emissary/internal/config/server.go

package config

import (
	"fmt"

	"forge.cadoles.com/Cadoles/emissary/internal/auth/user"
)

type ServerConfig struct {
	HTTP     HTTPConfig     `yaml:"http"`
	Database DatabaseConfig `yaml:"database"`
	CORS     CORSConfig     `yaml:"cors"`
	Auth     AuthConfig     `yaml:"auth"`
}

func NewDefaultServerConfig() ServerConfig {
	return ServerConfig{
		HTTP:     NewDefaultHTTPConfig(),
		Database: NewDefaultDatabaseConfig(),
		CORS:     NewDefaultCORSConfig(),
		Auth:     NewDefaultAuthConfig(),
	}
}

type AuthConfig struct {
	Local                 *LocalAuthConfig  `yaml:"local"`
	Remote                *RemoteAuthConfig `yaml:"remote"`
	RoleExtractionRules   []string          `yaml:"roleExtractionRules"`
	TenantExtractionRules []string          `yaml:"tenantExtractionRules"`
}

func NewDefaultAuthConfig() AuthConfig {
	return AuthConfig{
		Local: &LocalAuthConfig{
			PrivateKeyPath: "server-key.json",
		},
		Remote: nil,
		RoleExtractionRules: []string{
			fmt.Sprintf("jwt.%s != nil ? str(jwt.%s) : ''", user.DefaultRoleKey, user.DefaultRoleKey),
		},
		TenantExtractionRules: []string{
			fmt.Sprintf("jwt.%s != nil ? str(jwt.%s) : ''", user.DefaultTenantKey, user.DefaultTenantKey),
		},
	}
}

type LocalAuthConfig struct {
	PrivateKeyPath InterpolatedString `yaml:"privateKeyPath"`
}

type RemoteAuthConfig struct {
	JsonWebKeySetURL InterpolatedString    `yaml:"jwksUrl"`
	RefreshInterval  *InterpolatedDuration `yaml:"refreshInterval"`
}
feat: authenticate users and agents requests 2023-03-07 23:10:42 +01:00			`package config`

feat(auth): remote and local third-party authentication 2023-07-26 15:14:49 +02:00			`import (`
			`"fmt"`

feat(client): tenant management commands 2024-02-27 14:14:30 +01:00			`"forge.cadoles.com/Cadoles/emissary/internal/auth/user"`
feat(auth): remote and local third-party authentication 2023-07-26 15:14:49 +02:00			`)`

feat: authenticate users and agents requests 2023-03-07 23:10:42 +01:00			`type ServerConfig struct {`
feat(auth): remote and local third-party authentication 2023-07-26 15:14:49 +02:00			HTTP HTTPConfig `yaml:"http"`
			Database DatabaseConfig `yaml:"database"`
			CORS CORSConfig `yaml:"cors"`
			Auth AuthConfig `yaml:"auth"`
feat: authenticate users and agents requests 2023-03-07 23:10:42 +01:00			`}`

			`func NewDefaultServerConfig() ServerConfig {`
			`return ServerConfig{`
feat(auth): remote and local third-party authentication 2023-07-26 15:14:49 +02:00			`HTTP: NewDefaultHTTPConfig(),`
			`Database: NewDefaultDatabaseConfig(),`
			`CORS: NewDefaultCORSConfig(),`
			`Auth: NewDefaultAuthConfig(),`
feat: authenticate users and agents requests 2023-03-07 23:10:42 +01:00			`}`
			`}`
feat(auth): remote and local third-party authentication 2023-07-26 15:14:49 +02:00
			`type AuthConfig struct {`
feat: resources segregation by tenant 2024-02-26 18:20:40 +01:00			Local *LocalAuthConfig `yaml:"local"`
			Remote *RemoteAuthConfig `yaml:"remote"`
			RoleExtractionRules []string `yaml:"roleExtractionRules"`
			TenantExtractionRules []string `yaml:"tenantExtractionRules"`
feat(auth): remote and local third-party authentication 2023-07-26 15:14:49 +02:00			`}`

			`func NewDefaultAuthConfig() AuthConfig {`
			`return AuthConfig{`
			`Local: &LocalAuthConfig{`
			`PrivateKeyPath: "server-key.json",`
			`},`
			`Remote: nil,`
			`RoleExtractionRules: []string{`
feat(client): tenant management commands 2024-02-27 14:14:30 +01:00			`fmt.Sprintf("jwt.%s != nil ? str(jwt.%s) : ''", user.DefaultRoleKey, user.DefaultRoleKey),`
feat(auth): remote and local third-party authentication 2023-07-26 15:14:49 +02:00			`},`
feat: resources segregation by tenant 2024-02-26 18:20:40 +01:00			`TenantExtractionRules: []string{`
feat(client): tenant management commands 2024-02-27 14:14:30 +01:00			`fmt.Sprintf("jwt.%s != nil ? str(jwt.%s) : ''", user.DefaultTenantKey, user.DefaultTenantKey),`
feat: resources segregation by tenant 2024-02-26 18:20:40 +01:00			`},`
feat(auth): remote and local third-party authentication 2023-07-26 15:14:49 +02:00			`}`
			`}`

			`type LocalAuthConfig struct {`
			PrivateKeyPath InterpolatedString `yaml:"privateKeyPath"`
			`}`

			`type RemoteAuthConfig struct {`
			JsonWebKeySetURL InterpolatedString `yaml:"jwksUrl"`
			RefreshInterval *InterpolatedDuration `yaml:"refreshInterval"`
			`}`