beenull/sftpgo-mirror
1
0
Fork 0
mirror of https://github.com/drakkan/sftpgo.git synced 2024-11-22 15:40:23 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
sftpgo-mirror/httpd/api_user.go

264 lines
8.3 KiB
Go
Raw Normal View History

add a basic web interface The builtin web interface allows to manage users and connections
2019-10-07 16:19:01 +00:00
package httpd
first version
2019-07-20 10:26:52 +00:00
import (
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
"context"
REST API/Web admin: add a parameter to disconnect a user after an update This way you can force the user to login again and so to use the updated configuration. A deleted user will be automatically disconnected. Fixes #163 Improved some docs too.
2020-09-01 14:10:26 +00:00
"fmt"
first version
2019-07-20 10:26:52 +00:00
"net/http"
"strconv"
"github.com/go-chi/render"
add more linters test cases migration to testify is now complete. Linters are enabled for test cases too
2020-05-06 17:36:34 +00:00
modules: add v2 support
2021-06-26 05:31:41 +00:00
"github.com/drakkan/sftpgo/v2/common"
"github.com/drakkan/sftpgo/v2/dataprovider"
"github.com/drakkan/sftpgo/v2/kms"
add experimental plugin system
2021-07-11 13:26:51 +00:00
"github.com/drakkan/sftpgo/v2/sdk"
web UI/REST API: add password reset In order to reset the password from the admin/client user interface, an SMTP configuration must be added and the user/admin must have an email address. You can prohibit the reset functionality on a per-user basis by using a specific restriction. Fixes #597
2021-11-13 12:25:43 +00:00
"github.com/drakkan/sftpgo/v2/smtp"
refactor custom actions SFTPGo is now fully auditable, all fs and provider events that change something are notified and can be collected using hooks/plugins. There are some backward incompatible changes for command hooks
2021-10-10 11:08:05 +00:00
"github.com/drakkan/sftpgo/v2/util"
modules: add v2 support
2021-06-26 05:31:41 +00:00
"github.com/drakkan/sftpgo/v2/vfs"
first version
2019-07-20 10:26:52 +00:00
)
func getUsers(w http.ResponseWriter, r *http.Request) {
REST API: add support for API key authentication
2021-08-17 16:08:32 +00:00
r.Body = http.MaxBytesReader(w, r.Body, maxRequestSize)
virtual folders: change dataprovider structure This way we no longer depend on the local file system path and so we can add support for cloud backends in future updates
2021-02-01 18:04:15 +00:00
limit, offset, order, err := getSearchFilters(w, r)
if err != nil {
return
first version
2019-07-20 10:26:52 +00:00
}
virtual folders: change dataprovider structure This way we no longer depend on the local file system path and so we can add support for cloud backends in future updates
2021-02-01 18:04:15 +00:00
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
users, err := dataprovider.GetUsers(limit, offset, order)
first version
2019-07-20 10:26:52 +00:00
if err == nil {
render.JSON(w, r, users)
} else {
sendAPIResponse(w, r, err, "", http.StatusInternalServerError)
}
}
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
func getUserByUsername(w http.ResponseWriter, r *http.Request) {
REST API: add support for API key authentication
2021-08-17 16:08:32 +00:00
r.Body = http.MaxBytesReader(w, r.Body, maxRequestSize)
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
username := getURLParam(r, "username")
renderUser(w, r, username, http.StatusOK)
}
func renderUser(w http.ResponseWriter, r *http.Request, username string, status int) {
user, err := dataprovider.UserExists(username)
first version
2019-07-20 10:26:52 +00:00
if err != nil {
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
sendAPIResponse(w, r, err, "", getRespStatus(err))
first version
2019-07-20 10:26:52 +00:00
return
}
kms: add a lock, secrets could be modified concurrently for cached users also reduce the size of the JSON payload omitting empty secrets
2021-03-22 18:03:25 +00:00
user.PrepareForRendering()
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
if status != http.StatusOK {
virtual folders: change dataprovider structure This way we no longer depend on the local file system path and so we can add support for cloud backends in future updates
