diff --git a/deployments/examples/oc10_ocis_parallel/config/ocis/proxy.yaml b/deployments/examples/oc10_ocis_parallel/config/ocis/proxy.yaml
index 463b293310..40f74e8900 100755
--- a/deployments/examples/oc10_ocis_parallel/config/ocis/proxy.yaml
+++ b/deployments/examples/oc10_ocis_parallel/config/ocis/proxy.yaml
@@ -34,17 +34,17 @@ policies:
endpoint: /webdav/?preview=1
backend: http://localhost:9115
- endpoint: /remote.php/
- service: com.owncloud.web.ocdav
+ service: eu.opencloud.web.ocdav
- endpoint: /dav/
- service: com.owncloud.web.ocdav
+ service: eu.opencloud.web.ocdav
- endpoint: /webdav/
- service: com.owncloud.web.ocdav
+ service: eu.opencloud.web.ocdav
- endpoint: /status.php
- service: com.owncloud.web.ocdav
+ service: eu.opencloud.web.ocdav
- endpoint: /index.php/
- service: com.owncloud.web.ocdav
+ service: eu.opencloud.web.ocdav
- endpoint: /apps/
- service: com.owncloud.web.ocdav
+ service: eu.opencloud.web.ocdav
- endpoint: /data
backend: http://localhost:9140
- endpoint: /app/
diff --git a/deployments/examples/ocis_full/collabora.yml b/deployments/examples/ocis_full/collabora.yml
index 642b8638e1..1e7a7f654a 100644
--- a/deployments/examples/ocis_full/collabora.yml
+++ b/deployments/examples/ocis_full/collabora.yml
@@ -9,7 +9,7 @@ services:
ocis:
environment:
# make collabora the secure view app
- FRONTEND_APP_HANDLER_SECURE_VIEW_APP_ADDR: com.owncloud.api.collaboration.CollaboraOnline
+ FRONTEND_APP_HANDLER_SECURE_VIEW_APP_ADDR: eu.opencloud.api.collaboration.CollaboraOnline
GRAPH_AVAILABLE_ROLES: "b1e2218d-eef8-4d4c-b82d-0f1a1b48f3b5,a8d5fe5e-96e3-418d-825b-534dbdf22b99,fb6c3e19-e378-47e5-b277-9732f9de6e21,58c63c02-1d89-4572-916a-870abc5a1b7d,2d00ce52-1fc2-4dbc-8b95-a73b73395f5a,1c996275-f1c9-4e71-abdf-a42f6495e960,312c0871-5ef7-4b3a-85b6-0e4074c64049,aa97fe03-7980-45ac-9e50-b325749fd7e6"
collaboration:
diff --git a/deployments/examples/ocis_hello/config/ocis/proxy.yaml b/deployments/examples/ocis_hello/config/ocis/proxy.yaml
index 10256bb35b..bc3169bb05 100644
--- a/deployments/examples/ocis_hello/config/ocis/proxy.yaml
+++ b/deployments/examples/ocis_hello/config/ocis/proxy.yaml
@@ -34,17 +34,17 @@ policies:
endpoint: /webdav/?preview=1
backend: http://localhost:9115
- endpoint: /remote.php/
- service: com.owncloud.web.ocdav
+ service: eu.opencloud.web.ocdav
- endpoint: /dav/
- service: com.owncloud.web.ocdav
+ service: eu.opencloud.web.ocdav
- endpoint: /webdav/
- service: com.owncloud.web.ocdav
+ service: eu.opencloud.web.ocdav
- endpoint: /status.php
- service: com.owncloud.web.ocdav
+ service: eu.opencloud.web.ocdav
- endpoint: /index.php/
- service: com.owncloud.web.ocdav
+ service: eu.opencloud.web.ocdav
- endpoint: /apps/
- service: com.owncloud.web.ocdav
+ service: eu.opencloud.web.ocdav
- endpoint: /data
backend: http://localhost:9140
- endpoint: /app/
diff --git a/docs/helpers/env_vars.yaml b/docs/helpers/env_vars.yaml
index b85fb36de7..407f4c1d9e 100644
--- a/docs/helpers/env_vars.yaml
+++ b/docs/helpers/env_vars.yaml
@@ -345,7 +345,7 @@ ANTIVIRUS_EVENTS_AUTH_PASSWORD:
defaultValue: ""
type: string
description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -355,7 +355,7 @@ ANTIVIRUS_EVENTS_AUTH_USERNAME:
defaultValue: ""
type: string
description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -376,7 +376,7 @@ ANTIVIRUS_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
@@ -607,7 +607,7 @@ APP_PROVIDER_DRIVER:
deprecationInfo: ""
APP_PROVIDER_EXTERNAL_ADDR:
name: APP_PROVIDER_EXTERNAL_ADDR
- defaultValue: com.owncloud.api.app-provider
+ defaultValue: eu.opencloud.api.app-provider
type: string
description: Address of the app provider, where the GATEWAY service can reach it.
introductionVersion: pre5.0
@@ -1025,7 +1025,7 @@ AUDIT_EVENTS_AUTH_PASSWORD:
defaultValue: ""
type: string
description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -1035,7 +1035,7 @@ AUDIT_EVENTS_AUTH_USERNAME:
defaultValue: ""
type: string
description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -1056,7 +1056,7 @@ AUDIT_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
@@ -2522,7 +2522,7 @@ CLIENTLOG_EVENTS_AUTH_PASSWORD:
defaultValue: ""
type: string
description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -2532,7 +2532,7 @@ CLIENTLOG_EVENTS_AUTH_USERNAME:
defaultValue: ""
type: string
description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -2553,7 +2553,7 @@ CLIENTLOG_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -2598,7 +2598,7 @@ CLIENTLOG_JWT_SECRET:
deprecationInfo: ""
CLIENTLOG_REVA_GATEWAY:
name: OC_REVA_GATEWAY;CLIENTLOG_REVA_GATEWAY
- defaultValue: com.owncloud.api.gateway
+ defaultValue: eu.opencloud.api.gateway
type: string
description: CS3 gateway used to look up user metadata
introductionVersion: "5.0"
@@ -3026,9 +3026,8 @@ COLLABORATION_WOPI_PROXY_SECRET:
name: COLLABORATION_WOPI_PROXY_SECRET
defaultValue: ""
type: string
- description: Optional, the secret to authenticate against the ownCloud Office365
- WOPI proxy. This secret can be obtained from ownCloud via the office365 proxy
- subscription.
+ description: Optional, the secret to authenticate against the OpenCloud WOPI proxy.
+ This secret can be obtained from ownCloud via the office365 proxy subscription.
introductionVersion: 7.0.0
deprecationVersion: ""
removalVersion: ""
@@ -3037,8 +3036,8 @@ COLLABORATION_WOPI_PROXY_URL:
name: COLLABORATION_WOPI_PROXY_URL
defaultValue: ""
type: string
- description: The URL to the ownCloud Office365 WOPI proxy. Optional. To use this
- feature, you need an office365 proxy subscription. If you become part of the Microsoft
+ description: The URL to the OpenCloud WOPI proxy. Optional. To use this feature,
+ you need an office365 proxy subscription. If you become part of the Microsoft
CSP program (https://learn.microsoft.com/en-us/partner-center/enroll/csp-overview),
you can use WebOffice without a proxy.
introductionVersion: 7.0.0
@@ -3072,7 +3071,7 @@ COLLABORATION_WOPI_SRC:
type: string
description: The WOPI source base URL containing schema, host and port. Set this
to the schema and domain where the collaboration service is reachable for the
- wopi app, such as https://office.owncloud.test.
+ wopi app, such as https://office.example.test.
introductionVersion: 6.0.0
deprecationVersion: ""
removalVersion: ""
@@ -3120,7 +3119,7 @@ EVENTHISTORY_EVENTS_AUTH_PASSWORD:
defaultValue: ""
type: string
description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -3130,7 +3129,7 @@ EVENTHISTORY_EVENTS_AUTH_USERNAME:
defaultValue: ""
type: string
description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -3151,7 +3150,7 @@ EVENTHISTORY_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
@@ -3350,7 +3349,7 @@ FRONTEND_APP_HANDLER_INSECURE:
deprecationInfo: ""
FRONTEND_APP_HANDLER_SECURE_VIEW_APP_ADDR:
name: FRONTEND_APP_HANDLER_SECURE_VIEW_APP_ADDR
- defaultValue: com.owncloud.api.collaboration
+ defaultValue: eu.opencloud.api.collaboration
type: string
description: Service name or address of the app provider to use for secure view.
Should match the service name or address of the registered CS3 app provider.
@@ -3594,7 +3593,7 @@ FRONTEND_EVENTS_AUTH_PASSWORD:
defaultValue: ""
type: string
description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -3604,7 +3603,7 @@ FRONTEND_EVENTS_AUTH_USERNAME:
defaultValue: ""
type: string
description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -3625,7 +3624,7 @@ FRONTEND_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -3850,7 +3849,8 @@ FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD:
removalVersion: ""
deprecationInfo: FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated
| | FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated |
- FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated
+ FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated | FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD,
+ the OCS API is deprecated
FRONTEND_OCS_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD:
name: OC_SHARING_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD;FRONTEND_OCS_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD
defaultValue: "false"
@@ -3863,6 +3863,7 @@ FRONTEND_OCS_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD:
deprecationInfo: FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD, the OCS
API is deprecated | | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD,
the OCS API is deprecated | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD,
+ the OCS API is deprecated | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD,
the OCS API is deprecated
FRONTEND_OCS_SHARE_PREFIX:
name: FRONTEND_OCS_SHARE_PREFIX
@@ -4133,7 +4134,7 @@ FRONTEND_UPLOAD_MAX_CHUNK_SIZE:
deprecationInfo: ""
GATEWAY_APP_REGISTRY_ENDPOINT:
name: GATEWAY_APP_REGISTRY_ENDPOINT
- defaultValue: com.owncloud.api.app-registry
+ defaultValue: eu.opencloud.api.app-registry
type: string
description: The endpoint of the app-registry service. Can take a service name or
a gRPC URI with the dns, kubernetes or unix protocol.
@@ -4143,7 +4144,7 @@ GATEWAY_APP_REGISTRY_ENDPOINT:
deprecationInfo: ""
GATEWAY_AUTH_APP_ENDPOINT:
name: GATEWAY_AUTH_APP_ENDPOINT
- defaultValue: com.owncloud.api.auth-app
+ defaultValue: eu.opencloud.api.auth-app
type: string
description: The endpoint of the auth-app service. Can take a service name or a
gRPC URI with the dns, kubernetes or unix protocol.
@@ -4153,7 +4154,7 @@ GATEWAY_AUTH_APP_ENDPOINT:
deprecationInfo: ""
GATEWAY_AUTH_BASIC_ENDPOINT:
name: GATEWAY_AUTH_BASIC_ENDPOINT
- defaultValue: com.owncloud.api.auth-basic
+ defaultValue: eu.opencloud.api.auth-basic
type: string
description: The endpoint of the auth-basic service. Can take a service name or
a gRPC URI with the dns, kubernetes or unix protocol.
@@ -4173,7 +4174,7 @@ GATEWAY_AUTH_BEARER_ENDPOINT:
deprecationInfo: ""
GATEWAY_AUTH_MACHINE_ENDPOINT:
name: GATEWAY_AUTH_MACHINE_ENDPOINT
- defaultValue: com.owncloud.api.auth-machine
+ defaultValue: eu.opencloud.api.auth-machine
type: string
description: The endpoint of the auth-machine service. Can take a service name or
a gRPC URI with the dns, kubernetes or unix protocol.
@@ -4183,7 +4184,7 @@ GATEWAY_AUTH_MACHINE_ENDPOINT:
deprecationInfo: ""
GATEWAY_AUTH_SERVICE_ENDPOINT:
name: GATEWAY_AUTH_SERVICE_ENDPOINT
- defaultValue: com.owncloud.api.auth-service
+ defaultValue: eu.opencloud.api.auth-service
type: string
description: The endpoint of the auth-service service. Can take a service name or
a gRPC URI with the dns, kubernetes or unix protocol.
@@ -4322,7 +4323,7 @@ GATEWAY_FRONTEND_PUBLIC_URL:
deprecationInfo: ""
GATEWAY_GROUPS_ENDPOINT:
name: GATEWAY_GROUPS_ENDPOINT
- defaultValue: com.owncloud.api.groups
+ defaultValue: eu.opencloud.api.groups
type: string
description: The endpoint of the groups service. Can take a service name or a gRPC
URI with the dns, kubernetes or unix protocol.
@@ -4396,7 +4397,7 @@ GATEWAY_LOG_PRETTY:
deprecationInfo: ""
GATEWAY_OCM_ENDPOINT:
name: GATEWAY_OCM_ENDPOINT
- defaultValue: com.owncloud.api.ocm
+ defaultValue: eu.opencloud.api.ocm
type: string
description: The endpoint of the ocm service. Can take a service name or a gRPC
URI with the dns, kubernetes or unix protocol.
@@ -4406,7 +4407,7 @@ GATEWAY_OCM_ENDPOINT:
deprecationInfo: ""
GATEWAY_PERMISSIONS_ENDPOINT:
name: GATEWAY_PERMISSIONS_ENDPOINT
- defaultValue: com.owncloud.api.settings
+ defaultValue: eu.opencloud.api.settings
type: string
description: The endpoint of the permissions service. Can take a service name or
a gRPC URI with the dns, kubernetes or unix protocol.
@@ -4488,7 +4489,7 @@ GATEWAY_SHARE_FOLDER_NAME:
deprecationInfo: ""
GATEWAY_SHARING_ENDPOINT:
name: GATEWAY_SHARING_ENDPOINT
- defaultValue: com.owncloud.api.sharing
+ defaultValue: eu.opencloud.api.sharing
type: string
description: The endpoint of the shares service. Can take a service name or a gRPC
URI with the dns, kubernetes or unix protocol.
@@ -4508,7 +4509,7 @@ GATEWAY_SKIP_USER_GROUPS_IN_TOKEN:
deprecationInfo: ""
GATEWAY_STORAGE_PUBLIC_LINK_ENDPOINT:
name: GATEWAY_STORAGE_PUBLIC_LINK_ENDPOINT
- defaultValue: com.owncloud.api.storage-publiclink
+ defaultValue: eu.opencloud.api.storage-publiclink
type: string
description: The endpoint of the storage-publiclink service. Can take a service
name or a gRPC URI with the dns, kubernetes or unix protocol.
@@ -4546,7 +4547,7 @@ GATEWAY_STORAGE_REGISTRY_RULES:
deprecationInfo: ""
GATEWAY_STORAGE_SHARES_ENDPOINT:
name: GATEWAY_STORAGE_SHARES_ENDPOINT
- defaultValue: com.owncloud.api.storage-shares
+ defaultValue: eu.opencloud.api.storage-shares
type: string
description: The endpoint of the storage-shares service. Can take a service name
or a gRPC URI with the dns, kubernetes or unix protocol.
@@ -4556,7 +4557,7 @@ GATEWAY_STORAGE_SHARES_ENDPOINT:
deprecationInfo: ""
GATEWAY_STORAGE_USERS_ENDPOINT:
name: GATEWAY_STORAGE_USERS_ENDPOINT
- defaultValue: com.owncloud.api.storage-users
+ defaultValue: eu.opencloud.api.storage-users
type: string
description: The endpoint of the storage-users service. Can take a service name
or a gRPC URI with the dns, kubernetes or unix protocol.
@@ -4624,7 +4625,7 @@ GATEWAY_TRANSFER_EXPIRES:
deprecationInfo: ""
GATEWAY_USERS_ENDPOINT:
name: GATEWAY_USERS_ENDPOINT
- defaultValue: com.owncloud.api.users
+ defaultValue: eu.opencloud.api.users
type: string
description: The endpoint of the users service. Can take a service name or a gRPC
URI with the dns, kubernetes or unix protocol.
