Initial QSfera import

This commit is contained in:
Курнат Андрей
2026-06-07 10:20:04 +03:00
commit 2315f25754
16485 changed files with 4826827 additions and 0 deletions
@@ -0,0 +1,197 @@
package revaconfig
import (
"math"
"net/url"
"github.com/qsfera/server/pkg/log"
"github.com/qsfera/server/services/ocm/pkg/config"
)
// OCMConfigFromStruct will adapt a КуСфера config struct into a reva mapstructure to start a reva service.
func OCMConfigFromStruct(cfg *config.Config, logger log.Logger) map[string]any {
// Construct the ocm provider domain from the КуСфера URL
providerDomain := ""
u, err := url.Parse(cfg.Commons.QsferaURL)
switch {
case err != nil:
logger.Error().Err(err).Msg("could not parse КуСфера URL")
case u.Host == "КуСфера":
logger.Error().Msg("КуСфера URL has no host")
default:
providerDomain = u.Host
}
return map[string]any{
"shared": map[string]any{
"jwt_secret": cfg.TokenManager.JWTSecret,
"gatewaysvc": cfg.Reva.Address, // Todo or address?
"grpc_client_options": cfg.Reva.GetGRPCClientConfig(),
"multi_tenant_enabled": cfg.Commons.MultiTenantEnabled,
},
"http": map[string]any{
"network": cfg.HTTP.Protocol,
"address": cfg.HTTP.Addr,
"middlewares": map[string]any{
"cors": map[string]any{
"allowed_origins": cfg.HTTP.CORS.AllowedOrigins,
"allowed_methods": cfg.HTTP.CORS.AllowedMethods,
"allowed_headers": cfg.HTTP.CORS.AllowedHeaders,
"allow_credentials": cfg.HTTP.CORS.AllowCredentials,
// currently unused
//"options_passthrough": ,
//"debug": ,
//"max_age": ,
//"priority": ,
//"exposed_headers": ,
},
"auth": map[string]any{
"credentials_by_user_agent": cfg.Middleware.Auth.CredentialsByUserAgent,
},
"prometheus": map[string]any{
"namespace": "qsfera",
"subsystem": "ocm",
},
"requestid": map[string]any{},
},
// TODO build services dynamically
"services": map[string]any{
"wellknown": map[string]any{
"prefix": ".well-known",
"ocmprovider": map[string]any{
"ocm_prefix": cfg.OCMD.Prefix,
"endpoint": cfg.Commons.QsferaURL,
"provider": "КуСфера",
"webdav_root": "/dav/ocm",
"webapp_root": cfg.ScienceMesh.Prefix,
"invite_accept_dialog": cfg.ScienceMesh.InviteAcceptDialog,
"enable_webapp": false,
"enable_datatx": false,
},
},
"sciencemesh": map[string]any{
"prefix": cfg.ScienceMesh.Prefix,
"smtp_credentials": map[string]string{},
"gatewaysvc": cfg.Reva.Address,
"mesh_directory_url": cfg.ScienceMesh.MeshDirectoryURL,
"directory_service_urls": cfg.ScienceMesh.DirectoryServiceURLs,
"ocm_client_insecure": cfg.ScienceMesh.OCMClientInsecure,
"provider_domain": providerDomain,
"events": map[string]any{
"natsaddress": cfg.Events.Endpoint,
"natsclusterid": cfg.Events.Cluster,
"tlsinsecure": cfg.Events.TLSInsecure,
"tlsrootcacertificate": cfg.Events.TLSRootCACertificate,
"authusername": cfg.Events.AuthUsername,
"authpassword": cfg.Events.AuthPassword,
},
},
"ocmd": map[string]any{
"prefix": cfg.OCMD.Prefix,
"gatewaysvc": cfg.Reva.Address,
"expose_recipient_display_name": cfg.OCMD.ExposeRecipientDisplayName,
},
"dataprovider": map[string]any{
"prefix": "data",
"driver": "ocmreceived",
"drivers": map[string]any{
"ocmreceived": map[string]any{
"insecure": cfg.OCMStorageProvider.Insecure,
"storage_root": cfg.OCMStorageProvider.StorageRoot,
"service_account_id": cfg.ServiceAccount.ID,
"service_account_secret": cfg.ServiceAccount.Secret,
},
},
"data_txs": map[string]any{
"simple": map[string]any{
"cache_store": "noop",
"cache_database": "system",
"cache_table": "stat",
},
"spaces": map[string]any{
"cache_store": "noop",
"cache_database": "system",
"cache_table": "stat",
},
"tus": map[string]any{
"cache_store": "noop",
"cache_database": "system",
"cache_table": "stat",
},
},
},
},
},
"grpc": map[string]any{
"network": cfg.GRPC.Protocol,
"address": cfg.GRPC.Addr,
"tls_settings": map[string]any{
"enabled": cfg.GRPC.TLS.Enabled,
"certificate": cfg.GRPC.TLS.Cert,
"key": cfg.GRPC.TLS.Key,
},
"services": map[string]any{
"ocminvitemanager": map[string]any{
"driver": cfg.OCMInviteManager.Driver,
"drivers": map[string]any{
"json": map[string]any{
"file": cfg.OCMInviteManager.Drivers.JSON.File,
},
},
"provider_domain": providerDomain,
"token_expiration": cfg.OCMInviteManager.TokenExpiration.String(),
"ocm_timeout": int(math.Round(cfg.OCMInviteManager.Timeout.Seconds())),
"ocm_insecure": cfg.OCMInviteManager.Insecure,
},
"ocmproviderauthorizer": map[string]any{
"driver": cfg.OCMProviderAuthorizerDriver,
"drivers": map[string]any{
"json": map[string]any{
"providers": cfg.OCMProviderAuthorizerDrivers.JSON.Providers,
},
},
},
"ocmshareprovider": map[string]any{
"driver": cfg.OCMShareProvider.Driver,
"drivers": map[string]any{
"json": map[string]any{
"file": cfg.OCMShareProvider.Drivers.JSON.File,
},
},
"gatewaysvc": cfg.Reva.Address,
"provider_domain": providerDomain,
"webdav_endpoint": cfg.Commons.QsferaURL,
"webapp_template": cfg.OCMShareProvider.WebappTemplate,
"client_insecure": cfg.OCMShareProvider.Insecure,
},
"ocmcore": map[string]any{
"driver": cfg.OCMCore.Driver,
"drivers": map[string]any{
"json": map[string]any{
"file": cfg.OCMCore.Drivers.JSON.File,
},
},
},
"storageprovider": map[string]any{
"driver": "ocmreceived",
"drivers": map[string]any{
"ocmreceived": map[string]any{
"insecure": cfg.OCMStorageProvider.Insecure,
"storage_root": cfg.OCMStorageProvider.StorageRoot,
},
},
"data_server_url": cfg.OCMStorageProvider.DataServerURL,
},
"authprovider": map[string]any{
"auth_manager": "ocmshares",
"auth_managers": map[string]any{
"ocmshares": map[string]any{
"gatewaysvc": cfg.Reva.Address,
},
},
},
},
},
}
}