2021-02-01 18:04:15 +00:00
ctx := context.WithValue(r.Context(), render.StatusCtxKey, status)
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
render.JSON(w, r.WithContext(ctx), user)
first version
2019-07-20 10:26:52 +00:00
} else {
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
render.JSON(w, r, user)
first version
2019-07-20 10:26:52 +00:00
}
}
func addUser(w http.ResponseWriter, r *http.Request) {
add support for serving Google Cloud Storage over SFTP/SCP Each user can be mapped with a Google Cloud Storage bucket or a bucket virtual folder
2020-01-31 18:04:00 +00:00
r.Body = http.MaxBytesReader(w, r.Body, maxRequestSize)
refactor custom actions SFTPGo is now fully auditable, all fs and provider events that change something are notified and can be collected using hooks/plugins. There are some backward incompatible changes for command hooks
2021-10-10 11:08:05 +00:00
claims, err := getTokenClaims(r)
if err != nil || claims.Username == "" {
sendAPIResponse(w, r, err, "Invalid token claims", http.StatusBadRequest)
return
}
first version
2019-07-20 10:26:52 +00:00
var user dataprovider.User
refactor custom actions SFTPGo is now fully auditable, all fs and provider events that change something are notified and can be collected using hooks/plugins. There are some backward incompatible changes for command hooks
2021-10-10 11:08:05 +00:00
err = render.DecodeJSON(r.Body, &user)
first version
2019-07-20 10:26:52 +00:00
if err != nil {
sendAPIResponse(w, r, err, "", http.StatusBadRequest)
return
}
refactor custom actions SFTPGo is now fully auditable, all fs and provider events that change something are notified and can be collected using hooks/plugins. There are some backward incompatible changes for command hooks
2021-10-10 11:08:05 +00:00
err = dataprovider.AddUser(&user, claims.Username, util.GetIPFromRemoteAddress(r.RemoteAddr))
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
if err != nil {
first version
2019-07-20 10:26:52 +00:00
sendAPIResponse(w, r, err, "", getRespStatus(err))
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
return
first version
2019-07-20 10:26:52 +00:00
}
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
renderUser(w, r, user.Username, http.StatusCreated)
first version
2019-07-20 10:26:52 +00:00
}
add builtin two-factor auth support The builtin two-factor authentication is based on time-based one time passwords (RFC 6238) which works with Authy, Google Authenticator and other compatible apps.
2021-09-04 10:11:04 +00:00
func disableUser2FA(w http.ResponseWriter, r *http.Request) {
r.Body = http.MaxBytesReader(w, r.Body, maxRequestSize)
refactor custom actions SFTPGo is now fully auditable, all fs and provider events that change something are notified and can be collected using hooks/plugins. There are some backward incompatible changes for command hooks
2021-10-10 11:08:05 +00:00
claims, err := getTokenClaims(r)
if err != nil || claims.Username == "" {
sendAPIResponse(w, r, err, "Invalid token claims", http.StatusBadRequest)
return
}
add builtin two-factor auth support The builtin two-factor authentication is based on time-based one time passwords (RFC 6238) which works with Authy, Google Authenticator and other compatible apps.
2021-09-04 10:11:04 +00:00
username := getURLParam(r, "username")
user, err := dataprovider.UserExists(username)
if err != nil {
sendAPIResponse(w, r, err, "", getRespStatus(err))
return
}
user.Filters.RecoveryCodes = nil
user.Filters.TOTPConfig = sdk.TOTPConfig{
Enabled: false,
}
refactor custom actions SFTPGo is now fully auditable, all fs and provider events that change something are notified and can be collected using hooks/plugins. There are some backward incompatible changes for command hooks
2021-10-10 11:08:05 +00:00
if err := dataprovider.UpdateUser(&user, claims.Username, util.GetIPFromRemoteAddress(r.RemoteAddr)); err != nil {
add builtin two-factor auth support The builtin two-factor authentication is based on time-based one time passwords (RFC 6238) which works with Authy, Google Authenticator and other compatible apps.
