0c9e413039cdc7 Update design doc / README files
1901002b00c898fc12b0bd662f07e59422a80dfd Update docs
6a661f8f060292beb2fcf91aaa4e4f893ae40873 Update docs for a special downtime - graceful shutdown
747c080c11ec8f1ba670578807d6bb65770cedba Update error message install instructions
82bf01c2931dcfce1fb8da2629d9d10a2878b8eb Update golang to 1.25 to get os.Root semantics
55e5b045ce637679b905e7145178139898aee7b7 Update golang to 1.25 to get os.Root semantics
0ef00b800a59f41ea30516d082e82e2d342f9833 Update gorelease config to retain symbols in pelican-server (only)
afac15243bc73bd91350b2798162a868a9a49ff1 Update href for version links in _meta.js
f16dbdb804dc046bc0750ba5339e86b878dd6b9e Update messages based on reviewer feedback
f37e8f65c0f6ad34d4522e83ff7f3f146ec67d1f Update metadata discovery tests
317b45b6b0318a4200d38939860316f3bf456819 Update monitoring parameter components
5fd1f36ce1924e928fed56a6f25d26023778e134 Update npm packages
fd486cd9466e7b98e3c049099ec746539f8d7f30 Update parsing of authfile entries
b69edc37edb4db7e13e100c2b4270019b30e785c Update pre-commit config to not use deprecated options
da589faf007a155e3a606c8d009a5ded6b51defa Update request/response types
e310157c7ebdb919a3c5501da665427bb696a09b Update swagger
c6c781c84cf9e83d9faec8c854a0f4612c470d75 Update swagger to align with camelcase response
5329a954781b4285c5fe8fc3ed3b53ba0308af2e Update test to reflect that an attempt was made
0a8064b32833aa1df55459cff9edd0db62df3984 Update tests for ChecksumMismatchError wrapping
ab324922ef1b937000d77086d51d99ba79420e3b Update tests for ConnectionSetupError wrapping
6731cdd08602a7f4387beebc08f32ce60c024228 Update tests for authfile parsing changes
58612dd42873b36721cdd7f6bb87e44c433415e5 Update tests for wrapped dirListingNotSupportedError
f77705094d2acceb24b557b634a35fc7be550482 Update tests to provide a user_id in cookie
2607008cb974e4e42cbee107f9acd9010719b77d Update the OA4MP launcher for the new resource layout
022d7fbec3f3c48e22199e5a4d664fd2d3b7de9e Update the auth middleware for downtime mirroring - Allow registered servers (Origin/Cache) to manage downtime via bearer tokens, besides the existing admin cookies
ed5691dd554420e7ae5b7fcf20b51c74d0dc0b5f Update the description of Server.IssuerJwks
8ca55d061c8e6b076126ed05db856ffbbaec5fae Update the type of server when its service gets deleted
38cb57d26d4071d78a52214f3e7c23a24515c055 Update to a new golangci-lint version to break caching in pre-commit
bdbf6b262f14145afcde5b3f684ea0320726c775 Update to use new param package
45801108fd9322a1804208e1a3d92a28202d4ecf Update to xrdhttp-pelican v0.0.11
30d6cb90e5e0c64f75c98859c7cd065b6ec23787 Update token creation to reflect new origin issuer for fed-in-a-box
6a2031134642ff60078ac5b89d87c3ceb225552b Update typing
4a2aaddef8dd345f7213f154b11314dad83a9eff Update with reset-local
dabda03caebd59c98c17b1c977225bd92c6f12e7 Update xrdhttp-pelican to v0.0.10
a527368f8e14d2410b04ac13839dce59b693ece2 Update xrdhttp-pelican to v0.0.9
17a1d80b35e0eb39a098c090875a5368db220b97 Updated CheckAdmin function to use groups
c712cd2cd52a2c1408150e0cdab238f8877ede7a Updated isRetryable to account for PelicanError wrapping
d536a9a61d3cdcf245aed112064d4afc50601a5e Updated the credentials password messages to be less scary
85aa205ed63075b4eb4feb49338ff1fc1a053026 Updated the error_code_generator.go to add accessor functions
9744dea3252a8c1c426f9ea4121591aaa4871068 Updated the test to use http status codes rather than ints
dbac855577e6334f89166c927f82b232ca0efaa1 Updates token not found tests to use Pelican Errors
