mirror of
https://github.com/opencloud-eu/opencloud.git
synced 2026-01-16 00:59:37 -06:00
fbb3382a42
The commit of unifying the Reva Client config introduced some backwards incompatible changes to the config structures and yaml config tags. For the "thumbnails", "webdav" and "notifications" service. This reverts the changes on the service and introduces TLS options in a backwards compatible manner.
98 lines
2.8 KiB
Go
98 lines
2.8 KiB
Go
package command
|
|
|
|
import (
|
|
"crypto/tls"
|
|
"crypto/x509"
|
|
"fmt"
|
|
"os"
|
|
|
|
"github.com/cs3org/reva/v2/pkg/events"
|
|
"github.com/cs3org/reva/v2/pkg/events/server"
|
|
"github.com/cs3org/reva/v2/pkg/rgrpc/todo/pool"
|
|
"github.com/go-micro/plugins/v4/events/natsjs"
|
|
"github.com/owncloud/ocis/v2/ocis-pkg/config/configlog"
|
|
"github.com/owncloud/ocis/v2/ocis-pkg/crypto"
|
|
"github.com/owncloud/ocis/v2/services/notifications/pkg/channels"
|
|
"github.com/owncloud/ocis/v2/services/notifications/pkg/config"
|
|
"github.com/owncloud/ocis/v2/services/notifications/pkg/config/parser"
|
|
"github.com/owncloud/ocis/v2/services/notifications/pkg/logging"
|
|
"github.com/owncloud/ocis/v2/services/notifications/pkg/service"
|
|
"github.com/urfave/cli/v2"
|
|
)
|
|
|
|
// Server is the entrypoint for the server command.
|
|
func Server(cfg *config.Config) *cli.Command {
|
|
return &cli.Command{
|
|
Name: "server",
|
|
Usage: fmt.Sprintf("start the %s service without runtime (unsupervised mode)", cfg.Service.Name),
|
|
Category: "server",
|
|
Before: func(c *cli.Context) error {
|
|
return configlog.ReturnFatal(parser.ParseConfig(cfg))
|
|
},
|
|
Action: func(c *cli.Context) error {
|
|
logger := logging.Configure(cfg.Service.Name, cfg.Log)
|
|
|
|
// evs defines a list of events to subscribe to
|
|
evs := []events.Unmarshaller{
|
|
events.ShareCreated{},
|
|
events.SpaceShared{},
|
|
}
|
|
|
|
evtsCfg := cfg.Notifications.Events
|
|
|
|
var tlsConf *tls.Config
|
|
if evtsCfg.EnableTLS {
|
|
var rootCAPool *x509.CertPool
|
|
if evtsCfg.TLSRootCACertificate != "" {
|
|
rootCrtFile, err := os.Open(evtsCfg.TLSRootCACertificate)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
rootCAPool, err = crypto.NewCertPoolFromPEM(rootCrtFile)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
evtsCfg.TLSInsecure = false
|
|
}
|
|
|
|
tlsConf = &tls.Config{
|
|
InsecureSkipVerify: evtsCfg.TLSInsecure, //nolint:gosec
|
|
RootCAs: rootCAPool,
|
|
}
|
|
}
|
|
client, err := server.NewNatsStream(
|
|
natsjs.TLSConfig(tlsConf),
|
|
natsjs.Address(evtsCfg.Endpoint),
|
|
natsjs.ClusterID(evtsCfg.Cluster),
|
|
)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
evts, err := events.Consume(client, evtsCfg.ConsumerGroup, evs...)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
channel, err := channels.NewMailChannel(*cfg, logger)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
tm, err := pool.StringToTLSMode(cfg.Notifications.RevaGatewayTLSMode)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
gwclient, err := pool.GetGatewayServiceClient(
|
|
cfg.Notifications.RevaGateway,
|
|
pool.WithTLSCACert(cfg.Notifications.RevaGatewayTLSCACert),
|
|
pool.WithTLSMode(tm),
|
|
)
|
|
if err != nil {
|
|
logger.Fatal().Err(err).Str("addr", cfg.Notifications.RevaGateway).Msg("could not get reva client")
|
|
}
|
|
|
|
svc := service.NewEventsNotifier(evts, channel, logger, gwclient, cfg.Notifications.MachineAuthAPIKey, cfg.Notifications.EmailTemplatePath, cfg.Commons.OcisURL)
|
|
return svc.Run()
|
|
},
|
|
}
|
|
}
|