@@ -4864,7 +4865,7 @@ GRAPH_EVENTS_AUTH_PASSWORD:
defaultValue: ""
type: string
description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -4874,7 +4875,7 @@ GRAPH_EVENTS_AUTH_USERNAME:
defaultValue: ""
type: string
description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -4894,7 +4895,7 @@ GRAPH_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
@@ -5342,7 +5343,8 @@ GRAPH_LDAP_USER_DISPLAYNAME_ATTRIBUTE:
removalVersion: ""
deprecationInfo: LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | | | |
LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | LDAP_USER_SCHEMA_DISPLAY_NAME
- changing name for consistency
+ changing name for consistency | LDAP_USER_SCHEMA_DISPLAY_NAME changing name for
+ consistency
GRAPH_LDAP_USER_EMAIL_ATTRIBUTE:
name: OC_LDAP_USER_SCHEMA_MAIL;GRAPH_LDAP_USER_EMAIL_ATTRIBUTE
defaultValue: mail
@@ -5515,7 +5517,7 @@ GRAPH_SPACES_GROUPS_CACHE_TTL:
deprecationInfo: ""
GRAPH_SPACES_STORAGE_USERS_ADDRESS:
name: GRAPH_SPACES_STORAGE_USERS_ADDRESS
- defaultValue: com.owncloud.api.storage-users
+ defaultValue: eu.opencloud.api.storage-users
type: string
description: The address of the storage-users service.
introductionVersion: "5.0"
@@ -6737,8 +6739,8 @@ IDP_SIGNING_PRIVATE_KEY_FILES:
defaultValue: '[/var/lib/ocis/idp/private-key.pem]'
type: '[]string'
description: A list of private key files for signing IDP requests. If not defined,
- the root directory derives from $OC_BASE_DATA_PATH/idp. See the Environment
- Variable Types description for more details.
+ the root directory derives from $OC_BASE_DATA_PATH/idp. See the Environment Variable
+ Types description for more details.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
@@ -7110,7 +7112,8 @@ LDAP_USER_SCHEMA_DISPLAY_NAME:
removalVersion: ""
deprecationInfo: LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | | | |
LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | LDAP_USER_SCHEMA_DISPLAY_NAME
- changing name for consistency
+ changing name for consistency | LDAP_USER_SCHEMA_DISPLAY_NAME changing name for
+ consistency
LDAP_USER_SUBSTRING_FILTER_TYPE:
name: LDAP_USER_SUBSTRING_FILTER_TYPE;USERS_LDAP_USER_SUBSTRING_FILTER_TYPE
defaultValue: any
@@ -7165,7 +7168,7 @@ NATS_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
@@ -7364,7 +7367,7 @@ NOTIFICATIONS_EVENTS_AUTH_PASSWORD:
defaultValue: ""
type: string
description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -7374,7 +7377,7 @@ NOTIFICATIONS_EVENTS_AUTH_USERNAME:
defaultValue: ""
type: string
description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -7395,7 +7398,7 @@ NOTIFICATIONS_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
@@ -7689,1464 +7692,1471 @@ NOTIFICATIONS_WEB_UI_URL:
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_ALLOW_PROPFIND_DEPTH_INFINITY:
- name: OCDAV_ALLOW_PROPFIND_DEPTH_INFINITY
- defaultValue: "false"
+OC_ADMIN_USER_ID:
+ name: OC_ADMIN_USER_ID;STORAGE_USERS_PURGE_TRASH_BIN_USER_ID
+ defaultValue: ""
+ type: string
+ description: ID of the user who collects all necessary information for deletion.
+ Consider that the UUID can be encoded in some LDAP deployment configurations like
+ in .ldif files. These need to be decoded beforehand.
+ introductionVersion: pre5.0
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OC_ASSET_THEMES_PATH:
+ name: OC_ASSET_THEMES_PATH;WEB_ASSET_THEMES_PATH
+ defaultValue: /var/lib/ocis/web/assets/themes
+ type: string
+ description: Serve ownCloud themes from a path on the filesystem instead of the
+ builtin assets. If not defined, the root directory derives from $OC_BASE_DATA_PATH/web/assets/themes
+ introductionVersion: 6.0.0
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OC_ASYNC_UPLOADS:
+ name: OC_ASYNC_UPLOADS
+ defaultValue: "true"
type: bool
- description: Allow the use of depth infinity in PROPFINDS. When enabled, a propfind
- will traverse through all subfolders. If many subfolders are expected, depth infinity
- can cause heavy server load and/or delayed response times.
+ description: Enable asynchronous file uploads.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_CORS_ALLOW_CREDENTIALS:
- name: OC_CORS_ALLOW_CREDENTIALS;OCDAV_CORS_ALLOW_CREDENTIALS
- defaultValue: "false"
+OC_CACHE_AUTH_PASSWORD:
+ name: OC_CACHE_AUTH_PASSWORD;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_AUTH_PASSWORD
+ defaultValue: ""
+ type: string
+ description: The password to authenticate with the store. Only applies when store
+ type 'nats-js-kv' is configured.
+ introductionVersion: "5.0"
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OC_CACHE_AUTH_USERNAME:
+ name: OC_CACHE_AUTH_USERNAME;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_AUTH_USERNAME
+ defaultValue: ""
+ type: string
+ description: The username to authenticate with the store. Only applies when store
+ type 'nats-js-kv' is configured.
+ introductionVersion: "5.0"
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OC_CACHE_DATABASE:
+ name: OC_CACHE_DATABASE
+ defaultValue: cache-userinfo
+ type: string
+ description: The database name the configured store should use.
+ introductionVersion: pre5.0
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OC_CACHE_DISABLE_PERSISTENCE:
+ name: OC_CACHE_DISABLE_PERSISTENCE;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_DISABLE_PERSISTENCE
+ defaultValue: "true"
+ type: bool
+ description: Disables persistence of the store. Only applies when store type 'nats-js-kv'
+ is configured. Defaults to true.
+ introductionVersion: "5.0"
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OC_CACHE_STORE:
+ name: OC_CACHE_STORE;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE
+ defaultValue: nats-js-kv
+ type: string
+ description: 'The type of the signing key store. Supported values are: ''redis-sentinel'',
+ ''nats-js-kv'' and ''ocisstoreservice'' (deprecated). See the text description
+ for details.'
+ introductionVersion: "5.0"
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OC_CACHE_STORE_NODES:
+ name: OC_CACHE_STORE_NODES;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES
+ defaultValue: '[127.0.0.1:9233]'
+ type: '[]string'
+ description: A list of nodes to access the configured store. Note that the behaviour
+ how nodes are used is dependent on the library of the configured store. See the
+ Environment Variable Types description for more details.
+ introductionVersion: "5.0"
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OC_CACHE_TTL:
+ name: OC_CACHE_TTL;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_TTL
+ defaultValue: 12h0m0s
+ type: Duration
+ description: Default time to live for signing keys. See the Environment Variable
+ Types description for more details.
+ introductionVersion: "5.0"
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OC_CORS_ALLOW_CREDENTIALS:
+ name: OC_CORS_ALLOW_CREDENTIALS;THUMBNAILS_CORS_ALLOW_CREDENTIALS
+ defaultValue: "true"
type: bool
description: 'Allow credentials for CORS.See following chapter for more details:
*Access-Control-Allow-Credentials* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Credentials.'
- introductionVersion: pre5.0
+ introductionVersion: "6.0"
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_CORS_ALLOW_HEADERS:
- name: OC_CORS_ALLOW_HEADERS;OCDAV_CORS_ALLOW_HEADERS
- defaultValue: '[Origin Accept Content-Type Depth Authorization Ocs-Apirequest If-None-Match
- If-Match Destination Overwrite X-Request-Id X-Requested-With Tus-Resumable Tus-Checksum-Algorithm
- Upload-Concat Upload-Length Upload-Metadata Upload-Defer-Length Upload-Expires
- Upload-Checksum Upload-Offset X-HTTP-Method-Override Cache-Control]'
+OC_CORS_ALLOW_HEADERS:
+ name: OC_CORS_ALLOW_HEADERS;THUMBNAILS_CORS_ALLOW_HEADERS
+ defaultValue: '[Authorization Origin Content-Type Accept X-Requested-With X-Request-Id
+ Cache-Control]'
type: '[]string'
description: 'A list of allowed CORS headers. See following chapter for more details:
*Access-Control-Request-Headers* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Request-Headers.
See the Environment Variable Types description for more details.'
- introductionVersion: pre5.0
+ introductionVersion: "6.0"
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_CORS_ALLOW_METHODS:
- name: OC_CORS_ALLOW_METHODS;OCDAV_CORS_ALLOW_METHODS
- defaultValue: '[OPTIONS HEAD GET PUT POST DELETE MKCOL PROPFIND PROPPATCH MOVE COPY
- REPORT SEARCH]'
+OC_CORS_ALLOW_METHODS:
+ name: OC_CORS_ALLOW_METHODS;THUMBNAILS_CORS_ALLOW_METHODS
+ defaultValue: '[GET POST PUT PATCH DELETE OPTIONS]'
type: '[]string'
description: 'A list of allowed CORS methods. See following chapter for more details:
*Access-Control-Request-Method* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Request-Method.
See the Environment Variable Types description for more details.'
- introductionVersion: pre5.0
+ introductionVersion: "6.0"
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_CORS_ALLOW_ORIGINS:
- name: OC_CORS_ALLOW_ORIGINS;OCDAV_CORS_ALLOW_ORIGINS
- defaultValue: '[https://localhost:9200]'
+OC_CORS_ALLOW_ORIGINS:
+ name: OC_CORS_ALLOW_ORIGINS;THUMBNAILS_CORS_ALLOW_ORIGINS
+ defaultValue: '[*]'
type: '[]string'
description: 'A list of allowed CORS origins. See following chapter for more details:
*Access-Control-Allow-Origin* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin.
See the Environment Variable Types description for more details.'
+ introductionVersion: "6.0"
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OC_CORS_EXPOSE_HEADERS:
+ name: OC_CORS_EXPOSE_HEADERS;STORAGE_USERS_CORS_EXPOSE_HEADERS
+ defaultValue: '[Upload-Offset Location Upload-Length Tus-Version Tus-Resumable Tus-Max-Size
+ Tus-Extension Upload-Metadata Upload-Defer-Length Upload-Concat Upload-Incomplete
+ Upload-Draft-Interop-Version]'
+ type: '[]string'
+ description: 'A list of exposed CORS headers. See following chapter for more details:
+ *Access-Control-Expose-Headers* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Expose-Headers.
+ See the Environment Variable Types description for more details.'
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_DEBUG_ADDR:
- name: OCDAV_DEBUG_ADDR
- defaultValue: 127.0.0.1:9163
- type: string
- description: Bind address of the debug server, where metrics, health, config and
- debug endpoints will be exposed.
+OC_CORS_MAX_AGE:
+ name: OC_CORS_MAX_AGE;STORAGE_USERS_CORS_MAX_AGE
+ defaultValue: "86400"
+ type: uint
+ description: 'The max cache duration of preflight headers. See following chapter
+ for more details: *Access-Control-Max-Age* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Max-Age.
+ See the Environment Variable Types description for more details.'
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_DEBUG_PPROF:
- name: OCDAV_DEBUG_PPROF
- defaultValue: "false"
- type: bool
- description: Enables pprof, which can be used for profiling.
+OC_DECOMPOSEDFS_PROPAGATOR:
+ name: OC_DECOMPOSEDFS_PROPAGATOR;STORAGE_USERS_S3NG_PROPAGATOR
+ defaultValue: sync
+ type: string
+ description: The propagator used for decomposedfs. At the moment, only 'sync' is
+ fully supported, 'async' is available as an experimental option.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_DEBUG_TOKEN:
- name: OCDAV_DEBUG_TOKEN
+OC_DEFAULT_LANGUAGE:
+ name: OC_DEFAULT_LANGUAGE
defaultValue: ""
type: string
- description: Token to secure the metrics endpoint.
- introductionVersion: pre5.0
+ description: The default language used by services and the WebUI. If not defined,
+ English will be used as default. See the documentation for more details.
+ introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_DEBUG_ZPAGES:
- name: OCDAV_DEBUG_ZPAGES
+OC_DISABLE_PREVIEWS:
+ name: OC_DISABLE_PREVIEWS;WEBDAV_DISABLE_PREVIEWS
defaultValue: "false"
type: bool
- description: Enables zpages, which can be used for collecting and viewing in-memory
- traces.
+ description: Set this option to 'true' to disable rendering of thumbnails triggered
+ via webdav access. Note that when disabled, all access to preview related webdav
+ paths will return a 404.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_EDITION:
- name: OC_EDITION;OCDAV_EDITION
- defaultValue: Community
- type: string
- description: Edition of oCIS. Used for branding purposes.
+OC_DISABLE_SSE:
+ name: OC_DISABLE_SSE;FRONTEND_DISABLE_SSE
+ defaultValue: "false"
+ type: bool
+ description: When set to true, clients are informed that the Server-Sent Events
+ endpoint is not accessible.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_FILES_NAMESPACE:
- name: OCDAV_FILES_NAMESPACE
- defaultValue: /users/{{.Id.OpaqueId}}
- type: string
- description: Jail requests to /dav/files/{username} into this CS3 namespace. Supports
- template layouting with CS3 User properties.
+OC_DISABLE_SSE,USERLOG_DISABLE_SSE:
+ name: OC_DISABLE_SSE,USERLOG_DISABLE_SSE
+ defaultValue: "false"
+ type: bool
+ description: Disables server-sent events (sse). When disabled, clients will no longer
+ receive sse notifications.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_GATEWAY_REQUEST_TIMEOUT:
- name: OCDAV_GATEWAY_REQUEST_TIMEOUT
- defaultValue: "84300"
- type: int64
- description: Request timeout in seconds for requests from the oCDAV service to the
- GATEWAY service.
- introductionVersion: pre5.0
+OC_DISABLE_VERSIONING:
+ name: OC_DISABLE_VERSIONING
+ defaultValue: "false"
+ type: bool
+ description: Disables versioning of files. When set to true, new uploads with the
+ same filename will overwrite existing files instead of creating a new version.
+ introductionVersion: 7.0.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_HTTP_ADDR:
- name: OCDAV_HTTP_ADDR
- defaultValue: 127.0.0.1:9350
+OC_EDITION:
+ name: OC_EDITION;OCDAV_EDITION
+ defaultValue: Community
type: string
- description: The bind address of the HTTP service.
+ description: Edition of oCIS. Used for branding purposes.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_HTTP_PREFIX:
- name: OCDAV_HTTP_PREFIX
+OC_EMAIL_TEMPLATE_PATH:
+ name: OC_EMAIL_TEMPLATE_PATH;NOTIFICATIONS_EMAIL_TEMPLATE_PATH
defaultValue: ""
type: string
- description: A URL path prefix for the handler.
- introductionVersion: pre5.0
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
-OCDAV_HTTP_PROTOCOL:
- name: OCDAV_HTTP_PROTOCOL
- defaultValue: tcp
- type: string
- description: The transport protocol of the HTTP service.
+ description: Path to Email notification templates overriding embedded ones.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_INSECURE:
- name: OC_INSECURE;OCDAV_INSECURE
+OC_ENABLE_OCM:
+ name: OC_ENABLE_OCM;GRAPH_INCLUDE_OCM_SHAREES
defaultValue: "false"
type: bool
- description: Allow insecure connections to the GATEWAY service.
- introductionVersion: pre5.0
+ description: Include OCM sharees when listing users.
+ introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_JWT_SECRET:
- name: OC_JWT_SECRET;OCDAV_JWT_SECRET
+OC_EVENTS_AUTH_PASSWORD:
+ name: OC_EVENTS_AUTH_PASSWORD;PROXY_EVENTS_AUTH_PASSWORD
defaultValue: ""
type: string
- description: The secret to mint and validate jwt tokens.
- introductionVersion: pre5.0
+ description: The password to authenticate with the events broker. The events broker
+ is the OpenCloud service which receives and delivers events between the services.
