wip

Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>

.codacy.yml

@@ -0,0 +1,8 @@
+---
+exclude_paths:
+  - CHANGELOG.md
+  - changelog/**
+  - docs/**
+  - pkg/proto/**
+
+...

.dockerignore

@@ -0,0 +1,2 @@
+*
+!bin/

.drone.star

@@ -0,0 +1,683 @@
+def main(ctx):
+  before = [
+    testing(ctx),
+  ]
+
+  stages = [
+    docker(ctx, 'amd64'),
+    docker(ctx, 'arm64'),
+    docker(ctx, 'arm'),
+    binary(ctx, 'linux'),
+    binary(ctx, 'darwin'),
+    binary(ctx, 'windows'),
+  ]
+
+  after = [
+    manifest(ctx),
+    changelog(ctx),
+    readme(ctx),
+    badges(ctx),
+    website(ctx),
+  ]
+
+  return before + stages + after
+
+def testing(ctx):
+  return {
+    'kind': 'pipeline',
+    'type': 'docker',
+    'name': 'testing',
+    'platform': {
+      'os': 'linux',
+      'arch': 'amd64',
+    },
+    'steps': [
+      {
+        'name': 'frontend',
+        'image': 'webhippie/nodejs:latest',
+        'pull': 'always',
+        'commands': [
+          'yarn install --frozen-lockfile',
+          'yarn lint',
+          'yarn test',
+          'yarn build',
+        ],
+      },
+      {
+        'name': 'generate',
+        'image': 'webhippie/golang:1.13',
+        'pull': 'always',
+        'commands': [
+          'make generate',
+        ],
+        'volumes': [
+          {
+            'name': 'gopath',
+            'path': '/srv/app',
+          },
+        ],
+      },
+      {
+        'name': 'vet',
+        'image': 'webhippie/golang:1.13',
+        'pull': 'always',
+        'commands': [
+          'make vet',
+        ],
+        'volumes': [
+          {
+            'name': 'gopath',
+            'path': '/srv/app',
+          },
+        ],
+      },
+      {
+        'name': 'staticcheck',
+        'image': 'webhippie/golang:1.13',
+        'pull': 'always',
+        'commands': [
+          'make staticcheck',
+        ],
+        'volumes': [
+          {
+            'name': 'gopath',
+            'path': '/srv/app',
+          },
+        ],
+      },
+      {
+        'name': 'lint',
+        'image': 'webhippie/golang:1.13',
+        'pull': 'always',
+        'commands': [
+          'make lint',
+        ],
+        'volumes': [
+          {
+            'name': 'gopath',
+            'path': '/srv/app',
+          },
+        ],
+      },
+      {
+        'name': 'build',
+        'image': 'webhippie/golang:1.13',
+        'pull': 'always',
+        'commands': [
+          'make build',
+        ],
+        'volumes': [
+          {
+            'name': 'gopath',
+            'path': '/srv/app',
+          },
+        ],
+      },
+      {
+        'name': 'test',
+        'image': 'webhippie/golang:1.13',
+        'pull': 'always',
+        'commands': [
+          'make test',
+        ],
+        'volumes': [
+          {
+            'name': 'gopath',
+            'path': '/srv/app',
+          },
+        ],
+      },
+      {
+        'name': 'codacy',
+        'image': 'plugins/codacy:1',
+        'pull': 'always',
+        'settings': {
+          'token': {
+            'from_secret': 'codacy_token',
+          },
+        },
+      },
+    ],
+    'volumes': [
+      {
+        'name': 'gopath',
+        'temp': {},
+      },
+    ],
+    'trigger': {
+      'ref': [
+        'refs/heads/master',
+        'refs/tags/**',
+        'refs/pull/**',
+      ],
+    },
+  }
+
+def docker(ctx, arch):
+  return {
+    'kind': 'pipeline',
+    'type': 'docker',
+    'name': arch,
+    'platform': {
+      'os': 'linux',
+      'arch': arch,
+    },
+    'steps': [
+      {
+        'name': 'frontend',
+        'image': 'webhippie/nodejs:latest',
+        'pull': 'always',
+        'commands': [
+          'yarn install --frozen-lockfile',
+          'yarn build',
+        ],
+      },
+      {
+        'name': 'generate',
+        'image': 'webhippie/golang:1.13',
+        'pull': 'always',
+        'commands': [
+          'make generate',
+        ],
+        'volumes': [
+          {
+            'name': 'gopath',
+            'path': '/srv/app',
+          },
+        ],
+      },
+      {
+        'name': 'build',
+        'image': 'webhippie/golang:1.13',
+        'pull': 'always',
+        'commands': [
+          'make build',
+        ],
+        'volumes': [
+          {
+            'name': 'gopath',
+            'path': '/srv/app',
+          },
+        ],
+      },
+      {
+        'name': 'dryrun',
+        'image': 'plugins/docker:18.09',
+        'pull': 'always',
+        'settings': {
+          'dry_run': True,
+          'tags': 'linux-%s' % (arch),
+          'dockerfile': 'docker/Dockerfile.linux.%s' % (arch),
+          'repo': ctx.repo.slug,
+        },
+        'when': {
+          'ref': {
+            'include': [
+              'refs/pull/**',
+            ],
+          },
+        },
+      },
+      {
+        'name': 'docker',
+        'image': 'plugins/docker:18.09',
+        'pull': 'always',
+        'settings': {
+          'username': {
+            'from_secret': 'docker_username',
+          },
+          'password': {
+            'from_secret': 'docker_password',
+          },
+          'auto_tag': True,
+          'auto_tag_suffix': 'linux-%s' % (arch),
+          'dockerfile': 'docker/Dockerfile.linux.%s' % (arch),
+          'repo': ctx.repo.slug,
+        },
+        'when': {
+          'ref': {
+            'exclude': [
+              'refs/pull/**',
+            ],
+          },
+        },
+      },
+    ],
+    'volumes': [
+      {
+        'name': 'gopath',
+        'temp': {},
+      },
+    ],
+    'depends_on': [
+      'testing',
+    ],
+    'trigger': {
+      'ref': [
+        'refs/heads/master',
+        'refs/tags/**',
+        'refs/pull/**',
+      ],
+    },
+  }
+
+def binary(ctx, name):
+  if ctx.build.event == "tag":
+    settings = {
+      'endpoint': {
+        'from_secret': 's3_endpoint',
+      },
+      'access_key': {
+        'from_secret': 'aws_access_key_id',
+      },
+      'secret_key': {
+        'from_secret': 'aws_secret_access_key',
+      },
+      'bucket': {
+        'from_secret': 's3_bucket',
+      },
+      'path_style': True,
+      'strip_prefix': 'dist/release/',
+      'source': 'dist/release/*',
+      'target': '/ocis/%s/%s' % (ctx.repo.name.replace("ocis-", ""), ctx.build.ref.replace("refs/tags/v", "")),
+    }
+  else:
+    settings = {
+      'endpoint': {
+        'from_secret': 's3_endpoint',
+      },
+      'access_key': {
+        'from_secret': 'aws_access_key_id',
+      },
+      'secret_key': {
+        'from_secret': 'aws_secret_access_key',
+      },
+      'bucket': {
+        'from_secret': 's3_bucket',
+      },
+      'path_style': True,
+      'strip_prefix': 'dist/release/',
+      'source': 'dist/release/*',
+      'target': '/ocis/%s/testing' % (ctx.repo.name.replace("ocis-", "")),
+    }
+
+  return {
+    'kind': 'pipeline',
+    'type': 'docker',
+    'name': name,
+    'platform': {
+      'os': 'linux',
+      'arch': 'amd64',
+    },
+    'steps': [
+      {
+        'name': 'frontend',
+        'image': 'webhippie/nodejs:latest',
+        'pull': 'always',
+        'commands': [
+          'yarn install --frozen-lockfile',
+          'yarn build',
+        ],
+      },
+      {
+        'name': 'generate',
+        'image': 'webhippie/golang:1.13',
+        'pull': 'always',
+        'commands': [
+          'make generate',
+        ],
+        'volumes': [
+          {
+            'name': 'gopath',
+            'path': '/srv/app',
+          },
+        ],
+      },
+      {
+        'name': 'build',
+        'image': 'webhippie/golang:1.13',
+        'pull': 'always',
+        'commands': [
+          'make release-%s' % (name),
+        ],
+        'volumes': [
+          {
+            'name': 'gopath',
+            'path': '/srv/app',
+          },
+        ],
+      },
+      {
+        'name': 'finish',
+        'image': 'webhippie/golang:1.13',
+        'pull': 'always',
+        'commands': [
+          'make release-finish',
+        ],
+        'volumes': [
+          {
+            'name': 'gopath',
+            'path': '/srv/app',
+          },
+        ],
+      },
+      {
+        'name': 'upload',
+        'image': 'plugins/s3:1',
+        'pull': 'always',
+        'settings': settings,
+        'when': {
+          'ref': [
+            'refs/heads/master',
+            'refs/tags/**',
+          ],
+        },
+      },
+      {
+        'name': 'changelog',
+        'image': 'toolhippie/calens:latest',
+        'pull': 'always',
+        'commands': [
+          'calens --version %s -o dist/CHANGELOG.md' % ctx.build.ref.replace("refs/tags/v", "").split("-")[0],
+        ],
+        'when': {
+          'ref': [
+            'refs/tags/**',
+          ],
+        },
+      },
+      {
+        'name': 'release',
+        'image': 'plugins/github-release:1',
+        'pull': 'always',
+        'settings': {
+          'api_key': {
+            'from_secret': 'github_token',
+          },
+          'files': [
+            'dist/release/*',
+          ],
+          'title': ctx.build.ref.replace("refs/tags/", ""),
+          'note': 'dist/CHANGELOG.md',
+          'overwrite': True,
+        },
+        'when': {
+          'ref': [
+            'refs/tags/**',
+          ],
+        },
+      },
+    ],
+    'volumes': [
+      {
+        'name': 'gopath',
+        'temp': {},
+      },
+    ],
+    'depends_on': [
+      'testing',
+    ],
+    'trigger': {
+      'ref': [
+        'refs/heads/master',
+        'refs/tags/**',
+        'refs/pull/**',
+      ],
+    },
+  }
+
+def manifest(ctx):
+  return {
+    'kind': 'pipeline',
+    'type': 'docker',
+    'name': 'manifest',
+    'platform': {
+      'os': 'linux',
+      'arch': 'amd64',
+    },
+    'steps': [
+      {
+        'name': 'execute',
+        'image': 'plugins/manifest:1',
+        'pull': 'always',
+        'settings': {
+          'username': {
+            'from_secret': 'docker_username',
+          },
+          'password': {
+            'from_secret': 'docker_password',
+          },
+          'spec': 'docker/manifest.tmpl',
+          'auto_tag': True,
+          'ignore_missing': True,
+        },
+      },
+    ],
+    'depends_on': [
+      'amd64',
+      'arm64',
+      'arm',
+      'linux',
+      'darwin',
+      'windows',
+    ],
+    'trigger': {
+      'ref': [
+        'refs/heads/master',
+        'refs/tags/**',
+      ],
+    },
+  }
+
+def changelog(ctx):
+  return {
+    'kind': 'pipeline',
+    'type': 'docker',
+    'name': 'changelog',
+    'platform': {
+      'os': 'linux',
+      'arch': 'amd64',
+    },
+    'clone': {
+      'disable': True,
+    },
+    'steps': [
+      {
+        'name': 'clone',
+        'image': 'plugins/git-action:1',
+        'pull': 'always',
+        'settings': {
+          'actions': [
+            'clone',
+          ],
+          'remote': 'https://github.com/%s' % (ctx.repo.slug),
+          'branch': ctx.build.branch if ctx.build.event == 'pull_request' else 'master',
+          'path': '/drone/src',
+          'netrc_machine': 'github.com',
+          'netrc_username': {
+            'from_secret': 'github_username',
+          },
+          'netrc_password': {
+            'from_secret': 'github_token',
+          },
+        },
+      },
+      {
+        'name': 'generate',
+        'image': 'webhippie/golang:1.13',
+        'pull': 'always',
+        'commands': [
+          'make changelog',
+        ],
+      },
+      {
+        'name': 'output',
+        'image': 'webhippie/golang:1.13',
+        'pull': 'always',
+        'commands': [
+          'cat CHANGELOG.md',
+        ],
+      },
+      {
+        'name': 'publish',
+        'image': 'plugins/git-action:1',
+        'pull': 'always',
+        'settings': {
+          'actions': [
+            'commit',
+            'push',
+          ],
+          'message': 'Automated changelog update [skip ci]',
+          'branch': 'master',
+          'author_email': 'devops@owncloud.com',
+          'author_name': 'ownClouders',
+          'netrc_machine': 'github.com',
+          'netrc_username': {
+            'from_secret': 'github_username',
+          },
+          'netrc_password': {
+            'from_secret': 'github_token',
+          },
+        },
+        'when': {
+          'ref': {
+            'exclude': [
+              'refs/pull/**',
+            ],
+          },
+        },
+      },
+    ],
+    'depends_on': [
+      'manifest',
+    ],
+    'trigger': {
+      'ref': [
+        'refs/heads/master',
+        'refs/tags/**',
+      ],
+    },
+  }
+
+def readme(ctx):
+  return {
+    'kind': 'pipeline',
+    'type': 'docker',
+    'name': 'readme',
+    'platform': {
+      'os': 'linux',
+      'arch': 'amd64',
+    },
+    'steps': [
+      {
+        'name': 'execute',
+        'image': 'sheogorath/readme-to-dockerhub:latest',
+        'pull': 'always',
+        'environment': {
+          'DOCKERHUB_USERNAME': {
+            'from_secret': 'docker_username',
+          },
+          'DOCKERHUB_PASSWORD': {
+            'from_secret': 'docker_password',
+          },
+          'DOCKERHUB_REPO_PREFIX': ctx.repo.namespace,
+          'DOCKERHUB_REPO_NAME': ctx.repo.name,
+          'SHORT_DESCRIPTION': 'Docker images for %s' % (ctx.repo.name),
+          'README_PATH': 'README.md',
+        },
+      },
+    ],
+    'depends_on': [
+      'changelog',
+    ],
+    'trigger': {
+      'ref': [
+        'refs/heads/master',
+        'refs/tags/**',
+      ],
+    },
+  }
+
+def badges(ctx):
+  return {
+    'kind': 'pipeline',
+    'type': 'docker',
+    'name': 'badges',
+    'platform': {
+      'os': 'linux',
+      'arch': 'amd64',
+    },
+    'steps': [
+      {
+        'name': 'execute',
+        'image': 'plugins/webhook:1',
+        'pull': 'always',
+        'settings': {
+          'urls': {
+            'from_secret': 'microbadger_url',
+          },
+        },
+      },
+    ],
+    'depends_on': [
+      'readme',
+    ],
+    'trigger': {
+      'ref': [
+        'refs/heads/master',
+        'refs/tags/**',
+      ],
+    },
+  }
+
+def website(ctx):
+  return {
+    'kind': 'pipeline',
+    'type': 'docker',
+    'name': 'website',
+    'platform': {
+      'os': 'linux',
+      'arch': 'amd64',
+    },
+    'steps': [
+      {
+        'name': 'generate',
+        'image': 'webhippie/hugo:latest',
+        'pull': 'always',
+        'commands': [
+          'make docs',
+        ],
+      },
+      {
+        'name': 'publish',
+        'image': 'plugins/gh-pages:1',
+        'pull': 'always',
+        'settings': {
+          'username': {
+            'from_secret': 'github_username',
+          },
+          'password': {
+            'from_secret': 'github_token',
+          },
+          'pages_directory': 'docs/public/',
+          'temporary_base': 'tmp/',
+        },
+        'when': {
+          'ref': {
+            'exclude': [
+              'refs/pull/**',
+            ],
+          },
+        },
+      },
+    ],
+    'depends_on': [
+      'badges',
+    ],
+    'trigger': {
+      'ref': [
+        'refs/heads/master',
+        'refs/pull/**',
+      ],
+    },
+  }