b7a617e4250c895dcb8d0acfdaa4c71250c8c728 Upgrade ServerName to ServerLocalMetadata
210706afcdfba234ce841380d61ca6ecc9217809 Upgrade to OA4MP 6.2.3 and Apache Tomcat 9.0.115
ec9fab54318c9e04aabd6e7960bc47461c90f4ba Use 'Terminal' component instead of triple backticks with bash to fix <> rendering
33f8045811e42f9c86dd5634b7a6dbd15a022eab Use HTTPS in broker test to match production behavior
a3b4041db92c1d9bd33eef36575122b970612802 Use URL as key, NOT server name for stat TTLCache
a48ae7ad55539f9754465fca896f856933110251 Use UserIdentity
a1ce1a30518a99ef70d4b86e88698ddd646b48a2 Use bsdtar to work around a bug with ARM64 emulation and tar
cb6406f50db0630b088a0f79c43635ee286ef043 Use a set and a helper function to deduplicate downtimes
730d0ce2b232ca0d4a064fb6fd31a6443b7488eb Use a stock AlmaLinux image as the base image
a07f37128da36d8bbb8f3a1417cee8acb82b688a Use architecture-specific runners for multi-architecture builds
7c512f014509a42722a0781ff0bdc1b4445d02e2 Use cache sitename for registered prefix
467464cd1df62daaa1146b7b170fdc1b9dbbaf40 Use classads in test instead of json
e77671eddd88f8d535cb44d61dd6dbd3cb7e3b39 Use config helper functions to set/get log levels throughout the codebase
470c210c176d946fe764ea5e8df897d209851b6d Use config.IsServerEnabled to determine directorTest enabling
14970e77bbbcb2d4f49ded134267a08f91c72942 Use database User type
cf8a4047d93c0919767c826a571c332b70689500 Use direct path to go.sum and package-lock.json
7226e26ef313b8d991ec0f73f2c8a5d11896b380 Use federation discovery to set Registry hostname as token audience
2c3d8fa9eae7d9234d1577459a62375667c252e9 Use filteredServers map as single source of truth for downtime checking
c4186e37856adc6cfe1b28d07e94bb94699dd889 Use global GroupPost
1858ea80902a37f70cd4cd4486c9f73303d6eb4a Use go.mod and package.json to lookup software versions
c11b68ed38b7687873f7bd4221698de2de74476d Use param package and remove unnecessary config
511a07598fa204a7a98112ca19e51452beffc4d3 Use scheme in default OSDF Discovery URL
3ea18de5dfe82f1b45edbc9ed6f11a90b42a6e56 Use secretbox instead of box for symmetric data encryption in backups
b000f224eedc3ab30e66ab700d21877f46123f6e Use stable identifiers (ID, OIDC sub) for admin and authz checks (#3050)
167cb4b752df276f1811ed4fd78a21f9a35166b9 Use standard cache ports in site-local cache docs
8abc467e81040fb4efa66f8ca7b6fe3623be63f3 Use standard nextra callouts through Docker page
a63fb32c58ad753d23724d400a1f9ac1f396571e Use sub and issuer as main axes to identify a user
7adba12bcda643dc8f4e44f52973d48736453905 Use t.Cleanup for test cleanup instead of defer
0bc82b1cbbdec2f3f876e61c04c5b22f42bb4f39 Use the existing JWKS creation function in test utils - Instead of creating a new one
7b2e8d51e37bbb314f3fe6e5f66330b5cd37e3b8 Use user ID to be primary reference to a user
2056ce5845610404d1ce70270f75555c4791347b Use xrdhttp-pelican plugin to handle fed token refresh in drop-privs mode - Note there's a counterpart PR in xrdhttp-pelican plugin repo
433791e8929f413743d942980611526d4c1db717 Use year placeholder in license header template
87977e24fd4eac01278bcb83ef332a17ddc5c541 Used Howard's PR to pass a server's prefix to the broker
1e3c0aac2dbf5f61f5a659965ba6c8ce96b76df9 Various linter formatting fixes
e4f98d0604d2c649ca35dec036607194eb59c66a WIP - checkpoint of the draft server handlers
f68c476a5778667e4fec40e7ac681de99055615d WIP: Addition of a new SSH-based backend for the origin
6d2db574a8d847a424f6cc3167edc6dc23d84f23 WIP: Collections AuthZ and Prototype Collections CLI
df1931249b3b0331159dc01d7c7ef1a634c1bb88 WIP: Continue work on retries