+ introductionVersion: 7.0.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_LOG_COLOR:
- name: OC_LOG_COLOR;OCDAV_LOG_COLOR
+OC_EVENTS_AUTH_USERNAME:
+ name: OC_EVENTS_AUTH_USERNAME;PROXY_EVENTS_AUTH_USERNAME
+ defaultValue: ""
+ type: string
+ description: The username to authenticate with the events broker. The events broker
+ is the OpenCloud service which receives and delivers events between the services.
+ introductionVersion: 7.0.0
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OC_EVENTS_CLUSTER:
+ name: OC_EVENTS_CLUSTER;PROXY_EVENTS_CLUSTER
+ defaultValue: ocis-cluster
+ type: string
+ description: The clusterID of the event system. The event system is the message
+ queuing service. It is used as message broker for the microservice architecture.
+ introductionVersion: 7.0.0
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OC_EVENTS_ENABLE_TLS:
+ name: OC_EVENTS_ENABLE_TLS;PROXY_EVENTS_ENABLE_TLS
defaultValue: "false"
type: bool
- description: Activates colorized log output.
- introductionVersion: pre5.0
+ description: Enable TLS for the connection to the events broker. The events broker
+ is the OpenCloud service which receives and delivers events between the services.
+ introductionVersion: 7.0.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_LOG_FILE:
- name: OC_LOG_FILE;OCDAV_LOG_FILE
- defaultValue: ""
+OC_EVENTS_ENDPOINT:
+ name: OC_EVENTS_ENDPOINT;PROXY_EVENTS_ENDPOINT
+ defaultValue: 127.0.0.1:9233
type: string
- description: The path to the log file. Activates logging to this file if set.
- introductionVersion: pre5.0
+ description: The address of the event system. The event system is the message queuing
+ service. It is used as message broker for the microservice architecture. Set to
+ a empty string to disable emitting events.
+ introductionVersion: 7.0.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_LOG_LEVEL:
- name: OC_LOG_LEVEL;OCDAV_LOG_LEVEL
+OC_EVENTS_TLS_ROOT_CA_CERTIFICATE:
+ name: OC_EVENTS_TLS_ROOT_CA_CERTIFICATE;PROXY_EVENTS_TLS_ROOT_CA_CERTIFICATE
defaultValue: ""
type: string
- description: 'The log level. Valid values are: ''panic'', ''fatal'', ''error'',
- ''warn'', ''info'', ''debug'', ''trace''.'
- introductionVersion: pre5.0
+ description: The root CA certificate used to validate the server's TLS certificate.
+ If provided PROXY_EVENTS_TLS_INSECURE will be seen as false.
+ introductionVersion: 7.0.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_LOG_PRETTY:
- name: OC_LOG_PRETTY;OCDAV_LOG_PRETTY
- defaultValue: "false"
- type: bool
- description: Activates pretty log output.
- introductionVersion: pre5.0
+OC_GATEWAY_GRPC_ADDR:
+ name: OC_GATEWAY_GRPC_ADDR;STORAGE_USERS_GATEWAY_GRPC_ADDR
+ defaultValue: 127.0.0.1:9142
+ type: string
+ description: The bind address of the gateway GRPC address.
+ introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_MACHINE_AUTH_API_KEY:
- name: OC_MACHINE_AUTH_API_KEY;OCDAV_MACHINE_AUTH_API_KEY
+OC_GRPC_CLIENT_TLS_CACERT:
+ name: OC_GRPC_CLIENT_TLS_CACERT
defaultValue: ""
type: string
- description: Machine auth API key used to validate internal requests necessary for
- the access to resources from other services.
+ description: Path/File name for the root CA certificate (in PEM format) used to
+ validate TLS server certificates of the go-micro based grpc services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_OCM_NAMESPACE:
- name: OCDAV_OCM_NAMESPACE
- defaultValue: /public
+OC_GRPC_CLIENT_TLS_MODE:
+ name: OC_GRPC_CLIENT_TLS_MODE
+ defaultValue: ""
type: string
- description: The human readable path prefix for the ocm shares.
- introductionVersion: "5.0"
+ description: 'TLS mode for grpc connection to the go-micro based grpc services.
+ Possible values are ''off'', ''insecure'' and ''on''. ''off'': disables transport
+ security for the clients. ''insecure'' allows using transport security, but disables
+ certificate verification (to be used with the autogenerated self-signed certificates).
+ ''on'' enables transport security, including server certificate verification.'
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_PUBLIC_URL:
- name: OC_URL;OCDAV_PUBLIC_URL
- defaultValue: https://localhost:9200
+OC_GRPC_PROTOCOL:
+ name: OC_GRPC_PROTOCOL;STORAGE_PUBLICLINK_GRPC_PROTOCOL
+ defaultValue: ""
type: string
- description: URL where oCIS is reachable for users.
+ description: The transport protocol of the GRPC service.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_SHARES_NAMESPACE:
- name: OCDAV_SHARES_NAMESPACE
- defaultValue: /Shares
+OC_HTTP_TLS_CERTIFICATE:
+ name: OC_HTTP_TLS_CERTIFICATE
+ defaultValue: ""
type: string
- description: The human readable path for the share jail. Relative to a users personal
- space root. Upcased intentionally.
+ description: Path/File name of the TLS server certificate (in PEM format) for the
+ http services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_SKIP_USER_GROUPS_IN_TOKEN:
- name: OCDAV_SKIP_USER_GROUPS_IN_TOKEN
+OC_HTTP_TLS_ENABLED:
+ name: OC_HTTP_TLS_ENABLED
defaultValue: "false"
type: bool
- description: Disables the loading of user's group memberships from the reva access
- token.
+ description: Activates TLS for the http based services using the server certifcate
+ and key configured via OC_HTTP_TLS_CERTIFICATE and OC_HTTP_TLS_KEY. If OC_HTTP_TLS_CERTIFICATE
+ is not set a temporary server certificate is generated - to be used with PROXY_INSECURE_BACKEND=true.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_TRACING_COLLECTOR:
- name: OC_TRACING_COLLECTOR;OCDAV_TRACING_COLLECTOR
+OC_HTTP_TLS_KEY:
+ name: OC_HTTP_TLS_KEY
defaultValue: ""
type: string
- description: The HTTP endpoint for sending spans directly to a collector, i.e. http://jaeger-collector:14268/api/traces.
- Only used if the tracing endpoint is unset.
+ description: Path/File name for the TLS certificate key (in PEM format) for the
+ server certificate to use for the http services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_TRACING_ENABLED:
- name: OC_TRACING_ENABLED;OCDAV_TRACING_ENABLED
+OC_INSECURE:
+ name: OC_INSECURE;PROXY_EVENTS_TLS_INSECURE
defaultValue: "false"
type: bool
- description: Activates tracing.
- introductionVersion: pre5.0
+ description: Whether to verify the server TLS certificates.
+ introductionVersion: 7.0.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_TRACING_ENDPOINT:
- name: OC_TRACING_ENDPOINT;OCDAV_TRACING_ENDPOINT
+OC_JWT_SECRET:
+ name: OC_JWT_SECRET;STORAGE_PUBLICLINK_JWT_SECRET
defaultValue: ""
type: string
- description: The endpoint of the tracing agent.
+ description: The secret to mint and validate jwt tokens.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_TRACING_TYPE:
- name: OC_TRACING_TYPE;OCDAV_TRACING_TYPE
+OC_KEYCLOAK_BASE_PATH:
+ name: OC_KEYCLOAK_BASE_PATH;GRAPH_KEYCLOAK_BASE_PATH
defaultValue: ""
type: string
- description: The type of tracing. Defaults to '', which is the same as 'jaeger'.
- Allowed tracing types are 'jaeger' and '' as of now.
+ description: The URL to access keycloak.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OCDAV_WEBDAV_NAMESPACE:
- name: OCDAV_WEBDAV_NAMESPACE
- defaultValue: /users/{{.Id.OpaqueId}}
+OC_KEYCLOAK_CLIENT_ID:
+ name: OC_KEYCLOAK_CLIENT_ID;GRAPH_KEYCLOAK_CLIENT_ID
+ defaultValue: ""
type: string
- description: Jail requests to /dav/webdav into this CS3 namespace. Supports template
- layouting with CS3 User properties.
+ description: The client id to authenticate with keycloak.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_ADMIN_USER_ID:
- name: OC_ADMIN_USER_ID;IDM_ADMIN_USER_ID
+OC_KEYCLOAK_CLIENT_REALM:
+ name: OC_KEYCLOAK_CLIENT_REALM;GRAPH_KEYCLOAK_CLIENT_REALM
defaultValue: ""
type: string
- description: ID of the user that should receive admin privileges. Consider that
- the UUID can be encoded in some LDAP deployment configurations like in .ldif files.
- These need to be decoded beforehand.
+ description: The realm the client is defined in.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_ASSET_THEMES_PATH:
- name: OC_ASSET_THEMES_PATH;WEB_ASSET_THEMES_PATH
- defaultValue: /var/lib/ocis/web/assets/themes
+OC_KEYCLOAK_CLIENT_SECRET:
+ name: OC_KEYCLOAK_CLIENT_SECRET;GRAPH_KEYCLOAK_CLIENT_SECRET
+ defaultValue: ""
type: string
- description: Serve ownCloud themes from a path on the filesystem instead of the
- builtin assets. If not defined, the root directory derives from $OC_BASE_DATA_PATH/web/assets/themes
- introductionVersion: 6.0.0
+ description: The client secret to use in authentication.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_ASYNC_UPLOADS:
- name: OC_ASYNC_UPLOADS;SEARCH_EVENTS_ASYNC_UPLOADS
- defaultValue: "true"
+OC_KEYCLOAK_INSECURE_SKIP_VERIFY:
+ name: OC_KEYCLOAK_INSECURE_SKIP_VERIFY;GRAPH_KEYCLOAK_INSECURE_SKIP_VERIFY
+ defaultValue: "false"
type: bool
- description: Enable asynchronous file uploads.
+ description: Disable TLS certificate validation for Keycloak connections. Do not
+ set this in production environments.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_CACHE_AUTH_PASSWORD:
- name: OC_CACHE_AUTH_PASSWORD;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_AUTH_PASSWORD
+OC_KEYCLOAK_USER_REALM:
+ name: OC_KEYCLOAK_USER_REALM;GRAPH_KEYCLOAK_USER_REALM
defaultValue: ""
type: string
- description: The password to authenticate with the store. Only applies when store
- type 'nats-js-kv' is configured.
- introductionVersion: "5.0"
+ description: The realm users are defined.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_CACHE_AUTH_USERNAME:
- name: OC_CACHE_AUTH_USERNAME;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_AUTH_USERNAME
- defaultValue: ""
+OC_LDAP_BIND_DN:
+ name: OC_LDAP_BIND_DN;USERS_LDAP_BIND_DN
+ defaultValue: uid=reva,ou=sysusers,o=libregraph-idm
type: string
- description: The username to authenticate with the store. Only applies when store
- type 'nats-js-kv' is configured.
- introductionVersion: "5.0"
+ description: LDAP DN to use for simple bind authentication with the target LDAP
+ server.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_CACHE_DATABASE:
- name: OC_CACHE_DATABASE
- defaultValue: cache-userinfo
+OC_LDAP_BIND_PASSWORD:
+ name: OC_LDAP_BIND_PASSWORD;USERS_LDAP_BIND_PASSWORD
+ defaultValue: ""
type: string
- description: The database name the configured store should use.
+ description: Password to use for authenticating the 'bind_dn'.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_CACHE_DISABLE_PERSISTENCE:
- name: OC_CACHE_DISABLE_PERSISTENCE;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_DISABLE_PERSISTENCE
- defaultValue: "true"
- type: bool
- description: Disables persistence of the store. Only applies when store type 'nats-js-kv'
- is configured. Defaults to true.
- introductionVersion: "5.0"
+OC_LDAP_CACERT:
+ name: OC_LDAP_CACERT;USERS_LDAP_CACERT
+ defaultValue: /var/lib/ocis/idm/ldap.crt
+ type: string
+ description: Path/File name for the root CA certificate (in PEM format) used to
+ validate TLS server certificates of the LDAP service. If not defined, the root
+ directory derives from $OC_BASE_DATA_PATH/idm.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_CACHE_STORE:
- name: OC_CACHE_STORE;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE
- defaultValue: nats-js-kv
+OC_LDAP_DISABLE_USER_MECHANISM:
+ name: OC_LDAP_DISABLE_USER_MECHANISM;USERS_LDAP_DISABLE_USER_MECHANISM
+ defaultValue: attribute
type: string
- description: 'The type of the signing key store. Supported values are: ''redis-sentinel'',
- ''nats-js-kv'' and ''ocisstoreservice'' (deprecated). See the text description
- for details.'
- introductionVersion: "5.0"
+ description: An option to control the behavior for disabling users. Valid options
+ are 'none', 'attribute' and 'group'. If set to 'group', disabling a user via API
+ will add the user to the configured group for disabled users, if set to 'attribute'
+ this will be done in the ldap user entry, if set to 'none' the disable request
+ is not processed.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_CACHE_STORE_NODES:
- name: OC_CACHE_STORE_NODES;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES
- defaultValue: '[127.0.0.1:9233]'
- type: '[]string'
- description: A list of nodes to access the configured store. Note that the behaviour
- how nodes are used is dependent on the library of the configured store. See the
- Environment Variable Types description for more details.
- introductionVersion: "5.0"
+OC_LDAP_DISABLED_USERS_GROUP_DN:
+ name: OC_LDAP_DISABLED_USERS_GROUP_DN;USERS_LDAP_DISABLED_USERS_GROUP_DN
+ defaultValue: cn=DisabledUsersGroup,ou=groups,o=libregraph-idm
+ type: string
+ description: The distinguished name of the group to which added users will be classified
+ as disabled when 'disable_user_mechanism' is set to 'group'.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_CACHE_TTL:
- name: OC_CACHE_TTL;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_TTL
- defaultValue: 12h0m0s
- type: Duration
- description: Default time to live for signing keys. See the Environment Variable
- Types description for more details.
- introductionVersion: "5.0"
+OC_LDAP_GROUP_BASE_DN:
+ name: OC_LDAP_GROUP_BASE_DN;USERS_LDAP_GROUP_BASE_DN
+ defaultValue: ou=groups,o=libregraph-idm
+ type: string
+ description: Search base DN for looking up LDAP groups.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_CORS_ALLOW_CREDENTIALS:
- name: OC_CORS_ALLOW_CREDENTIALS;WEBFINGER_CORS_ALLOW_CREDENTIALS
- defaultValue: "false"
- type: bool
- description: 'Allow credentials for CORS.See following chapter for more details:
- *Access-Control-Allow-Credentials* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Credentials.'
+OC_LDAP_GROUP_FILTER:
+ name: OC_LDAP_GROUP_FILTER;USERS_LDAP_GROUP_FILTER
+ defaultValue: ""
+ type: string
+ description: LDAP filter to add to the default filters for group searches.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_CORS_ALLOW_HEADERS:
- name: OC_CORS_ALLOW_HEADERS;WEBFINGER_CORS_ALLOW_HEADERS
- defaultValue: '[]'
- type: '[]string'
- description: 'A list of allowed CORS headers. See following chapter for more details:
- *Access-Control-Request-Headers* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Request-Headers.
- See the Environment Variable Types description for more details.'
+OC_LDAP_GROUP_OBJECTCLASS:
+ name: OC_LDAP_GROUP_OBJECTCLASS;USERS_LDAP_GROUP_OBJECTCLASS
+ defaultValue: groupOfNames
+ type: string
+ description: The object class to use for groups in the default group search filter
+ like 'groupOfNames'.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_CORS_ALLOW_METHODS:
- name: OC_CORS_ALLOW_METHODS;WEBFINGER_CORS_ALLOW_METHODS
- defaultValue: '[]'
- type: '[]string'
- description: 'A list of allowed CORS methods. See following chapter for more details:
- *Access-Control-Request-Method* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Request-Method.
