authelia/internal/configuration/validator/storage.go

package validator

import (
	"errors"
	"fmt"
	"strings"

	"github.com/authelia/authelia/v4/internal/configuration/schema"
	"github.com/authelia/authelia/v4/internal/utils"
)

// ValidateStorage validates storage configuration.
func ValidateStorage(configuration schema.StorageConfiguration, validator *schema.StructValidator) {
	if configuration.Local == nil && configuration.MySQL == nil && configuration.PostgreSQL == nil {
		validator.Push(errors.New(errStrStorage))
	}

	switch {
	case configuration.MySQL != nil:
		validateSQLConfiguration(&configuration.MySQL.SQLStorageConfiguration, validator, "mysql")
	case configuration.PostgreSQL != nil:
		validatePostgreSQLConfiguration(configuration.PostgreSQL, validator)
	case configuration.Local != nil:
		validateLocalStorageConfiguration(configuration.Local, validator)
	}

	if configuration.EncryptionKey == "" {
		validator.Push(errors.New(errStrStorageEncryptionKeyMustBeProvided))
	} else if len(configuration.EncryptionKey) < 20 {
		validator.Push(errors.New(errStrStorageEncryptionKeyTooShort))
	}
}

func validateSQLConfiguration(configuration *schema.SQLStorageConfiguration, validator *schema.StructValidator, provider string) {
	if configuration.Timeout == 0 {
		configuration.Timeout = schema.DefaultSQLStorageConfiguration.Timeout
	}

	if configuration.Host == "" {
		validator.Push(fmt.Errorf(errFmtStorageOptionMustBeProvided, provider, "host"))
	}

	if configuration.Username == "" || configuration.Password == "" {
		validator.Push(fmt.Errorf(errFmtStorageUserPassMustBeProvided, provider))
	}

	if configuration.Database == "" {
		validator.Push(fmt.Errorf(errFmtStorageOptionMustBeProvided, provider, "database"))
	}
}

func validatePostgreSQLConfiguration(configuration *schema.PostgreSQLStorageConfiguration, validator *schema.StructValidator) {
	validateSQLConfiguration(&configuration.SQLStorageConfiguration, validator, "postgres")

	// Deprecated. TODO: Remove in v4.36.0.
	if configuration.SSLMode != "" && configuration.SSL.Mode == "" {
		configuration.SSL.Mode = configuration.SSLMode
	}

	if configuration.SSL.Mode == "" {
		configuration.SSL.Mode = testModeDisabled
	} else if !utils.IsStringInSlice(configuration.SSL.Mode, storagePostgreSQLValidSSLModes) {
		validator.Push(fmt.Errorf(errFmtStoragePostgreSQLInvalidSSLMode, configuration.SSL.Mode, strings.Join(storagePostgreSQLValidSSLModes, "', '")))
	}
}

func validateLocalStorageConfiguration(configuration *schema.LocalStorageConfiguration, validator *schema.StructValidator) {
	if configuration.Path == "" {
		validator.Push(fmt.Errorf(errFmtStorageOptionMustBeProvided, "local", "path"))
	}
}
Deprecate mongo and add mariadb as storage backend option. 2019-11-16 10:38:21 +00:00			`package validator`

			`import (`
			`"errors"`
feat(storage): postgresql schema and ssl options (#2659) Adds the schema name and all ssl options for PostgreSQL. Also a significant refactor of the storage validation process. 2021-12-02 05:36:03 +00:00			`"fmt"`
			`"strings"`
Deprecate mongo and add mariadb as storage backend option. 2019-11-16 10:38:21 +00:00
fix: include major in go.mod module directive (#2278) * build: include major in go.mod module directive * fix: xflags * revert: cobra changes * fix: mock doc 2021-08-11 01:04:35 +00:00			`"github.com/authelia/authelia/v4/internal/configuration/schema"`
feat(storage): postgresql schema and ssl options (#2659) Adds the schema name and all ssl options for PostgreSQL. Also a significant refactor of the storage validation process. 2021-12-02 05:36:03 +00:00			`"github.com/authelia/authelia/v4/internal/utils"`
Deprecate mongo and add mariadb as storage backend option. 2019-11-16 10:38:21 +00:00			`)`

