mirror of
https://github.com/openziti/zrok.git
synced 2024-11-23 00:23:48 +01:00
53940d51ab
* added tls support to controller and access proxies * few pr comments
127 lines
3.0 KiB
Go
127 lines
3.0 KiB
Go
package config
|
|
|
|
import (
|
|
"time"
|
|
|
|
"github.com/openziti/zrok/controller/emailUi"
|
|
"github.com/openziti/zrok/controller/env"
|
|
"github.com/openziti/zrok/controller/limits"
|
|
"github.com/openziti/zrok/controller/metrics"
|
|
"github.com/openziti/zrok/controller/zrokEdgeSdk"
|
|
|
|
"github.com/michaelquigley/cf"
|
|
"github.com/openziti/zrok/controller/store"
|
|
"github.com/pkg/errors"
|
|
)
|
|
|
|
const ConfigVersion = 3
|
|
|
|
type Config struct {
|
|
V int
|
|
Admin *AdminConfig
|
|
Bridge *metrics.BridgeConfig
|
|
Endpoint *EndpointConfig
|
|
Email *emailUi.Config
|
|
Invites *InvitesConfig
|
|
Limits *limits.Config
|
|
Maintenance *MaintenanceConfig
|
|
Metrics *metrics.Config
|
|
Passwords *PasswordsConfig
|
|
Registration *RegistrationConfig
|
|
ResetPassword *ResetPasswordConfig
|
|
Store *store.Config
|
|
Ziti *zrokEdgeSdk.Config
|
|
Tls *TlsConfig
|
|
}
|
|
|
|
type AdminConfig struct {
|
|
Secrets []string `cf:"+secret"`
|
|
TouLink string
|
|
ProfileEndpoint string
|
|
}
|
|
|
|
type EndpointConfig struct {
|
|
Host string
|
|
Port int
|
|
}
|
|
|
|
type InvitesConfig struct {
|
|
InvitesOpen bool
|
|
TokenStrategy string
|
|
TokenContact string
|
|
}
|
|
|
|
type MaintenanceConfig struct {
|
|
ResetPassword *ResetPasswordMaintenanceConfig
|
|
Registration *RegistrationMaintenanceConfig
|
|
}
|
|
|
|
type PasswordsConfig struct {
|
|
Length int
|
|
RequireCapital bool
|
|
RequireNumeric bool
|
|
RequireSpecial bool
|
|
ValidSpecialCharacters string
|
|
}
|
|
|
|
type RegistrationConfig struct {
|
|
RegistrationUrlTemplate string
|
|
}
|
|
|
|
type ResetPasswordConfig struct {
|
|
ResetUrlTemplate string
|
|
}
|
|
|
|
type RegistrationMaintenanceConfig struct {
|
|
ExpirationTimeout time.Duration
|
|
CheckFrequency time.Duration
|
|
BatchLimit int
|
|
}
|
|
|
|
type ResetPasswordMaintenanceConfig struct {
|
|
ExpirationTimeout time.Duration
|
|
CheckFrequency time.Duration
|
|
BatchLimit int
|
|
}
|
|
|
|
type TlsConfig struct {
|
|
CertPath string
|
|
KeyPath string
|
|
}
|
|
|
|
func DefaultConfig() *Config {
|
|
return &Config{
|
|
Limits: limits.DefaultConfig(),
|
|
Maintenance: &MaintenanceConfig{
|
|
ResetPassword: &ResetPasswordMaintenanceConfig{
|
|
ExpirationTimeout: time.Minute * 15,
|
|
CheckFrequency: time.Minute * 15,
|
|
BatchLimit: 500,
|
|
},
|
|
Registration: &RegistrationMaintenanceConfig{
|
|
ExpirationTimeout: time.Hour * 24,
|
|
CheckFrequency: time.Hour,
|
|
BatchLimit: 500,
|
|
},
|
|
},
|
|
Passwords: &PasswordsConfig{
|
|
Length: 8,
|
|
RequireCapital: true,
|
|
RequireNumeric: true,
|
|
RequireSpecial: true,
|
|
ValidSpecialCharacters: `!@$&*_-., "#%'()+/:;<=>?[\]^{|}~`,
|
|
},
|
|
}
|
|
}
|
|
|
|
func LoadConfig(path string) (*Config, error) {
|
|
cfg := DefaultConfig()
|
|
if err := cf.BindYaml(cfg, path, env.GetCfOptions()); err != nil {
|
|
return nil, errors.Wrapf(err, "error loading controller config '%v'", path)
|
|
}
|
|
if cfg.V != ConfigVersion {
|
|
return nil, errors.Errorf("expecting configuration version '%v', your configuration is version '%v'; please see zrok.io for changelog and configuration documentation", ConfigVersion, cfg.V)
|
|
}
|
|
return cfg, nil
|
|
}
|