mirror/opencloud
1
0
Fork 0
mirror of https://github.com/opencloud-eu/opencloud.git synced 2026-05-04 18:14:53 -05:00
Code Issues Packages Projects Releases Wiki Activity

Allow ADMIN_USER_ID being empty (#5842)

Browse Source 
For certain setups we don't need the ADMIN_USER_ID to be set. It is
mainly needed for bootstrapping the internal idm and the initial role
assignment.  If roles are assigned by other means (e.g. OIDC claims
in the future) we don't need it.

This makes the ADMIN_USER_ID optional, also if ADMIN_USER_ID is unset
we don't need to configure a password for the admin user. We will still
generated the admin_id and password when running 'ocis init', but it is
ok to run manual setups without those settings.
This commit is contained in:
Ralf Haferkamp
2023-03-15 16:15:18 +01:00
committed by GitHub
parent 901c447487
commit 8b704085ce
4 changed files with 11 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files
ocis-pkg/config/parser/parse.go
-4
View File
@@ -132,9 +132,5 @@ func Validate(cfg *config.Config) error {
return shared.MissingSystemUserID("ocis")
}
if cfg.AdminUserID == "" {
return shared.MissingAdminUserID("ocis")
}
return nil
}
services/idm/pkg/command/server.go
+8 -5
View File
@@ -91,11 +91,6 @@ func bootstrap(logger log.Logger, cfg *config.Config, srvcfg server.Config) erro
}
serviceUsers := []svcUser{
{
Name: "admin",
Password: cfg.ServiceUserPasswords.OcisAdmin,
ID: cfg.AdminUserID,
},
{
Name: "libregraph",
Password: cfg.ServiceUserPasswords.Idm,
@@ -110,6 +105,14 @@ func bootstrap(logger log.Logger, cfg *config.Config, srvcfg server.Config) erro
},
}
if cfg.AdminUserID != "" {
serviceUsers = append(serviceUsers, svcUser{
Name: "admin",
Password: cfg.ServiceUserPasswords.OcisAdmin,
ID: cfg.AdminUserID,
})
}
bdb := &ldbbolt.LdbBolt{}
if err := bdb.Configure(srvcfg.Logger, srvcfg.LDAPBaseDN, srvcfg.BoltDBFile, nil); err != nil {
services/idm/pkg/config/parser/parse.go
+2 -2
View File
@@ -33,7 +33,7 @@ func ParseConfig(cfg *config.Config) error {
}
func Validate(cfg *config.Config) error {
if cfg.AdminUserID == "" {
if cfg.CreateDemoUsers && cfg.AdminUserID == "" {
return shared.MissingAdminUserID(cfg.Service.Name)
}
@@ -41,7 +41,7 @@ func Validate(cfg *config.Config) error {
return shared.MissingServiceUserPassword(cfg.Service.Name, "IDM")
}
if cfg.ServiceUserPasswords.OcisAdmin == "" {
if cfg.AdminUserID != "" && cfg.ServiceUserPasswords.OcisAdmin == "" {
return shared.MissingServiceUserPassword(cfg.Service.Name, "admin")
}
services/settings/pkg/config/parser/parse.go
+1 -1
View File
@@ -45,7 +45,7 @@ func Validate(cfg *config.Config) error {
return shared.MissingSystemUserApiKeyError(cfg.Service.Name)
}
if cfg.AdminUserID == "" {
if cfg.SetupDefaultAssignments && cfg.AdminUserID == "" {
return shared.MissingAdminUserID(cfg.Service.Name)
}