[MISC] Implement golint recommendations (#885) Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> 2020-04-20 21:03:38 +00:00			`// ValidateStorage validates storage configuration.`
[FIX] Prevent crash when storage config is nil (#623) * Prevent crash when storage config is nil. * Fix google analytics configuration. Fixes #622. 2020-02-06 02:53:02 +00:00			`func ValidateStorage(configuration schema.StorageConfiguration, validator *schema.StructValidator) {`
Add support for PostgreSQL. 2019-11-16 19:50:58 +00:00			`if configuration.Local == nil && configuration.MySQL == nil && configuration.PostgreSQL == nil {`
feat(storage): postgresql schema and ssl options (#2659) Adds the schema name and all ssl options for PostgreSQL. Also a significant refactor of the storage validation process. 2021-12-02 05:36:03 +00:00			`validator.Push(errors.New(errStrStorage))`
Deprecate mongo and add mariadb as storage backend option. 2019-11-16 10:38:21 +00:00			`}`

[CI] Add gocritic linter (#977) * [CI] Add gocritic linter * Implement gocritic recommendations The outstanding recommendations are due to be addressed in #959 and #971 respectively. * Fix implementation tests * Fix remaining linting issues. * Fix tests. Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> 2020-05-06 00:52:06 +00:00			`switch {`
			`case configuration.MySQL != nil:`
feat(storage): postgresql schema and ssl options (#2659) Adds the schema name and all ssl options for PostgreSQL. Also a significant refactor of the storage validation process. 2021-12-02 05:36:03 +00:00			`validateSQLConfiguration(&configuration.MySQL.SQLStorageConfiguration, validator, "mysql")`
[CI] Add gocritic linter (#977) * [CI] Add gocritic linter * Implement gocritic recommendations The outstanding recommendations are due to be addressed in #959 and #971 respectively. * Fix implementation tests * Fix remaining linting issues. * Fix tests. Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> 2020-05-06 00:52:06 +00:00			`case configuration.PostgreSQL != nil:`
Add support for PostgreSQL. 2019-11-16 19:50:58 +00:00			`validatePostgreSQLConfiguration(configuration.PostgreSQL, validator)`
[CI] Add gocritic linter (#977) * [CI] Add gocritic linter * Implement gocritic recommendations The outstanding recommendations are due to be addressed in #959 and #971 respectively. * Fix implementation tests * Fix remaining linting issues. * Fix tests. Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> 2020-05-06 00:52:06 +00:00			`case configuration.Local != nil:`
Deprecate mongo and add mariadb as storage backend option. 2019-11-16 10:38:21 +00:00			`validateLocalStorageConfiguration(configuration.Local, validator)`
			`}`
feat(storage): encrypted secret values (#2588) This adds an AES-GCM 256bit encryption layer for storage for sensitive items. This is only TOTP secrets for the time being but this may be expanded later. This will require a configuration change as per https://www.authelia.com/docs/configuration/migration.html#4330. Closes #682 2021-11-25 01:56:58 +00:00
			`if configuration.EncryptionKey == "" {`
feat(storage): postgresql schema and ssl options (#2659) Adds the schema name and all ssl options for PostgreSQL. Also a significant refactor of the storage validation process. 2021-12-02 05:36:03 +00:00			`validator.Push(errors.New(errStrStorageEncryptionKeyMustBeProvided))`
feat(storage): encrypted secret values (#2588) This adds an AES-GCM 256bit encryption layer for storage for sensitive items. This is only TOTP secrets for the time being but this may be expanded later. This will require a configuration change as per https://www.authelia.com/docs/configuration/migration.html#4330. Closes #682 2021-11-25 01:56:58 +00:00			`} else if len(configuration.EncryptionKey) < 20 {`
feat(storage): postgresql schema and ssl options (#2659) Adds the schema name and all ssl options for PostgreSQL. Also a significant refactor of the storage validation process. 2021-12-02 05:36:03 +00:00			`validator.Push(errors.New(errStrStorageEncryptionKeyTooShort))`
feat(storage): encrypted secret values (#2588) This adds an AES-GCM 256bit encryption layer for storage for sensitive items. This is only TOTP secrets for the time being but this may be expanded later. This will require a configuration change as per https://www.authelia.com/docs/configuration/migration.html#4330. Closes #682 2021-11-25 01:56:58 +00:00			`}`
Deprecate mongo and add mariadb as storage backend option. 2019-11-16 10:38:21 +00:00			`}`

