goweb-oidc/internal/config/config.go

package config

import (
	"io"
	"io/ioutil"
	"net/http"
	"time"

	"github.com/pkg/errors"
	"gitlab.com/wpetit/goweb/logger"

	"github.com/caarlos0/env/v6"
	"gopkg.in/yaml.v2"
)

type Config struct {
	Log  LogConfig  `yaml:"log"`
	HTTP HTTPConfig `yaml:"http"`
	OIDC OIDCConfig `yaml:"oidc"`
}

// NewFromFile retrieves the configuration from the given file
func NewFromFile(filepath string) (*Config, error) {
	config := NewDefault()

	data, err := ioutil.ReadFile(filepath)
	if err != nil {
		return nil, errors.Wrapf(err, "could not read file '%s'", filepath)
	}

	if err := yaml.Unmarshal(data, config); err != nil {
		return nil, errors.Wrapf(err, "could not unmarshal configuration")
	}

	return config, nil
}

type HTTPConfig struct {
	Address                 string        `yaml:"address" env:"HTTP_ADDRESS"`
	PublicBaseURL           string        `yaml:"publicBaseURL" env:"HTTP_PUBLIC_BASE_URL"`
	CookieAuthenticationKey string        `yaml:"cookieAuthenticationKey" env:"HTTP_COOKIE_AUTHENTICATION_KEY"`
	CookieEncryptionKey     string        `yaml:"cookieEncryptionKey" env:"HTTP_COOKIE_ENCRYPTION_KEY"`
	CookieMaxAge            int           `yaml:"cookieMaxAge" env:"HTTP_COOKIE_MAX_AGE"`
	CookiePath              string        `yaml:"cookiePath" env:"HTTP_COOKIE_PATH"`
	CookieSameSite          http.SameSite `yaml:"cookieSameSite" env:"HTTP_COOKIE_SAME_SITE"`
	TemplateDir             string        `yaml:"templateDir" env:"HTTP_TEMPLATE_DIR"`
	PublicDir               string        `yaml:"publicDir" env:"HTTP_PUBLIC_DIR"`
}

type OIDCConfig struct {
	ClientID              string `yaml:"clientId"  env:"OIDC_CLIENT_ID"`
	ClientSecret          string `yaml:"clientSecret"  env:"OIDC_CLIENT_SECRET"`
	IssuerURL             string `yaml:"issuerUrl"  env:"OIDC_ISSUER_URL"`
	RedirectURL           string `yaml:"redirectUrl"  env:"OIDC_REDIRECT_URL"`
	PostLogoutRedirectURL string `yaml:"postLogoutRedirectURL"  env:"OIDC_POST_LOGOUT_REDIRECT_URL"`
	InsecureSkipVerify    bool   `yaml:"insecureSkipVerify" env:"OIDC_INSECURE_SKIP_VERIFY"`
	AcrValues             string `yaml:"acrValues" env:"OIDC_ACR_VALUES"`
}

type LogConfig struct {
	Level  logger.Level  `yaml:"level"  env:"LOG_LEVEL"`
	Format logger.Format `yaml:"format" env:"LOG_FORMAT"`
}

func NewDumpDefault() *Config {
	config := NewDefault()
	return config
}

func NewDefault() *Config {
	return &Config{
		Log: LogConfig{
			Level:  logger.LevelInfo,
			Format: logger.FormatHuman,
		},
		HTTP: HTTPConfig{
			Address:                 ":3002",
			PublicBaseURL:           "",
			CookieAuthenticationKey: "",
			CookieEncryptionKey:     "",
			CookiePath:              "/",
			CookieSameSite:          http.SameSiteLaxMode,
			CookieMaxAge:            int((time.Hour * 1).Seconds()), // 1 hour
			TemplateDir:             "template",
			PublicDir:               "public",
		},
		OIDC: OIDCConfig{
			IssuerURL:             "http://localhost:4444/",
			RedirectURL:           "http://localhost:3002/oauth2/callback",
			PostLogoutRedirectURL: "http://localhost:3002",
			InsecureSkipVerify:    false,
			AcrValues:             "",
		},
	}
}

func Dump(config *Config, w io.Writer) error {
	data, err := yaml.Marshal(config)
	if err != nil {
		return errors.Wrap(err, "could not dump config")
	}

	if _, err := w.Write(data); err != nil {
		return err
	}

	return nil
}

func WithEnvironment(conf *Config) error {
	if err := env.Parse(conf); err != nil {
		return err
	}

	return nil
}