mirror/opencloud
1
0
Fork 0
mirror of https://github.com/opencloud-eu/opencloud.git synced 2025-12-26 15:50:47 -05:00
Code Issues Packages Projects Releases Wiki Activity
22,513 Commits 51 Branches 39 Tags
replaceCIImages
Commit Graph

376 Commits

Author SHA1 Message Date
Christian Richter
0372869b8b refactor remaining code from urfave/cli 
Signed-off-by: Christian Richter <c.richter@opencloud.eu>
 2025-12-15 16:40:27 +01:00
Christian Richter
7be33b0607 refactor interims DefaultAppCobra to DefaultApp 
Signed-off-by: Christian Richter <c.richter@opencloud.eu>
 2025-12-15 16:40:26 +01:00
Christian Richter
882dede6d3 migrate proxy from urfave/cli to spf13/cobra 
Signed-off-by: Christian Richter <c.richter@opencloud.eu>
 2025-12-15 16:40:26 +01:00
Anja Barz
4dcecbf5c0 fix typo (#2024) 2025-12-15 15:01:50 +01:00
Jörn Friedrich Dreyer
56817b7de7 introduce OC_EVENTS_TLS_INSECURE 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2025-11-28 11:17:39 +01:00
Jörn Friedrich Dreyer
10913ca00a Merge pull request #1918 from opencloud-eu/otlp-tracing 
update otlp tracing
 2025-11-27 12:57:26 +01:00
Christian Richter
444af91cce Merge pull request #1714 from MahdiBaghbani/feature-ocm-wayf 
feat(ocm): add WAYF configuration for reva OCM service
 2025-11-27 12:55:59 +01:00
Jörn Friedrich Dreyer
a3ef7f6d79 update otlp tracing 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2025-11-27 12:28:15 +01:00
fschade
60501659c5 chore: bump %%NEXT%% 2025-11-27 10:53:59 +01:00
Benedikt Kulmann
487a2a0aa6 fix: add update server to default csp rules (#1875) 
* fix: add update server to default csp rules

* adapt tests

---------

Co-authored-by: Viktor Scharf <v.scharf@opencloud.eu>
 2025-11-21 17:13:22 +01:00
Christian Richter
97ee9b36a5 incorporate requested changes 
Signed-off-by: Christian Richter <c.richter@opencloud.eu>
 2025-11-19 09:38:16 +01:00
Christian Richter
f9807f9f3a actually load overrideyaml 
Signed-off-by: Christian Richter <c.richter@opencloud.eu>
 2025-11-19 09:38:16 +01:00
Christian Richter
8007e8a269 add ability to completely override csp config 
Signed-off-by: Christian Richter <c.richter@opencloud.eu>
 2025-11-19 09:38:16 +01:00
Christian Richter
63603679a5 remove obsolete comment 
Signed-off-by: Christian Richter <c.richter@opencloud.eu>
 2025-11-19 09:38:16 +01:00
Christian Richter
16f9667fe8 adapt tests & deepmerge 
Signed-off-by: Christian Richter <c.richter@opencloud.eu>
 2025-11-19 09:38:16 +01:00
Christian Richter
d16524510a adapt tests 
Signed-off-by: Christian Richter <c.richter@opencloud.eu>
 2025-11-19 09:38:16 +01:00
Christian Richter
20b903b32d load two yaml configs 
Signed-off-by: Christian Richter <c.richter@opencloud.eu>
 2025-11-19 09:38:16 +01:00
Ralf Haferkamp
37609e52df feat!: Make the url signing secret a mandatory config option 
This is required for allowing the web office to download images to
insert into documents.

The secret is generated by `opencloud init` and the server refuses
to start now without a secret being set. (Breaking Change)

Also the setting is now moved to the shared options as all involved
services need the same secret to work properly.

Related: https://github.com/opencloud-eu/web/issues/704
 2025-11-04 16:01:00 +01:00
Mahdi Baghbani
a004a9114f feat(ocm): add wayf configuration for reva ocm service 
Signed-off-by: Mahdi Baghbani <mahdi-baghbani@azadehafzar.io>
 2025-10-27 06:37:40 +00:00
Ralf Haferkamp
8cea8c8cfd feat(proxy): account_resolver multi-tenancy 
Make the account resolve reject users without a tenantid, when
multi-tenancy is enabled.
 2025-10-06 11:21:57 +02:00
Michael Barz
4a0cc1004f Fix collaboration service name (#1577) 
* fix: collaboration service name

* change: do not use app name in service name

* feat: make collaboration service name configurable

* test: fix test config
 2025-09-29 10:06:05 +02:00
Michael Barz
e7b7ceafd5 feat: make it possible to start the collaboration service in the single process (#1569) 
* feat: make it possible to start the collaboration service in the single process