2021-09-04 10:11:04 +00:00
sendAPIResponse(w, r, err, "", getRespStatus(err))
return
}
sendAPIResponse(w, r, nil, "2FA disabled", http.StatusOK)
}
first version
2019-07-20 10:26:52 +00:00
func updateUser(w http.ResponseWriter, r *http.Request) {
add support for serving Google Cloud Storage over SFTP/SCP Each user can be mapped with a Google Cloud Storage bucket or a bucket virtual folder
2020-01-31 18:04:00 +00:00
r.Body = http.MaxBytesReader(w, r.Body, maxRequestSize)
refactor custom actions SFTPGo is now fully auditable, all fs and provider events that change something are notified and can be collected using hooks/plugins. There are some backward incompatible changes for command hooks
2021-10-10 11:08:05 +00:00
claims, err := getTokenClaims(r)
if err != nil || claims.Username == "" {
sendAPIResponse(w, r, err, "Invalid token claims", http.StatusBadRequest)
return
}
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
username := getURLParam(r, "username")
REST API/Web admin: add a parameter to disconnect a user after an update This way you can force the user to login again and so to use the updated configuration. A deleted user will be automatically disconnected. Fixes #163 Improved some docs too.
2020-09-01 14:10:26 +00:00
disconnect := 0
if _, ok := r.URL.Query()["disconnect"]; ok {
disconnect, err = strconv.Atoi(r.URL.Query().Get("disconnect"))
if err != nil {
err = fmt.Errorf("invalid disconnect parameter: %v", err)
sendAPIResponse(w, r, err, "", http.StatusBadRequest)
return
}
}
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
user, err := dataprovider.UserExists(username)
Add API endpoint to set current quota Fixes #130
2020-06-20 10:38:04 +00:00
if err != nil {
sendAPIResponse(w, r, err, "", getRespStatus(err))
return
}
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
userID := user.ID
add builtin two-factor auth support The builtin two-factor authentication is based on time-based one time passwords (RFC 6238) which works with Authy, Google Authenticator and other compatible apps.
2021-09-04 10:11:04 +00:00
totpConfig := user.Filters.TOTPConfig
recoveryCodes := user.Filters.RecoveryCodes
add support for serving Google Cloud Storage over SFTP/SCP Each user can be mapped with a Google Cloud Storage bucket or a bucket virtual folder
2020-01-31 18:04:00 +00:00
currentPermissions := user.Permissions
add sftpfs storage backend Fixes #224
2020-12-12 09:31:09 +00:00
currentS3AccessSecret := user.FsConfig.S3Config.AccessSecret
currentAzAccountKey := user.FsConfig.AzBlobConfig.AccountKey
azblob: store SAS URL as kms.Secret
2021-06-11 20:27:36 +00:00
currentAzSASUrl := user.FsConfig.AzBlobConfig.SASURL
add sftpfs storage backend Fixes #224
2020-12-12 09:31:09 +00:00
currentGCSCredentials := user.FsConfig.GCSConfig.Credentials
currentCryptoPassphrase := user.FsConfig.CryptConfig.Passphrase
currentSFTPPassword := user.FsConfig.SFTPConfig.Password
currentSFTPKey := user.FsConfig.SFTPConfig.PrivateKey
add Data At Rest Encryption support
2020-12-05 12:48:13 +00:00
add per directory permissions we can now have permissions such as these ones {"/":["*"],"/somedir":["list","download"]} The old permissions are automatically converted to the new structure, no database migration is needed
2019-12-25 17:20:19 +00:00
user.Permissions = make(map[string][]string)