- See the Environment Variable Types description for more details.'
+OC_LDAP_GROUP_SCHEMA_DISPLAYNAME:
+ name: OC_LDAP_GROUP_SCHEMA_DISPLAYNAME;USERS_LDAP_GROUP_SCHEMA_DISPLAYNAME
+ defaultValue: cn
+ type: string
+ description: LDAP Attribute to use for the displayname of groups (often the same
+ as groupname attribute).
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_CORS_ALLOW_ORIGINS:
- name: OC_CORS_ALLOW_ORIGINS;WEBFINGER_CORS_ALLOW_ORIGINS
- defaultValue: '[https://localhost:9200]'
- type: '[]string'
- description: 'A list of allowed CORS origins. See following chapter for more details:
- *Access-Control-Allow-Origin* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin.
- See the Environment Variable Types description for more details.'
+OC_LDAP_GROUP_SCHEMA_GROUPNAME:
+ name: OC_LDAP_GROUP_SCHEMA_GROUPNAME;USERS_LDAP_GROUP_SCHEMA_GROUPNAME
+ defaultValue: cn
+ type: string
+ description: LDAP Attribute to use for the name of groups.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_CORS_EXPOSE_HEADERS:
- name: OC_CORS_EXPOSE_HEADERS;STORAGE_USERS_CORS_EXPOSE_HEADERS
- defaultValue: '[Upload-Offset Location Upload-Length Tus-Version Tus-Resumable Tus-Max-Size
- Tus-Extension Upload-Metadata Upload-Defer-Length Upload-Concat Upload-Incomplete
- Upload-Draft-Interop-Version]'
- type: '[]string'
- description: 'A list of exposed CORS headers. See following chapter for more details:
- *Access-Control-Expose-Headers* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Expose-Headers.
- See the Environment Variable Types description for more details.'
+OC_LDAP_GROUP_SCHEMA_ID:
+ name: OC_LDAP_GROUP_SCHEMA_ID;USERS_LDAP_GROUP_SCHEMA_ID
+ defaultValue: ownclouduuid
+ type: string
+ description: LDAP Attribute to use as the unique ID for groups. This should be a
+ stable globally unique ID like a UUID.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_CORS_MAX_AGE:
- name: OC_CORS_MAX_AGE;STORAGE_USERS_CORS_MAX_AGE
- defaultValue: "86400"
- type: uint
- description: 'The max cache duration of preflight headers. See following chapter
- for more details: *Access-Control-Max-Age* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Max-Age.
- See the Environment Variable Types description for more details.'
+OC_LDAP_GROUP_SCHEMA_ID_IS_OCTETSTRING:
+ name: OC_LDAP_GROUP_SCHEMA_ID_IS_OCTETSTRING;USERS_LDAP_GROUP_SCHEMA_ID_IS_OCTETSTRING
+ defaultValue: "false"
+ type: bool
+ description: Set this to true if the defined 'id' attribute for groups is of the
+ 'OCTETSTRING' syntax. This is e.g. required when using the 'objectGUID' attribute
+ of Active Directory for the group ID's.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_DECOMPOSEDFS_PROPAGATOR:
- name: OC_DECOMPOSEDFS_PROPAGATOR;STORAGE_USERS_S3NG_PROPAGATOR
- defaultValue: sync
+OC_LDAP_GROUP_SCHEMA_MAIL:
+ name: OC_LDAP_GROUP_SCHEMA_MAIL;USERS_LDAP_GROUP_SCHEMA_MAIL
+ defaultValue: mail
type: string
- description: The propagator used for decomposedfs. At the moment, only 'sync' is
- fully supported, 'async' is available as an experimental option.
+ description: LDAP Attribute to use for the email address of groups (can be empty).
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_DEFAULT_LANGUAGE:
- name: OC_DEFAULT_LANGUAGE
- defaultValue: ""
+OC_LDAP_GROUP_SCHEMA_MEMBER:
+ name: OC_LDAP_GROUP_SCHEMA_MEMBER;USERS_LDAP_GROUP_SCHEMA_MEMBER
+ defaultValue: member
type: string
- description: The default language used by services and the WebUI. If not defined,
- English will be used as default. See the documentation for more details.
- introductionVersion: "5.0"
+ description: LDAP Attribute that is used for group members.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_DISABLE_PREVIEWS:
- name: OC_DISABLE_PREVIEWS;WEBDAV_DISABLE_PREVIEWS
- defaultValue: "false"
- type: bool
- description: Set this option to 'true' to disable rendering of thumbnails triggered
- via webdav access. Note that when disabled, all access to preview related webdav
- paths will return a 404.
+OC_LDAP_GROUP_SCOPE:
+ name: OC_LDAP_GROUP_SCOPE;USERS_LDAP_GROUP_SCOPE
+ defaultValue: sub
+ type: string
+ description: LDAP search scope to use when looking up groups. Supported values are
+ 'base', 'one' and 'sub'.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_DISABLE_SSE:
- name: OC_DISABLE_SSE;FRONTEND_DISABLE_SSE
+OC_LDAP_INSECURE:
+ name: OC_LDAP_INSECURE;USERS_LDAP_INSECURE
defaultValue: "false"
type: bool
- description: When set to true, clients are informed that the Server-Sent Events
- endpoint is not accessible.
+ description: Disable TLS certificate validation for the LDAP connections. Do not
+ set this in production environments.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_DISABLE_SSE,USERLOG_DISABLE_SSE:
- name: OC_DISABLE_SSE,USERLOG_DISABLE_SSE
- defaultValue: "false"
+OC_LDAP_SERVER_WRITE_ENABLED:
+ name: OC_LDAP_SERVER_WRITE_ENABLED;GRAPH_LDAP_SERVER_WRITE_ENABLED
+ defaultValue: "true"
type: bool
- description: Disables server-sent events (sse). When disabled, clients will no longer
- receive sse notifications.
+ description: Allow creating, modifying and deleting LDAP users via the GRAPH API.
+ This can only be set to 'true' when keeping default settings for the LDAP user
+ and group attribute types (the 'OC_LDAP_USER_SCHEMA_* and 'OC_LDAP_GROUP_SCHEMA_*
+ variables).
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_DISABLE_VERSIONING:
- name: OC_DISABLE_VERSIONING
- defaultValue: "false"
- type: bool
- description: Disables versioning of files. When set to true, new uploads with the
- same filename will overwrite existing files instead of creating a new version.
- introductionVersion: 7.0.0
+OC_LDAP_URI:
+ name: OC_LDAP_URI;USERS_LDAP_URI
+ defaultValue: ldaps://localhost:9235
+ type: string
+ description: URI of the LDAP Server to connect to. Supported URI schemes are 'ldaps://'
+ and 'ldap://'
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_EDITION:
- name: OC_EDITION;FRONTEND_EDITION
- defaultValue: Community
+OC_LDAP_USER_BASE_DN:
+ name: OC_LDAP_USER_BASE_DN;USERS_LDAP_USER_BASE_DN
+ defaultValue: ou=users,o=libregraph-idm
type: string
- description: Edition of oCIS. Used for branding purposes.
+ description: Search base DN for looking up LDAP users.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_EMAIL_TEMPLATE_PATH:
- name: OC_EMAIL_TEMPLATE_PATH;NOTIFICATIONS_EMAIL_TEMPLATE_PATH
- defaultValue: ""
+OC_LDAP_USER_ENABLED_ATTRIBUTE:
+ name: OC_LDAP_USER_ENABLED_ATTRIBUTE;USERS_LDAP_USER_ENABLED_ATTRIBUTE
+ defaultValue: ownCloudUserEnabled
type: string
- description: Path to Email notification templates overriding embedded ones.
+ description: LDAP attribute to use as a flag telling if the user is enabled or disabled.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_ENABLE_OCM:
- name: OC_ENABLE_OCM;FRONTEND_OCS_INCLUDE_OCM_SHAREES
- defaultValue: "false"
- type: bool
- description: Include OCM sharees when listing sharees.
- introductionVersion: "5.0"
+OC_LDAP_USER_FILTER:
+ name: OC_LDAP_USER_FILTER;USERS_LDAP_USER_FILTER
+ defaultValue: ""
+ type: string
+ description: LDAP filter to add to the default filters for user search like '(objectclass=ownCloud)'.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_EVENTS_AUTH_PASSWORD:
- name: OC_EVENTS_AUTH_PASSWORD;AUDIT_EVENTS_AUTH_PASSWORD
- defaultValue: ""
+OC_LDAP_USER_OBJECTCLASS:
+ name: OC_LDAP_USER_OBJECTCLASS;USERS_LDAP_USER_OBJECTCLASS
+ defaultValue: inetOrgPerson
type: string
- description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
- introductionVersion: "5.0"
+ description: The object class to use for users in the default user search filter
+ like 'inetOrgPerson'.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_EVENTS_AUTH_USERNAME:
- name: OC_EVENTS_AUTH_USERNAME;AUDIT_EVENTS_AUTH_USERNAME
- defaultValue: ""
+OC_LDAP_USER_SCHEMA_DISPLAYNAME:
+ name: OC_LDAP_USER_SCHEMA_DISPLAYNAME;USERS_LDAP_USER_SCHEMA_DISPLAYNAME
+ defaultValue: displayname
type: string
- description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
- introductionVersion: "5.0"
+ description: LDAP Attribute to use for the displayname of users.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
- deprecationInfo: ""
-OC_EVENTS_CLUSTER:
- name: OC_EVENTS_CLUSTER;AUDIT_EVENTS_CLUSTER
- defaultValue: ocis-cluster
+ deprecationInfo: 'LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | | | | | | |
+ LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | | | | LDAP_USER_SCHEMA_DISPLAY_NAME
+ changing name for consistency | | | LDAP_USER_SCHEMA_DISPLAY_NAME changing name
+ for consistency | '
+OC_LDAP_USER_SCHEMA_ID:
+ name: OC_LDAP_USER_SCHEMA_ID;USERS_LDAP_USER_SCHEMA_ID
+ defaultValue: ownclouduuid
type: string
- description: The clusterID of the event system. The event system is the message
- queuing service. It is used as message broker for the microservice architecture.
- Mandatory when using NATS as event system.
+ description: LDAP Attribute to use as the unique ID for users. This should be a
+ stable globally unique ID like a UUID.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_EVENTS_ENABLE_TLS:
- name: OC_EVENTS_ENABLE_TLS;AUDIT_EVENTS_ENABLE_TLS
+OC_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING:
+ name: OC_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING;USERS_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING
defaultValue: "false"
type: bool
- description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ description: Set this to true if the defined 'ID' attribute for users is of the
+ 'OCTETSTRING' syntax. This is e.g. required when using the 'objectGUID' attribute
+ of Active Directory for the user ID's.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_EVENTS_ENDPOINT:
- name: OC_EVENTS_ENDPOINT;AUDIT_EVENTS_ENDPOINT
- defaultValue: 127.0.0.1:9233
+OC_LDAP_USER_SCHEMA_MAIL:
+ name: OC_LDAP_USER_SCHEMA_MAIL;USERS_LDAP_USER_SCHEMA_MAIL
+ defaultValue: mail
type: string
- description: The address of the event system. The event system is the message queuing
- service. It is used as message broker for the microservice architecture.
+ description: LDAP Attribute to use for the email address of users.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_EVENTS_TLS_ROOT_CA_CERTIFICATE:
- name: OC_EVENTS_TLS_ROOT_CA_CERTIFICATE;AUDIT_EVENTS_TLS_ROOT_CA_CERTIFICATE
- defaultValue: ""
+OC_LDAP_USER_SCHEMA_USER_TYPE:
+ name: OC_LDAP_USER_SCHEMA_USER_TYPE;USERS_LDAP_USER_TYPE_ATTRIBUTE
+ defaultValue: ownCloudUserType
type: string
- description: The root CA certificate used to validate the server's TLS certificate.
- If provided AUDIT_EVENTS_TLS_INSECURE will be seen as false.
- introductionVersion: pre5.0
+ description: LDAP Attribute to distinguish between 'Member' and 'Guest' users. Default
+ is 'ownCloudUserType'.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_GATEWAY_GRPC_ADDR:
- name: OC_GATEWAY_GRPC_ADDR;GATEWAY_GRPC_ADDR
- defaultValue: 127.0.0.1:9142
+OC_LDAP_USER_SCHEMA_USERNAME:
+ name: OC_LDAP_USER_SCHEMA_USERNAME;USERS_LDAP_USER_SCHEMA_USERNAME
+ defaultValue: uid
type: string
- description: The bind address of the GRPC service.
+ description: LDAP Attribute to use for username of users.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_GRPC_CLIENT_TLS_CACERT:
- name: OC_GRPC_CLIENT_TLS_CACERT
- defaultValue: ""
+OC_LDAP_USER_SCOPE:
+ name: OC_LDAP_USER_SCOPE;USERS_LDAP_USER_SCOPE
+ defaultValue: sub
type: string
- description: Path/File name for the root CA certificate (in PEM format) used to
- validate TLS server certificates of the go-micro based grpc services.
+ description: LDAP search scope to use when looking up users. Supported values are
+ 'base', 'one' and 'sub'.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_GRPC_CLIENT_TLS_MODE:
- name: OC_GRPC_CLIENT_TLS_MODE
- defaultValue: ""
- type: string
- description: 'TLS mode for grpc connection to the go-micro based grpc services.
- Possible values are ''off'', ''insecure'' and ''on''. ''off'': disables transport
- security for the clients. ''insecure'' allows using transport security, but disables
- certificate verification (to be used with the autogenerated self-signed certificates).
- ''on'' enables transport security, including server certificate verification.'
+OC_LOG_COLOR:
+ name: OC_LOG_COLOR;PROXY_LOG_COLOR
+ defaultValue: "false"
+ type: bool
+ description: Activates colorized log output.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_GRPC_PROTOCOL:
- name: OC_GRPC_PROTOCOL;COLLABORATION_GRPC_PROTOCOL
+OC_LOG_FILE:
+ name: OC_LOG_FILE;PROXY_LOG_FILE
defaultValue: ""
type: string
- description: The transport protocol of the GRPC service.
- introductionVersion: 7.0.0
+ description: The path to the log file. Activates logging to this file if set.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_HTTP_TLS_CERTIFICATE:
- name: OC_HTTP_TLS_CERTIFICATE
+OC_LOG_LEVEL:
+ name: OC_LOG_LEVEL;PROXY_LOG_LEVEL
defaultValue: ""
type: string
- description: Path/File name of the TLS server certificate (in PEM format) for the
- http services.
+ description: 'The log level. Valid values are: ''panic'', ''fatal'', ''error'',
+ ''warn'', ''info'', ''debug'', ''trace''.'
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_HTTP_TLS_ENABLED:
- name: OC_HTTP_TLS_ENABLED
+OC_LOG_PRETTY:
+ name: OC_LOG_PRETTY;PROXY_LOG_PRETTY
defaultValue: "false"
type: bool
- description: Activates TLS for the http based services using the server certifcate
- and key configured via OC_HTTP_TLS_CERTIFICATE and OC_HTTP_TLS_KEY. If OC_HTTP_TLS_CERTIFICATE
- is not set a temporary server certificate is generated - to be used with PROXY_INSECURE_BACKEND=true.
+ description: Activates pretty log output.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_HTTP_TLS_KEY:
- name: OC_HTTP_TLS_KEY
+OC_MACHINE_AUTH_API_KEY:
+ name: OC_MACHINE_AUTH_API_KEY;PROXY_MACHINE_AUTH_API_KEY
defaultValue: ""
type: string
- description: Path/File name for the TLS certificate key (in PEM format) for the
- server certificate to use for the http services.
+ description: Machine auth API key used to validate internal requests necessary to
+ access resources from other services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_INSECURE:
- name: OC_INSECURE;AUDIT_EVENTS_TLS_INSECURE
- defaultValue: "false"
- type: bool
- description: Whether to verify the server TLS certificates.
