split **/pkg/config/config.go up to multiple files

2026-03-01 10:30:40 -06:00 · 2021-12-17 11:47:18 +01:00
parent ee57288309
commit 9aae5392fc
121 changed files with 2056 additions and 1947 deletions
--- a/proxy/pkg/config/config.go
+++ b/proxy/pkg/config/config.go
@@ -1,52 +1,33 @@
 package config

-import (
-	"context"
-	"path"
+import "context"

-	"github.com/owncloud/ocis/ocis-pkg/config/defaults"
-	"github.com/owncloud/ocis/ocis-pkg/shared"
-)
+// Config combines all available configuration parts.
+type Config struct {
+	Service Service

-// Log defines the available log configuration.
-type Log struct {
-	Level  string `mapstructure:"level" env:"OCIS_LOG_LEVEL;PROXY_LOG_LEVEL"`
-	Pretty bool   `mapstructure:"pretty" env:"OCIS_LOG_PRETTY;PROXY_LOG_PRETTY"`
-	Color  bool   `mapstructure:"color" env:"OCIS_LOG_COLOR;PROXY_LOG_COLOR"`
-	File   string `mapstructure:"file" env:"OCIS_LOG_FILE;PROXY_LOG_FILE"`
-}
+	Tracing Tracing `ocisConfig:"tracing"`
+	Log     Log     `ocisConfig:"log"`
+	Debug   Debug   `ocisConfig:"debug"`

-// Debug defines the available debug configuration.
-type Debug struct {
-	Addr   string `ocisConfig:"addr" env:"PROXY_DEBUG_ADDR"`
-	Token  string `ocisConfig:"token" env:"PROXY_DEBUG_TOKEN"`
-	Pprof  bool   `ocisConfig:"pprof" env:"PROXY_DEBUG_PPROF"`
-	Zpages bool   `ocisConfig:"zpages" env:"PROXY_DEBUG_ZPAGES"`
-}
+	HTTP HTTP `ocisConfig:"http"`

-// HTTP defines the available http configuration.
-type HTTP struct {
-	Addr      string `ocisConfig:"addr" env:"PROXY_HTTP_ADDR"`
-	Root      string `ocisConfig:"root" env:"PROXY_HTTP_ROOT"`
-	Namespace string
-	TLSCert   string `ocisConfig:"tls_cert" env:"PROXY_TRANSPORT_TLS_CERT"`
-	TLSKey    string `ocisConfig:"tls_key" env:"PROXY_TRANSPORT_TLS_KEY"`
-	TLS       bool   `ocisConfig:"tls" env:"PROXY_TLS"`
-}
+	Policies              []Policy        `ocisConfig:"policies"`
+	OIDC                  OIDC            `ocisConfig:"oidc"`
+	TokenManager          TokenManager    `ocisConfig:"token_manager"`
+	PolicySelector        *PolicySelector `ocisConfig:"policy_selector"`
+	Reva                  Reva            `ocisConfig:"reva"`
+	PreSignedURL          PreSignedURL    `ocisConfig:"pre_signed_url"`
+	AccountBackend        string          `ocisConfig:"account_backend" env:"PROXY_ACCOUNT_BACKEND_TYPE"`
+	UserOIDCClaim         string          `ocisConfig:"user_oidc_claim" env:"PROXY_USER_OIDC_CLAIM"`
+	UserCS3Claim          string          `ocisConfig:"user_cs3_claim" env:"PROXY_USER_CS3_CLAIM"`
+	MachineAuthAPIKey     string          `ocisConfig:"machine_auth_api_key" env:"OCIS_MACHINE_AUTH_API_KEY;PROXY_MACHINE_AUTH_API_KEY"`
+	AutoprovisionAccounts bool            `ocisConfig:"auto_provision_accounts" env:"PROXY_AUTOPROVISION_ACCOUNTS"`
+	EnableBasicAuth       bool            `ocisConfig:"enable_basic_auth" env:"PROXY_ENABLE_BASIC_AUTH"`
+	InsecureBackends      bool            `ocisConfig:"insecure_backends" env:"PROXY_INSECURE_BACKENDS"`

-// Service defines the available service configuration.
