This reworks the assignment of the default role at login. The assignment
now only happens if settings service is reachable and the current user
does not have an assignment yet (we check for the NotFound status).
If the settings service returns an error other than 404, the
GetUserByClaims() (and with it the authentication) will also error out.
Closes: #3900
When removing the accounts service we lost the user autoprovision
feature. This re-introduces it. When autoprovisioning is enabled (via
PROXY_AUTOPROVISION_ACCOUNTS, as in the past) accounts that are not
resolvable via cs3 will be provsioned via the libregraph API.
Closes: #3540
- proxy routes everything user/group related (except of `user/signing-key`)
to the reva ocs endpoint now
- remove the unused user and group methods from ocs
- The accounts and glauth service are turned off by default
- proxy is switch from "accounts" to "cs3" for the account backend
- The LDAP configuration (graph, idp, storage) of all services now
points to idm instead of glauth
* allow proxy to route to micro service
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
* use go micre ocdav service instead of reva frontend
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
* add missing gateway default config
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
* update reva branch for testing
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
* add changelog
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
* add missing comands
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
* bump reva version
Signed-off-by: jkoberg <jkoberg@owncloud.com>
* tidy
Signed-off-by: jkoberg <jkoberg@owncloud.com>
* bump reva again
Signed-off-by: jkoberg <jkoberg@owncloud.com>
* a blind mans config change
Signed-off-by: jkoberg <jkoberg@owncloud.com>
* add ocdav to must start extensions
Signed-off-by: jkoberg <jkoberg@owncloud.com>
* fail when neither backend nor service is set
Signed-off-by: jkoberg <jkoberg@owncloud.com>
Co-authored-by: jkoberg <jkoberg@owncloud.com>
Ralf Haferkamp