+OC_MAX_CONCURRENCY:
+ name: OC_MAX_CONCURRENCY;STORAGE_USERS_S3NG_MAX_CONCURRENCY
+ defaultValue: "5"
+ type: int
+ description: Maximum number of concurrent go-routines. Higher values can potentially
+ get work done faster but will also cause more load on the system. Values of 0
+ or below will be ignored and the default value of 100 will be used.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_JWT_SECRET:
- name: OC_JWT_SECRET;COLLABORATION_JWT_SECRET
- defaultValue: ""
+OC_OIDC_CLIENT_ID:
+ name: OC_OIDC_CLIENT_ID;WEB_OIDC_CLIENT_ID
+ defaultValue: web
type: string
- description: The secret to mint and validate jwt tokens.
+ description: The OIDC client ID which ownCloud Web uses. This client needs to be
+ set up in your IDP. Note that this setting has no effect when using the builtin
+ IDP.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_KEYCLOAK_BASE_PATH:
- name: OC_KEYCLOAK_BASE_PATH;INVITATIONS_KEYCLOAK_BASE_PATH
- defaultValue: ""
+OC_OIDC_ISSUER:
+ name: OC_URL;OC_OIDC_ISSUER;PROXY_OIDC_ISSUER
+ defaultValue: https://localhost:9200
type: string
- description: The URL to access keycloak.
+ description: URL of the OIDC issuer. It defaults to URL of the builtin IDP.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_KEYCLOAK_CLIENT_ID:
- name: OC_KEYCLOAK_CLIENT_ID;INVITATIONS_KEYCLOAK_CLIENT_ID
+OC_PASSWORD_POLICY_BANNED_PASSWORDS_LIST:
+ name: OC_PASSWORD_POLICY_BANNED_PASSWORDS_LIST;FRONTEND_PASSWORD_POLICY_BANNED_PASSWORDS_LIST
defaultValue: ""
type: string
- description: The client ID to authenticate with keycloak.
- introductionVersion: pre5.0
+ description: Path to the 'banned passwords list' file. This only impacts public
+ link password validation. See the documentation for more details.
+ introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_KEYCLOAK_CLIENT_REALM:
- name: OC_KEYCLOAK_CLIENT_REALM;INVITATIONS_KEYCLOAK_CLIENT_REALM
- defaultValue: ""
- type: string
- description: The realm the client is defined in.
- introductionVersion: pre5.0
+OC_PASSWORD_POLICY_DISABLED:
+ name: OC_PASSWORD_POLICY_DISABLED;FRONTEND_PASSWORD_POLICY_DISABLED
+ defaultValue: "false"
+ type: bool
+ description: Disable the password policy. Defaults to false if not set.
+ introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_KEYCLOAK_CLIENT_SECRET:
- name: OC_KEYCLOAK_CLIENT_SECRET;INVITATIONS_KEYCLOAK_CLIENT_SECRET
- defaultValue: ""
- type: string
- description: The client secret to use in authentication.
- introductionVersion: pre5.0
+OC_PASSWORD_POLICY_MIN_CHARACTERS:
+ name: OC_PASSWORD_POLICY_MIN_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_CHARACTERS
+ defaultValue: "8"
+ type: int
+ description: Define the minimum password length. Defaults to 8 if not set.
+ introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_KEYCLOAK_INSECURE_SKIP_VERIFY:
- name: OC_KEYCLOAK_INSECURE_SKIP_VERIFY;INVITATIONS_KEYCLOAK_INSECURE_SKIP_VERIFY
- defaultValue: "false"
- type: bool
- description: Disable TLS certificate validation for Keycloak connections. Do not
- set this in production environments.
- introductionVersion: pre5.0
+OC_PASSWORD_POLICY_MIN_DIGITS:
+ name: OC_PASSWORD_POLICY_MIN_DIGITS;FRONTEND_PASSWORD_POLICY_MIN_DIGITS
+ defaultValue: "1"
+ type: int
+ description: Define the minimum number of digits. Defaults to 1 if not set.
+ introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_KEYCLOAK_USER_REALM:
- name: OC_KEYCLOAK_USER_REALM;INVITATIONS_KEYCLOAK_USER_REALM
- defaultValue: ""
- type: string
- description: The realm users are defined.
- introductionVersion: pre5.0
+OC_PASSWORD_POLICY_MIN_LOWERCASE_CHARACTERS:
+ name: OC_PASSWORD_POLICY_MIN_LOWERCASE_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_LOWERCASE_CHARACTERS
+ defaultValue: "1"
+ type: int
+ description: Define the minimum number of uppercase letters. Defaults to 1 if not
+ set.
+ introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_BIND_DN:
- name: OC_LDAP_BIND_DN;IDP_LDAP_BIND_DN
- defaultValue: uid=idp,ou=sysusers,o=libregraph-idm
+OC_PASSWORD_POLICY_MIN_SPECIAL_CHARACTERS:
+ name: OC_PASSWORD_POLICY_MIN_SPECIAL_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_SPECIAL_CHARACTERS
+ defaultValue: "1"
+ type: int
+ description: Define the minimum number of characters from the special characters
+ list to be present. Defaults to 1 if not set.
+ introductionVersion: "5.0"
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OC_PASSWORD_POLICY_MIN_UPPERCASE_CHARACTERS:
+ name: OC_PASSWORD_POLICY_MIN_UPPERCASE_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_UPPERCASE_CHARACTERS
+ defaultValue: "1"
+ type: int
+ description: Define the minimum number of lowercase letters. Defaults to 1 if not
+ set.
+ introductionVersion: "5.0"
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OC_PERSISTENT_STORE:
+ name: OC_PERSISTENT_STORE;EVENTHISTORY_STORE
+ defaultValue: nats-js-kv
type: string
- description: LDAP DN to use for simple bind authentication with the target LDAP
- server.
+ description: 'The type of the store. Supported values are: ''memory'', ''nats-js-kv'',
+ ''redis-sentinel'', ''noop''. See the text description for details.'
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_BIND_PASSWORD:
- name: OC_LDAP_BIND_PASSWORD;IDP_LDAP_BIND_PASSWORD
+OC_PERSISTENT_STORE_AUTH_PASSWORD:
+ name: OC_PERSISTENT_STORE_AUTH_PASSWORD;EVENTHISTORY_STORE_AUTH_PASSWORD
defaultValue: ""
type: string
- description: Password to use for authenticating the 'bind_dn'.
- introductionVersion: pre5.0
+ description: The password to authenticate with the store. Only applies when store
+ type 'nats-js-kv' is configured.
+ introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_CACERT:
- name: OC_LDAP_CACERT;IDP_LDAP_TLS_CACERT
- defaultValue: /var/lib/ocis/idm/ldap.crt
+OC_PERSISTENT_STORE_AUTH_USERNAME:
+ name: OC_PERSISTENT_STORE_AUTH_USERNAME;EVENTHISTORY_STORE_AUTH_USERNAME
+ defaultValue: ""
type: string
- description: Path/File name for the root CA certificate (in PEM format) used to
- validate TLS server certificates of the LDAP service. If not defined, the root
- directory derives from $OC_BASE_DATA_PATH/idp.
+ description: The username to authenticate with the store. Only applies when store
+ type 'nats-js-kv' is configured.
+ introductionVersion: "5.0"
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OC_PERSISTENT_STORE_NODES:
+ name: OC_PERSISTENT_STORE_NODES;EVENTHISTORY_STORE_NODES
+ defaultValue: '[127.0.0.1:9233]'
+ type: '[]string'
+ description: A list of nodes to access the configured store. This has no effect
+ when 'memory' store is configured. Note that the behaviour how nodes are used
+ is dependent on the library of the configured store. See the Environment Variable
+ Types description for more details.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_DISABLE_USER_MECHANISM:
- name: OC_LDAP_DISABLE_USER_MECHANISM;GRAPH_DISABLE_USER_MECHANISM
- defaultValue: attribute
- type: string
- description: An option to control the behavior for disabling users. Supported options
- are 'none', 'attribute' and 'group'. If set to 'group', disabling a user via API
- will add the user to the configured group for disabled users, if set to 'attribute'
- this will be done in the ldap user entry, if set to 'none' the disable request
- is not processed. Default is 'attribute'.
+OC_PERSISTENT_STORE_TTL:
+ name: OC_PERSISTENT_STORE_TTL;EVENTHISTORY_STORE_TTL
+ defaultValue: 336h0m0s
+ type: Duration
+ description: Time to live for events in the store. Defaults to '336h' (2 weeks).
+ See the Environment Variable Types description for more details.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_DISABLED_USERS_GROUP_DN:
- name: OC_LDAP_DISABLED_USERS_GROUP_DN;GRAPH_DISABLED_USERS_GROUP_DN
- defaultValue: cn=DisabledUsersGroup,ou=groups,o=libregraph-idm
+OC_PUBLIC_URL:
+ name: OC_URL;OC_PUBLIC_URL
+ defaultValue: https://127.0.0.1:9200
type: string
- description: The distinguished name of the group to which added users will be classified
- as disabled when 'disable_user_mechanism' is set to 'group'.
+ description: URL, where oCIS is reachable for users.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_GROUP_BASE_DN:
- name: OC_LDAP_GROUP_BASE_DN;GRAPH_LDAP_GROUP_BASE_DN
- defaultValue: ou=groups,o=libregraph-idm
+OC_REVA_GATEWAY:
+ name: OC_REVA_GATEWAY
+ defaultValue: eu.opencloud.api.gateway
type: string
- description: Search base DN for looking up LDAP groups.
+ description: The CS3 gateway endpoint.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_GROUP_FILTER:
- name: OC_LDAP_GROUP_FILTER;GRAPH_LDAP_GROUP_FILTER
+OC_REVA_GATEWAY_TLS_CACERT:
+ name: OC_REVA_GATEWAY_TLS_CACERT
defaultValue: ""
type: string
- description: LDAP filter to add to the default filters for group searches.
+ description: The root CA certificate used to validate the gateway's TLS certificate.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_GROUP_OBJECTCLASS:
- name: OC_LDAP_GROUP_OBJECTCLASS;GRAPH_LDAP_GROUP_OBJECTCLASS
- defaultValue: groupOfNames
+OC_REVA_GATEWAY_TLS_MODE:
+ name: OC_REVA_GATEWAY_TLS_MODE
+ defaultValue: ""
type: string
- description: The object class to use for groups in the default group search filter
- ('groupOfNames').
+ description: 'TLS mode for grpc connection to the CS3 gateway endpoint. Possible
+ values are ''off'', ''insecure'' and ''on''. ''off'': disables transport security
+ for the clients. ''insecure'' allows using transport security, but disables certificate
+ verification (to be used with the autogenerated self-signed certificates). ''on''
+ enables transport security, including server certificate verification.'
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_GROUP_SCHEMA_DISPLAYNAME:
- name: OC_LDAP_GROUP_SCHEMA_DISPLAYNAME;AUTH_BASIC_LDAP_GROUP_SCHEMA_DISPLAYNAME
- defaultValue: cn
+OC_SERVICE_ACCOUNT_ID:
+ name: OC_SERVICE_ACCOUNT_ID;PROXY_SERVICE_ACCOUNT_ID
+ defaultValue: ""
type: string
- description: LDAP Attribute to use for the displayname of groups (often the same
- as groupname attribute).
- introductionVersion: pre5.0
+ description: The ID of the service account the service should use. See the 'auth-service'
+ service description for more details.
+ introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_GROUP_SCHEMA_GROUPNAME:
- name: OC_LDAP_GROUP_SCHEMA_GROUPNAME;GRAPH_LDAP_GROUP_NAME_ATTRIBUTE
- defaultValue: cn
+OC_SERVICE_ACCOUNT_SECRET:
+ name: OC_SERVICE_ACCOUNT_SECRET;PROXY_SERVICE_ACCOUNT_SECRET
+ defaultValue: ""
type: string
- description: LDAP Attribute to use for the name of groups.
- introductionVersion: pre5.0
+ description: The service account secret.
+ introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_GROUP_SCHEMA_ID:
- name: OC_LDAP_GROUP_SCHEMA_ID;GRAPH_LDAP_GROUP_ID_ATTRIBUTE
- defaultValue: owncloudUUID
- type: string
- description: LDAP Attribute to use as the unique id for groups. This should be a
- stable globally unique ID like a UUID.
- introductionVersion: pre5.0
+OC_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD:
+ name: OC_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD;FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD
+ defaultValue: "true"
+ type: bool
+ description: Set this to true if you want to enforce passwords on all public shares.
+ introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
- deprecationInfo: ""
-OC_LDAP_GROUP_SCHEMA_ID_IS_OCTETSTRING:
- name: OC_LDAP_GROUP_SCHEMA_ID_IS_OCTETSTRING;GRAPH_LDAP_GROUP_SCHEMA_ID_IS_OCTETSTRING
+ deprecationInfo: FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated
+ | | FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated | | |
+ FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated | | FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD,
+ the OCS API is deprecated
+OC_SHARING_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD:
+ name: OC_SHARING_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD;FRONTEND_OCS_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD
defaultValue: "false"
type: bool
- description: Set this to true if the defined 'ID' attribute for groups is of the
- 'OCTETSTRING' syntax. This is required when using the 'objectGUID' attribute of
- Active Directory for the group ID's.
- introductionVersion: pre5.0
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
-OC_LDAP_GROUP_SCHEMA_MAIL:
- name: OC_LDAP_GROUP_SCHEMA_MAIL;AUTH_BASIC_LDAP_GROUP_SCHEMA_MAIL
- defaultValue: mail
- type: string
- description: LDAP Attribute to use for the email address of groups (can be empty).
- introductionVersion: pre5.0
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
-OC_LDAP_GROUP_SCHEMA_MEMBER:
- name: OC_LDAP_GROUP_SCHEMA_MEMBER;GRAPH_LDAP_GROUP_MEMBER_ATTRIBUTE
- defaultValue: member
- type: string
- description: LDAP Attribute that is used for group members.
- introductionVersion: pre5.0
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
-OC_LDAP_GROUP_SCOPE:
- name: OC_LDAP_GROUP_SCOPE;GRAPH_LDAP_GROUP_SEARCH_SCOPE
- defaultValue: sub
- type: string
- description: LDAP search scope to use when looking up groups. Supported scopes are
- 'base', 'one' and 'sub'.
- introductionVersion: pre5.0
+ description: Set this to true if you want to enforce passwords for writable shares.
+ Only effective if the setting for 'passwords on all public shares' is set to false.
+ introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
- deprecationInfo: ""
-OC_LDAP_INSECURE:
- name: OC_LDAP_INSECURE;IDP_INSECURE
+ deprecationInfo: FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD, the OCS
+ API is deprecated | | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD,
+ the OCS API is deprecated | | | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD,
+ the OCS API is deprecated | | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD,
+ the OCS API is deprecated
+OC_SHOW_USER_EMAIL_IN_RESULTS:
+ name: OC_SHOW_USER_EMAIL_IN_RESULTS
defaultValue: "false"
type: bool
- description: Disable TLS certificate validation for the LDAP connections. Do not
- set this in production environments.
- introductionVersion: pre5.0
+ description: Include user email addresses in responses. If absent or set to false
+ emails will be omitted from results. Please note that admin users can always see
+ all email addresses.
+ introductionVersion: 6.0.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_SERVER_WRITE_ENABLED:
- name: OC_LDAP_SERVER_WRITE_ENABLED;FRONTEND_LDAP_SERVER_WRITE_ENABLED
- defaultValue: "true"
- type: bool
- description: Allow creating, modifying and deleting LDAP users via the GRAPH API.
- This can only be set to 'true' when keeping default settings for the LDAP user
- and group attribute types (the 'OC_LDAP_USER_SCHEMA_* and 'OC_LDAP_GROUP_SCHEMA_*
- variables).