.editorconfig

@@ -0,0 +1,35 @@
+# http://editorconfig.org
+
+root = true
+
+[*]
+charset = utf-8
+insert_final_newline = true
+trim_trailing_whitespace = true
+
+[Makefile]
+indent_style = tab
+indent_size = 4
+
+[*.go]
+indent_style = tab
+indent_size = 4
+
+[*.starlark]
+indent_style = space
+indent_size = 2
+
+[*.{yml,json}]
+indent_style = space
+indent_size = 2
+
+[*.{js,vue}]
+indent_style = space
+indent_size = 2
+
+[*.{css,less}]
+indent_style = space
+indent_size = 2
+
+[*.md]
+trim_trailing_whitespace = true

.gitignore

@@ -0,0 +1,7 @@
+coverage.out
+
+/bin
+/dist
+
+/node_modules
+/assets

.vscode/launch.json

@@ -0,0 +1,18 @@
+{
+    // Use IntelliSense to learn about possible attributes.
+    // Hover to view descriptions of existing attributes.
+    // For more information, visit: https://go.microsoft.com/fwlink/?linkid=830387
+    "version": "0.2.0",
+    "configurations": [
+        {
+            "name": "Launch",
+            "type": "go",
+            "request": "launch",
+            "mode": "auto",
+            "program": "${workspaceFolder}/cmd/ocis-reva",
+            "env": {},
+            "cwd": "${workspaceFolder}",
+            "args": ["legacy"]
+        }
+    ]
+}

CHANGELOG.md

@@ -0,0 +1,17 @@
+# Changelog for unreleased
+
+The following sections list the changes for unreleased.
+
+## Summary
+
+ * Chg #1: Initial release of basic version
+
+## Details
+
+ * Change #1: Initial release of basic version
+
+   Just prepared an initial basic version to start a reva server and start integrating with the go-micro base dextension framework of ownCloud Infinite Scale.
+
+   https://github.com/owncloud/ocis-reva/issues/1
+
+

LICENSE

@@ -0,0 +1,202 @@
+
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.

Makefile

@@ -0,0 +1,139 @@
+SHELL := bash
+NAME := ocis-reva
+IMPORT := github.com/owncloud/$(NAME)
+BIN := bin
+DIST := dist
+
+ifeq ($(OS), Windows_NT)
+	EXECUTABLE := $(NAME).exe
+	UNAME := Windows
+else
+	EXECUTABLE := $(NAME)
+	UNAME := $(shell uname -s)
+endif
+
+ifeq ($(UNAME), Darwin)
+	GOBUILD ?= go build -i
+else
+	GOBUILD ?= go build
+endif
+
+PACKAGES ?= $(shell go list ./...)
+SOURCES ?= $(shell find . -name "*.go" -type f -not -path "./node_modules/*")
+GENERATE ?= $(IMPORT)/pkg/assets
+
+TAGS ?=
+
+ifndef OUTPUT
+	ifneq ($(DRONE_TAG),)
+		OUTPUT ?= $(subst v,,$(DRONE_TAG))
+	else
+		OUTPUT ?= testing
+	endif
+endif
+
+ifndef VERSION
+	ifneq ($(DRONE_TAG),)
+		VERSION ?= $(subst v,,$(DRONE_TAG))
+	else
+		VERSION ?= $(shell git rev-parse --short HEAD)
+	endif
+endif
+
+ifndef DATE
+	DATE := $(shell date -u '+%Y%m%d')
+endif
+
+LDFLAGS += -s -w -X "$(IMPORT)/pkg/version.String=$(VERSION)" -X "$(IMPORT)/pkg/version.Date=$(DATE)"
+GCFLAGS += all=-N -l
+
+.PHONY: all
+all: build
+
+.PHONY: sync
+sync:
+	go mod download
+
+.PHONY: clean
+clean:
+	go clean -i ./...
+	rm -rf $(BIN) $(DIST)
+
+.PHONY: fmt
+fmt:
+	gofmt -s -w $(SOURCES)
+
+.PHONY: vet
+vet:
+	go vet $(PACKAGES)
+
+.PHONY: staticcheck
+staticcheck:
+	go run honnef.co/go/tools/cmd/staticcheck -tags '$(TAGS)' $(PACKAGES)
+
+.PHONY: lint
+lint:
+	for PKG in $(PACKAGES); do go run golang.org/x/lint/golint -set_exit_status $$PKG || exit 1; done;
+
+.PHONY: generate
+generate:
+	go generate $(GENERATE)
+
+.PHONY: changelog
+changelog:
+	go run github.com/restic/calens >| CHANGELOG.md
+
+.PHONY: test
+test:
+	go run github.com/haya14busa/goverage -v -coverprofile coverage.out $(PACKAGES)
+
+.PHONY: install
+install: $(SOURCES)
+	go install -v -tags '$(TAGS)' -ldflags '$(LDFLAGS)' ./cmd/$(NAME)
+
+.PHONY: build
+build: $(BIN)/$(EXECUTABLE) $(BIN)/$(EXECUTABLE)-debug
+
+$(BIN)/$(EXECUTABLE): $(SOURCES)
+	$(GOBUILD) -v -tags '$(TAGS)' -ldflags '$(LDFLAGS)' -o $@ ./cmd/$(NAME)
+
+$(BIN)/$(EXECUTABLE)-debug: $(SOURCES)
+	$(GOBUILD) -v -tags '$(TAGS)' -ldflags '$(LDFLAGS)' -gcflags '$(GCFLAGS)' -o $@ ./cmd/$(NAME)
+
+.PHONY: release
+release: release-dirs release-linux release-windows release-darwin release-copy release-check
+
+.PHONY: release-dirs
+release-dirs:
+	mkdir -p $(DIST)/binaries $(DIST)/release
+
+.PHONY: release-linux
+release-linux: release-dirs
+	go run github.com/mitchellh/gox -tags 'netgo $(TAGS)' -ldflags '-extldflags "-static" $(LDFLAGS)' -os 'linux' -arch 'amd64 386 arm64 arm' -output '$(DIST)/binaries/$(EXECUTABLE)-$(OUTPUT)-{{.OS}}-{{.Arch}}' ./cmd/$(NAME)
+
+.PHONY: release-windows
+release-windows: release-dirs
+	go run github.com/mitchellh/gox -tags 'netgo $(TAGS)' -ldflags '-extldflags "-static" $(LDFLAGS)' -os 'windows' -arch 'amd64' -output '$(DIST)/binaries/$(EXECUTABLE)-$(OUTPUT)-{{.OS}}-{{.Arch}}' ./cmd/$(NAME)
+
+.PHONY: release-darwin
+release-darwin: release-dirs
+	go run github.com/mitchellh/gox -tags 'netgo $(TAGS)' -ldflags '$(LDFLAGS)' -os 'darwin' -arch 'amd64' -output '$(DIST)/binaries/$(EXECUTABLE)-$(OUTPUT)-{{.OS}}-{{.Arch}}' ./cmd/$(NAME)
+
+.PHONY: release-copy
+release-copy:
+	$(foreach file,$(wildcard $(DIST)/binaries/$(EXECUTABLE)-*),cp $(file) $(DIST)/release/$(notdir $(file));)
+
+.PHONY: release-check
+release-check:
+	cd $(DIST)/release; $(foreach file,$(wildcard $(DIST)/release/$(EXECUTABLE)-*),sha256sum $(notdir $(file)) > $(notdir $(file)).sha256;)
+
+.PHONY: release-finish
+release-finish: release-copy release-check
+
+.PHONY: docs
+docs:
+	cd docs; hugo
+
+.PHONY: watch
+watch:
+	go run github.com/cespare/reflex -c reflex.conf

README.md

@@ -0,0 +1,48 @@
+# ownCloud Infinite Scale: Reva
+
+[![Build Status](https://cloud.drone.io/api/badges/owncloud/ocis-reva/status.svg)](https://cloud.drone.io/owncloud/ocis-reva)
+[![Gitter chat](https://badges.gitter.im/cs3org/reva.svg)](https://gitter.im/cs3org/reva)
+[![Codacy Badge](https://api.codacy.com/project/badge/Grade/6f1eaaa399294d959ef7b3b10deed41d)](https://www.codacy.com/manual/owncloud/ocis-reva?utm_source=github.com&utm_medium=referral&utm_content=owncloud/ocis-reva&utm_campaign=Badge_Grade)
+[![Go Doc](https://godoc.org/github.com/owncloud/ocis-reva?status.svg)](http://godoc.org/github.com/owncloud/ocis-reva)
+[![Go Report](http://goreportcard.com/badge/github.com/owncloud/ocis-reva)](http://goreportcard.com/report/github.com/owncloud/ocis-reva)
+[![](https://images.microbadger.com/badges/image/owncloud/ocis-reva.svg)](http://microbadger.com/images/owncloud/ocis-reva "Get your own image badge on microbadger.com")
+
+**This project is under heavy development, it's not in a working state yet!**
+
+## Install
+
+You can download prebuilt binaries from the GitHub releases or from our [download mirrors](http://download.owncloud.com/ocis/reva/). For instructions how to install this on your platform you should take a look at our [documentation](https://owncloud.github.io/ocis-reva/)
+
+## Development
+
+Make sure you have a working Go environment, for further reference or a guide take a look at the [install instructions](http://golang.org/doc/install.html). This project requires Go >= v1.13. For the frontend it's also required to have [NodeJS](https://nodejs.org/en/download/package-manager/) and [Yarn](https://yarnpkg.com/lang/en/docs/install/) installed.
+
+```console
+git clone https://github.com/owncloud/ocis-reva.git
+cd ocis-reva
+
+yarn install
+yarn build
+
+make generate build
+
+./bin/ocis-reva -h
+```
+
+## Security
+
+If you find a security issue please contact security@owncloud.com first.
+
+## Contributing
+
+Fork -> Patch -> Push -> Pull Request
+
+## License
+
+Apache-2.0
+
+## Copyright
+
+```console
+Copyright (c) 2019 ownCloud GmbH <https://owncloud.com>
+```

changelog/CHANGELOG.tmpl

@@ -0,0 +1,28 @@
+{{- range $changes := . }}{{ with $changes -}}
+# Changelog for {{ .Version }}
+
+The following sections list the changes for {{ .Version }}.
+
+## Summary
+{{ range $entry := .Entries }}{{ with $entry }}
+ * {{ .TypeShort }} #{{ .PrimaryID }}: {{ .Title }}
+{{- end }}{{ end }}
+
+## Details
+{{ range $entry := .Entries }}{{ with $entry }}
+ * {{ .Type }} #{{ .PrimaryID }}: {{ .Title }}
+{{ range $par := .Paragraphs }}
+   {{ wrap $par 80 3 }}
+{{ end -}}
+{{ range $url := .IssueURLs }}
+   {{ $url -}}
+{{ end -}}
+{{ range $url := .PRURLs }}
+   {{ $url -}}
+{{ end -}}
+{{ range $url := .OtherURLs }}
+   {{ $url -}}
+{{ end }}
+{{ end }}{{ end }}
+
+{{ end }}{{ end -}}

changelog/README.md

@@ -0,0 +1,6 @@
+# Changelog
+
+We are using [calens](https://github.com/restic/calens) to properly generate a
+changelog before we are tagging a new release. To get an idea how this could
+look like <https://github.com/restic/restic/tree/master/changelog> would be the
+best reference.