add a dedicated struct to store encrypted credentials also gcs credentials are now encrypted, both on disk and inside the provider. Data provider is automatically migrated and load data will accept old format too but you should upgrade to the new format to avoid future issues
2020-11-22 20:53:04 +00:00
user.FsConfig.S3Config = vfs.S3FsConfig{}
user.FsConfig.AzBlobConfig = vfs.AzBlobFsConfig{}
user.FsConfig.GCSConfig = vfs.GCSFsConfig{}
add Data At Rest Encryption support
2020-12-05 12:48:13 +00:00
user.FsConfig.CryptConfig = vfs.CryptFsConfig{}
add sftpfs storage backend Fixes #224
2020-12-12 09:31:09 +00:00
user.FsConfig.SFTPConfig = vfs.SFTPFsConfig{}
add additional data to MFA secrets and fix pointers management
2021-09-05 12:10:12 +00:00
user.Filters.TOTPConfig = sdk.TOTPConfig{}
user.Filters.RecoveryCodes = nil
extend virtual folders support to all storage backends Fixes #241
2021-03-21 18:15:47 +00:00
user.VirtualFolders = nil
first version
2019-07-20 10:26:52 +00:00
err = render.DecodeJSON(r.Body, &user)
if err != nil {
sendAPIResponse(w, r, err, "", http.StatusBadRequest)
return
}
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
user.ID = userID
user.Username = username
add builtin two-factor auth support The builtin two-factor authentication is based on time-based one time passwords (RFC 6238) which works with Authy, Google Authenticator and other compatible apps.
2021-09-04 10:11:04 +00:00
user.Filters.TOTPConfig = totpConfig
user.Filters.RecoveryCodes = recoveryCodes
add KMS support Fixes #226
2020-11-30 20:46:34 +00:00
user.SetEmptySecretsIfNil()
add per directory permissions we can now have permissions such as these ones {"/":["*"],"/somedir":["list","download"]} The old permissions are automatically converted to the new structure, no database migration is needed
2019-12-25 17:20:19 +00:00
// we use new Permissions if passed otherwise the old ones
if len(user.Permissions) == 0 {
add support for serving Google Cloud Storage over SFTP/SCP Each user can be mapped with a Google Cloud Storage bucket or a bucket virtual folder
2020-01-31 18:04:00 +00:00
user.Permissions = currentPermissions
add per directory permissions we can now have permissions such as these ones {"/":["*"],"/somedir":["list","download"]} The old permissions are automatically converted to the new structure, no database migration is needed
2019-12-25 17:20:19 +00:00
}
azblob: store SAS URL as kms.Secret
2021-06-11 20:27:36 +00:00
updateEncryptedSecrets(&user.FsConfig, currentS3AccessSecret, currentAzAccountKey, currentAzSASUrl,
currentGCSCredentials, currentCryptoPassphrase, currentSFTPPassword, currentSFTPKey)
refactor custom actions SFTPGo is now fully auditable, all fs and provider events that change something are notified and can be collected using hooks/plugins. There are some backward incompatible changes for command hooks
2021-10-10 11:08:05 +00:00
err = dataprovider.UpdateUser(&user, claims.Username, util.GetIPFromRemoteAddress(r.RemoteAddr))
first version
2019-07-20 10:26:52 +00:00
if err != nil {
sendAPIResponse(w, r, err, "", getRespStatus(err))
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
return
}
sendAPIResponse(w, r, err, "User updated", http.StatusOK)
if disconnect == 1 {
disconnectUser(user.Username)
first version
2019-07-20 10:26:52 +00:00
}
}
func deleteUser(w http.ResponseWriter, r *http.Request) {
REST API: add support for API key authentication
