William Petit
3ef495445a
serveur - Création d'un service d'autorisation dynamique basé sur des "voter" (à la Symfony) - Mise en place des autorisations sur les principales queries/mutations de l'API GraphQL
138 lines
3.7 KiB
Go
138 lines
3.7 KiB
Go
package config
|
|
|
|
import (
|
|
"io"
|
|
"io/ioutil"
|
|
"time"
|
|
|
|
"github.com/pkg/errors"
|
|
"gitlab.com/wpetit/goweb/logger"
|
|
|
|
"github.com/caarlos0/env/v6"
|
|
"gopkg.in/yaml.v2"
|
|
)
|
|
|
|
type Config struct {
|
|
Debug bool `yaml:"debug" env:"DEBUG"`
|
|
Log LogConfig `yaml:"log"`
|
|
HTTP HTTPConfig `yaml:"http"`
|
|
OIDC OIDCConfig `yaml:"oidc"`
|
|
Database DatabaseConfig `yaml:"database"`
|
|
Auth AuthConfig `yaml:"auth"`
|
|
}
|
|
|
|
// NewFromFile retrieves the configuration from the given file
|
|
func NewFromFile(filepath string) (*Config, error) {
|
|
config := NewDefault()
|
|
|
|
data, err := ioutil.ReadFile(filepath)
|
|
if err != nil {
|
|
return nil, errors.Wrapf(err, "could not read file '%s'", filepath)
|
|
}
|
|
|
|
if err := yaml.Unmarshal(data, config); err != nil {
|
|
return nil, errors.Wrapf(err, "could not unmarshal configuration")
|
|
}
|
|
|
|
return config, nil
|
|
}
|
|
|
|
type HTTPConfig struct {
|
|
Address string `yaml:"address" env:"HTTP_ADDRESS"`
|
|
CookieAuthenticationKey string `yaml:"cookieAuthenticationKey" env:"HTTP_COOKIE_AUTHENTICATION_KEY"`
|
|
CookieEncryptionKey string `yaml:"cookieEncryptionKey" env:"HTTP_COOKIE_ENCRYPTION_KEY"`
|
|
CookieMaxAge int `yaml:"cookieMaxAge" env:"HTTP_COOKIE_MAX_AGE"`
|
|
TemplateDir string `yaml:"templateDir" env:"HTTP_TEMPLATE_DIR"`
|
|
PublicDir string `yaml:"publicDir" env:"HTTP_PUBLIC_DIR"`
|
|
FrontendURL string `yaml:"frontendURL" env:"HTTP_FRONTEND_URL"`
|
|
CORS CORSConfig `yaml:"cors"`
|
|
}
|
|
|
|
type CORSConfig struct {
|
|
AllowedOrigins []string `yaml:"allowedOrigins" env:"HTTP_CORS_ALLOWED_ORIGINS"`
|
|
AllowCredentials bool `yaml:"allowCredentials" env:"HTTP_CORS_ALLOW_CREDENTIALS"`
|
|
}
|
|
|
|
type OIDCConfig struct {
|
|
ClientID string `yaml:"clientId" env:"OIDC_CLIENT_ID"`
|
|
ClientSecret string `yaml:"clientSecret" env:"OIDC_CLIENT_SECRET"`
|
|
IssuerURL string `yaml:"issuerUrl" env:"OIDC_ISSUER_URL"`
|
|
RedirectURL string `yaml:"redirectUrl" env:"OIDC_REDIRECT_URL"`
|
|
PostLogoutRedirectURL string `yaml:"postLogoutRedirectURL" env:"OIDC_POST_LOGOUT_REDIRECT_URL"`
|
|
}
|
|
|
|
type LogConfig struct {
|
|
Level logger.Level `yaml:"level" env:"LOG_LEVEL"`
|
|
Format logger.Format `yaml:"format" env:"LOG_FORMAT"`
|
|
}
|
|
|
|
type DatabaseConfig struct {
|
|
DSN string `yaml:"dsn" env:"DATABASE_DSN"`
|
|
}
|
|
|
|
type AuthConfig struct {
|
|
Rules []string `yaml:"rules" env:"AUTH_RULES"`
|
|
}
|
|
|
|
func NewDumpDefault() *Config {
|
|
config := NewDefault()
|
|
return config
|
|
}
|
|
|
|
func NewDefault() *Config {
|
|
return &Config{
|
|
Debug: false,
|
|
Log: LogConfig{
|
|
Level: logger.LevelInfo,
|
|
Format: logger.FormatHuman,
|
|
},
|
|
HTTP: HTTPConfig{
|
|
Address: ":8081",
|
|
CookieAuthenticationKey: "",
|
|
CookieEncryptionKey: "",
|
|
CookieMaxAge: int((time.Hour * 24).Seconds()), // 24 hours
|
|
TemplateDir: "template",
|
|
PublicDir: "public",
|
|
FrontendURL: "http://localhost:8080",
|
|
CORS: CORSConfig{
|
|
AllowedOrigins: []string{"http://localhost:8080"},
|
|
AllowCredentials: true,
|
|
},
|
|
},
|
|
OIDC: OIDCConfig{
|
|
IssuerURL: "http://localhost:4444/",
|
|
RedirectURL: "http://localhost:8081/oauth2/callback",
|
|
PostLogoutRedirectURL: "http://localhost:8081",
|
|
},
|
|
Database: DatabaseConfig{
|
|
DSN: "host=localhost database=daddy",
|
|
},
|
|
Auth: AuthConfig{
|
|
Rules: []string{
|
|
"user.Email endsWith 'cadoles.com'",
|
|
},
|
|
},
|
|
}
|
|
}
|
|
|
|
func Dump(config *Config, w io.Writer) error {
|
|
data, err := yaml.Marshal(config)
|
|
if err != nil {
|
|
return errors.Wrap(err, "could not dump config")
|
|
}
|
|
|
|
if _, err := w.Write(data); err != nil {
|
|
return err
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func WithEnvironment(conf *Config) error {
|
|
if err := env.Parse(conf); err != nil {
|
|
return err
|
|
}
|
|
|
|
return nil
|
|
}
|