feat(storage): postgresql schema and ssl options (#2659) Adds the schema name and all ssl options for PostgreSQL. Also a significant refactor of the storage validation process. 2021-12-02 05:36:03 +00:00			`func validateSQLConfiguration(configuration schema.SQLStorageConfiguration, validator schema.StructValidator, provider string) {`
fix(storage): set sane default connection timeout (#2256) This sets a sane default connection timeout for SQL connections. 2021-08-06 05:35:14 +00:00			`if configuration.Timeout == 0 {`
feat(storage): postgresql schema and ssl options (#2659) Adds the schema name and all ssl options for PostgreSQL. Also a significant refactor of the storage validation process. 2021-12-02 05:36:03 +00:00			`configuration.Timeout = schema.DefaultSQLStorageConfiguration.Timeout`
fix(storage): set sane default connection timeout (#2256) This sets a sane default connection timeout for SQL connections. 2021-08-06 05:35:14 +00:00			`}`

feat(storage): postgresql schema and ssl options (#2659) Adds the schema name and all ssl options for PostgreSQL. Also a significant refactor of the storage validation process. 2021-12-02 05:36:03 +00:00			`if configuration.Host == "" {`
			`validator.Push(fmt.Errorf(errFmtStorageOptionMustBeProvided, provider, "host"))`
			`}`

			`if configuration.Username == "" \|\| configuration.Password == "" {`
			`validator.Push(fmt.Errorf(errFmtStorageUserPassMustBeProvided, provider))`
Deprecate mongo and add mariadb as storage backend option. 2019-11-16 10:38:21 +00:00			`}`

			`if configuration.Database == "" {`
feat(storage): postgresql schema and ssl options (#2659) Adds the schema name and all ssl options for PostgreSQL. Also a significant refactor of the storage validation process. 2021-12-02 05:36:03 +00:00			`validator.Push(fmt.Errorf(errFmtStorageOptionMustBeProvided, provider, "database"))`
Deprecate mongo and add mariadb as storage backend option. 2019-11-16 10:38:21 +00:00			`}`
			`}`

Add support for PostgreSQL. 2019-11-16 19:50:58 +00:00			`func validatePostgreSQLConfiguration(configuration schema.PostgreSQLStorageConfiguration, validator schema.StructValidator) {`
feat(storage): postgresql schema and ssl options (#2659) Adds the schema name and all ssl options for PostgreSQL. Also a significant refactor of the storage validation process. 2021-12-02 05:36:03 +00:00			`validateSQLConfiguration(&configuration.SQLStorageConfiguration, validator, "postgres")`
Add support for PostgreSQL. 2019-11-16 19:50:58 +00:00
feat(storage): postgresql schema and ssl options (#2659) Adds the schema name and all ssl options for PostgreSQL. Also a significant refactor of the storage validation process. 2021-12-02 05:36:03 +00:00			`// Deprecated. TODO: Remove in v4.36.0.`
			`if configuration.SSLMode != "" && configuration.SSL.Mode == "" {`
			`configuration.SSL.Mode = configuration.SSLMode`
Add support for PostgreSQL. 2019-11-16 19:50:58 +00:00			`}`

feat(storage): postgresql schema and ssl options (#2659) Adds the schema name and all ssl options for PostgreSQL. Also a significant refactor of the storage validation process. 2021-12-02 05:36:03 +00:00			`if configuration.SSL.Mode == "" {`
			`configuration.SSL.Mode = testModeDisabled`
			`} else if !utils.IsStringInSlice(configuration.SSL.Mode, storagePostgreSQLValidSSLModes) {`
			`validator.Push(fmt.Errorf(errFmtStoragePostgreSQLInvalidSSLMode, configuration.SSL.Mode, strings.Join(storagePostgreSQLValidSSLModes, "', '")))`
Add support for PostgreSQL. 2019-11-16 19:50:58 +00:00			`}`
			`}`

Deprecate mongo and add mariadb as storage backend option. 2019-11-16 10:38:21 +00:00			`func validateLocalStorageConfiguration(configuration schema.LocalStorageConfiguration, validator schema.StructValidator) {`
			`if configuration.Path == "" {`
feat(storage): postgresql schema and ssl options (#2659) Adds the schema name and all ssl options for PostgreSQL. Also a significant refactor of the storage validation process. 2021-12-02 05:36:03 +00:00			`validator.Push(fmt.Errorf(errFmtStorageOptionMustBeProvided, "local", "path"))`
Deprecate mongo and add mariadb as storage backend option. 2019-11-16 10:38:21 +00:00			`}`
			`}`