-type Service struct {
-	Name    string
-	Version string
-}
-
-// Tracing defines the available tracing configuration.
-type Tracing struct {
-	Enabled   bool   `ocisConfig:"enabled" env:"OCIS_TRACING_ENABLED;PROXY_TRACING_ENABLED"`
-	Type      string `ocisConfig:"type" env:"OCIS_TRACING_TYPE;PROXY_TRACING_TYPE"`
-	Endpoint  string `ocisConfig:"endpoint" env:"OCIS_TRACING_ENDPOINT;PROXY_TRACING_ENDPOINT"`
-	Collector string `ocisConfig:"collector" env:"OCIS_TRACING_COLLECTOR;PROXY_TRACING_COLLECTOR"`
-	Service   string `ocisConfig:"service" env:"PROXY_TRACING_SERVICE"` //TODO: should this be an ID? or the same as Service.Name?
+	Context    context.Context
+	Supervised bool
 }

 // Policy enables us to use multiple directors.
@@ -82,6 +63,7 @@ var (
 	RouteTypes = []RouteType{QueryRoute, RegexRoute, PrefixRoute}
 )

+// TODO: use reva config here
 // Reva defines all available REVA configuration.
 type Reva struct {
 	Address    string     `ocisConfig:"address" env:"REVA_GATEWAY"`
@@ -98,36 +80,6 @@ type Auth struct {
 	CredentialsByUserAgent map[string]string `ocisConfig:""`
 }

-// Config combines all available configuration parts.
-type Config struct {
-	*shared.Commons
-
-	Service Service `ocisConfig:"service"`
-
-	Tracing Tracing `ocisConfig:"tracing"`
-	Log     Log     `ocisConfig:"log"`
-	Debug   Debug   `ocisConfig:"debug"`
-
-	HTTP HTTP `ocisConfig:"http"`
-
-	Policies              []Policy        `ocisConfig:"policies"`
-	OIDC                  OIDC            `ocisConfig:"oidc"`
-	TokenManager          TokenManager    `ocisConfig:"token_manager"`
-	PolicySelector        *PolicySelector `ocisConfig:"policy_selector"`
-	Reva                  Reva            `ocisConfig:"reva"`
-	PreSignedURL          PreSignedURL    `ocisConfig:"pre_signed_url"`
-	AccountBackend        string          `ocisConfig:"account_backend" env:"PROXY_ACCOUNT_BACKEND_TYPE"`
-	UserOIDCClaim         string          `ocisConfig:"user_oidc_claim" env:"PROXY_USER_OIDC_CLAIM"`
-	UserCS3Claim          string          `ocisConfig:"user_cs3_claim" env:"PROXY_USER_CS3_CLAIM"`
-	MachineAuthAPIKey     string          `ocisConfig:"machine_auth_api_key" env:"OCIS_MACHINE_AUTH_API_KEY;PROXY_MACHINE_AUTH_API_KEY"`
-	AutoprovisionAccounts bool            `ocisConfig:"auto_provision_accounts" env:"PROXY_AUTOPROVISION_ACCOUNTS"`
-	EnableBasicAuth       bool            `ocisConfig:"enable_basic_auth" env:"PROXY_ENABLE_BASIC_AUTH"`
-	InsecureBackends      bool            `ocisConfig:"insecure_backends" env:"PROXY_INSECURE_BACKENDS"`
-
-	Context    context.Context
-	Supervised bool
-}
-
 // OIDC is the config for the OpenID-Connect middleware. If set the proxy will try to authenticate every request
 // with the configured oidc-provider
 type OIDC struct {
@@ -194,217 +146,3 @@ type RegexRuleConf struct {
 	Match    string `ocisConfig:"match"`
 	Policy   string `ocisConfig:"policy"`
 }
-
-// DefaultConfig provides with a working local configuration for a proxy service.