changelog/TEMPLATE

@@ -0,0 +1,11 @@
+Bugfix: Fix behavior for foobar (in present tense)
+
+We've fixed the behavior for foobar, a long-standing annoyance for users. The
+text should be wrapped at 80 characters length.
+
+The text in the paragraphs is written in past tense. The last section is a list
+of issue URLs, PR URLs and other URLs. The first issue ID (or the first PR ID,
+in case there aren't any issue links) is used as the primary ID.
+
+https://github.com/owncloud/ocis-reva/issues/1234
+https://github.com/owncloud/ocis-reva/pull/55555

changelog/unreleased/initial-release.md

@@ -0,0 +1,5 @@
+Change: Initial release of basic version
+
+Just prepared an initial basic version to start a reva server and start integrating with the go-micro base dextension framework of ownCloud Infinite Scale.
+
+https://github.com/owncloud/ocis-reva/issues/1

cmd/ocis-reva/main.go

@@ -0,0 +1,13 @@
+package main
+
+import (
+	"os"
+
+	"github.com/owncloud/ocis-reva/pkg/command"
+)
+
+func main() {
+	if err := command.Execute(); err != nil {
+		os.Exit(1)
+	}
+}

config/example.json

@@ -0,0 +1,24 @@
+{
+  "debug": {
+    "addr": "0.0.0.0:9109",
+    "token": "",
+    "pprof": false,
+    "zpages": false
+  },
+  "http": {
+    "addr": "0.0.0.0:9105"
+  },
+  "grpc": {
+    "addr": "0.0.0.0:9106"
+  },
+  "tracing": {
+    "enabled": false,
+    "type": "jaeger",
+    "endpoint": "localhost:6831",
+    "collector": "http://localhost:14268/api/traces",
+    "service": "reva"
+  },
+  "asset": {
+    "path": ""
+  }
+}

config/example.yml

@@ -0,0 +1,24 @@
+---
+debug:
+  addr: 0.0.0.0:9109
+  token:
+  pprof: false
+  zpages: false
+
+http:
+  addr: 0.0.0.0:9105
+
+grpc:
+  addr: 0.0.0.0:9106
+
+tracing:
+  enabled: false
+  type: jaeger
+  endpoint: localhost:6831
+  collector: http://localhost:14268/api/traces
+  service: reva
+
+asset:
+  path:
+
+...

docker/Dockerfile.linux.amd64

@@ -0,0 +1,19 @@
+FROM amd64/alpine:edge
+
+RUN apk update && \
+	apk upgrade && \
+	apk add ca-certificates mailcap && \
+	rm -rf /var/cache/apk/* && \
+	echo 'hosts: files dns' >| /etc/nsswitch.conf
+
+LABEL maintainer="ownCloud GmbH <devops@owncloud.com>" \
+  org.label-schema.name="oCIS Reva" \
+  org.label-schema.vendor="ownCloud GmbH" \
+  org.label-schema.schema-version="1.0"
+
+EXPOSE 9135 9136
+
+ENTRYPOINT ["/usr/bin/ocis-reva"]
+CMD ["server"]
+
+COPY bin/ocis-reva /usr/bin/ocis-reva

docker/Dockerfile.linux.arm

@@ -0,0 +1,19 @@
+FROM arm32v6/alpine:edge
+
+RUN apk update && \
+	apk upgrade && \
+	apk add ca-certificates mailcap && \
+	rm -rf /var/cache/apk/* && \
+	echo 'hosts: files dns' >| /etc/nsswitch.conf
+
+LABEL maintainer="ownCloud GmbH <devops@owncloud.com>" \
+  org.label-schema.name="oCIS Reva" \
+  org.label-schema.vendor="ownCloud GmbH" \
+  org.label-schema.schema-version="1.0"
+
+EXPOSE 9135 9136
+
+ENTRYPOINT ["/usr/bin/ocis-reva"]
+CMD ["server"]
+
+COPY bin/ocis-reva /usr/bin/ocis-reva

docker/Dockerfile.linux.arm64

@@ -0,0 +1,19 @@
+FROM arm64v8/alpine:edge
+
+RUN apk update && \
+	apk upgrade && \
+	apk add ca-certificates mailcap && \
+	rm -rf /var/cache/apk/* && \
+	echo 'hosts: files dns' >| /etc/nsswitch.conf
+
+LABEL maintainer="ownCloud GmbH <devops@owncloud.com>" \
+  org.label-schema.name="oCIS Reva" \
+  org.label-schema.vendor="ownCloud GmbH" \
+  org.label-schema.schema-version="1.0"
+
+EXPOSE 9135 9136
+
+ENTRYPOINT ["/usr/bin/ocis-reva"]
+CMD ["server"]
+
+COPY bin/ocis-reva /usr/bin/ocis-reva

docker/manifest.tmpl

@@ -0,0 +1,22 @@
+image: owncloud/ocis-reva:{{#if build.tag}}{{trimPrefix "v" build.tag}}{{else}}latest{{/if}}
+{{#if build.tags}}
+tags:
+{{#each build.tags}}
+  - {{this}}
+{{/each}}
+{{/if}}
+manifests:
+  - image: owncloud/ocis-reva:{{#if build.tag}}{{trimPrefix "v" build.tag}}-{{/if}}linux-amd64
+    platform:
+      architecture: amd64
+      os: linux
+  - image: owncloud/ocis-reva:{{#if build.tag}}{{trimPrefix "v" build.tag}}-{{/if}}linux-arm64
+    platform:
+      architecture: arm64
+      variant: v8
+      os: linux
+  - image: owncloud/ocis-reva:{{#if build.tag}}{{trimPrefix "v" build.tag}}-{{/if}}linux-arm
+    platform:
+      architecture: arm
+      variant: v6
+      os: linux

docs/.gitignore

@@ -0,0 +1 @@
+public/

docs/archetypes/default.md

@@ -0,0 +1,6 @@
+---
+title: "{{ replace .TranslationBaseName "-" " " | title }}"
+date: {{ .Date }}
+anchor: "{{ replace .TranslationBaseName "-" " " | title | urlize }}"
+weight:
+---

docs/config.toml

@@ -0,0 +1,18 @@
+baseURL = "https://owncloud.github.io/ocis-reva/"
+languageCode = "en-us"
+title = "ownCloud Infinite Scale: Reva"
+pygmentsUseClasses = true
+
+disableKinds = ["taxonomy", "taxonomyTerm", "RSS", "sitemap"]
+
+[blackfriday]
+  angledQuotes = true
+  fractions = false
+  plainIDAnchors = true
+  smartlists = true
+  extensions = ["hardLineBreak"]
+
+[params]
+  author = "ownCloud GmbH"
+  description = "Example service for oCIS"
+  keywords = "reva, ocis"

docs/content/about.md

@@ -0,0 +1,8 @@
+---
+title: "About"
+date: 2018-05-02T00:00:00+00:00
+anchor: "about"
+weight: 10
+---
+
+This service provides a simple hello world example API to show the integration of custom plugins within [Phoenix](https://github.com/owncloud/phoenix).

docs/content/building.md

@@ -0,0 +1,33 @@
+---
+title: "Building"
+date: 2018-05-02T00:00:00+00:00
+anchor: "building"
+weight: 30
+---
+
+As this project is built with Go and NodeJS, so you need to install that first. The installation of Go and NodeJS is out of the scope of this document, please follow the official documentation for [Go](https://golang.org/doc/install), [NodeJS](https://nodejs.org/en/download/package-manager/) and [Yarn](https://yarnpkg.com/lang/en/docs/install/), to build this project you have to install Go >= v1.13. After the installation of the required tools you need to get the sources:
+
+{{< highlight txt >}}
+git clone https://github.com/owncloud/ocis-reva.git
+cd ocis-reva
+{{< / highlight >}}
+
+All required tool besides Go itself and make are bundled or getting automatically installed within the `GOPATH`. All commands to build this project are part of our `Makefile` and respectively our `package.json`.
+
+### Frontend
+
+{{< highlight txt >}}
+yarn install
+yarn build
+{{< / highlight >}}
+
+The above commands will install the required build dependencies and build the whole frontend bundle. This bundle will we embeded into the binary later on.
+
+### Backend
+
+{{< highlight txt >}}
+make generate
+make build
+{{< / highlight >}}
+
+The above commands will embed the frontend bundle into the binary. Finally you should have the binary within the `bin/` folder now, give it a try with `./bin/ocis-reva -h` to see all available options.

docs/content/getting-started.md

@@ -0,0 +1,274 @@
+---
+title: "Getting Started"
+date: 2018-05-02T00:00:00+00:00
+anchor: "getting-started"
+weight: 20
+---
+
+### Installation
+
+So far we are offering two different variants for the installation. You can choose between [Docker](https://www.docker.com/) or pre-built binaries which are stored on our download mirrors and GitHub releases. Maybe we will also provide system packages for the major distributions later if we see the need for it.
+
+#### Docker
+
+TBD
+
+#### Binaries
+
+TBD
+
+### Configuration
+
+We provide overall three different variants of configuration. The variant based on environment variables and commandline flags are split up into global values and command-specific values.
+
+#### Envrionment variables
+
+If you prefer to configure the service with environment variables you can see the available variables below.
+
+##### Global
+
+REVA_CONFIG_FILE
+: Path to config file, empty default value
+
+REVA_LOG_LEVEL
+: Set logging level, defaults to `info`
+
+REVA_LOG_COLOR
+: Enable colored logging, defaults to `true`
+
+REVA_LOG_PRETTY
+: Enable pretty logging, defaults to `true`
+
+##### Server
+
+REVA_TRACING_ENABLED
+: Enable sending traces, defaults to `false`
+
+REVA_TRACING_TYPE
+: Tracing backend type, defaults to `jaeger`
+
+REVA_TRACING_ENDPOINT
+: Endpoint for the agent, empty default value
+
+REVA_TRACING_COLLECTOR
+: Endpoint for the collector, empty default value
+
+REVA_TRACING_SERVICE
+: Service name for tracing, defaults to `reva`
+
+REVA_DEBUG_ADDR
+: Address to bind debug server, defaults to `0.0.0.0:9109`
+
+REVA_DEBUG_TOKEN
+: Token to grant metrics access, empty default value
+
+REVA_DEBUG_PPROF
+: Enable pprof debugging, defaults to `false`
+
+REVA_DEBUG_ZPAGES
+: Enable zpages debugging, defaults to `false`
+
+REVA_HTTP_ADDR
+: Address to bind http server, defaults to `0.0.0.0:9105`
+
+REVA_HTTP_ROOT
+: Root path of http server, defaults to `/`
+
+REVA_GRPC_ADDR
+: Address to bind grpc server, defaults to `0.0.0.0:9106`
+
+REVA_ASSET_PATH
+: Path to custom assets, empty default value
+
+##### Health
+
+REVA_DEBUG_ADDR
+: Address to debug endpoint, defaults to `0.0.0.0:9109`
+
+#### Commandline flags
+
+If you prefer to configure the service with commandline flags you can see the available variables below.
+
+##### Global
+
+--config-file
+: Path to config file, empty default value
+
+--log-level
+: Set logging level, defaults to `info`
+
+--log-color
+: Enable colored logging, defaults to `true`
+
+--log-pretty
+: Enable pretty logging, defaults to `true`
+
+##### Server
+
+--tracing-enabled
+: Enable sending traces, defaults to `false`
+
+--tracing-type
+: Tracing backend type, defaults to `jaeger`
+
+--tracing-endpoint
+: Endpoint for the agent, empty default value
+
+--tracing-collector
+: Endpoint for the collector, empty default value
+
+--tracing-service
+: Service name for tracing, defaults to `reva`
+
+--debug-addr
+: Address to bind debug server, defaults to `0.0.0.0:9109`
+
+--debug-token
+: Token to grant metrics access, empty default value
+
+--debug-pprof
+: Enable pprof debugging, defaults to `false`
+
+--debug-zpages
+: Enable zpages debugging, defaults to `false`
+
+--http-addr
+: Address to bind http server, defaults to `0.0.0.0:9105`
+
+--http-root
+: Root path of http server, defaults to `/`
+
+--grpc-addr
+: Address to bind grpc server, defaults to `0.0.0.0:9106`
+
+--asset-path
+: Path to custom assets, empty default value
+
+##### Health
+
+--debug-addr
+: Address to debug endpoint, defaults to `0.0.0.0:9109`
+
+#### Configuration file
+
+So far we support the file formats `JSON` and `YAML`, if you want to get a full example configuration just take a look at [our repository](https://github.com/owncloud/ocis-reva/tree/master/config), there you can always see the latest configuration format. These example configurations include all available options and the default values. The configuration file will be automatically loaded if it's placed at `/etc/ocis/reva.yml`, `${HOME}/.ocis/reva.yml` or `$(pwd)/config/reva.yml`.
+
+### Usage
+
+The program provides a few sub-commands on execution. The available configuration methods have already been mentioned above. Generally you can always see a formated help output if you execute the binary via `ocis-reva --help`.
+
+#### Server
+
+The server command is used to start the http and debug server on two addresses within a single process. The http server is serving the general webservice while the debug server is used for health check, readiness check and to server the metrics mentioned below. For further help please execute:
+
+{{< highlight txt >}}
+ocis-reva server --help
+{{< / highlight >}}
+
+#### Health
+
+The health command is used to execute a health check, if the exit code equals zero the service should be up and running, if the exist code is greater than zero the service is not in a healthy state. Generally this command is used within our Docker containers, it could also be used within Kubernetes.
+
+{{< highlight txt >}}
+ocis-reva health --help
+{{< / highlight >}}
+
+### Metrics
+
+This service provides some [Prometheus](https://prometheus.io/) metrics through the debug endpoint, you can optionally secure the metrics endpoint by some random token, which got to be configured through one of the flag `--debug-token` or the environment variable `REVA_DEBUG_TOKEN` mentioned above. By default the metrics endpoint is bound to `http://0.0.0.0:9109/metrics`.
+
+go_gc_duration_seconds
+: A summary of the GC invocation durations
+
+go_gc_duration_seconds_sum
+: A summary of the GC invocation durations
+
+go_gc_duration_seconds_count
+: A summary of the GC invocation durations
+
+go_goroutines
+: Number of goroutines that currently exist
+
+go_info
+: Information about the Go environment
+
+go_memstats_alloc_bytes
+: Number of bytes allocated and still in use
+
+go_memstats_alloc_bytes_total
+: Total number of bytes allocated, even if freed
+
+go_memstats_buck_hash_sys_bytes
+: Number of bytes used by the profiling bucket hash table
+
+go_memstats_frees_total
+: Total number of frees
+
+go_memstats_gc_cpu_fraction
+: The fraction of this program's available CPU time used by the GC since the program started
+
+go_memstats_gc_sys_bytes
+: Number of bytes used for garbage collection system metadata
+
+go_memstats_heap_alloc_bytes
+: Number of heap bytes allocated and still in use
+
+go_memstats_heap_idle_bytes
+: Number of heap bytes waiting to be used
+
+go_memstats_heap_inuse_bytes
+: Number of heap bytes that are in use
+
+go_memstats_heap_objects
+: Number of allocated objects
+
+go_memstats_heap_released_bytes
+: Number of heap bytes released to OS
+
+go_memstats_heap_sys_bytes
+: Number of heap bytes obtained from system
+
+go_memstats_last_gc_time_seconds
+: Number of seconds since 1970 of last garbage collection
+
+go_memstats_lookups_total
+: Total number of pointer lookups
+
+go_memstats_mallocs_total
+: Total number of mallocs
+
+go_memstats_mcache_inuse_bytes
+: Number of bytes in use by mcache structures
+
+go_memstats_mcache_sys_bytes
+: Number of bytes used for mcache structures obtained from system
+
+go_memstats_mspan_inuse_bytes
+: Number of bytes in use by mspan structures
+
+go_memstats_mspan_sys_bytes
+: Number of bytes used for mspan structures obtained from system
+
+go_memstats_next_gc_bytes
+: Number of heap bytes when next garbage collection will take place
+
+go_memstats_other_sys_bytes
+: Number of bytes used for other system allocations
+
+go_memstats_stack_inuse_bytes
+: Number of bytes in use by the stack allocator
+
+go_memstats_stack_sys_bytes
+: Number of bytes obtained from system for stack allocator
+
+go_memstats_sys_bytes
+: Number of bytes obtained from system
+
+go_threads
+: Number of OS threads created
+
+promhttp_metric_handler_requests_in_flight
+: Current number of scrapes being served
+
+promhttp_metric_handler_requests_total
+: Total number of scrapes by HTTP status code

docs/content/license.md

@@ -0,0 +1,8 @@
+---
+title: "License"
+date: 2018-05-02T00:00:00+00:00
+anchor: "license"
+weight: 40
+---
+
+This project is licensed under the [Apache 2.0](https://github.com/owncloud/ocis-reva/blob/master/LICENSE) license. For the license of the used libraries you have to check the respective sources.