6a4cd37a480109627f1742e9dfd0eb82f8607e3e WIP: Remaining new files
5a5b96b48d709a8a341a9cbd4ee959fa44f584c3 Warn of deprecation in old token generation docs
d6eda89e530457cb24734c6b41cba97fd29f58ad We now add DeveloperData/TransferErrorData on director contact failure
8d71573de890777aacf14a6409c59c85d6c27cbe Working version of the SSH backend post human review
93bfa973ccd28635ff65d8256334d5367f0709ae Wrap *net.OpError (proxyconnect) as Contact.ConnectionSetupError
76ec198e80721b6156ced75a5b021663c2b037b8 Wrap ChecksumMismatchError as Transfer.ChecksumMismatch
4573d311e604f1ecc24ac63110e6e86a562d542d Wrap ConnectionSetupError with PelicanError in transfer handlers
7275a71b5936b800481f92cedb1aed2c7572a3f7 Wrap HTTP status code errors in DiscoverFederation with PelicanError types
40426cb86561ee09f3e8ec9d8bc3126b7d7d09fd Wrap InvalidByteInChunkLengthError as TransferError
e029ac2ba423984563373897289b3d9380a200d0 Wrap all eventually-consistent fields in require.Eventually
c014ca00657fc9d69622e0b3ab15b5ff59addeb5 Wrap allocateMemoryError with TransferError in download loop
accb35080d18b818da4a6c872e7b1f30b88ed937 Wrap dirListingNotSupportedError as SpecificationError
123972ac33edab836a81e4b93fa5ebef6791426d Wrap permission denied error (also fixed indentation)
4d030b233cd9a6d5a0df02caf30c31be18ed4478 Wrap the metadata connection reset by peer error
c66a0c6342fa22f676d847ab3b6652a3a7dd6131 Wrapped an error added in the rebase
878c7ae3090e7c09c3cffc7c4cf3521ed6b42b18 Wrapped director i/o timeout errors
8390f88b8aa430db8154d992d2ae66b88dde9767 Wrapped specific 404 errors and updated tests
1eb95e20e95427d45f7dda5a92baf7dcb4576d06 Wrapped timeouts in pelican errors
9bf69856986ba4ebf289baa738312c697019fb9a add redirect URL for Globus OAuth set up debugging
72ad05939abf95363cfd9923bcb542cc7af992ec address DB access feedback from Howard
d6d722dd679b80d1c8153f1cc0069dc7280dcb63 client: Apply minor comment wording suggestions from review
1e1fd8a6988e21808310a733af1270bed3ba8b9f client: Preserve PreferredCaches ordering against sortAttempts responsiveness reordering
6fadbcedcc76a7297938d8a3854c4f86322dc84c client: add tests for status code error wrapping
e16f63addb816cc4bac14b4e7dc942e8677a2280 client: refactor status code error wrapping and improve error handling
31e9a1d3472e517602c67461930c3a6e34a11ace downloadObject now calls os.Makedir with 777 permissions
ad8b473465dd034dc6452f050da3f97b22508738 fail-stop multiple origin config for globus (for now)
4c6bd090f37790c2977e0f7a0836b98d18048a13 first round of feedback
471a8e809677279b84c97203be491f1cb70dfa55 fix linter issue
7e98503f0673d30006e5b8273ba80407d459b360 fix name getters
678de8d9319df633452b3a63fe0aa66496efd873 fix parameters.yaml typo
ec942fa59f61e585d7e834300dddeab9996968b1 fixed some documentation/linting issues
9e5db3496163b062ea678388d4cd4639c3bde156 fixed some review comments
da40907400cd344f5cd4ec63a08172765078d57e fixup whitespace
fb06b3e7cd9a487d85b2e7bed5fb7fa8fd0a8746 globus changes
44a3515e9819d187da8cdbd9b3b8cac06fa2dae8 migrate origin db to mono db
36ca641bf4958889dd93f029336e0a722d16e673 p11proxy: introduce PKCS#11 RPC helper and OpenSSL integration - New pelican/p11proxy with Start/Stop, Info, Options. - Serve a PKCS#11 slot via p11kit.Handler exposing a private key (Go crypto.Signer) and X.509 cert. - Autodetect engine (pkcs11.so) and module (p11-kit-client.so) and write OPENSSL_CONF. - Generate pkcs11: URI and export P11_KIT_SERVER_ADDRESS; never write private keys to disk; cleanup socket/temp on stop.
b2198ccf67b445284f064868d06f31a857fc5f4d support transfer API expanded scopes and refresh token