-func DefaultConfig() *Config {
-	return &Config{
-		Debug: Debug{
-			Addr:  "0.0.0.0:9205",
-			Token: "",
-		},
-		HTTP: HTTP{
-			Addr:      "0.0.0.0:9200",
-			Root:      "/",
-			Namespace: "com.owncloud.web",
-			TLSCert:   path.Join(defaults.BaseDataPath(), "proxy", "server.crt"),
-			TLSKey:    path.Join(defaults.BaseDataPath(), "proxy", "server.key"),
-			TLS:       true,
-		},
-		Service: Service{
-			Name: "proxy",
-		},
-		Tracing: Tracing{
-			Type:      "jaeger",
-			Endpoint:  "",
-			Collector: "",
-			Service:   "proxy",
-		},
-		OIDC: OIDC{
-			Issuer:   "https://localhost:9200",
-			Insecure: true,
-			//Insecure: true,
-			UserinfoCache: UserinfoCache{
-				Size: 1024,
-				TTL:  10,
-			},
-		},
-		TokenManager: TokenManager{
-			JWTSecret: "Pive-Fumkiu4",
-		},
-		PolicySelector: nil,
-		Reva: Reva{
-			Address: "127.0.0.1:9142",
-		},
-		PreSignedURL: PreSignedURL{
-			AllowedHTTPMethods: []string{"GET"},
-			Enabled:            true,
-		},
-		AccountBackend:        "accounts",
-		UserOIDCClaim:         "email",
-		UserCS3Claim:          "mail",
-		MachineAuthAPIKey:     "change-me-please",
-		AutoprovisionAccounts: false,
-		EnableBasicAuth:       false,
-		InsecureBackends:      false,
-		// TODO: enable
-		//Policies: defaultPolicies(),
-	}
-}
-
-func DefaultPolicies() []Policy {
-	return []Policy{
-		{
-			Name: "ocis",
-			Routes: []Route{
-				{
-					Endpoint: "/",
-					Backend:  "http://localhost:9100",
-				},
-				{
-					Endpoint: "/.well-known/",
-					Backend:  "http://localhost:9130",
-				},
-				{
-					Endpoint: "/konnect/",
-					Backend:  "http://localhost:9130",
-				},
-				{
-					Endpoint: "/signin/",
-					Backend:  "http://localhost:9130",
-				},
-				{
-					Endpoint: "/archiver",
-					Backend:  "http://localhost:9140",
-				},
-				{
-					Type:     RegexRoute,
-					Endpoint: "/ocs/v[12].php/cloud/(users?|groups)", // we have `user`, `users` and `groups` in ocis-ocs
-					Backend:  "http://localhost:9110",
-				},
-				{
-					Endpoint: "/ocs/",
-					Backend:  "http://localhost:9140",
-				},
-				{
-					Type:     QueryRoute,
-					Endpoint: "/remote.php/?preview=1",
-					Backend:  "http://localhost:9115",
-				},
-				{
-					Endpoint: "/remote.php/",
-					Backend:  "http://localhost:9140",
-				},
-				{
-					Endpoint: "/dav/",
-					Backend:  "http://localhost:9140",
-				},
-				{
-					Endpoint: "/webdav/",
-					Backend:  "http://localhost:9140",
-				},
-				{
-					Endpoint: "/status.php",
-					Backend:  "http://localhost:9140",
-				},
-				{
-					Endpoint: "/index.php/",
-					Backend:  "http://localhost:9140",
-				},
-				{
-					Endpoint: "/data",
-					Backend:  "http://localhost:9140",
-				},
-				{
-					Endpoint: "/app/",
-					Backend:  "http://localhost:9140",
-				},
-				{
-					Endpoint: "/graph/",
-					Backend:  "http://localhost:9120",
-				},
-				{
-					Endpoint: "/graph-explorer",
-					Backend:  "http://localhost:9135",
-				},
-				// if we were using the go micro api gateway we could look up the endpoint in the registry dynamically