2021-08-17 16:08:32 +00:00
r.Body = http.MaxBytesReader(w, r.Body, maxRequestSize)
refactor custom actions SFTPGo is now fully auditable, all fs and provider events that change something are notified and can be collected using hooks/plugins. There are some backward incompatible changes for command hooks
2021-10-10 11:08:05 +00:00
claims, err := getTokenClaims(r)
if err != nil || claims.Username == "" {
sendAPIResponse(w, r, err, "Invalid token claims", http.StatusBadRequest)
return
}
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
username := getURLParam(r, "username")
refactor custom actions SFTPGo is now fully auditable, all fs and provider events that change something are notified and can be collected using hooks/plugins. There are some backward incompatible changes for command hooks
2021-10-10 11:08:05 +00:00
err = dataprovider.DeleteUser(username, claims.Username, util.GetIPFromRemoteAddress(r.RemoteAddr))
Add API endpoint to set current quota Fixes #130
2020-06-20 10:38:04 +00:00
if err != nil {
sendAPIResponse(w, r, err, "", getRespStatus(err))
first version
2019-07-20 10:26:52 +00:00
return
}
REST API v2 - add JWT authentication - admins are now stored inside the data provider - admin access can be restricted based on the source IP: both proxy header and connection IP are checked - deprecate REST API CLI: it is not relevant anymore Some other changes to the REST API can still happen before releasing SFTPGo 2.0.0 Fixes #197
2021-01-17 21:29:08 +00:00
sendAPIResponse(w, r, err, "User deleted", http.StatusOK)
disconnectUser(username)
REST API/Web admin: add a parameter to disconnect a user after an update This way you can force the user to login again and so to use the updated configuration. A deleted user will be automatically disconnected. Fixes #163 Improved some docs too.
2020-09-01 14:10:26 +00:00
}
web UI/REST API: add password reset In order to reset the password from the admin/client user interface, an SMTP configuration must be added and the user/admin must have an email address. You can prohibit the reset functionality on a per-user basis by using a specific restriction. Fixes #597
2021-11-13 12:25:43 +00:00
func forgotUserPassword(w http.ResponseWriter, r *http.Request) {
r.Body = http.MaxBytesReader(w, r.Body, maxRequestSize)
if !smtp.IsEnabled() {
sendAPIResponse(w, r, nil, "No SMTP configuration", http.StatusBadRequest)
return
}
err := handleForgotPassword(r, getURLParam(r, "username"), false)
if err != nil {
sendAPIResponse(w, r, err, "", getRespStatus(err))
return
}
sendAPIResponse(w, r, err, "Check your email for the confirmation code", http.StatusOK)
}
func resetUserPassword(w http.ResponseWriter, r *http.Request) {
r.Body = http.MaxBytesReader(w, r.Body, maxRequestSize)
var req pwdReset
err := render.DecodeJSON(r.Body, &req)
if err != nil {
sendAPIResponse(w, r, err, "", http.StatusBadRequest)
return
}
_, _, err = handleResetPassword(r, req.Code, req.Password, false)
if err != nil {
sendAPIResponse(w, r, err, "", getRespStatus(err))
return
}
sendAPIResponse(w, r, err, "Password reset successful", http.StatusOK)
}
REST API/Web admin: add a parameter to disconnect a user after an update This way you can force the user to login again and so to use the updated configuration. A deleted user will be automatically disconnected. Fixes #163 Improved some docs too.