docs/layouts/index.html

@@ -0,0 +1,57 @@
+<!DOCTYPE html>
+
+<html id="html" lang="{{ with .Site.LanguageCode }}{{ . }}{{ else }}en-US{{ end }}">
+	<head>
+		<meta http-equiv="content-type" content="text/html;charset=utf-8">
+		<meta name="viewport" content="width=device-width"/>
+
+		<title>
+			{{ .Site.Title }}
+		</title>
+
+		<meta name="description" content="{{ with .Site.Params.description }}{{ . }}{{ end }}">
+		<meta name="author" content="{{ with .Site.Params.author }}{{ . }}{{ end }}">
+
+		{{ partial "style.html" . }}
+	</head>
+
+	<body>
+		<section id="Menu">
+			<header>
+				<h1>
+					{{ .Site.Title }}
+				</h1>
+
+				<p>
+					{{ .Site.Params.description }}
+				</p>
+			</header>
+
+			<nav>
+				{{ range .Data.Pages.ByWeight }}
+					<a href="#{{ .Params.anchor }}">
+						{{ .Title }}
+					</a>
+				{{ end }}
+			</nav>
+		</section>
+
+		{{ range .Data.Pages.ByWeight }}
+			<section id="{{ .Params.anchor }}">
+				<h2>
+					<a href="#{{ .Params.anchor }}">
+						{{ .Title }}
+					</a>
+
+					<small>
+						<a href="#html">
+							Back to Top
+						</a>
+					</small>
+				</h2>
+
+				{{ .Content | markdownify }}
+			</section>
+		{{ end }}
+	</body>
+</html>

docs/layouts/partials/style.html

@@ -0,0 +1,2 @@
+<link rel="stylesheet" href="syntax.css" />
+<link rel="stylesheet" href="styles.css" />

docs/static/styles.css

@@ -0,0 +1,338 @@
+body,
+html {
+  cursor: default;
+}
+
+body,
+div,
+dl,
+dt,
+dd,
+ul,
+ol,
+li,
+h1,
+h2,
+h3,
+h4,
+h5,
+h6,
+pre,
+form,
+fieldset,
+input,
+textarea,
+p,
+blockquote,
+th,
+td {
+  margin: 0;
+  padding: 0;
+}
+
+* {
+  -webkit-box-sizing: border-box;
+  -moz-box-sizing: border-box;
+  box-sizing: border-box;
+}
+
+:before,
+:after {
+  -webkit-box-sizing: border-box;
+  -moz-box-sizing: border-box;
+  box-sizing: border-box;
+}
+
+img,
+object,
+embed {
+  max-width: 100%;
+  height: auto;
+}
+
+object,
+embed {
+  height: 100%;
+}
+
+img {
+  margin: 1.25% 0;
+  -ms-interpolation-mode: bicubic;
+}
+
+html {
+  background-color: #F0F1F3;
+  padding: 2%;
+}
+
+body {
+  font-size: 16px;
+  line-height: 1.6;
+  font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol";
+  color: #242424;
+  max-width: 800px;
+  margin: 5% auto;
+}
+
+body::after {
+  clear: both;
+  content: "";
+  display: table;
+}
+
+header {
+  margin-bottom: 8%;
+}
+
+footer {
+  text-align: center;
+}
+
+h1,
+h2,
+h3,
+h4,
+h5,
+h2 a {
+  color: #263A48;
+  font-weight: 500;
+  text-decoration: none;
+}
+
+h1,
+h2 {
+  font-size: 36px;
+  padding-bottom: 0.3em;
+  margin-bottom: 0.4em;
+  border-bottom: 1px solid #eee
+}
+
+h2 {
+  font-size: 22px;
+  padding-bottom: 0.6em;
+  margin-bottom: 0.6em;
+  margin-top: 2.5em;
+}
+
+h3 {
+  font-size: 18px;
+  margin-bottom: 0.3em;
+}
+
+h2 small a {
+  color: #98999C;
+  font-size: 15px;
+  font-weight: normal;
+  float: right;
+  position: absolute;
+  top: 15px;
+  right: 20px;
+}
+
+section {
+  background: #fff;
+  margin-bottom: 1%;
+  position: relative;
+  padding: 6% 8%;
+}
+
+blockquote {
+  border-left: 3px solid #d54e21;
+  font-size: 16px;
+  padding: 0 0 0 20px;
+  color: #d54e21;
+}
+
+blockquote a {
+  color: #d54e21;
+  font-weight: 500;
+}
+
+blockquote code {
+  color: #d54e21;
+}
+
+.highlight pre {
+  padding: 10px;
+}
+
+.highlight {
+  margin-bottom: 4%;
+}
+
+a {
+  color: #1e8cbe;
+  text-decoration: underline;
+}
+
+a:hover {
+  color: #d54e21;
+}
+
+ul {
+  list-style: none;
+}
+
+ol {
+  list-style: number;
+}
+
+ol li {
+  color: #98999C;
+  margin-bottom: 5px;
+}
+
+ol li:last-child {
+  margin-bottom: 0;
+}
+
+p,
+ul,
+ol,
+blockquote  {
+  margin-bottom: 4%;
+}
+
+ul ul {
+  padding-top: 0;
+  margin-bottom: 0;
+  margin-left: 4%;
+}
+
+ul ul li:before {
+  content: '-';
+  display: inline-block;
+  padding-right: 2%;
+}
+
+ul.col-2 {
+  color: #98999C;
+  -webkit-column-count: 2;
+  -moz-column-count: 2;
+  column-count: 2;
+  -webkit-column-gap: 20px;
+  -moz-column-gap: 20px;
+  column-gap: 20px;
+}
+
+dl dt {
+  font-weight: bold;
+}
+
+dl dd {
+  padding-left: 10px;
+}
+
+@media screen and (min-width: 500px) {
+  ul.col-2 {
+    -webkit-column-count: 3;
+    -moz-column-count: 3;
+    column-count: 3;
+    -webkit-column-gap: 20px;
+    -moz-column-gap: 20px;
+    column-gap: 20px;
+  }
+}
+
+nav {
+  background: #F0F1F3;
+  min-width: 215px;
+  margin-bottom: 5px;
+  margin-top: 15px;
+}
+
+nav:first-of-type a {
+  color: #d54e21;
+  border-radius: 0;
+}
+
+nav:first-of-type a:hover {
+  color: #d54e21;
+}
+
+nav:first-of-type a:before {
+  background-color: #d54e21;
+}
+
+nav.affix {
+  position: fixed;
+  top: 20px;
+}
+
+nav.affix-bottom {
+  position: absolute;
+}
+
+nav a {
+  border-radius: 3px;
+  font-size: 15px;
+  display: block;
+  cursor: pointer;
+  font-weight: 500;
+  position: relative;
+  text-decoration: none;
+  padding: 10px 12px;
+  width: 100%;
+  padding-right: 3px;
+  border-bottom: 2px solid #fff;
+}
+
+nav a:before {
+  content: '';
+  width: 4px;
+  display: block;
+  left: 0;
+  position: absolute;
+  height: 100%;
+  display: none;
+  background: #1e8cbe;
+  top: 0;
+}
+
+nav a:hover {
+  background-color: #E6E8EA;
+  color: #1e8cbe;
+  text-decoration: underline;
+}
+
+nav a:hover:before {
+  display: block;
+}
+
+nav a:last-of-type {
+  border-bottom: none;
+}
+
+.gist {
+  margin-top: 5.1%;
+  margin-bottom: 5%;
+}
+
+@media screen and (max-width: 1050px) {
+  body {
+    margin: 0 auto;
+  }
+}
+
+@media screen and (max-width: 767px) {
+  header span {
+    display: none;
+  }
+
+  h1 {
+    font-size: 26px;
+  }
+
+  h2 {
+    font-size: 20px;
+  }
+}
+
+@media screen and (max-width: 514px) {
+  p,
+  ul,
+  ol,
+  blockquote  {
+    margin-bottom: 8%;
+  }
+}

docs/static/syntax.css

@@ -0,0 +1,59 @@
+/* Background */ .chroma { color: #f8f8f2; background-color: #272822 }
+/* Error */ .chroma .err { color: #960050; background-color: #1e0010 }
+/* LineTableTD */ .chroma .lntd { vertical-align: top; padding: 0; margin: 0; border: 0; }
+/* LineTable */ .chroma .lntable { border-spacing: 0; padding: 0; margin: 0; border: 0; width: auto; overflow: auto; display: block; }
+/* LineHighlight */ .chroma .hl { display: block; width: 100%;background-color: #ffffcc }
+/* LineNumbersTable */ .chroma .lnt { margin-right: 0.4em; padding: 0 0.4em 0 0.4em; }
+/* LineNumbers */ .chroma .ln { margin-right: 0.4em; padding: 0 0.4em 0 0.4em; }
+/* Keyword */ .chroma .k { color: #66d9ef }
+/* KeywordConstant */ .chroma .kc { color: #66d9ef }
+/* KeywordDeclaration */ .chroma .kd { color: #66d9ef }
+/* KeywordNamespace */ .chroma .kn { color: #f92672 }
+/* KeywordPseudo */ .chroma .kp { color: #66d9ef }
+/* KeywordReserved */ .chroma .kr { color: #66d9ef }
+/* KeywordType */ .chroma .kt { color: #66d9ef }
+/* NameAttribute */ .chroma .na { color: #a6e22e }
+/* NameClass */ .chroma .nc { color: #a6e22e }
+/* NameConstant */ .chroma .no { color: #66d9ef }
+/* NameDecorator */ .chroma .nd { color: #a6e22e }
+/* NameException */ .chroma .ne { color: #a6e22e }
+/* NameFunction */ .chroma .nf { color: #a6e22e }
+/* NameOther */ .chroma .nx { color: #a6e22e }
+/* NameTag */ .chroma .nt { color: #f92672 }
+/* Literal */ .chroma .l { color: #ae81ff }
+/* LiteralDate */ .chroma .ld { color: #e6db74 }
+/* LiteralString */ .chroma .s { color: #e6db74 }
+/* LiteralStringAffix */ .chroma .sa { color: #e6db74 }
+/* LiteralStringBacktick */ .chroma .sb { color: #e6db74 }
+/* LiteralStringChar */ .chroma .sc { color: #e6db74 }
+/* LiteralStringDelimiter */ .chroma .dl { color: #e6db74 }
+/* LiteralStringDoc */ .chroma .sd { color: #e6db74 }
+/* LiteralStringDouble */ .chroma .s2 { color: #e6db74 }
+/* LiteralStringEscape */ .chroma .se { color: #ae81ff }
+/* LiteralStringHeredoc */ .chroma .sh { color: #e6db74 }
+/* LiteralStringInterpol */ .chroma .si { color: #e6db74 }
+/* LiteralStringOther */ .chroma .sx { color: #e6db74 }
+/* LiteralStringRegex */ .chroma .sr { color: #e6db74 }
+/* LiteralStringSingle */ .chroma .s1 { color: #e6db74 }
+/* LiteralStringSymbol */ .chroma .ss { color: #e6db74 }
+/* LiteralNumber */ .chroma .m { color: #ae81ff }
+/* LiteralNumberBin */ .chroma .mb { color: #ae81ff }
+/* LiteralNumberFloat */ .chroma .mf { color: #ae81ff }
+/* LiteralNumberHex */ .chroma .mh { color: #ae81ff }
+/* LiteralNumberInteger */ .chroma .mi { color: #ae81ff }
+/* LiteralNumberIntegerLong */ .chroma .il { color: #ae81ff }
+/* LiteralNumberOct */ .chroma .mo { color: #ae81ff }
+/* Operator */ .chroma .o { color: #f92672 }
+/* OperatorWord */ .chroma .ow { color: #f92672 }
+/* Comment */ .chroma .c { color: #75715e }
+/* CommentHashbang */ .chroma .ch { color: #75715e }
+/* CommentMultiline */ .chroma .cm { color: #75715e }
+/* CommentSingle */ .chroma .c1 { color: #75715e }
+/* CommentSpecial */ .chroma .cs { color: #75715e }
+/* CommentPreproc */ .chroma .cp { color: #75715e }
+/* CommentPreprocFile */ .chroma .cpf { color: #75715e }
+/* GenericDeleted */ .chroma .gd { color: #f92672 }
+/* GenericEmph */ .chroma .ge { font-style: italic }
+/* GenericInserted */ .chroma .gi { color: #a6e22e }
+/* GenericStrong */ .chroma .gs { font-weight: bold }
+/* GenericSubheading */ .chroma .gu { color: #75715e }