-				{
-					Endpoint: "/api/v0/accounts",
-					Backend:  "http://localhost:9181",
-				},
-				// TODO the lookup needs a better mechanism
-				{
-					Endpoint: "/accounts.js",
-					Backend:  "http://localhost:9181",
-				},
-				{
-					Endpoint: "/api/v0/settings",
-					Backend:  "http://localhost:9190",
-				},
-				{
-					Endpoint: "/settings.js",
-					Backend:  "http://localhost:9190",
-				},
-			},
-		},
-		{
-			Name: "oc10",
-			Routes: []Route{
-				{
-					Endpoint: "/",
-					Backend:  "http://localhost:9100",
-				},
-				{
-					Endpoint: "/.well-known/",
-					Backend:  "http://localhost:9130",
-				},
-				{
-					Endpoint: "/konnect/",
-					Backend:  "http://localhost:9130",
-				},
-				{
-					Endpoint: "/signin/",
-					Backend:  "http://localhost:9130",
-				},
-				{
-					Endpoint: "/archiver",
-					Backend:  "http://localhost:9140",
-				},
-				{
-					Endpoint:    "/ocs/",
-					Backend:     "https://demo.owncloud.com",
-					ApacheVHost: true,
-				},
-				{
-					Endpoint:    "/remote.php/",
-					Backend:     "https://demo.owncloud.com",
-					ApacheVHost: true,
-				},
-				{
-					Endpoint:    "/dav/",
-					Backend:     "https://demo.owncloud.com",
-					ApacheVHost: true,
-				},
-				{
-					Endpoint:    "/webdav/",
-					Backend:     "https://demo.owncloud.com",
-					ApacheVHost: true,
-				},
-				{
-					Endpoint:    "/status.php",
-					Backend:     "https://demo.owncloud.com",
-					ApacheVHost: true,
-				},
-				{
-					Endpoint:    "/index.php/",
-					Backend:     "https://demo.owncloud.com",
-					ApacheVHost: true,
-				},
-				{
-					Endpoint:    "/data",
-					Backend:     "https://demo.owncloud.com",
-					ApacheVHost: true,
-				},
-			},
-		},
-	}
-}
--- a/proxy/pkg/config/debug.go
+++ b/proxy/pkg/config/debug.go
@@ -0,0 +1,9 @@
+package config
+
+// Debug defines the available debug configuration.
+type Debug struct {
+	Addr   string `ocisConfig:"addr" env:"PROXY_DEBUG_ADDR"`
+	Token  string `ocisConfig:"token" env:"PROXY_DEBUG_TOKEN"`
+	Pprof  bool   `ocisConfig:"pprof" env:"PROXY_DEBUG_PPROF"`
+	Zpages bool   `ocisConfig:"zpages" env:"PROXY_DEBUG_ZPAGES"`
+}
--- a/proxy/pkg/config/defaultconfig.go
+++ b/proxy/pkg/config/defaultconfig.go
@@ -0,0 +1,220 @@
+package config
+
+import (
+	"path"
+
+	"github.com/owncloud/ocis/ocis-pkg/config/defaults"
+)
+
+func DefaultConfig() *Config {
+	return &Config{
+		Debug: Debug{
+			Addr:  "0.0.0.0:9205",
+			Token: "",
+		},
+		HTTP: HTTP{
+			Addr:      "0.0.0.0:9200",
+			Root:      "/",
+			Namespace: "com.owncloud.web",
+			TLSCert:   path.Join(defaults.BaseDataPath(), "proxy", "server.crt"),
+			TLSKey:    path.Join(defaults.BaseDataPath(), "proxy", "server.key"),
+			TLS:       true,
+		},
+		Service: Service{
+			Name: "proxy",
+		},
+		Tracing: Tracing{
+			Type:      "jaeger",
+			Endpoint:  "",
+			Collector: "",
+			Service:   "proxy",
+		},
+		OIDC: OIDC{
+			Issuer:   "https://localhost:9200",
+			Insecure: true,