+OC_SPACES_MAX_QUOTA:
+ name: OC_SPACES_MAX_QUOTA;STORAGE_USERS_OCIS_MAX_QUOTA
+ defaultValue: "0"
+ type: uint64
+ description: Set a global max quota for spaces in bytes. A value of 0 equals unlimited.
+ If not using the global OC_SPACES_MAX_QUOTA, you must define the FRONTEND_MAX_QUOTA
+ in the frontend service.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_URI:
- name: OC_LDAP_URI;IDP_LDAP_URI
- defaultValue: ldaps://localhost:9235
+OC_SYSTEM_USER_API_KEY:
+ name: OC_SYSTEM_USER_API_KEY
+ defaultValue: ""
type: string
- description: Url of the LDAP service to use as IDP.
+ description: API key for the STORAGE-SYSTEM system user.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_USER_BASE_DN:
- name: OC_LDAP_USER_BASE_DN;IDP_LDAP_BASE_DN
- defaultValue: ou=users,o=libregraph-idm
+OC_SYSTEM_USER_ID:
+ name: OC_SYSTEM_USER_ID
+ defaultValue: ""
type: string
- description: Search base DN for looking up LDAP users.
+ description: ID of the oCIS storage-system system user. Admins need to set the ID
+ for the STORAGE-SYSTEM system user in this config option which is then used to
+ reference the user. Any reasonable long string is possible, preferably this would
+ be an UUIDv4 format.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_USER_ENABLED_ATTRIBUTE:
- name: OC_LDAP_USER_ENABLED_ATTRIBUTE;IDP_USER_ENABLED_ATTRIBUTE
- defaultValue: ownCloudUserEnabled
+OC_SYSTEM_USER_IDP:
+ name: OC_SYSTEM_USER_IDP;SHARING_PUBLIC_CS3_SYSTEM_USER_IDP
+ defaultValue: internal
type: string
- description: LDAP Attribute to use as a flag telling if the user is enabled or disabled.
+ description: IDP of the oCIS STORAGE-SYSTEM system user.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_USER_FILTER:
- name: OC_LDAP_USER_FILTER;IDP_LDAP_FILTER
+OC_TRACING_COLLECTOR:
+ name: OC_TRACING_COLLECTOR;PROXY_TRACING_COLLECTOR
defaultValue: ""
type: string
- description: LDAP filter to add to the default filters for user search like '(objectclass=ownCloud)'.
+ description: The HTTP endpoint for sending spans directly to a collector, i.e. http://jaeger-collector:14268/api/traces.
+ Only used if the tracing endpoint is unset.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_USER_OBJECTCLASS:
- name: OC_LDAP_USER_OBJECTCLASS;IDP_LDAP_OBJECTCLASS
- defaultValue: inetOrgPerson
- type: string
- description: LDAP User ObjectClass like 'inetOrgPerson'.
+OC_TRACING_ENABLED:
+ name: OC_TRACING_ENABLED;PROXY_TRACING_ENABLED
+ defaultValue: "false"
+ type: bool
+ description: Activates tracing.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_USER_SCHEMA_DISPLAYNAME:
- name: OC_LDAP_USER_SCHEMA_DISPLAYNAME;LDAP_USER_SCHEMA_DISPLAY_NAME;GRAPH_LDAP_USER_DISPLAYNAME_ATTRIBUTE
- defaultValue: displayName
- type: string
- description: LDAP Attribute to use for the display name of users.
- introductionVersion: pre5.0
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | | | | | | |
- LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | | | | LDAP_USER_SCHEMA_DISPLAY_NAME
- changing name for consistency
-OC_LDAP_USER_SCHEMA_ID:
- name: OC_LDAP_USER_SCHEMA_ID;IDP_LDAP_UUID_ATTRIBUTE
- defaultValue: ownCloudUUID
+OC_TRACING_ENDPOINT:
+ name: OC_TRACING_ENDPOINT;PROXY_TRACING_ENDPOINT
+ defaultValue: ""
type: string
- description: LDAP User UUID attribute like 'uid'.
- introductionVersion: pre5.0
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
-OC_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING:
- name: OC_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING;GRAPH_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING
- defaultValue: "false"
- type: bool
- description: Set this to true if the defined 'ID' attribute for users is of the
- 'OCTETSTRING' syntax. This is required when using the 'objectGUID' attribute of
- Active Directory for the user ID's.
+ description: The endpoint of the tracing agent.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_USER_SCHEMA_MAIL:
- name: OC_LDAP_USER_SCHEMA_MAIL;IDP_LDAP_EMAIL_ATTRIBUTE
- defaultValue: mail
+OC_TRACING_TYPE:
+ name: OC_TRACING_TYPE;PROXY_TRACING_TYPE
+ defaultValue: ""
type: string
- description: LDAP User email attribute like 'mail'.
+ description: The type of tracing. Defaults to '', which is the same as 'jaeger'.
+ Allowed tracing types are 'jaeger' and '' as of now.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_USER_SCHEMA_USER_TYPE:
- name: OC_LDAP_USER_SCHEMA_USER_TYPE;GRAPH_LDAP_USER_TYPE_ATTRIBUTE
- defaultValue: ownCloudUserType
+OC_TRANSFER_SECRET:
+ name: OC_TRANSFER_SECRET
+ defaultValue: ""
type: string
- description: LDAP Attribute to distinguish between 'Member' and 'Guest' users. Default
- is 'ownCloudUserType'.
+ description: Transfer secret for signing file up- and download requests.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_USER_SCHEMA_USERNAME:
- name: OC_LDAP_USER_SCHEMA_USERNAME;IDP_LDAP_NAME_ATTRIBUTE
- defaultValue: displayName
+OC_TRANSLATION_PATH:
+ name: OC_TRANSLATION_PATH;GRAPH_TRANSLATION_PATH
+ defaultValue: ""
type: string
- description: LDAP User name attribute like 'displayName'.
- introductionVersion: pre5.0
+ description: (optional) Set this to a path with custom translations to overwrite
+ the builtin translations. Note that file and folder naming rules apply, see the
+ documentation for more details.
+ introductionVersion: 7.0.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LDAP_USER_SCOPE:
- name: OC_LDAP_USER_SCOPE;IDP_LDAP_SCOPE
- defaultValue: sub
+OC_URL:
+ name: OC_URL;OC_OIDC_ISSUER;PROXY_OIDC_ISSUER
+ defaultValue: https://localhost:9200
type: string
- description: LDAP search scope to use when looking up users. Supported scopes are
- 'base', 'one' and 'sub'.
+ description: URL of the OIDC issuer. It defaults to URL of the builtin IDP.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LOG_COLOR:
- name: OC_LOG_COLOR;IDM_LOG_COLOR
+OC_WOPI_DISABLE_CHAT:
+ name: APP_PROVIDER_WOPI_DISABLE_CHAT;OC_WOPI_DISABLE_CHAT
defaultValue: "false"
type: bool
- description: Activates colorized log output.
- introductionVersion: pre5.0
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
-OC_LOG_FILE:
- name: OC_LOG_FILE;IDM_LOG_FILE
- defaultValue: ""
- type: string
- description: The path to the log file. Activates logging to this file if set.
+ description: Disable the chat functionality of the office app.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LOG_LEVEL:
- name: OC_LOG_LEVEL;IDM_LOG_LEVEL
- defaultValue: ""
- type: string
- description: 'The log level. Valid values are: ''panic'', ''fatal'', ''error'',
- ''warn'', ''info'', ''debug'', ''trace''.'
+OCDAV_ALLOW_PROPFIND_DEPTH_INFINITY:
+ name: OCDAV_ALLOW_PROPFIND_DEPTH_INFINITY
+ defaultValue: "false"
+ type: bool
+ description: Allow the use of depth infinity in PROPFINDS. When enabled, a propfind
+ will traverse through all subfolders. If many subfolders are expected, depth infinity
+ can cause heavy server load and/or delayed response times.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_LOG_PRETTY:
- name: OC_LOG_PRETTY;IDM_LOG_PRETTY
+OCDAV_CORS_ALLOW_CREDENTIALS:
+ name: OC_CORS_ALLOW_CREDENTIALS;OCDAV_CORS_ALLOW_CREDENTIALS
defaultValue: "false"
type: bool
- description: Activates pretty log output.
+ description: 'Allow credentials for CORS.See following chapter for more details:
+ *Access-Control-Allow-Credentials* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Credentials.'
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_MACHINE_AUTH_API_KEY:
- name: OC_MACHINE_AUTH_API_KEY;PROXY_MACHINE_AUTH_API_KEY
- defaultValue: ""
- type: string
- description: Machine auth API key used to validate internal requests necessary to
- access resources from other services.
+OCDAV_CORS_ALLOW_HEADERS:
+ name: OC_CORS_ALLOW_HEADERS;OCDAV_CORS_ALLOW_HEADERS
+ defaultValue: '[Origin Accept Content-Type Depth Authorization Ocs-Apirequest If-None-Match
+ If-Match Destination Overwrite X-Request-Id X-Requested-With Tus-Resumable Tus-Checksum-Algorithm
+ Upload-Concat Upload-Length Upload-Metadata Upload-Defer-Length Upload-Expires
+ Upload-Checksum Upload-Offset X-HTTP-Method-Override Cache-Control]'
+ type: '[]string'
+ description: 'A list of allowed CORS headers. See following chapter for more details:
+ *Access-Control-Request-Headers* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Request-Headers.
+ See the Environment Variable Types description for more details.'
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_MAX_CONCURRENCY:
- name: OC_MAX_CONCURRENCY;USERLOG_MAX_CONCURRENCY
- defaultValue: "1"
- type: int
- description: Maximum number of concurrent go-routines. Higher values can potentially
- get work done faster but will also cause more load on the system. Values of 0
- or below will be ignored and the default value will be used.
- introductionVersion: 7.0.0
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
-OC_OIDC_CLIENT_ID:
- name: OC_OIDC_CLIENT_ID;WEB_OIDC_CLIENT_ID
- defaultValue: web
- type: string
- description: The OIDC client ID which ownCloud Web uses. This client needs to be
- set up in your IDP. Note that this setting has no effect when using the builtin
- IDP.
+OCDAV_CORS_ALLOW_METHODS:
+ name: OC_CORS_ALLOW_METHODS;OCDAV_CORS_ALLOW_METHODS
+ defaultValue: '[OPTIONS HEAD GET PUT POST DELETE MKCOL PROPFIND PROPPATCH MOVE COPY
+ REPORT SEARCH]'
+ type: '[]string'
+ description: 'A list of allowed CORS methods. See following chapter for more details:
+ *Access-Control-Request-Method* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Request-Method.
+ See the Environment Variable Types description for more details.'
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_OIDC_ISSUER:
- name: OC_URL;OC_OIDC_ISSUER
- defaultValue: https://localhost:9200
- type: string
- description: The OIDC issuer URL to assign to the demo users.
+OCDAV_CORS_ALLOW_ORIGINS:
+ name: OC_CORS_ALLOW_ORIGINS;OCDAV_CORS_ALLOW_ORIGINS
+ defaultValue: '[https://localhost:9200]'
+ type: '[]string'
+ description: 'A list of allowed CORS origins. See following chapter for more details:
+ *Access-Control-Allow-Origin* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin.
+ See the Environment Variable Types description for more details.'
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_PASSWORD_POLICY_BANNED_PASSWORDS_LIST:
- name: OC_PASSWORD_POLICY_BANNED_PASSWORDS_LIST;FRONTEND_PASSWORD_POLICY_BANNED_PASSWORDS_LIST
- defaultValue: ""
+OCDAV_DEBUG_ADDR:
+ name: OCDAV_DEBUG_ADDR
+ defaultValue: 127.0.0.1:9163
type: string
- description: Path to the 'banned passwords list' file. This only impacts public
- link password validation. See the documentation for more details.
- introductionVersion: "5.0"
+ description: Bind address of the debug server, where metrics, health, config and
+ debug endpoints will be exposed.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_PASSWORD_POLICY_DISABLED:
- name: OC_PASSWORD_POLICY_DISABLED;FRONTEND_PASSWORD_POLICY_DISABLED
+OCDAV_DEBUG_PPROF:
+ name: OCDAV_DEBUG_PPROF
defaultValue: "false"
type: bool
- description: Disable the password policy. Defaults to false if not set.
- introductionVersion: "5.0"
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
-OC_PASSWORD_POLICY_MIN_CHARACTERS:
- name: OC_PASSWORD_POLICY_MIN_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_CHARACTERS
- defaultValue: "8"
- type: int
- description: Define the minimum password length. Defaults to 8 if not set.
- introductionVersion: "5.0"
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
-OC_PASSWORD_POLICY_MIN_DIGITS:
- name: OC_PASSWORD_POLICY_MIN_DIGITS;FRONTEND_PASSWORD_POLICY_MIN_DIGITS
- defaultValue: "1"
- type: int
- description: Define the minimum number of digits. Defaults to 1 if not set.
- introductionVersion: "5.0"
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
-OC_PASSWORD_POLICY_MIN_LOWERCASE_CHARACTERS:
- name: OC_PASSWORD_POLICY_MIN_LOWERCASE_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_LOWERCASE_CHARACTERS
- defaultValue: "1"
- type: int
- description: Define the minimum number of uppercase letters. Defaults to 1 if not
- set.
- introductionVersion: "5.0"
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
-OC_PASSWORD_POLICY_MIN_SPECIAL_CHARACTERS:
- name: OC_PASSWORD_POLICY_MIN_SPECIAL_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_SPECIAL_CHARACTERS
- defaultValue: "1"
- type: int
- description: Define the minimum number of characters from the special characters
- list to be present. Defaults to 1 if not set.
- introductionVersion: "5.0"
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
-OC_PASSWORD_POLICY_MIN_UPPERCASE_CHARACTERS:
- name: OC_PASSWORD_POLICY_MIN_UPPERCASE_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_UPPERCASE_CHARACTERS
- defaultValue: "1"
- type: int
- description: Define the minimum number of lowercase letters. Defaults to 1 if not
- set.
- introductionVersion: "5.0"
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
-OC_PERSISTENT_STORE:
- name: OC_PERSISTENT_STORE;COLLABORATION_STORE
- defaultValue: nats-js-kv
- type: string
- description: 'The type of the store. Supported values are: ''memory'', ''nats-js-kv'',
- ''redis-sentinel'', ''noop''. See the text description for details.'
- introductionVersion: 7.0.0
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
-OC_PERSISTENT_STORE_AUTH_PASSWORD:
- name: OC_PERSISTENT_STORE_AUTH_PASSWORD;COLLABORATION_STORE_AUTH_PASSWORD
- defaultValue: ""
- type: string
- description: The password to authenticate with the store. Only applies when store
- type 'nats-js-kv' is configured.
- introductionVersion: 7.0.0
+ description: Enables pprof, which can be used for profiling.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_PERSISTENT_STORE_AUTH_USERNAME:
- name: OC_PERSISTENT_STORE_AUTH_USERNAME;COLLABORATION_STORE_AUTH_USERNAME
+OCDAV_DEBUG_TOKEN:
+ name: OCDAV_DEBUG_TOKEN
defaultValue: ""
type: string
- description: The username to authenticate with the store. Only applies when store
- type 'nats-js-kv' is configured.
- introductionVersion: 7.0.0
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
-OC_PERSISTENT_STORE_NODES:
- name: OC_PERSISTENT_STORE_NODES;COLLABORATION_STORE_NODES
- defaultValue: '[127.0.0.1:9233]'
- type: '[]string'
- description: A list of nodes to access the configured store. This has no effect
- when 'memory' store is configured. Note that the behaviour how nodes are used
- is dependent on the library of the configured store. See the Environment Variable
- Types description for more details.
- introductionVersion: 7.0.0
+ description: Token to secure the metrics endpoint.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_PERSISTENT_STORE_TTL:
- name: OC_PERSISTENT_STORE_TTL;COLLABORATION_STORE_TTL
- defaultValue: 30m0s
- type: Duration
- description: Time to live for events in the store. Defaults to '30m' (30 minutes).