* feat: add proxy policy
 2025-09-26 09:08:20 +02:00
Jörn Friedrich Dreyer
a75ece391f use correct endpoint in nats check 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2025-09-22 15:41:17 +02:00
Roman Perekhod
c597dfb917 set default timeouts and clean up 2025-09-12 12:18:47 +02:00
Roman Perekhod
9a3fc08dd4 to separate controll ower the http and grpc driven services 2025-09-12 12:18:47 +02:00
Juan Pablo Villafáñez
9e1b80a1be feat: use runners to startup the services 2025-09-12 12:18:47 +02:00
Juan Pablo Villafáñez
c0b4a5daa0 chore: change constant name to camelcase 2025-09-08 17:32:36 +02:00
Juan Pablo Villafáñez
ca2dc823ef feat: use names for connections to the nats event bus 2025-09-08 17:32:35 +02:00
Ralf Haferkamp
86db525cec feat(tracing): Improve tracing for proxy middlewares 
Each middleware adds a new span with a useful name now.
 2025-09-02 17:02:04 +02:00
Ralf Haferkamp
51c32c5e15 fix(tracing): Don't start separate span for request-id attr 
Just add the request id as an attribute to the span created by the
'otelhttp' middleware.
 2025-09-02 12:13:11 +02:00
Tyler Morgan
788b54267a Correct app store URL (#1412) 2025-09-01 10:52:42 +02:00
Ralf Haferkamp
3a8b370a08 fix(proxy): First login fails in auto provision setups 
Redeclaring the `err` variable inside the if statement made the
later error check fail even when the user was successfully created.

Fixes: #1277
 2025-08-14 15:36:23 +02:00
Ralf Haferkamp
4bdb3bf70f proxy(sign_url_auth): Allow to verify server signed URLs 
With the ocdav service being able to provided signed download URLs we
need the proxy to be able to verify the signatures.
This should also be a first step towards phasing out the weird ocs based
client side signed urls.

Related Tickets: #1104
 2025-07-17 12:01:59 +02:00
Ralf Haferkamp
601bb4c955 cleanup(proxy): Remove misleading comment 
The signedurl middleware is already adding the user to the context.
 2025-07-17 12:01:59 +02:00
Anja Barz
d52329708d Update config.go (#1183) 
Fix typo
 2025-07-11 11:50:43 +02:00
06kellyjac
2a3a20693a build: Modify mockery config to work with v3 
Maintaining the positioning of the files from v2 to reduce cognitive
load.
Indentation of yaml files now matches `.editorconfig`.
All mock files regenerated.
Added empty `{}` following convention from `mockery init` etc.
Removed directory specification where it would already match.
 2025-06-19 16:25:39 +01:00
Ralf Haferkamp
8dd8943854 fix(proxy): Prevent panic when autoprovsioning user 
After autoprovisioning a user, we need to get a reva token via
`auth-machine`. If that fails the code would panic because the logger
tried to access the `user` object returned from the GetUserByClaims
call. Which is `nil`in case failure.

Fixes #936
 2025-06-12 11:54:23 +02:00
Ralf Haferkamp
96684df32d Adjust to new tablewriter release 2025-05-19 19:26:38 +02:00
André Duffeck
cbac5f1555 Switch to a different msgpack lib 
The current one has a problem handling time.Time{} structs
 2025-05-16 10:24:43 +02:00
Ralf Haferkamp
3dc9c0cb9a Switch to opencloud-eu fork of libre-graph-api-go 2025-05-15 14:11:35 +02:00
Ralf Haferkamp
dcf78f7f3d proxy(router): Allow to set some outgoing headers 
This introduces the "additional_headers", "remote_user_header" and
"skip_x_access_token" config keys to allow configuring routes to
external services that require addtional headers to be set.

"remote_user_header": defines the name of a Header that will carry the
userid of the authenticated user on the outgoing request.

"additional_headers": defines a list of header names and values that will
be added to outgoing requests on matching routes.

"skip_x_access_token": when set to true the reva access token will not
be added to the outgoing request.

Needed for #206
 2025-04-30 10:17:58 +02:00
Ralf Haferkamp
eb1ee57db9 fix: reset 'method' loop 
The method var needs to be reset to "" when handling a route that is not
method specific.
 2025-04-30 10:17:58 +02:00
Ralf Haferkamp
102e92fd73 appauth: Add token and user (with roles) to context 
When successfully authenticating a user via apptoken, resolve the user's
roles and add the user and the token returned by the auth service to the
request context. Rely on the account_resolve middleware to add the reva
token to the outgoing request as the other auth middlewares do.
 2025-04-30 10:17:58 +02:00
Ralf Haferkamp
95f28baa52 Use constant instead of repeating the "x-access-token" string over and over 2025-04-30 10:17:58 +02:00
Jörn Friedrich Dreyer
3c38a3e3ed fix mockery warnings 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2025-04-29 11:01:17 +02:00
Ralf Haferkamp
cda94ce584 Start auth-app service by default 
Co-Authored-By: André Duffeck <a.duffeck@opencloud.eu>
 2025-03-20 15:09:47 +01:00
Michael Barz
22fb783724 test: extract go bin 2025-03-13 14:04:14 +01:00
Ralf Haferkamp
2678d0bb89 Bump mockery to 2.53.0 
Should fix build on go1.24. Also fix ci-go-generate step in multiarch
Dockerfile.

Closes: #289
 2025-03-03 16:02:59 +01:00
Ralf Haferkamp
8e1f68f315 Reset 'introductionVersion" struct tag to 1.0.0 2025-02-24 11:40:33 +01:00
Jörn Friedrich Dreyer
4afc70c549 'default' routing policy 
Signed-off-by: Jörn Friedrich Dreyer <jfd@butonic.de>
 2025-02-12 14:25:06 +01:00