+			//Insecure: true,
+			UserinfoCache: UserinfoCache{
+				Size: 1024,
+				TTL:  10,
+			},
+		},
+		TokenManager: TokenManager{
+			JWTSecret: "Pive-Fumkiu4",
+		},
+		PolicySelector: nil,
+		Reva: Reva{
+			Address: "127.0.0.1:9142",
+		},
+		PreSignedURL: PreSignedURL{
+			AllowedHTTPMethods: []string{"GET"},
+			Enabled:            true,
+		},
+		AccountBackend:        "accounts",
+		UserOIDCClaim:         "email",
+		UserCS3Claim:          "mail",
+		MachineAuthAPIKey:     "change-me-please",
+		AutoprovisionAccounts: false,
+		EnableBasicAuth:       false,
+		InsecureBackends:      false,
+		// TODO: enable
+		//Policies: defaultPolicies(),
+	}
+}
+
+func DefaultPolicies() []Policy {
+	return []Policy{
+		{
+			Name: "ocis",
+			Routes: []Route{
+				{
+					Endpoint: "/",
+					Backend:  "http://localhost:9100",
+				},
+				{
+					Endpoint: "/.well-known/",
+					Backend:  "http://localhost:9130",
+				},
+				{
+					Endpoint: "/konnect/",
+					Backend:  "http://localhost:9130",
+				},
+				{
+					Endpoint: "/signin/",
+					Backend:  "http://localhost:9130",
+				},
+				{
+					Endpoint: "/archiver",
+					Backend:  "http://localhost:9140",
+				},
+				{
+					Type:     RegexRoute,
+					Endpoint: "/ocs/v[12].php/cloud/(users?|groups)", // we have `user`, `users` and `groups` in ocis-ocs
+					Backend:  "http://localhost:9110",
+				},
+				{
+					Endpoint: "/ocs/",
+					Backend:  "http://localhost:9140",
+				},
+				{
+					Type:     QueryRoute,
+					Endpoint: "/remote.php/?preview=1",
+					Backend:  "http://localhost:9115",
+				},
+				{
+					Endpoint: "/remote.php/",
+					Backend:  "http://localhost:9140",
+				},
+				{
+					Endpoint: "/dav/",
+					Backend:  "http://localhost:9140",
+				},
+				{
+					Endpoint: "/webdav/",
+					Backend:  "http://localhost:9140",
+				},
+				{
+					Endpoint: "/status.php",
+					Backend:  "http://localhost:9140",
+				},
+				{
+					Endpoint: "/index.php/",
+					Backend:  "http://localhost:9140",
+				},
+				{
+					Endpoint: "/data",
+					Backend:  "http://localhost:9140",
+				},
+				{
+					Endpoint: "/app/",
+					Backend:  "http://localhost:9140",
+				},
+				{
+					Endpoint: "/graph/",
+					Backend:  "http://localhost:9120",
+				},
+				{
+					Endpoint: "/graph-explorer",
+					Backend:  "http://localhost:9135",
+				},
+				// if we were using the go micro api gateway we could look up the endpoint in the registry dynamically
+				{
+					Endpoint: "/api/v0/accounts",
+					Backend:  "http://localhost:9181",
+				},
+				// TODO the lookup needs a better mechanism
+				{
+					Endpoint: "/accounts.js",
+					Backend:  "http://localhost:9181",
+				},
+				{
+					Endpoint: "/api/v0/settings",
+					Backend:  "http://localhost:9190",
+				},
+				{
+					Endpoint: "/settings.js",
+					Backend:  "http://localhost:9190",
+				},
+			},
+		},
+		{
+			Name: "oc10",
+			Routes: []Route{
+				{
+					Endpoint: "/",
+					Backend:  "http://localhost:9100",
+				},
+				{
+					Endpoint: "/.well-known/",