- See the Environment Variable Types description for more details.
- introductionVersion: 7.0.0
+OCDAV_DEBUG_ZPAGES:
+ name: OCDAV_DEBUG_ZPAGES
+ defaultValue: "false"
+ type: bool
+ description: Enables zpages, which can be used for collecting and viewing in-memory
+ traces.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_PUBLIC_URL:
- name: OC_URL;OC_PUBLIC_URL
- defaultValue: https://127.0.0.1:9200
+OCDAV_EDITION:
+ name: OC_EDITION;OCDAV_EDITION
+ defaultValue: Community
type: string
- description: URL, where oCIS is reachable for users.
+ description: Edition of oCIS. Used for branding purposes.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_REVA_GATEWAY:
- name: OC_REVA_GATEWAY
- defaultValue: com.owncloud.api.gateway
+OCDAV_FILES_NAMESPACE:
+ name: OCDAV_FILES_NAMESPACE
+ defaultValue: /users/{{.Id.OpaqueId}}
type: string
- description: CS3 gateway used to look up user metadata.
- introductionVersion: 6.0.0
+ description: Jail requests to /dav/files/{username} into this CS3 namespace. Supports
+ template layouting with CS3 User properties.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_REVA_GATEWAY_TLS_CACERT:
- name: OC_REVA_GATEWAY_TLS_CACERT
- defaultValue: ""
- type: string
- description: The root CA certificate used to validate the gateway's TLS certificate.
+OCDAV_GATEWAY_REQUEST_TIMEOUT:
+ name: OCDAV_GATEWAY_REQUEST_TIMEOUT
+ defaultValue: "84300"
+ type: int64
+ description: Request timeout in seconds for requests from the oCDAV service to the
+ GATEWAY service.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_REVA_GATEWAY_TLS_MODE:
- name: OC_REVA_GATEWAY_TLS_MODE
- defaultValue: ""
+OCDAV_HTTP_ADDR:
+ name: OCDAV_HTTP_ADDR
+ defaultValue: 127.0.0.1:9350
type: string
- description: 'TLS mode for grpc connection to the CS3 gateway endpoint. Possible
- values are ''off'', ''insecure'' and ''on''. ''off'': disables transport security
- for the clients. ''insecure'' allows using transport security, but disables certificate
- verification (to be used with the autogenerated self-signed certificates). ''on''
- enables transport security, including server certificate verification.'
+ description: The bind address of the HTTP service.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_SERVICE_ACCOUNT_ID:
- name: OC_SERVICE_ACCOUNT_ID;USERLOG_SERVICE_ACCOUNT_ID
+OCDAV_HTTP_PREFIX:
+ name: OCDAV_HTTP_PREFIX
defaultValue: ""
type: string
- description: The ID of the service account the service should use. See the 'auth-service'
- service description for more details.
- introductionVersion: "5.0"
+ description: A URL path prefix for the handler.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_SERVICE_ACCOUNT_SECRET:
- name: OC_SERVICE_ACCOUNT_SECRET;USERLOG_SERVICE_ACCOUNT_SECRET
- defaultValue: ""
+OCDAV_HTTP_PROTOCOL:
+ name: OCDAV_HTTP_PROTOCOL
+ defaultValue: tcp
type: string
- description: The service account secret.
- introductionVersion: "5.0"
+ description: The transport protocol of the HTTP service.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD:
- name: OC_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD;FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD
- defaultValue: "true"
+OCDAV_INSECURE:
+ name: OC_INSECURE;OCDAV_INSECURE
+ defaultValue: "false"
type: bool
- description: Set this to true if you want to enforce passwords on all public shares.
- introductionVersion: "5.0"
+ description: Allow insecure connections to the GATEWAY service.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
- deprecationInfo: FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated
- | | FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated | | |
- FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated
-OC_SHARING_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD:
- name: OC_SHARING_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD;FRONTEND_OCS_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD
- defaultValue: "false"
- type: bool
- description: Set this to true if you want to enforce passwords for writable shares.
- Only effective if the setting for 'passwords on all public shares' is set to false.
- introductionVersion: "5.0"
+ deprecationInfo: ""
+OCDAV_JWT_SECRET:
+ name: OC_JWT_SECRET;OCDAV_JWT_SECRET
+ defaultValue: ""
+ type: string
+ description: The secret to mint and validate jwt tokens.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
- deprecationInfo: FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD, the OCS
- API is deprecated | | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD,
- the OCS API is deprecated | | | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD,
- the OCS API is deprecated
-OC_SHOW_USER_EMAIL_IN_RESULTS:
- name: OC_SHOW_USER_EMAIL_IN_RESULTS
+ deprecationInfo: ""
+OCDAV_LOG_COLOR:
+ name: OC_LOG_COLOR;OCDAV_LOG_COLOR
defaultValue: "false"
type: bool
- description: Include user email addresses in responses. If absent or set to false
- emails will be omitted from results. Please note that admin users can always see
- all email addresses.
- introductionVersion: 6.0.0
+ description: Activates colorized log output.
+ introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_SPACES_MAX_QUOTA:
- name: OC_SPACES_MAX_QUOTA;FRONTEND_MAX_QUOTA
- defaultValue: "0"
- type: uint64
- description: Set the global max quota value in bytes. A value of 0 equals unlimited.
- The value is provided via capabilities.
+OCDAV_LOG_FILE:
+ name: OC_LOG_FILE;OCDAV_LOG_FILE
+ defaultValue: ""
+ type: string
+ description: The path to the log file. Activates logging to this file if set.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_SYSTEM_USER_API_KEY:
- name: OC_SYSTEM_USER_API_KEY
+OCDAV_LOG_LEVEL:
+ name: OC_LOG_LEVEL;OCDAV_LOG_LEVEL
defaultValue: ""
type: string
- description: API key for the STORAGE-SYSTEM system user.
+ description: 'The log level. Valid values are: ''panic'', ''fatal'', ''error'',
+ ''warn'', ''info'', ''debug'', ''trace''.'
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_SYSTEM_USER_ID:
- name: OC_SYSTEM_USER_ID;SETTINGS_SYSTEM_USER_ID
+OCDAV_LOG_PRETTY:
+ name: OC_LOG_PRETTY;OCDAV_LOG_PRETTY
+ defaultValue: "false"
+ type: bool
+ description: Activates pretty log output.
+ introductionVersion: pre5.0
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OCDAV_MACHINE_AUTH_API_KEY:
+ name: OC_MACHINE_AUTH_API_KEY;OCDAV_MACHINE_AUTH_API_KEY
defaultValue: ""
type: string
- description: ID of the oCIS STORAGE-SYSTEM system user. Admins need to set the ID
- for the STORAGE-SYSTEM system user in this config option which is then used to
- reference the user. Any reasonable long string is possible, preferably this would
- be an UUIDv4 format.
+ description: Machine auth API key used to validate internal requests necessary for
+ the access to resources from other services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_SYSTEM_USER_IDP:
- name: OC_SYSTEM_USER_IDP;SETTINGS_SYSTEM_USER_IDP
- defaultValue: internal
+OCDAV_OCM_NAMESPACE:
+ name: OCDAV_OCM_NAMESPACE
+ defaultValue: /public
type: string
- description: IDP of the oCIS STORAGE-SYSTEM system user.
+ description: The human readable path prefix for the ocm shares.
+ introductionVersion: "5.0"
+ deprecationVersion: ""
+ removalVersion: ""
+ deprecationInfo: ""
+OCDAV_PUBLIC_URL:
+ name: OC_URL;OCDAV_PUBLIC_URL
+ defaultValue: https://localhost:9200
+ type: string
+ description: URL where oCIS is reachable for users.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_TRACING_COLLECTOR:
- name: OC_TRACING_COLLECTOR;IDM_TRACING_COLLECTOR
- defaultValue: ""
+OCDAV_SHARES_NAMESPACE:
+ name: OCDAV_SHARES_NAMESPACE
+ defaultValue: /Shares
type: string
- description: The HTTP endpoint for sending spans directly to a collector, i.e. http://jaeger-collector:14268/api/traces.
- Only used if the tracing endpoint is unset.
+ description: The human readable path for the share jail. Relative to a users personal
+ space root. Upcased intentionally.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_TRACING_ENABLED:
- name: OC_TRACING_ENABLED;IDM_TRACING_ENABLED
+OCDAV_SKIP_USER_GROUPS_IN_TOKEN:
+ name: OCDAV_SKIP_USER_GROUPS_IN_TOKEN
defaultValue: "false"
type: bool
- description: Activates tracing.
+ description: Disables the loading of user's group memberships from the reva access
+ token.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_TRACING_ENDPOINT:
- name: OC_TRACING_ENDPOINT;IDM_TRACING_ENDPOINT
+OCDAV_TRACING_COLLECTOR:
+ name: OC_TRACING_COLLECTOR;OCDAV_TRACING_COLLECTOR
defaultValue: ""
type: string
- description: The endpoint of the tracing agent.
+ description: The HTTP endpoint for sending spans directly to a collector, i.e. http://jaeger-collector:14268/api/traces.
+ Only used if the tracing endpoint is unset.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_TRACING_TYPE:
- name: OC_TRACING_TYPE;IDM_TRACING_TYPE
- defaultValue: ""
- type: string
- description: The type of tracing. Defaults to '', which is the same as 'jaeger'.
- Allowed tracing types are 'jaeger' and '' as of now.
+OCDAV_TRACING_ENABLED:
+ name: OC_TRACING_ENABLED;OCDAV_TRACING_ENABLED
+ defaultValue: "false"
+ type: bool
+ description: Activates tracing.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_TRANSFER_SECRET:
- name: OC_TRANSFER_SECRET
+OCDAV_TRACING_ENDPOINT:
+ name: OC_TRACING_ENDPOINT;OCDAV_TRACING_ENDPOINT
defaultValue: ""
type: string
- description: Transfer secret for signing file up- and download requests.
+ description: The endpoint of the tracing agent.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_TRANSLATION_PATH:
- name: OC_TRANSLATION_PATH;USERLOG_TRANSLATION_PATH
+OCDAV_TRACING_TYPE:
+ name: OC_TRACING_TYPE;OCDAV_TRACING_TYPE
defaultValue: ""
type: string
- description: (optional) Set this to a path with custom translations to overwrite
- the builtin translations. Note that file and folder naming rules apply, see the
- documentation for more details.
+ description: The type of tracing. Defaults to '', which is the same as 'jaeger'.
+ Allowed tracing types are 'jaeger' and '' as of now.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_URL:
- name: OC_URL;OC_OIDC_ISSUER
- defaultValue: https://localhost:9200
+OCDAV_WEBDAV_NAMESPACE:
+ name: OCDAV_WEBDAV_NAMESPACE
+ defaultValue: /users/{{.Id.OpaqueId}}
type: string
- description: The OIDC issuer URL to assign to the demo users.
+ description: Jail requests to /dav/webdav into this CS3 namespace. Supports template
+ layouting with CS3 User properties.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
deprecationInfo: ""
-OC_WOPI_DISABLE_CHAT:
- name: COLLABORATION_WOPI_DISABLE_CHAT;OC_WOPI_DISABLE_CHAT
- defaultValue: "false"
- type: bool
- description: Disable chat in the office web frontend. This feature applies to OnlyOffice
- and Microsoft.
- introductionVersion: 7.0.0
- deprecationVersion: ""
- removalVersion: ""
- deprecationInfo: ""
OCM_CORS_ALLOW_CREDENTIALS:
name: OC_CORS_ALLOW_CREDENTIALS;OCM_CORS_ALLOW_CREDENTIALS
defaultValue: "false"
@@ -9237,7 +9247,7 @@ OCM_EVENTS_AUTH_PASSWORD:
defaultValue: ""
type: string
description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -9247,7 +9257,7 @@ OCM_EVENTS_AUTH_USERNAME:
defaultValue: ""
type: string
description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -9268,7 +9278,7 @@ OCM_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
@@ -9943,7 +9953,7 @@ POLICIES_EVENTS_AUTH_PASSWORD:
defaultValue: ""
type: string
description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -9953,7 +9963,7 @@ POLICIES_EVENTS_AUTH_USERNAME:
defaultValue: ""
type: string
description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -9974,7 +9984,7 @@ POLICIES_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
@@ -10160,7 +10170,7 @@ POSTPROCESSING_EVENTS_AUTH_PASSWORD:
defaultValue: ""
type: string
description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -10170,7 +10180,7 @@ POSTPROCESSING_EVENTS_AUTH_USERNAME:
defaultValue: ""
type: string
description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -10191,7 +10201,7 @@ POSTPROCESSING_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
@@ -10549,7 +10559,7 @@ PROXY_EVENTS_AUTH_PASSWORD:
defaultValue: ""
type: string
description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: 7.0.0
deprecationVersion: ""
removalVersion: ""
@@ -10559,7 +10569,7 @@ PROXY_EVENTS_AUTH_USERNAME:
defaultValue: ""
type: string
description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: 7.0.0
deprecationVersion: ""
removalVersion: ""
@@ -10579,7 +10589,7 @@ PROXY_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: 7.0.0
deprecationVersion: ""
removalVersion: ""
@@ -11151,7 +11161,7 @@ SEARCH_EVENTS_AUTH_PASSWORD:
defaultValue: ""
type: string
description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -11161,7 +11171,7 @@ SEARCH_EVENTS_AUTH_USERNAME:
defaultValue: ""
type: string
description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -11182,7 +11192,7 @@ SEARCH_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
@@ -11666,7 +11676,7 @@ SETTINGS_SETUP_DEFAULT_ASSIGNMENTS:
deprecationInfo: ""
SETTINGS_STORAGE_GATEWAY_GRPC_ADDR:
name: SETTINGS_STORAGE_GATEWAY_GRPC_ADDR;STORAGE_GATEWAY_GRPC_ADDR
- defaultValue: com.owncloud.api.storage-system
+ defaultValue: eu.opencloud.api.storage-system
type: string
description: GRPC address of the STORAGE-SYSTEM service.
introductionVersion: pre5.0
@@ -11675,7 +11685,7 @@ SETTINGS_STORAGE_GATEWAY_GRPC_ADDR:
deprecationInfo: ""
SETTINGS_STORAGE_GRPC_ADDR:
name: SETTINGS_STORAGE_GRPC_ADDR;STORAGE_GRPC_ADDR
- defaultValue: com.owncloud.api.storage-system
+ defaultValue: eu.opencloud.api.storage-system
type: string
description: GRPC address of the STORAGE-SYSTEM service.
introductionVersion: pre5.0
@@ -11824,7 +11834,7 @@ SHARING_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
@@ -12000,7 +12010,7 @@ SHARING_PASSWORD_POLICY_MIN_UPPERCASE_CHARACTERS:
deprecationInfo: ""
SHARING_PUBLIC_CS3_PROVIDER_ADDR:
name: SHARING_PUBLIC_CS3_PROVIDER_ADDR
- defaultValue: com.owncloud.api.storage-system
+ defaultValue: eu.opencloud.api.storage-system
type: string
description: GRPC address of the STORAGE-SYSTEM service.
introductionVersion: pre5.0
@@ -12060,7 +12070,7 @@ SHARING_PUBLIC_JSON_FILE:
deprecationInfo: ""
SHARING_PUBLIC_JSONCS3_PROVIDER_ADDR:
name: SHARING_PUBLIC_JSONCS3_PROVIDER_ADDR
- defaultValue: com.owncloud.api.storage-system
+ defaultValue: eu.opencloud.api.storage-system
type: string
description: GRPC address of the STORAGE-SYSTEM service.
introductionVersion: pre5.0
@@ -12168,7 +12178,7 @@ SHARING_TRACING_TYPE:
deprecationInfo: ""
SHARING_USER_CS3_PROVIDER_ADDR:
name: SHARING_USER_CS3_PROVIDER_ADDR
- defaultValue: com.owncloud.api.storage-system
+ defaultValue: eu.opencloud.api.storage-system
type: string
description: GRPC address of the STORAGE-SYSTEM service.