go.mod

@@ -0,0 +1,26 @@
+module github.com/owncloud/ocis-reva
+
+go 1.13
+
+require (
+	contrib.go.opencensus.io/exporter/jaeger v0.2.0
+	contrib.go.opencensus.io/exporter/ocagent v0.6.0
+	contrib.go.opencensus.io/exporter/zipkin v0.1.1
+	github.com/UnnoTed/fileb0x v1.1.4 // indirect
+	github.com/butonic/ldapserver v0.0.0-20191210075802-e693a1c5bba4 // indirect
+	github.com/cs3org/reva v0.0.2-0.20191217083445-dee8d1c71f95
+	github.com/go-chi/render v1.0.1 // indirect
+	github.com/gofrs/uuid v3.2.0+incompatible
+	github.com/micro/cli v0.2.0
+	github.com/micro/go-micro v1.18.0 // indirect
+	github.com/oklog/run v1.0.0
+	github.com/openzipkin/zipkin-go v0.2.2
+	github.com/owncloud/ocis-devldap v0.0.0-20191211134532-3663b31971b9 // indirect
+	github.com/owncloud/ocis-pkg v1.2.0
+	github.com/prometheus/client_golang v1.2.1
+	github.com/spf13/viper v1.6.1
+	github.com/webhippie/protoc-gen-microweb v0.0.0-20191209132523-6ef5e3b3e9cc // indirect
+	go.opencensus.io v0.22.2
+	golang.org/x/net v0.0.0-20191209160850-c0dbc17a3553
+	google.golang.org/genproto v0.0.0-20191216205247-b31c10ee225f // indirect
+)

pkg/assets/assets.go

@@ -0,0 +1,60 @@
+package assets
+
+import (
+	"net/http"
+	"os"
+	"path"
+
+	"github.com/owncloud/ocis-reva/pkg/config"
+	"github.com/owncloud/ocis-pkg/log"
+)
+
+//go:generate go run github.com/UnnoTed/fileb0x embed.yml
+
+// assets gets initialized by New and provides the handler.
+type assets struct {
+	logger log.Logger
+	config *config.Config
+}
+
+// Open just implements the HTTP filesystem interface.
+func (a assets) Open(original string) (http.File, error) {
+	if a.config.Asset.Path != "" {
+		if stat, err := os.Stat(a.config.Asset.Path); err == nil && stat.IsDir() {
+			custom := path.Join(
+				a.config.Asset.Path,
+				original,
+			)
+
+			if _, err := os.Stat(custom); !os.IsNotExist(err) {
+				f, err := os.Open(custom)
+
+				if err != nil {
+					return nil, err
+				}
+
+				return f, nil
+			}
+		} else {
+			a.logger.Warn().
+				Str("path", a.config.Asset.Path).
+				Msg("Assets directory doesn't exist")
+		}
+	}
+
+	return FS.OpenFile(
+		CTX,
+		original,
+		os.O_RDONLY,
+		0644,
+	)
+}
+
+// New returns a new http filesystem to serve assets.
+func New(opts ...Option) http.FileSystem {
+	options := newOptions(opts...)
+
+	return assets{
+		config: options.Config,
+	}
+}

pkg/assets/dummy.go

@@ -0,0 +1,9 @@
+package assets
+
+import (
+	// Fake the import to make the dep tree happy.
+	_ "golang.org/x/net/context"
+
+	// Fake the import to make the dep tree happy.
+	_ "golang.org/x/net/webdav"
+)

pkg/assets/embed.go

@@ -0,0 +1,144 @@
+// Code generated by fileb0x at "2019-12-17 13:05:06.070460692 +0100 CET m=+0.000833910" from config file "embed.yml" DO NOT EDIT.
+// modification hash(d41d8cd98f00b204e9800998ecf8427e.8058aec596c5fb73022d09bb97af796e)
+
+package assets
+
+import (
+	"bytes"
+	"compress/gzip"
+	"context"
+	"io"
+	"net/http"
+	"os"
+	"path"
+
+	"golang.org/x/net/webdav"
+)
+
+var (
+	// CTX is a context for webdav vfs
+	CTX = context.Background()
+
+	// FS is a virtual memory file system
+	FS = webdav.NewMemFS()
+
+	// Handler is used to server files through a http handler
+	Handler *webdav.Handler
+
+	// HTTP is the http file system
+	HTTP http.FileSystem = new(HTTPFS)
+)
+
+// HTTPFS implements http.FileSystem
+type HTTPFS struct {
+	// Prefix allows to limit the path of all requests. F.e. a prefix "css" would allow only calls to /css/*
+	Prefix string
+}
+
+func init() {
+	err := CTX.Err()
+	if err != nil {
+		panic(err)
+	}
+
+	var f webdav.File
+
+	var rb *bytes.Reader
+	var r *gzip.Reader
+
+	Handler = &webdav.Handler{
+		FileSystem: FS,
+		LockSystem: webdav.NewMemLS(),
+	}
+
+}
+
+// Open a file
+func (hfs *HTTPFS) Open(path string) (http.File, error) {
+	path = hfs.Prefix + path
+
+	f, err := FS.OpenFile(CTX, path, os.O_RDONLY, 0644)
+	if err != nil {
+		return nil, err
+	}
+
+	return f, nil
+}
+
+// ReadFile is adapTed from ioutil
+func ReadFile(path string) ([]byte, error) {
+	f, err := FS.OpenFile(CTX, path, os.O_RDONLY, 0644)
+	if err != nil {
+		return nil, err
+	}
+
+	buf := bytes.NewBuffer(make([]byte, 0, bytes.MinRead))
+
+	// If the buffer overflows, we will get bytes.ErrTooLarge.
+	// Return that as an error. Any other panic remains.
+	defer func() {
+		e := recover()
+		if e == nil {
+			return
+		}
+		if panicErr, ok := e.(error); ok && panicErr == bytes.ErrTooLarge {
+			err = panicErr
+		} else {
+			panic(e)
+		}
+	}()
+	_, err = buf.ReadFrom(f)
+	return buf.Bytes(), err
+}
+
+// WriteFile is adapTed from ioutil
+func WriteFile(filename string, data []byte, perm os.FileMode) error {
+	f, err := FS.OpenFile(CTX, filename, os.O_WRONLY|os.O_CREATE|os.O_TRUNC, perm)
+	if err != nil {
+		return err
+	}
+	n, err := f.Write(data)
+	if err == nil && n < len(data) {
+		err = io.ErrShortWrite
+	}
+	if err1 := f.Close(); err == nil {
+		err = err1
+	}
+	return err
+}
+
+// WalkDirs looks for files in the given dir and returns a list of files in it
+// usage for all files in the b0x: WalkDirs("", false)
+func WalkDirs(name string, includeDirsInList bool, files ...string) ([]string, error) {
+	f, err := FS.OpenFile(CTX, name, os.O_RDONLY, 0)
+	if err != nil {
+		return nil, err
+	}
+
+	fileInfos, err := f.Readdir(0)
+	if err != nil {
+		return nil, err
+	}
+
+	err = f.Close()
+	if err != nil {
+		return nil, err
+	}
+
+	for _, info := range fileInfos {
+		filename := path.Join(name, info.Name())
+
+		if includeDirsInList || !info.IsDir() {
+			files = append(files, filename)
+		}
+
+		if info.IsDir() {
+			files, err = WalkDirs(filename, includeDirsInList, files...)
+			if err != nil {
+				return nil, err
+			}
+		}
+	}
+
+	return files, nil
+}

pkg/assets/embed.yml

@@ -0,0 +1,17 @@
+---
+pkg: "assets"
+dest: "."
+output: "embed.go"
+fmt: true
+noprefix: true
+
+compression:
+  compress: true
+
+custom:
+  - files:
+    - "../../assets/"
+    base: "../../assets/"
+    prefix: ""
+
+...

pkg/assets/option.go

@@ -0,0 +1,40 @@
+package assets
+
+import (
+	"github.com/owncloud/ocis-reva/pkg/config"
+	"github.com/owncloud/ocis-pkg/log"
+)
+
+// Option defines a single option function.
+type Option func(o *Options)
+
+// Options defines the available options for this package.
+type Options struct {
+	Logger log.Logger
+	Config *config.Config
+}
+
+// newOptions initializes the available default options.
+func newOptions(opts ...Option) Options {
+	opt := Options{}
+
+	for _, o := range opts {
+		o(&opt)
+	}
+
+	return opt
+}
+
+// Logger provides a function to set the logger option.
+func Logger(val log.Logger) Option {
+	return func(o *Options) {
+		o.Logger = val
+	}
+}
+
+// Config provides a function to set the config option.
+func Config(val *config.Config) Option {
+	return func(o *Options) {
+		o.Config = val
+	}
+}

pkg/command/authprovider.go

@@ -0,0 +1,175 @@
+package command
+
+import (
+	"context"
+	"os"
+	"os/signal"
+	"path"
+	"time"
+
+	"github.com/cs3org/reva/cmd/revad/runtime"
+	"github.com/gofrs/uuid"
+	"github.com/micro/cli"
+	"github.com/oklog/run"
+	"github.com/owncloud/ocis-reva/pkg/config"
+	"github.com/owncloud/ocis-reva/pkg/flagset"
+	"github.com/owncloud/ocis-reva/pkg/server/debug"
+)
+
+// AuthProvider is the entrypoint for the authprovider command.
+func AuthProvider(cfg *config.Config) cli.Command {
+	return cli.Command{
+		Name:  "authprovider",
+		Usage: "Start authprovider server",
+		Flags: flagset.ServerWithConfig(cfg),
+		Action: func(c *cli.Context) error {
+			logger := NewLogger(cfg)
+
+			if cfg.Tracing.Enabled {
+				switch t := cfg.Tracing.Type; t {
+				case "agent":
+					logger.Error().
+						Str("type", t).
+						Msg("Reva only supports the jaeger tracing backend")
+
+				case "jaeger":
+					logger.Info().
+						Str("type", t).
+						Msg("configuring reva to use the jaeger tracing backend")
+
+				case "zipkin":
+					logger.Error().
+						Str("type", t).
+						Msg("Reva only supports the jaeger tracing backend")
+
+				default:
+					logger.Warn().
+						Str("type", t).
+						Msg("Unknown tracing backend")
+				}
+
+			} else {
+				logger.Debug().
+					Msg("Tracing is not enabled")
+			}
+
+			var (
+				gr          = run.Group{}
+				ctx, cancel = context.WithCancel(context.Background())
+				//metrics     = metrics.New()
+			)
+
+			defer cancel()
+
+			// TODO Flags have to be injected all the way down to the go-micro service
+			{
+
+				uuid := uuid.Must(uuid.NewV4())
+				pidFile := path.Join(os.TempDir(), "revad-"+uuid.String()+".pid")
+
+				rcfg := map[string]interface{}{
+					"core": map[string]interface{}{
+						"max_cpus": cfg.Reva.MaxCPUs,
+					},
+					"grpc": map[string]interface{}{
+						"network":          cfg.Reva.GRPC.Network,
+						"address":          cfg.Reva.GRPC.Addr,
+						"enabled_services": []string{"authprovider"},
+						"interceptors": map[string]interface{}{
+							"auth": map[string]interface{}{
+								"token_manager": "jwt",
+								"token_managers": map[string]interface{}{
+									"jwt": map[string]interface{}{
+										"secret": cfg.Reva.JWTSecret,
+									},
+								},
+								"skip_methods": []string{
+									// we need to allow calls that happen during authentication
+									"/cs3.authproviderv0alpha.AuthProviderService/Authenticate",
+									"/cs3.userproviderv0alpha.UserProviderService/GetUser",
+								},
+							},
+						},
+						"services": map[string]interface{}{
+							"authprovider": map[string]interface{}{
+								"auth_manager": "oidc",
+								"auth_managers": map[string]interface{}{
+									"oidc": map[string]interface{}{
+										"provider": cfg.AuthProvider.Provider,
+										"insecure": cfg.AuthProvider.Insecure,
+									},
+								},
+							},
+						},
+					},
+				}
+				// TODO merge configs for the same address
+
+				gr.Add(func() error {
+					runtime.Run(rcfg, pidFile)
+					return nil
+				}, func(_ error) {
+					logger.Info().
+						Str("server", "authprovider").
+						Msg("Shutting down server")
+
+					cancel()
+				})
+			}
+
+			{
+				server, err := debug.Server(
+					debug.Logger(logger),
+					debug.Context(ctx),
+					debug.Config(cfg),
+				)
+
+				if err != nil {
+					logger.Info().
+						Err(err).
+						Str("server", "debug").
+						Msg("Failed to initialize server")
+
+					return err
+				}
+
+				gr.Add(func() error {
+					return server.ListenAndServe()
+				}, func(_ error) {
+					ctx, timeout := context.WithTimeout(ctx, 5*time.Second)
+
+					defer timeout()
+					defer cancel()
+
+					if err := server.Shutdown(ctx); err != nil {
+						logger.Info().
+							Err(err).
+							Str("server", "debug").
+							Msg("Failed to shutdown server")
+					} else {
+						logger.Info().
+							Str("server", "debug").
+							Msg("Shutting down server")
+					}
+				})
+			}
+
+			{
+				stop := make(chan os.Signal, 1)
+
+				gr.Add(func() error {
+					signal.Notify(stop, os.Interrupt)
+
+					<-stop
+
+					return nil
+				}, func(err error) {
+					close(stop)
+					cancel()
+				})
+			}
+
+			return gr.Run()
+		},
+	}
+}