Changelog

2fbec61c01e3000ef9c28ac59526dc6b009e9f3c Consistency and transaction conflict fixes
49c3cfae85a8281ca107f2913e46e6aa72e72bf1 Fix transaction conflicts on hot keys

Changelog

599a10a5ee0043e71aa0b75ba90c3505ccc8b78c Account for cache usage at object creation time
e92491b36b5ce482fdf10bb6207a8e85eae25a3b Add introspect commands to documentation
5583f4a191b6a565dbe9eea80dae721f77c4dbd4 Add new introspection / cache interaction APIs
4fb9eb01298a54994e4b12b60cc230e792c4d85d Correct cache usage statistics
d011403d97b4c603e0373c6ceb6a9cb59ee6614c Fix accounting in unit test
1d71ac221413546479387be868c8ba869ca89ebf Fix tests - allow local and regular cache to serve in the same process

Changelog

99d600eb55b918c8dd4ba68a662899833a299104 Give a busy cache more time to respond with a gateway timeout

Changelog

bd9ccb5c49f23ab66811fd5b8d363e5f7a81b8e2 Add CLI for introspection of the cache contents
372316e8871d3ddd81572bf8a9025713c514094e Director should provide typical headers for /pelican/monitoring namespace
3d96649b73a4fbdb0235681431edc79ea9db2230 Do not add global transform at the hook level
bb8c46ca2add00a7dff2cc4041f5a2ba1a7d155c Ensure writer is drained before we close the adapter.
4b36de7bba7224d1d9a6453cfc0d27305cc37b8a Fix setting of content-length on chunked-encoded responses
8b73d2f922cda877984816534ca7cb07b3894d09 Redact URLs with the regex replacement
1a5fcd243d530d4ac9df944deda2aec70a8f6fbf Return the checksums available to the cache in the digest header

Pelican Platform

About

Software

Community

OSDF

v7.25.0

Download

Pelican v7.25.0

Breaking Changes & Upgrade Notes for Admins

New Features and Enhancements

Bugs Fixed

New Contributors

v7.25.0-rc.4

Changelog

v7.25.0-rc.3

Changelog

v7.25.0-rc.2

v7.25.0-experimental.11

Changelog

v7.25.0-rc.1

v7.25.0-experimental.9

Changelog

v7.25.0-experimental+ADIOS.backend

What's Changed

v7.25.0-experimental.8

Changelog

v7.25.0-experimental.7

Changelog

v7.25.0-experimental.6

Changelog

v7.25.0-experimental.4

Changelog

v7.25.0-experimental.3

Changelog

v7.25.0-experimental.2

Changelog

v7.25.0-experimental.1

Changelog

This project is supported by National Science Foundation under Cooperative Agreement OAC-2331480. Any opinions, findings, conclusions or recommendations expressed in this material are those of the authors and do not necessarily reflect the views of the National Science Foundation.

Pelican Platform

.css-1ay4n92{display:inline;margin-top:auto;margin-bottom:auto;}About

Software

Community

OSDF

v7.25.0

Pelican v7.25.0

Breaking Changes & Upgrade Notes for Admins

New Features and Enhancements

Bugs Fixed

New Contributors

v7.25.0-rc.4

Changelog

v7.25.0-rc.3

v7.25.0-rc.3

Changelog

v7.25.0-rc.2

v7.25.0-rc.2

v7.25.0-experimental.11

v7.25.0-experimental.11

Changelog

v7.25.0-rc.1

v7.25.0-rc.1

v7.25.0-experimental.9

v7.25.0-experimental.9

Changelog

v7.25.0-experimental+ADIOS.backend

v7.25.0-experimental+ADIOS.backend

What's Changed

v7.25.0-experimental.8

v7.25.0-experimental.8

Changelog

v7.25.0-experimental.7

v7.25.0-experimental.7

Changelog

v7.25.0-experimental.6

v7.25.0-experimental.6

Changelog

v7.25.0-experimental.4

v7.25.0-experimental.4

Changelog

v7.25.0-experimental.3

v7.25.0-experimental.3

Changelog

v7.25.0-experimental.2

v7.25.0-experimental.2

Changelog

v7.25.0-experimental.1

v7.25.0-experimental.1

Changelog

This project is supported by National Science Foundation under Cooperative Agreement OAC-2331480. Any opinions, findings, conclusions or recommendations expressed in this material are those of the authors and do not necessarily reflect the views of the National Science Foundation.

About