+					Backend:  "http://localhost:9130",
+				},
+				{
+					Endpoint: "/konnect/",
+					Backend:  "http://localhost:9130",
+				},
+				{
+					Endpoint: "/signin/",
+					Backend:  "http://localhost:9130",
+				},
+				{
+					Endpoint: "/archiver",
+					Backend:  "http://localhost:9140",
+				},
+				{
+					Endpoint:    "/ocs/",
+					Backend:     "https://demo.owncloud.com",
+					ApacheVHost: true,
+				},
+				{
+					Endpoint:    "/remote.php/",
+					Backend:     "https://demo.owncloud.com",
+					ApacheVHost: true,
+				},
+				{
+					Endpoint:    "/dav/",
+					Backend:     "https://demo.owncloud.com",
+					ApacheVHost: true,
+				},
+				{
+					Endpoint:    "/webdav/",
+					Backend:     "https://demo.owncloud.com",
+					ApacheVHost: true,
+				},
+				{
+					Endpoint:    "/status.php",
+					Backend:     "https://demo.owncloud.com",
+					ApacheVHost: true,
+				},
+				{
+					Endpoint:    "/index.php/",
+					Backend:     "https://demo.owncloud.com",
+					ApacheVHost: true,
+				},
+				{
+					Endpoint:    "/data",
+					Backend:     "https://demo.owncloud.com",
+					ApacheVHost: true,
+				},
+			},
+		},
+	}
+}
--- a/proxy/pkg/config/http.go
+++ b/proxy/pkg/config/http.go
@@ -0,0 +1,11 @@
+package config
+
+// HTTP defines the available http configuration.
+type HTTP struct {
+	Addr      string `ocisConfig:"addr" env:"PROXY_HTTP_ADDR"`
+	Root      string `ocisConfig:"root" env:"PROXY_HTTP_ROOT"`
+	Namespace string
+	TLSCert   string `ocisConfig:"tls_cert" env:"PROXY_TRANSPORT_TLS_CERT"`
+	TLSKey    string `ocisConfig:"tls_key" env:"PROXY_TRANSPORT_TLS_KEY"`
+	TLS       bool   `ocisConfig:"tls" env:"PROXY_TLS"`
+}
--- a/proxy/pkg/config/log.go
+++ b/proxy/pkg/config/log.go
@@ -0,0 +1,9 @@
+package config
+
+// Log defines the available log configuration.
+type Log struct {
+	Level  string `mapstructure:"level" env:"OCIS_LOG_LEVEL;PROXY_LOG_LEVEL"`
+	Pretty bool   `mapstructure:"pretty" env:"OCIS_LOG_PRETTY;PROXY_LOG_PRETTY"`
+	Color  bool   `mapstructure:"color" env:"OCIS_LOG_COLOR;PROXY_LOG_COLOR"`
+	File   string `mapstructure:"file" env:"OCIS_LOG_FILE;PROXY_LOG_FILE"`
+}
--- a/proxy/pkg/config/service.go
+++ b/proxy/pkg/config/service.go
@@ -0,0 +1,7 @@
+package config
+
+// Service defines the available service configuration.
+type Service struct {
+	Name    string
+	Version string
+}
--- a/proxy/pkg/config/tracing.go
+++ b/proxy/pkg/config/tracing.go
@@ -0,0 +1,10 @@
+package config
+
+// Tracing defines the available tracing configuration.
+type Tracing struct {
+	Enabled   bool   `ocisConfig:"enabled" env:"OCIS_TRACING_ENABLED;PROXY_TRACING_ENABLED"`
+	Type      string `ocisConfig:"type" env:"OCIS_TRACING_TYPE;PROXY_TRACING_TYPE"`
+	Endpoint  string `ocisConfig:"endpoint" env:"OCIS_TRACING_ENDPOINT;PROXY_TRACING_ENDPOINT"`
+	Collector string `ocisConfig:"collector" env:"OCIS_TRACING_COLLECTOR;PROXY_TRACING_COLLECTOR"`
+	Service   string `ocisConfig:"service" env:"PROXY_TRACING_SERVICE"` //TODO: should this be an ID? or the same as Service.Name?
+}