pkg/command/health.go

@@ -0,0 +1,49 @@
+package command
+
+import (
+	"fmt"
+	"net/http"
+
+	"github.com/micro/cli"
+	"github.com/owncloud/ocis-reva/pkg/config"
+	"github.com/owncloud/ocis-reva/pkg/flagset"
+)
+
+// Health is the entrypoint for the health command.
+func Health(cfg *config.Config) cli.Command {
+	return cli.Command{
+		Name:  "health",
+		Usage: "Check health status",
+		Flags: flagset.HealthWithConfig(cfg),
+		Action: func(c *cli.Context) error {
+			logger := NewLogger(cfg)
+
+			resp, err := http.Get(
+				fmt.Sprintf(
+					"http://%s/healthz",
+					cfg.Debug.Addr,
+				),
+			)
+
+			if err != nil {
+				logger.Fatal().
+					Err(err).
+					Msg("Failed to request health check")
+			}
+
+			defer resp.Body.Close()
+
+			if resp.StatusCode != 200 {
+				logger.Fatal().
+					Int("code", resp.StatusCode).
+					Msg("Health seems to be in bad state")
+			}
+
+			logger.Debug().
+				Int("code", resp.StatusCode).
+				Msg("Health got a good state")
+
+			return nil
+		},
+	}
+}

pkg/command/legacy.go

@@ -0,0 +1,453 @@
+package command
+
+import (
+	"context"
+	"os"
+	"os/signal"
+	"path"
+	"time"
+
+	"github.com/cs3org/reva/cmd/revad/runtime"
+	"github.com/gofrs/uuid"
+	"github.com/micro/cli"
+	"github.com/oklog/run"
+	"github.com/owncloud/ocis-reva/pkg/config"
+	"github.com/owncloud/ocis-reva/pkg/flagset"
+	"github.com/owncloud/ocis-reva/pkg/server/debug"
+)
+
+// Legacy is the entrypoint for the legacy command.
+func Legacy(cfg *config.Config) cli.Command {
+	return cli.Command{
+		Name:  "legacy",
+		Usage: "Start legacy server mimicking oc10",
+		Flags: flagset.ServerWithConfig(cfg),
+		Action: func(c *cli.Context) error {
+			logger := NewLogger(cfg)
+
+			if cfg.Tracing.Enabled {
+				switch t := cfg.Tracing.Type; t {
+				case "agent":
+					logger.Error().
+						Str("type", t).
+						Msg("Reva only supports the jaeger tracing backend")
+
+				case "jaeger":
+					logger.Info().
+						Str("type", t).
+						Msg("configuring reva to use the jaeger tracing backend")
+
+				case "zipkin":
+					logger.Error().
+						Str("type", t).
+						Msg("Reva only supports the jaeger tracing backend")
+
+				default:
+					logger.Warn().
+						Str("type", t).
+						Msg("Unknown tracing backend")
+				}
+
+			} else {
+				logger.Debug().
+					Msg("Tracing is not enabled")
+			}
+
+			var (
+				gr          = run.Group{}
+				ctx, cancel = context.WithCancel(context.Background())
+			)
+
+			defer cancel()
+
+			// Flags have to be injected all the way down to the go-micro service
+			{
+
+				uuid := uuid.Must(uuid.NewV4())
+				pidFile := path.Join(os.TempDir(), "revad-"+uuid.String()+".pid")
+
+				rcfg := map[string]interface{}{
+					"core": map[string]interface{}{
+						"max_cpus":             cfg.Reva.MaxCPUs,
+						"tracing_enabled":      cfg.Tracing.Enabled,
+						"tracing_endpoint":     cfg.Tracing.Endpoint,
+						"tracing_collector":    cfg.Tracing.Collector,
+						"tracing_service_name": cfg.Tracing.Service,
+					},
+					"log": map[string]interface{}{
+						"level": cfg.Reva.LogLevel,
+						//TODO mode": ""console" # "console" or "json"
+						//TODO output": ""./standalone.log"
+					},
+					"http": map[string]interface{}{
+						"network": cfg.Reva.HTTP.Network,
+						"address": cfg.Reva.HTTP.Addr,
+						"enabled_services": []string{
+							"dataprovider",
+							"ocdav",
+							"prometheus",
+							"wellknown",
+							"oidcprovider",
+							"ocs",
+						},
+						"enabled_middlewares": []string{
+							//"cors",
+							"auth",
+						},
+						"middlewares": map[string]interface{}{
+							"auth": map[string]interface{}{
+								"gateway":             cfg.Reva.GRPC.Addr,
+								"auth_type":           "oidc",
+								"credential_strategy": "oidc",
+								"token_strategy":      "header",
+								"token_writer":        "header",
+								"token_manager":       "jwt",
+								"token_managers": map[string]interface{}{
+									"jwt": map[string]interface{}{
+										"secret": cfg.Reva.JWTSecret,
+									},
+								},
+								"skip_methods": []string{
+									"/favicon.ico",
+									"/status.php",
+									"/oauth2",
+									"/oauth2/auth",
+									"/oauth2/token",
+									// TODO protect the introspection endpoint from external requests.
+									// should only be reachable by internal services, which is why the
+									// oidc-provider.toml has clientid and secret that are used for a basic auth
+									//"/oauth2/introspect", // no longer used, oidc auth checks access token using the userinfo endpoint
+									"/oauth2/userinfo",
+									"/oauth2/sessions",
+									"/.well-known/openid-configuration",
+									"/metrics", // for prometheus metrics
+								},
+							},
+						},
+						"services": map[string]interface{}{
+							"oidcprovider": map[string]interface{}{
+								"prefix":    "oauth2",
+								"gateway":   cfg.Reva.GRPC.Addr,
+								"auth_type": "basic",
+								"issuer":    cfg.Reva.HTTP.Addr,
+								"clients": map[string]interface{}{
+									"phoenix": map[string]interface{}{
+										"id": "phoenix",
+										// use ocis port range for phoenix
+										// TODO should use the micro / ocis http gateway, but then it would no longer be able to run standalone
+										// IMO the ports should be fetched from the ocis registry anyway
+										"redirect_uris":  []string{"http://localhost:9100/oidc-callback.html", "http://localhost:9100/"},
+										"grant_types":    []string{"implicit", "refresh_token", "authorization_code", "password", "client_credentials"},
+										"response_types": []string{"code"}, // use authorization code flow, see https://developer.okta.com/blog/2019/05/01/is-the-oauth-implicit-flow-dead for details
+										"scopes":         []string{"openid", "profile", "email", "offline"},
+										"public":         true, // force PKCS for public clients
+									},
+									"cli": map[string]interface{}{
+										"id":            "cli",
+										"client_secret": "$2a$10$IxMdI6d.LIRZPpSfEwNoeu4rY3FhDREsxFJXikcgdRRAStxUlsuEO", // = "foobar"
+										// use hardcoded port credentials for cli
+										"redirect_uris":  []string{"http://localhost:18080/callback"},
+										"grant_types":    []string{"implicit", "refresh_token", "authorization_code", "password", "client_credentials"},
+										"response_types": []string{"code"}, // use authorization code flow, see https://developer.okta.com/blog/2019/05/01/is-the-oauth-implicit-flow-dead for details
+										"scopes":         []string{"openid", "profile", "email", "offline"},
+									},
+								},
+							},
+							"dataprovider": map[string]interface{}{
+								"driver":     "owncloud",
+								"prefix":     "data",
+								"tmp_folder": "/var/tmp/",
+								"drivers": map[string]interface{}{
+									"owncloud": map[string]interface{}{
+										"datadirectory": "/var/tmp/reva/data",
+									},
+								},
+							},
+							"ocdav": map[string]interface{}{
+								"prefix":       "",
+								"chunk_folder": "/var/tmp/revad/chunks",
+								"gateway":      cfg.Reva.GRPC.Addr,
+							},
+							"ocs": map[string]interface{}{
+								"gateway": cfg.Reva.GRPC.Addr,
+								"config": map[string]interface{}{
+									"version": "1.8",
+									"website": "ocis",
+									"host":    cfg.Reva.HTTP.Addr, // TODO should be read from registry
+									"contact": "admin@localhost",
+									"ssl":     "false",
+								},
+								"capabilities": map[string]interface{}{
+									"capabilities": map[string]interface{}{
+										"core": map[string]interface{}{
+											"poll_interval": 60,
+											"webdav_root":   "remote.php/webdav",
+											"status": map[string]interface{}{
+												"installed":      true,
+												"maintenance":    false,
+												"needsDbUpgrade": false,
+												"version":        "10.0.11.5",
+												"versionstring":  "10.0.11",
+												"edition":        "community",
+												"productname":    "reva",
+												"hostname":       "",
+											},
+										},
+										"checksums": map[string]interface{}{
+											"supported_types":       []string{"SHA256"},
+											"preferred_upload_type": "SHA256",
+										},
+										"files": map[string]interface{}{
+											"private_links":     false,
+											"bigfilechunking":   false,
+											"blacklisted_files": []string{},
+											"undelete":          true,
+											"versioning":        true,
+										},
+										"dav": map[string]interface{}{
+											"chunking": "1.0",
+										},
+										"files_sharing": map[string]interface{}{
+											"api_enabled":                       true,
+											"resharing":                         true,
+											"group_sharing":                     true,
+											"auto_accept_share":                 true,
+											"share_with_group_members_only":     true,
+											"share_with_membership_groups_only": true,
+											"default_permissions":               22,
+											"search_min_length":                 3,
+											"public": map[string]interface{}{
+												"enabled":              true,
+												"send_mail":            true,
+												"social_share":         true,
+												"upload":               true,
+												"multiple":             true,
+												"supports_upload_only": true,
+												"password": map[string]interface{}{
+													"enforced": true,
+													"enforced_for": map[string]interface{}{
+														"read_only":   true,
+														"read_write":  true,
+														"upload_only": true,
+													},
+												},
+												"expire_date": map[string]interface{}{
+													"enabled": true,
+												},
+											},
+											"user": map[string]interface{}{
+												"send_mail": true,
+											},
+											"user_enumeration": map[string]interface{}{
+												"enabled":            true,
+												"group_members_only": true,
+											},
+											"federation": map[string]interface{}{
+												"outgoing": true,
+												"incoming": true,
+											},
+										},
+										"notifications": map[string]interface{}{
+											"endpoints": []string{"list", "get", "delete"},
+										},
+									},
+									"version": map[string]interface{}{
+										"edition": "ocis",
+										"major":   11,
+										"minor":   0,
+										"micro":   0,
+										"string":  "11.0.0",
+									},
+								},
+							},
+						},
+					},
+					"grpc": map[string]interface{}{
+						"network": cfg.Reva.GRPC.Network,
+						"address": cfg.Reva.GRPC.Addr,
+						"enabled_services": []string{
+							"authprovider",      // provides basic auth
+							"storageprovider",   // handles storage metadata
+							"usershareprovider", // provides user shares
+							"userprovider",      // provides user matadata (used to look up email, displayname etc after a login)
+							"preferences",       // provides user preferences
+							"gateway",           // to lookup services and authenticate requests
+							"authregistry",      // used by the gateway to look up auth providers
+							"storageregistry",   // used by the gateway to look up storage providers
+						},
+						"interceptors": map[string]interface{}{
+							"auth": map[string]interface{}{
+								"token_manager": "jwt",
+								"token_managers": map[string]interface{}{
+									"jwt": map[string]interface{}{
+										"secret": cfg.Reva.JWTSecret,
+									},
+								},
+								"skip_methods": []string{
+									// we need to allow calls that happen during authentication
+									"/cs3.gatewayv0alpha.GatewayService/Authenticate",
+									"/cs3.gatewayv0alpha.GatewayService/WhoAmI",
+									"/cs3.gatewayv0alpha.GatewayService/GetUser",
+									"/cs3.gatewayv0alpha.GatewayService/ListAuthProviders",
+									"/cs3.authregistryv0alpha.AuthRegistryService/ListAuthProviders",
+									"/cs3.authregistryv0alpha.AuthRegistryService/GetAuthProvider",
+									"/cs3.authproviderv0alpha.AuthProviderService/Authenticate",
+									"/cs3.userproviderv0alpha.UserProviderService/GetUser",
+								},
+							},
+						},
+						"services": map[string]interface{}{
+							"gateway": map[string]interface{}{
+								"authregistrysvc":               cfg.Reva.GRPC.Addr,
+								"storageregistrysvc":            cfg.Reva.GRPC.Addr,
+								"appregistrysvc":                cfg.Reva.GRPC.Addr,
+								"preferencessvc":                cfg.Reva.GRPC.Addr,
+								"usershareprovidersvc":          cfg.Reva.GRPC.Addr,
+								"publicshareprovidersvc":        cfg.Reva.GRPC.Addr,
+								"ocmshareprovidersvc":           cfg.Reva.GRPC.Addr,
+								"userprovidersvc":               cfg.Reva.GRPC.Addr,
+								"commit_share_to_storage_grant": true,
+								"datagateway":                   "http://" + cfg.Reva.HTTP.Addr + "/data",
+								"transfer_shared_secret":        "replace-me-with-a-transfer-secret",
+								"transfer_expires":              6, // give it a moment
+								"token_manager":                 "jwt",
+								"token_managers": map[string]interface{}{
+									"jwt": map[string]interface{}{
+										"secret": cfg.Reva.JWTSecret,
+									},
+								},
+							},
+							"authregistry": map[string]interface{}{
+								"driver": "static",
+								"drivers": map[string]interface{}{
+									"static": map[string]interface{}{
+										"rules": map[string]interface{}{
+											//"basic": "localhost:9999",
+											"oidc": cfg.Reva.GRPC.Addr,
+										},
+									},
+								},
+							},
+							"storageregistry": map[string]interface{}{
+								"driver": "static",
+								"drivers": map[string]interface{}{
+									"static": map[string]interface{}{
+										"rules": map[string]interface{}{
+											"/":                                    cfg.Reva.GRPC.Addr,
+											"123e4567-e89b-12d3-a456-426655440000": cfg.Reva.GRPC.Addr,
+										},
+									},
+								},
+							},
+							"authprovider": map[string]interface{}{
+								"auth_manager": "oidc",
+								"auth_managers": map[string]interface{}{
+									"oidc": map[string]interface{}{
+										"provider": cfg.AuthProvider.Provider,
+										"insecure": cfg.AuthProvider.Insecure,
+									},
+								},
+								"userprovidersvc": cfg.Reva.GRPC.Addr,
+							},
+							"userprovider": map[string]interface{}{
+								"driver": "demo", // TODO use graph api
+								/*
+									"drivers": map[string]interface{}{
+										"graph": map[string]interface{}{
+											"provider": cfg.AuthProvider.Provider,
+											"insecure": cfg.AuthProvider.Insecure,
+										},
+									},
+								*/
+							},
+							"usershareprovider": map[string]interface{}{
+								"driver": "memory",
+							},
+							"storageprovider": map[string]interface{}{
+								"mount_path":         "/",
+								"mount_id":           "123e4567-e89b-12d3-a456-426655440000",
+								"data_server_url":    "http://" + cfg.Reva.HTTP.Addr + "/data",
+								"expose_data_server": true,
+								"available_checksums": map[string]interface{}{
+									"md5":   100,
+									"unset": 1000,
+								},
+								"driver": "owncloud",
+								"drivers": map[string]interface{}{
+									"owncloud": map[string]interface{}{
+										"datadirectory": "/var/tmp/reva/data",
+									},
+								},
+							},
+						},
+					},
+				}
+				gr.Add(func() error {
+					// TODO micro knows nothing about reva
+					runtime.Run(rcfg, pidFile)
+					return nil
+				}, func(_ error) {
+					logger.Info().
+						Str("server", "reva").
+						Msg("Shutting down server")
+
+					cancel()
+				})
+			}
+
+			{
+				server, err := debug.Server(
+					debug.Logger(logger),
+					debug.Context(ctx),
+					debug.Config(cfg),
+				)
+
+				if err != nil {
+					logger.Info().
+						Err(err).
+						Str("server", "debug").
+						Msg("Failed to initialize server")
+
+					return err
+				}
+
+				gr.Add(func() error {
+					return server.ListenAndServe()
+				}, func(_ error) {
+					ctx, timeout := context.WithTimeout(ctx, 5*time.Second)
+
+					defer timeout()
+					defer cancel()
+
+					if err := server.Shutdown(ctx); err != nil {
+						logger.Info().
+							Err(err).
+							Str("server", "debug").
+							Msg("Failed to shutdown server")
+					} else {
+						logger.Info().
+							Str("server", "debug").
+							Msg("Shutting down server")
+					}
+				})
+			}
+
+			{
+				stop := make(chan os.Signal, 1)
+
+				gr.Add(func() error {
+					signal.Notify(stop, os.Interrupt)
+
+					<-stop
+
+					return nil
+				}, func(err error) {
+					close(stop)
+					cancel()
+				})
+			}
+
+			return gr.Run()
+		},
+	}
+}

