[bitnami/harbor-*] Update validation of permissions in harbor (#46975)

[bitnami/harbor-*] Validate permissions in harbor Signed-off-by: Jota Martos <jotamartos@vmware.com>
2026-04-04 16:27:46 +08:00 · 2023-09-01 18:52:38 +02:00
parent e6f85b910e
commit 8940649ecf
5 changed files with 5 additions and 5 deletions
--- a/.vib/harbor-adapter-trivy/goss/harbor-adapter-trivy.yaml
+++ b/.vib/harbor-adapter-trivy/goss/harbor-adapter-trivy.yaml
@@ -25,5 +25,5 @@ command:
    exit-status: 0
  # Ensure permissions for Internal TLS
  check-permissions-system-certs:
-    exec: ls -l /etc/pki/tls/certs/ca-bundle.crt /etc/pki/tls/certs/ca-bundle.trust.crt /etc/ssl/certs/ca-certificates.crt 2>/dev/null | grep "^.\{5\}w.*harbor"
+    exec: ls -l /etc/pki/tls/certs/ca-bundle.crt /etc/pki/tls/certs/ca-bundle.trust.crt /etc/ssl/certs/ca-certificates.crt 2>/dev/null | grep "^.\{5\}w"
    exit-status: 0
--- a/.vib/harbor-core/goss/harbor-core.yaml
+++ b/.vib/harbor-core/goss/harbor-core.yaml
@@ -35,5 +35,5 @@ file:
 command:
  # Ensure permissions for Internal TLS
  check-permissions-system-certs:
-    exec: ls -l /etc/pki/tls/certs/ca-bundle.crt /etc/pki/tls/certs/ca-bundle.trust.crt /etc/ssl/certs/ca-certificates.crt 2>/dev/null | grep "^.\{5\}w.*harbor"
+    exec: ls -l /etc/pki/tls/certs/ca-bundle.crt /etc/pki/tls/certs/ca-bundle.trust.crt /etc/ssl/certs/ca-certificates.crt 2>/dev/null | grep "^.\{5\}w"
    exit-status: 0
--- a/.vib/harbor-exporter/goss/harbor-exporter.yaml
+++ b/.vib/harbor-exporter/goss/harbor-exporter.yaml
@@ -22,5 +22,5 @@ command:
    exit-status: 0
  # Ensure permissions for Internal TLS
  check-permissions-system-certs:
-    exec: ls -l /etc/pki/tls/certs/ca-bundle.crt /etc/pki/tls/certs/ca-bundle.trust.crt /etc/ssl/certs/ca-certificates.crt 2>/dev/null | grep "^.\{5\}w.*harbor"
+    exec: ls -l /etc/pki/tls/certs/ca-bundle.crt /etc/pki/tls/certs/ca-bundle.trust.crt /etc/ssl/certs/ca-certificates.crt 2>/dev/null | grep "^.\{5\}w"
    exit-status: 0
--- a/.vib/harbor-jobservice/goss/harbor-jobservice.yaml
+++ b/.vib/harbor-jobservice/goss/harbor-jobservice.yaml
@@ -22,5 +22,5 @@ command:
    exit-status: 0
  # Ensure permissions for Internal TLS
  check-permissions-system-certs:
-    exec: ls -l /etc/pki/tls/certs/ca-bundle.crt /etc/pki/tls/certs/ca-bundle.trust.crt /etc/ssl/certs/ca-certificates.crt 2>/dev/null | grep "^.\{5\}w.*harbor"
+    exec: ls -l /etc/pki/tls/certs/ca-bundle.crt /etc/pki/tls/certs/ca-bundle.trust.crt /etc/ssl/certs/ca-certificates.crt 2>/dev/null | grep "^.\{5\}w"
    exit-status: 0
--- a/.vib/harbor-notary-server/goss/harbor-notary-server.yaml
+++ b/.vib/harbor-notary-server/goss/harbor-notary-server.yaml
@@ -16,7 +16,7 @@ file:
 command:
  # Ensure permissions for Internal TLS
  check-permissions-system-certs:
-    exec: ls -l /etc/pki/tls/certs/ca-bundle.crt /etc/pki/tls/certs/ca-bundle.trust.crt /etc/ssl/certs/ca-certificates.crt 2>/dev/null | grep "^.\{5\}w.*harbor"
+    exec: ls -l /etc/pki/tls/certs/ca-bundle.crt /etc/pki/tls/certs/ca-bundle.trust.crt /etc/ssl/certs/ca-certificates.crt 2>/dev/null | grep "^.\{5\}w"
    exit-status: 0
  check-notary-server-binary:
    exec: notary-server -h