2020-09-01 14:10:26 +00:00
func disconnectUser(username string) {
for _, stat := range common.Connections.GetStats() {
if stat.Username == username {
common.Connections.Close(stat.ConnectionID)
}
first version
2019-07-20 10:26:52 +00:00
}
}
add Azure Blob support
2020-10-25 07:18:48 +00:00
azblob: store SAS URL as kms.Secret
2021-06-11 20:27:36 +00:00
func updateEncryptedSecrets(fsConfig *vfs.Filesystem, currentS3AccessSecret, currentAzAccountKey, currentAzSASUrl,
add sftpfs storage backend Fixes #224
2020-12-12 09:31:09 +00:00
currentGCSCredentials, currentCryptoPassphrase, currentSFTPPassword, currentSFTPKey *kms.Secret) {
add a dedicated struct to store encrypted credentials also gcs credentials are now encrypted, both on disk and inside the provider. Data provider is automatically migrated and load data will accept old format too but you should upgrade to the new format to avoid future issues
2020-11-22 20:53:04 +00:00
// we use the new access secret if plain or empty, otherwise the old value
extend virtual folders support to all storage backends Fixes #241
2021-03-21 18:15:47 +00:00
switch fsConfig.Provider {
add experimental plugin system
2021-07-11 13:26:51 +00:00
case sdk.S3FilesystemProvider:
extend virtual folders support to all storage backends Fixes #241
2021-03-21 18:15:47 +00:00
if fsConfig.S3Config.AccessSecret.IsNotPlainAndNotEmpty() {
fsConfig.S3Config.AccessSecret = currentS3AccessSecret
add Azure Blob support
2020-10-25 07:18:48 +00:00
}
add experimental plugin system
2021-07-11 13:26:51 +00:00
case sdk.AzureBlobFilesystemProvider:
extend virtual folders support to all storage backends Fixes #241
2021-03-21 18:15:47 +00:00
if fsConfig.AzBlobConfig.AccountKey.IsNotPlainAndNotEmpty() {
fsConfig.AzBlobConfig.AccountKey = currentAzAccountKey
add Azure Blob support
2020-10-25 07:18:48 +00:00
}
azblob: store SAS URL as kms.Secret
2021-06-11 20:27:36 +00:00
if fsConfig.AzBlobConfig.SASURL.IsNotPlainAndNotEmpty() {
fsConfig.AzBlobConfig.SASURL = currentAzSASUrl
}
add experimental plugin system
2021-07-11 13:26:51 +00:00
case sdk.GCSFilesystemProvider:
extend virtual folders support to all storage backends Fixes #241
2021-03-21 18:15:47 +00:00
if fsConfig.GCSConfig.Credentials.IsNotPlainAndNotEmpty() {
fsConfig.GCSConfig.Credentials = currentGCSCredentials
add a dedicated struct to store encrypted credentials also gcs credentials are now encrypted, both on disk and inside the provider. Data provider is automatically migrated and load data will accept old format too but you should upgrade to the new format to avoid future issues
2020-11-22 20:53:04 +00:00
}
add experimental plugin system
2021-07-11 13:26:51 +00:00
case sdk.CryptedFilesystemProvider:
extend virtual folders support to all storage backends Fixes #241
2021-03-21 18:15:47 +00:00
if fsConfig.CryptConfig.Passphrase.IsNotPlainAndNotEmpty() {
fsConfig.CryptConfig.Passphrase = currentCryptoPassphrase
add Data At Rest Encryption support
2020-12-05 12:48:13 +00:00
}
add experimental plugin system
2021-07-11 13:26:51 +00:00
case sdk.SFTPFilesystemProvider:
extend virtual folders support to all storage backends Fixes #241
2021-03-21 18:15:47 +00:00
if fsConfig.SFTPConfig.Password.IsNotPlainAndNotEmpty() {
fsConfig.SFTPConfig.Password = currentSFTPPassword
add sftpfs storage backend Fixes #224
2020-12-12 09:31:09 +00:00
}
extend virtual folders support to all storage backends Fixes #241
2021-03-21 18:15:47 +00:00
if fsConfig.SFTPConfig.PrivateKey.IsNotPlainAndNotEmpty() {
fsConfig.SFTPConfig.PrivateKey = currentSFTPKey
add sftpfs storage backend Fixes #224
2020-12-12 09:31:09 +00:00
}
add Data At Rest Encryption support
2020-12-05 12:48:13 +00:00
}
add Azure Blob support
2020-10-25 07:18:48 +00:00
}
Reference in a new issue Copy permalink