pkg/command/root.go

@@ -0,0 +1,105 @@
+package command
+
+import (
+	"os"
+	"strings"
+
+	"github.com/micro/cli"
+	"github.com/owncloud/ocis-pkg/log"
+	"github.com/owncloud/ocis-reva/pkg/config"
+	"github.com/owncloud/ocis-reva/pkg/flagset"
+	"github.com/owncloud/ocis-reva/pkg/version"
+	"github.com/spf13/viper"
+)
+
+// Execute is the entry point for the ocis-reva command.
+func Execute() error {
+	cfg := config.New()
+
+	app := &cli.App{
+		Name:     "ocis-reva",
+		Version:  version.String,
+		Usage:    "Example service for Reva/oCIS",
+		Compiled: version.Compiled(),
+
+		Authors: []cli.Author{
+			{
+				Name:  "ownCloud GmbH",
+				Email: "support@owncloud.com",
+			},
+		},
+
+		Flags: flagset.RootWithConfig(cfg),
+
+		Before: func(c *cli.Context) error {
+			logger := NewLogger(cfg)
+
+			viper.SetEnvKeyReplacer(strings.NewReplacer(".", "_"))
+			viper.SetEnvPrefix("REVA")
+			viper.AutomaticEnv()
+
+			if c.IsSet("config-file") {
+				viper.SetConfigFile(c.String("config-file"))
+			} else {
+				viper.SetConfigName("reva")
+
+				viper.AddConfigPath("/etc/ocis")
+				viper.AddConfigPath("$HOME/.ocis")
+				viper.AddConfigPath("./config")
+			}
+
+			if err := viper.ReadInConfig(); err != nil {
+				switch err.(type) {
+				case viper.ConfigFileNotFoundError:
+					logger.Info().
+						Msg("Continue without config")
+				case viper.UnsupportedConfigError:
+					logger.Fatal().
+						Err(err).
+						Msg("Unsupported config type")
+				default:
+					logger.Fatal().
+						Err(err).
+						Msg("Failed to read config")
+				}
+			}
+
+			if err := viper.Unmarshal(&cfg); err != nil {
+				logger.Fatal().
+					Err(err).
+					Msg("Failed to parse config")
+			}
+
+			return nil
+		},
+
+		Commands: []cli.Command{
+			Server(cfg),
+			Legacy(cfg),
+			AuthProvider(cfg),
+			Health(cfg),
+		},
+	}
+
+	cli.HelpFlag = &cli.BoolFlag{
+		Name:  "help,h",
+		Usage: "Show the help",
+	}
+
+	cli.VersionFlag = &cli.BoolFlag{
+		Name:  "version,v",
+		Usage: "Print the version",
+	}
+
+	return app.Run(os.Args)
+}
+
+// NewLogger initializes a service-specific logger instance.
+func NewLogger(cfg *config.Config) log.Logger {
+	return log.NewLogger(
+		log.Name("reva"),
+		log.Level(cfg.Log.Level),
+		log.Pretty(cfg.Log.Pretty),
+		log.Color(cfg.Log.Color),
+	)
+}

pkg/command/server.go

@@ -0,0 +1,312 @@
+package command
+
+import (
+	"context"
+	"os"
+	"os/signal"
+	"path"
+	"time"
+
+	"github.com/cs3org/reva/cmd/revad/runtime"
+	"github.com/gofrs/uuid"
+	"github.com/micro/cli"
+	"github.com/oklog/run"
+	"github.com/owncloud/ocis-reva/pkg/config"
+	"github.com/owncloud/ocis-reva/pkg/flagset"
+	"github.com/owncloud/ocis-reva/pkg/server/debug"
+)
+
+// Server is the entrypoint for the server command.
+func Server(cfg *config.Config) cli.Command {
+	return cli.Command{
+		Name:  "server",
+		Usage: "Start integrated server",
+		Flags: flagset.ServerWithConfig(cfg),
+		Action: func(c *cli.Context) error {
+			logger := NewLogger(cfg)
+
+			if cfg.Tracing.Enabled {
+				switch t := cfg.Tracing.Type; t {
+				case "agent":
+					logger.Error().
+						Str("type", t).
+						Msg("Reva only supports the jaeger tracing backend")
+
+				case "jaeger":
+					logger.Info().
+						Str("type", t).
+						Msg("configuring reva to use the jaeger tracing backend")
+
+				case "zipkin":
+					logger.Error().
+						Str("type", t).
+						Msg("Reva only supports the jaeger tracing backend")
+
+				default:
+					logger.Warn().
+						Str("type", t).
+						Msg("Unknown tracing backend")
+				}
+
+			} else {
+				logger.Debug().
+					Msg("Tracing is not enabled")
+			}
+
+			var (
+				gr          = run.Group{}
+				ctx, cancel = context.WithCancel(context.Background())
+			)
+
+			defer cancel()
+
+			// Flags have to be injected all the way down to the go-micro service
+			{
+
+				uuid := uuid.Must(uuid.NewV4())
+				pidFile := path.Join(os.TempDir(), "revad-"+uuid.String()+".pid")
+
+				rcfg := map[string]interface{}{
+					"core": map[string]interface{}{
+						"max_cpus":             cfg.Reva.MaxCPUs,
+						"tracing_enabled":      cfg.Tracing.Enabled,
+						"tracing_endpoint":     cfg.Tracing.Endpoint,
+						"tracing_collector":    cfg.Tracing.Collector,
+						"tracing_service_name": cfg.Tracing.Service,
+					},
+					"log": map[string]interface{}{
+						"level": cfg.Reva.LogLevel,
+						//TODO mode = "console" # "console" or "json"
+						//TODO output = "./standalone.log"
+					},
+					"http": map[string]interface{}{
+						"network": cfg.Reva.HTTP.Network,
+						"address": cfg.Reva.HTTP.Addr,
+						"enabled_services": []string{
+							"dataprovider",
+							"prometheus",
+						},
+						"enabled_middlewares": []string{
+							//"cors",
+							"auth",
+						},
+						"middlewares": map[string]interface{}{
+							"auth": map[string]interface{}{
+								"gateway":             cfg.Reva.GRPC.Addr,
+								"auth_type":           "oidc",
+								"credential_strategy": "oidc",
+								"token_strategy":      "header",
+								"token_writer":        "header",
+								"token_manager":       "jwt",
+								"token_managers": map[string]interface{}{
+									"jwt": map[string]interface{}{
+										"secret": cfg.Reva.JWTSecret,
+									},
+								},
+								"skip_methods": []string{
+									"/metrics", // for prometheus metrics
+								},
+							},
+						},
+						"services": map[string]interface{}{
+							"dataprovider": map[string]interface{}{
+								"driver":     "local",
+								"prefix":     "data",
+								"tmp_folder": "/var/tmp/",
+								"drivers": map[string]interface{}{
+									"local": map[string]interface{}{
+										"root": "/var/tmp/reva/data",
+									},
+								},
+							},
+						},
+					},
+					"grpc": map[string]interface{}{
+						"network": cfg.Reva.GRPC.Network,
+						"address": cfg.Reva.GRPC.Addr,
+						"enabled_services": []string{
+							"authprovider",      // provides basic auth
+							"storageprovider",   // handles storage metadata
+							"usershareprovider", // provides user shares
+							"userprovider",      // provides user matadata (used to look up email, displayname etc after a login)
+							"preferences",       // provides user preferences
+							"gateway",           // to lookup services and authenticate requests
+							"authregistry",      // used by the gateway to look up auth providers
+							"storageregistry",   // used by the gateway to look up storage providers
+						},
+						"interceptors": map[string]interface{}{
+							"auth": map[string]interface{}{
+								"token_manager": "jwt",
+								"token_managers": map[string]interface{}{
+									"jwt": map[string]interface{}{
+										"secret": cfg.Reva.JWTSecret,
+									},
+								},
+								"skip_methods": []string{
+									// we need to allow calls that happen during authentication
+									"/cs3.gatewayv0alpha.GatewayService/Authenticate",
+									"/cs3.gatewayv0alpha.GatewayService/WhoAmI",
+									"/cs3.gatewayv0alpha.GatewayService/GetUser",
+									"/cs3.gatewayv0alpha.GatewayService/ListAuthProviders",
+									"/cs3.authregistryv0alpha.AuthRegistryService/ListAuthProviders",
+									"/cs3.authregistryv0alpha.AuthRegistryService/GetAuthProvider",
+									"/cs3.authproviderv0alpha.AuthProviderService/Authenticate",
+									"/cs3.userproviderv0alpha.UserProviderService/GetUser",
+								},
+							},
+						},
+						"services": map[string]interface{}{
+							"gateway": map[string]interface{}{
+								"authregistrysvc":               cfg.Reva.GRPC.Addr,
+								"storageregistrysvc":            cfg.Reva.GRPC.Addr,
+								"appregistrysvc":                cfg.Reva.GRPC.Addr,
+								"preferencessvc":                cfg.Reva.GRPC.Addr,
+								"usershareprovidersvc":          cfg.Reva.GRPC.Addr,
+								"publicshareprovidersvc":        cfg.Reva.GRPC.Addr,
+								"ocmshareprovidersvc":           cfg.Reva.GRPC.Addr,
+								"userprovidersvc":               cfg.Reva.GRPC.Addr,
+								"commit_share_to_storage_grant": true,
+								"datagateway":                   "http://" + cfg.Reva.HTTP.Addr + "/data",
+								"transfer_shared_secret":        "replace-me-with-a-transfer-secret",
+								"transfer_expires":              6, // give it a moment
+								"token_manager":                 "jwt",
+								"token_managers": map[string]interface{}{
+									"jwt": map[string]interface{}{
+										"secret": cfg.Reva.JWTSecret,
+									},
+								},
+							},
+							"authregistry": map[string]interface{}{
+								"driver": "static",
+								"drivers": map[string]interface{}{
+									"static": map[string]interface{}{
+										"rules": map[string]interface{}{
+											//"basic": "localhost:9999",
+											"oidc": cfg.Reva.GRPC.Addr,
+										},
+									},
+								},
+							},
+							"storageregistry": map[string]interface{}{
+								"driver": "static",
+								"drivers": map[string]interface{}{
+									"static": map[string]interface{}{
+										"rules": map[string]interface{}{
+											"/":                                    cfg.Reva.GRPC.Addr,
+											"123e4567-e89b-12d3-a456-426655440000": cfg.Reva.GRPC.Addr,
+										},
+									},
+								},
+							},
+							"authprovider": map[string]interface{}{
+								"auth_manager": "oidc",
+								"auth_managers": map[string]interface{}{
+									"oidc": map[string]interface{}{
+										"provider": cfg.AuthProvider.Provider,
+										"insecure": cfg.AuthProvider.Insecure,
+									},
+								},
+								"userprovidersvc": cfg.Reva.GRPC.Addr,
+							},
+							"userprovider": map[string]interface{}{
+								"driver": "demo", // TODO use graph api
+								/*
+									"drivers": map[string]interface{}{
+										"graph": map[string]interface{}{
+											"provider": cfg.AuthProvider.Provider,
+											"insecure": cfg.AuthProvider.Insecure,
+										},
+									},
+								*/
+							},
+							"usershareprovider": map[string]interface{}{
+								"driver": "memory",
+							},
+							"storageprovider": map[string]interface{}{
+								"mount_path":         "/",
+								"mount_id":           "123e4567-e89b-12d3-a456-426655440000",
+								"data_server_url":    "http://" + cfg.Reva.HTTP.Addr + "/data",
+								"expose_data_server": true,
+								"available_checksums": map[string]interface{}{
+									"md5":   100,
+									"unset": 1000,
+								},
+								"driver": "local",
+								"drivers": map[string]interface{}{
+									"local": map[string]interface{}{
+										"root": "/var/tmp/reva/data",
+									},
+								},
+							},
+						},
+					},
+				}
+				gr.Add(func() error {
+					// TODO micro knows nothing about reva
+					runtime.Run(rcfg, pidFile)
+					return nil
+				}, func(_ error) {
+					logger.Info().
+						Str("server", "reva").
+						Msg("Shutting down server")
+
+					cancel()
+				})
+			}
+
+			{
+				server, err := debug.Server(
+					debug.Logger(logger),
+					debug.Context(ctx),
+					debug.Config(cfg),
+				)
+
+				if err != nil {
+					logger.Info().
+						Err(err).
+						Str("server", "debug").
+						Msg("Failed to initialize server")
+
+					return err
+				}
+
+				gr.Add(func() error {
+					return server.ListenAndServe()
+				}, func(_ error) {
+					ctx, timeout := context.WithTimeout(ctx, 5*time.Second)
+
+					defer timeout()
+					defer cancel()
+
+					if err := server.Shutdown(ctx); err != nil {
+						logger.Info().
+							Err(err).
+							Str("server", "debug").
+							Msg("Failed to shutdown server")
+					} else {
+						logger.Info().
+							Str("server", "debug").
+							Msg("Shutting down server")
+					}
+				})
+			}
+
+			{
+				stop := make(chan os.Signal, 1)
+
+				gr.Add(func() error {
+					signal.Notify(stop, os.Interrupt)
+
+					<-stop
+
+					return nil
+				}, func(err error) {
+					close(stop)
+					cancel()
+				})
+			}
+
+			return gr.Run()
+		},
+	}
+}

pkg/config/config.go

@@ -0,0 +1,73 @@
+package config
+
+// Log defines the available logging configuration.
+type Log struct {
+	Level  string
+	Pretty bool
+	Color  bool
+}
+
+// Debug defines the available debug configuration.
+type Debug struct {
+	Addr   string
+	Token  string
+	Pprof  bool
+	Zpages bool
+}
+
+type HTTP struct {
+	Network string
+	Addr    string
+	Root    string // TODO do we need the http root path
+}
+type GRPC struct {
+	Network string
+	Addr    string
+}
+
+// Reva defines the available reva configuration.
+type Reva struct {
+	// MaxCPUs can be a number or a percentage
+	MaxCPUs  string
+	LogLevel string
+	// Network can be tcp, udp or unix
+	HTTP      HTTP
+	GRPC      GRPC
+	JWTSecret string
+}
+
+// AuthProvider defines the available authprovider configuration.
+type AuthProvider struct {
+	Provider string
+	Insecure bool
+}
+
+// Tracing defines the available tracing configuration.
+type Tracing struct {
+	Enabled   bool
+	Type      string
+	Endpoint  string
+	Collector string
+	Service   string
+}
+
+// Asset defines the available asset configuration.
+type Asset struct {
+	Path string
+}
+
+// Config combines all available configuration parts.
+type Config struct {
+	File         string
+	Log          Log
+	Debug        Debug
+	Reva         Reva
+	AuthProvider AuthProvider
+	Tracing      Tracing
+	Asset        Asset
+}
+
+// New initializes a new configuration with or without defaults.
+func New() *Config {
+	return &Config{}
+}

pkg/flagset/flagset.go

@@ -0,0 +1,193 @@
+package flagset
+
+import (
+	"github.com/micro/cli"
+	"github.com/owncloud/ocis-reva/pkg/config"
+)
+
+// RootWithConfig applies cfg to the root flagset
+func RootWithConfig(cfg *config.Config) []cli.Flag {
+	return []cli.Flag{
+		&cli.StringFlag{
+			Name:        "config-file",
+			Value:       "",
+			Usage:       "Path to config file",
+			EnvVar:      "REVA_CONFIG_FILE",
+			Destination: &cfg.File,
+		},
+		&cli.StringFlag{
+			Name:        "log-level",
+			Value:       "info",
+			Usage:       "Set logging level",
+			EnvVar:      "REVA_LOG_LEVEL",
+			Destination: &cfg.Log.Level,
+		},
+		&cli.BoolTFlag{
+			Name:        "log-pretty",
+			Usage:       "Enable pretty logging",
+			EnvVar:      "REVA_LOG_PRETTY",
+			Destination: &cfg.Log.Pretty,
+		},
+		&cli.BoolTFlag{
+			Name:        "log-color",
+			Usage:       "Enable colored logging",
+			EnvVar:      "REVA_LOG_COLOR",
+			Destination: &cfg.Log.Color,
+		},
+	}
+}
+
+// HealthWithConfig applies cfg to the root flagset
+func HealthWithConfig(cfg *config.Config) []cli.Flag {
+	return []cli.Flag{
+		&cli.StringFlag{
+			Name:        "debug-addr",
+			Value:       "0.0.0.0:9109",
+			Usage:       "Address to debug endpoint",
+			EnvVar:      "REVA_DEBUG_ADDR",
+			Destination: &cfg.Debug.Addr,
+		},
+	}
+}
+
+// ServerWithConfig applies cfg to the root flagset
+func ServerWithConfig(cfg *config.Config) []cli.Flag {
+	return []cli.Flag{
+		&cli.BoolFlag{
+			Name:        "tracing-enabled",
+			Usage:       "Enable sending traces",
+			EnvVar:      "REVA_TRACING_ENABLED",
+			Destination: &cfg.Tracing.Enabled,
+		},
+		&cli.StringFlag{
+			Name:        "tracing-type",
+			Value:       "jaeger",
+			Usage:       "Tracing backend type",
+			EnvVar:      "REVA_TRACING_TYPE",
+			Destination: &cfg.Tracing.Type,
+		},
+		&cli.StringFlag{
+			Name:        "tracing-endpoint",
+			Value:       "",
+			Usage:       "Endpoint for the agent",
+			EnvVar:      "REVA_TRACING_ENDPOINT",
+			Destination: &cfg.Tracing.Endpoint,
+		},
+		&cli.StringFlag{
+			Name:        "tracing-collector",
+			Value:       "",
+			Usage:       "Endpoint for the collector",
+			EnvVar:      "REVA_TRACING_COLLECTOR",
+			Destination: &cfg.Tracing.Collector,
+		},
+		&cli.StringFlag{
+			Name:        "tracing-service",
+			Value:       "reva",
+			Usage:       "Service name for tracing",
+			EnvVar:      "REVA_TRACING_SERVICE",
+			Destination: &cfg.Tracing.Service,
+		},
+		&cli.StringFlag{
+			Name:        "debug-addr",
+			Value:       "0.0.0.0:9139",
+			Usage:       "Address to bind debug server",
+			EnvVar:      "REVA_DEBUG_ADDR",
+			Destination: &cfg.Debug.Addr,
+		},
+		&cli.StringFlag{
+			Name:        "debug-token",
+			Value:       "",
+			Usage:       "Token to grant metrics access",
+			EnvVar:      "REVA_DEBUG_TOKEN",
+			Destination: &cfg.Debug.Token,
+		},
+		&cli.BoolFlag{
+			Name:        "debug-pprof",
+			Usage:       "Enable pprof debugging",
+			EnvVar:      "REVA_DEBUG_PPROF",
+			Destination: &cfg.Debug.Pprof,
+		},
+		&cli.BoolFlag{
+			Name:        "debug-zpages",
+			Usage:       "Enable zpages debugging",
+			EnvVar:      "REVA_DEBUG_ZPAGES",
+			Destination: &cfg.Debug.Zpages,
+		},
+		&cli.StringFlag{
+			Name:        "reva-http-network",
+			Value:       "tcp",
+			Usage:       "Network to use for the reva http server, can be 'tcp', 'udp' or 'unix'",
+			EnvVar:      "REVA_HTTP_NETWORK",
+			Destination: &cfg.Reva.HTTP.Network,
+		},
+		&cli.StringFlag{
+			Name:        "reva-http-addr",
+			Value:       "0.0.0.0:9135",
+			Usage:       "Address to bind http port of reva server",
+			EnvVar:      "REVA_HTTP_ADDR",
+			Destination: &cfg.Reva.HTTP.Addr,
+		},
+		&cli.StringFlag{
+			Name:        "reva-http-root",
+			Value:       "/",
+			Usage:       "Root path of reva server",
+			EnvVar:      "REVA__HTTP_ROOT",
+			Destination: &cfg.Reva.HTTP.Root,
+		},
+		&cli.StringFlag{
+			Name:        "reva-grpc-network",
+			Value:       "tcp",
+			Usage:       "Network to use for the reva grpc server, can be 'tcp', 'udp' or 'unix'",
+			EnvVar:      "REVA_GRPC_NETWORK",
+			Destination: &cfg.Reva.GRPC.Network,
+		},
+		&cli.StringFlag{
+			Name:        "reva-grpc-addr",
+			Value:       "0.0.0.0:9136",
+			Usage:       "Address to bind grpc port of reva server",
+			EnvVar:      "REVA_GRPC_ADDR",
+			Destination: &cfg.Reva.GRPC.Addr,
+		},
+		&cli.StringFlag{
+			Name:        "reva-max-cpus",
+			Value:       "2",
+			Usage:       "Max number of cpus for reva server",
+			EnvVar:      "REVA_MAX_CPUS",
+			Destination: &cfg.Reva.MaxCPUs,
+		},
+		&cli.StringFlag{
+			Name:        "reva-log-level",
+			Value:       "info",
+			Usage:       "Log level for reva server",
+			EnvVar:      "REVA_LOG_LEVEL",
+			Destination: &cfg.Reva.LogLevel,
+		},
+		&cli.StringFlag{
+			Name:        "reva-jwt-secret",
+			Value:       "Pive-Fumkiu4",
+			Usage:       "Shared jwt secret for reva service communication",
+			EnvVar:      "REVA_JWT_SECRET",
+			Destination: &cfg.Reva.JWTSecret,
+		},
+		&cli.StringFlag{
+			Name:        "reva-authprovider-provider",
+			Value:       "",
+			Usage:       "URL of the OpenID Connect Provider",
+			EnvVar:      "REVA_AUTHPROVIDER_PROVIDER",
+			Destination: &cfg.AuthProvider.Provider,
+		},
+		&cli.BoolFlag{
+			Name:        "reva-authprovider-insecure",
+			Usage:       "Allow insecure certificates",
+			EnvVar:      "REVA_AUTHPROVIDER_INSECURE",
+			Destination: &cfg.AuthProvider.Insecure,
+		},
+		&cli.StringFlag{
+			Name:        "asset-path",
+			Value:       "",
+			Usage:       "Path to custom assets",
+			EnvVar:      "REVA_ASSET_PATH",
+			Destination: &cfg.Asset.Path,
+		},
+	}
+}

pkg/server/debug/option.go

@@ -0,0 +1,50 @@
+package debug
+
+import (
+	"context"
+
+	"github.com/owncloud/ocis-reva/pkg/config"
+	"github.com/owncloud/ocis-pkg/log"
+)
+
+// Option defines a single option function.
+type Option func(o *Options)
+
+// Options defines the available options for this package.
+type Options struct {
+	Logger  log.Logger
+	Context context.Context
+	Config  *config.Config
+}
+
+// newOptions initializes the available default options.
+func newOptions(opts ...Option) Options {
+	opt := Options{}
+
+	for _, o := range opts {
+		o(&opt)
+	}
+
+	return opt
+}
+
+// Logger provides a function to set the logger option.
+func Logger(val log.Logger) Option {
+	return func(o *Options) {
+		o.Logger = val
+	}
+}
+
+// Context provides a function to set the context option.
+func Context(val context.Context) Option {
+	return func(o *Options) {
+		o.Context = val
+	}
+}
+
+// Config provides a function to set the config option.
+func Config(val *config.Config) Option {
+	return func(o *Options) {
+		o.Config = val
+	}
+}

pkg/server/debug/server.go

@@ -0,0 +1,51 @@
+package debug
+
+import (
+	"io"
+	"net/http"
+
+	"github.com/owncloud/ocis-reva/pkg/config"
+	"github.com/owncloud/ocis-reva/pkg/version"
+	"github.com/owncloud/ocis-pkg/service/debug"
+)
+
+// Server initializes the debug service and server.
+func Server(opts ...Option) (*http.Server, error) {
+	options := newOptions(opts...)
+
+	return debug.NewService(
+		debug.Logger(options.Logger),
+		debug.Name("hello"),
+		debug.Version(version.String),
+		debug.Address(options.Config.Debug.Addr),
+		debug.Token(options.Config.Debug.Token),
+		debug.Pprof(options.Config.Debug.Pprof),
+		debug.Zpages(options.Config.Debug.Zpages),
+		debug.Health(health(options.Config)),
+		debug.Ready(ready(options.Config)),
+	), nil
+}
+
+// health implements the health check.
+func health(cfg *config.Config) func(http.ResponseWriter, *http.Request) {
+	return func(w http.ResponseWriter, r *http.Request) {
+		w.Header().Set("Content-Type", "text/plain")
+		w.WriteHeader(http.StatusOK)
+
+		// TODO(tboerger): check if services are up and running
+
+		io.WriteString(w, http.StatusText(http.StatusOK))
+	}
+}
+
+// ready implements the ready check.
+func ready(cfg *config.Config) func(http.ResponseWriter, *http.Request) {
+	return func(w http.ResponseWriter, r *http.Request) {
+		w.Header().Set("Content-Type", "text/plain")
+		w.WriteHeader(http.StatusOK)
+
+		// TODO(tboerger): check if services are up and running
+
+		io.WriteString(w, http.StatusText(http.StatusOK))
+	}
+}

pkg/version/version.go

@@ -0,0 +1,19 @@
+package version
+
+import (
+	"time"
+)
+
+var (
+	// String gets defined by the build system.
+	String = "0.0.0"
+
+	// Date indicates the build date.
+	Date = "00000000"
+)
+
+// Compiled returns the compile time of this service.
+func Compiled() time.Time {
+	t, _ := time.Parse("20060102", Date)
+	return t
+}

reflex.conf

@@ -0,0 +1,5 @@
+# backend
+-r '^(cmd|pkg)/.*\.go$' -R '^node_modules/' -s -- sh -c 'make bin/ocis-reva-debug && bin/ocis-reva-debug --log-level debug server --debug-pprof --debug-zpages --asset-path assets/'
+
+# frontend
+-r '^ui/.*\.(vue|js)$' -R '^node_modules/' -- sh -c 'yarn build'