introductionVersion: pre5.0
@@ -12247,7 +12257,7 @@ SHARING_USER_JSONCS3_MAX_CONCURRENCY:
deprecationInfo: ""
SHARING_USER_JSONCS3_PROVIDER_ADDR:
name: SHARING_USER_JSONCS3_PROVIDER_ADDR
- defaultValue: com.owncloud.api.storage-system
+ defaultValue: eu.opencloud.api.storage-system
type: string
description: GRPC address of the STORAGE-SYSTEM service.
introductionVersion: pre5.0
@@ -12425,7 +12435,7 @@ SSE_EVENTS_AUTH_PASSWORD:
defaultValue: ""
type: string
description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -12435,7 +12445,7 @@ SSE_EVENTS_AUTH_USERNAME:
defaultValue: ""
type: string
description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -12456,7 +12466,7 @@ SSE_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -12604,7 +12614,7 @@ SSE_TRACING_TYPE:
deprecationInfo: ""
STORAGE_GATEWAY_GRPC_ADDR:
name: SETTINGS_STORAGE_GATEWAY_GRPC_ADDR;STORAGE_GATEWAY_GRPC_ADDR
- defaultValue: com.owncloud.api.storage-system
+ defaultValue: eu.opencloud.api.storage-system
type: string
description: GRPC address of the STORAGE-SYSTEM service.
introductionVersion: pre5.0
@@ -12613,7 +12623,7 @@ STORAGE_GATEWAY_GRPC_ADDR:
deprecationInfo: ""
STORAGE_GRPC_ADDR:
name: SETTINGS_STORAGE_GRPC_ADDR;STORAGE_GRPC_ADDR
- defaultValue: com.owncloud.api.storage-system
+ defaultValue: eu.opencloud.api.storage-system
type: string
description: GRPC address of the STORAGE-SYSTEM service.
introductionVersion: pre5.0
@@ -12953,7 +12963,7 @@ STORAGE_SHARES_TRACING_TYPE:
deprecationInfo: ""
STORAGE_SHARES_USER_SHARE_PROVIDER_ENDPOINT:
name: STORAGE_SHARES_USER_SHARE_PROVIDER_ENDPOINT
- defaultValue: com.owncloud.api.sharing
+ defaultValue: eu.opencloud.api.sharing
type: string
description: GRPC endpoint of the SHARING service.
introductionVersion: pre5.0
@@ -13408,7 +13418,7 @@ STORAGE_USERS_EVENTS_AUTH_PASSWORD:
defaultValue: ""
type: string
description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -13418,7 +13428,7 @@ STORAGE_USERS_EVENTS_AUTH_USERNAME:
defaultValue: ""
type: string
description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -13439,7 +13449,7 @@ STORAGE_USERS_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
@@ -13809,7 +13819,7 @@ STORAGE_USERS_OCIS_MAX_QUOTA:
deprecationInfo: ""
STORAGE_USERS_OCIS_PERMISSIONS_ENDPOINT:
name: STORAGE_USERS_PERMISSION_ENDPOINT;STORAGE_USERS_OCIS_PERMISSIONS_ENDPOINT
- defaultValue: com.owncloud.api.settings
+ defaultValue: eu.opencloud.api.settings
type: string
description: Endpoint of the permissions service. The endpoints can differ for 'ocis'
and 's3ng'.
@@ -13959,7 +13969,7 @@ STORAGE_USERS_OWNCLOUDSQL_UPLOADINFO_DIR:
deprecationInfo: ""
STORAGE_USERS_OWNCLOUDSQL_USERS_PROVIDER_ENDPOINT:
name: STORAGE_USERS_OWNCLOUDSQL_USERS_PROVIDER_ENDPOINT
- defaultValue: com.owncloud.api.users
+ defaultValue: eu.opencloud.api.users
type: string
description: Endpoint of the users provider.
introductionVersion: pre5.0
@@ -13968,7 +13978,7 @@ STORAGE_USERS_OWNCLOUDSQL_USERS_PROVIDER_ENDPOINT:
deprecationInfo: ""
STORAGE_USERS_PERMISSION_ENDPOINT:
name: STORAGE_USERS_PERMISSION_ENDPOINT;STORAGE_USERS_POSIX_PERMISSIONS_ENDPOINT
- defaultValue: com.owncloud.api.settings
+ defaultValue: eu.opencloud.api.settings
type: string
description: Endpoint of the permissions service. The endpoints can differ for 'ocis',
'posix' and 's3ng'.
@@ -13987,7 +13997,7 @@ STORAGE_USERS_POSIX_GENERAL_SPACE_PATH_TEMPLATE:
deprecationInfo: ""
STORAGE_USERS_POSIX_PERMISSIONS_ENDPOINT:
name: STORAGE_USERS_PERMISSION_ENDPOINT;STORAGE_USERS_POSIX_PERMISSIONS_ENDPOINT
- defaultValue: com.owncloud.api.settings
+ defaultValue: eu.opencloud.api.settings
type: string
description: Endpoint of the permissions service. The endpoints can differ for 'ocis',
'posix' and 's3ng'.
@@ -14189,7 +14199,7 @@ STORAGE_USERS_S3NG_MAX_CONCURRENCY:
deprecationInfo: ""
STORAGE_USERS_S3NG_PERMISSIONS_ENDPOINT:
name: STORAGE_USERS_PERMISSION_ENDPOINT;STORAGE_USERS_S3NG_PERMISSIONS_ENDPOINT
- defaultValue: com.owncloud.api.settings
+ defaultValue: eu.opencloud.api.settings
type: string
description: Endpoint of the permissions service. The endpoints can differ for 'ocis'
and 's3ng'.
@@ -14801,7 +14811,7 @@ USERLOG_EVENTS_AUTH_PASSWORD:
defaultValue: ""
type: string
description: The password to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -14811,7 +14821,7 @@ USERLOG_EVENTS_AUTH_USERNAME:
defaultValue: ""
type: string
description: The username to authenticate with the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: "5.0"
deprecationVersion: ""
removalVersion: ""
@@ -14832,7 +14842,7 @@ USERLOG_EVENTS_ENABLE_TLS:
defaultValue: "false"
type: bool
description: Enable TLS for the connection to the events broker. The events broker
- is the ocis service which receives and delivers events between the services.
+ is the OpenCloud service which receives and delivers events between the services.
introductionVersion: pre5.0
deprecationVersion: ""
removalVersion: ""
@@ -15763,7 +15773,7 @@ WEB_DEBUG_ZPAGES:
deprecationInfo: ""
WEB_GATEWAY_GRPC_ADDR:
name: WEB_GATEWAY_GRPC_ADDR
- defaultValue: com.owncloud.api.gateway
+ defaultValue: eu.opencloud.api.gateway
type: string
description: The bind address of the GRPC service.
introductionVersion: pre5.0
@@ -16155,7 +16165,7 @@ WEB_UI_CONFIG_SERVER:
deprecationInfo: ""
WEB_UI_THEME_PATH:
name: WEB_UI_THEME_PATH
- defaultValue: /themes/owncloud/theme.json
+ defaultValue: /themes/opencloud/theme.json
type: string
description: Path to the theme json file. Will be appended to the URL of the theme
server.
diff --git a/pkg/config/defaultconfig.go b/pkg/config/defaultconfig.go
index 33d049f72e..d891130b2d 100644
--- a/pkg/config/defaultconfig.go
+++ b/pkg/config/defaultconfig.go
@@ -54,7 +54,7 @@ func DefaultConfig() *Config {
Host: "localhost",
},
Reva: &shared.Reva{
- Address: "com.owncloud.api.gateway",
+ Address: "eu.opencloud.api.gateway",
},
Activitylog: activitylog.DefaultConfig(),
diff --git a/pkg/registry/register_test.go b/pkg/registry/register_test.go
deleted file mode 100644
index 134fe8b413..0000000000
--- a/pkg/registry/register_test.go
+++ /dev/null
@@ -1,61 +0,0 @@
-package registry
-
-//
-//import (
-// "context"
-// "testing"
-//
-// "github.com/micro/go-micro/v2/registry"
-// "github.com/opencloud-eu/opencloud/pkg/log"
-//)
-//
-//func TestRegisterGRPCEndpoint(t *testing.T) {
-// ctx, cancel := context.WithCancel(context.Background())
-// err := RegisterGRPCEndpoint(ctx, "test", "1234", "192.168.0.1:777", log.Logger{})
-// if err != nil {
-// t.Errorf("Unexpected error: %v", err)
-// }
-//
-// s, err := registry.GetService("test")
-// if err != nil {
-// t.Errorf("Unexpected error: %v", err)
-// }
-//
-// if len(s) != 1 {
-// t.Errorf("Expected exactly one service to be returned got %v", len(s))
-// }
-//
-// if len(s[0].Nodes) != 1 {
-// t.Errorf("Expected exactly one node to be returned got %v", len(s[0].Nodes))
-// }
-//
-// testSvc := s[0]
-// if testSvc.Name != "test" {
-// t.Errorf("Expected service name to be 'test' got %v", s[0].Name)
-// }
-//
-// testNode := testSvc.Nodes[0]
-//
-// if testNode.Address != "192.168.0.1:777" {
-// t.Errorf("Expected node address to be '192.168.0.1:777' got %v", testNode.Address)
-// }
-//
-// if testNode.Id != "test-1234" {
-// t.Errorf("Expected node id to be 'test-1234' got %v", testNode.Id)
-// }
-//
-// cancel()
-//
-// // When switching over to monorepo this little test fails. We're unsure of what the cause is, but since this test
-// // is testing a framework specific behavior, we're better off letting it commented out. There is also no use of
-// // com.owncloud.reva anywhere in the codebase, so we're effectively only registering reva as a go-micro service,
-// // but not sending any message.
-// s, err = registry.GetService("test")
-// if err != nil {
-// t.Errorf("Unexpected error: %v", err)
-// }
-//
-// if len(s) != 0 {
-// t.Errorf("Deregister on cancelation failed. Result-length should be zero, got %v", len(s))
-// }
-//}
diff --git a/pkg/shared/reva.go b/pkg/shared/reva.go
index a4a9f55553..87bac957dd 100644
--- a/pkg/shared/reva.go
+++ b/pkg/shared/reva.go
@@ -5,7 +5,7 @@ import (
)
var defaultRevaConfig = Reva{
- Address: "com.owncloud.api.gateway",
+ Address: "eu.opencloud.api.gateway",
}
func DefaultRevaConfig() *Reva {
diff --git a/services/activitylog/pkg/command/server.go b/services/activitylog/pkg/command/server.go
index 8c80b6a0cd..3b63f95c90 100644
--- a/services/activitylog/pkg/command/server.go
+++ b/services/activitylog/pkg/command/server.go
@@ -109,8 +109,8 @@ func Server(cfg *config.Config) *cli.Command {
return err
}
- hClient := ehsvc.NewEventHistoryService("com.owncloud.api.eventhistory", grpcClient)
- vClient := settingssvc.NewValueService("com.owncloud.api.settings", grpcClient)
+ hClient := ehsvc.NewEventHistoryService("eu.opencloud.api.eventhistory", grpcClient)
+ vClient := settingssvc.NewValueService("eu.opencloud.api.settings", grpcClient)
{
svc, err := http.Server(
diff --git a/services/activitylog/pkg/config/defaults/defaultconfig.go b/services/activitylog/pkg/config/defaults/defaultconfig.go
index 728d697f89..838689bf3c 100644
--- a/services/activitylog/pkg/config/defaults/defaultconfig.go
+++ b/services/activitylog/pkg/config/defaults/defaultconfig.go
@@ -42,7 +42,7 @@ func DefaultConfig() *config.Config {
HTTP: config.HTTP{
Addr: "127.0.0.1:9195",
Root: "/",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
CORS: config.CORS{
AllowedOrigins: []string{"*"},
AllowedMethods: []string{"GET"},
diff --git a/services/app-provider/pkg/config/defaults/defaultconfig.go b/services/app-provider/pkg/config/defaults/defaultconfig.go
index ae95100e54..4c1da4b889 100644
--- a/services/app-provider/pkg/config/defaults/defaultconfig.go
+++ b/services/app-provider/pkg/config/defaults/defaultconfig.go
@@ -25,14 +25,14 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9164",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
Protocol: "tcp",
},
Service: config.Service{
Name: "app-provider",
},
Reva: shared.DefaultRevaConfig(),
- ExternalAddr: "com.owncloud.api.app-provider",
+ ExternalAddr: "eu.opencloud.api.app-provider",
Driver: "",
Drivers: config.Drivers{
WOPI: config.WOPIDriver{
diff --git a/services/app-registry/pkg/config/defaults/defaultconfig.go b/services/app-registry/pkg/config/defaults/defaultconfig.go
index 4ec76636b9..9a4c52f788 100644
--- a/services/app-registry/pkg/config/defaults/defaultconfig.go
+++ b/services/app-registry/pkg/config/defaults/defaultconfig.go
@@ -25,7 +25,7 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9242",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
Protocol: "tcp",
},
Service: config.Service{
diff --git a/services/auth-app/pkg/command/server.go b/services/auth-app/pkg/command/server.go
index 7b372c2fdb..1790e3be05 100644
--- a/services/auth-app/pkg/command/server.go
+++ b/services/auth-app/pkg/command/server.go
@@ -128,7 +128,7 @@ func Server(cfg *config.Config) *cli.Command {
return err
}
- rClient := settingssvc.NewRoleService("com.owncloud.api.settings", grpcClient)
+ rClient := settingssvc.NewRoleService("eu.opencloud.api.settings", grpcClient)
server, err := http.Server(
http.Logger(logger),
http.Context(ctx),
diff --git a/services/auth-app/pkg/config/defaults/defaultconfig.go b/services/auth-app/pkg/config/defaults/defaultconfig.go
index 900f6ebe04..0c726b05a3 100644
--- a/services/auth-app/pkg/config/defaults/defaultconfig.go
+++ b/services/auth-app/pkg/config/defaults/defaultconfig.go
@@ -27,12 +27,12 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9246",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
Protocol: "tcp",
},
HTTP: config.HTTP{
Addr: "127.0.0.1:9247",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
Root: "/",
CORS: config.CORS{
AllowedOrigins: []string{"*"},
diff --git a/services/auth-basic/pkg/config/defaults/defaultconfig.go b/services/auth-basic/pkg/config/defaults/defaultconfig.go
index 80994cb51e..b5828bd715 100644
--- a/services/auth-basic/pkg/config/defaults/defaultconfig.go
+++ b/services/auth-basic/pkg/config/defaults/defaultconfig.go
@@ -28,7 +28,7 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9146",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
Protocol: "tcp",
},
Service: config.Service{
diff --git a/services/auth-bearer/pkg/config/defaults/defaultconfig.go b/services/auth-bearer/pkg/config/defaults/defaultconfig.go
index 66f6d722af..b35d063463 100644
--- a/services/auth-bearer/pkg/config/defaults/defaultconfig.go
+++ b/services/auth-bearer/pkg/config/defaults/defaultconfig.go
@@ -25,7 +25,7 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9148",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
Protocol: "tcp",
},
Service: config.Service{
diff --git a/services/auth-machine/pkg/config/defaults/defaultconfig.go b/services/auth-machine/pkg/config/defaults/defaultconfig.go
index 5f90dbe741..7bb753874c 100644
--- a/services/auth-machine/pkg/config/defaults/defaultconfig.go
+++ b/services/auth-machine/pkg/config/defaults/defaultconfig.go
@@ -25,7 +25,7 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9166",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
Protocol: "tcp",
},
Service: config.Service{
diff --git a/services/auth-service/pkg/config/defaults/defaultconfig.go b/services/auth-service/pkg/config/defaults/defaultconfig.go
index 14736a918b..de1e960eea 100644
--- a/services/auth-service/pkg/config/defaults/defaultconfig.go
+++ b/services/auth-service/pkg/config/defaults/defaultconfig.go
@@ -25,7 +25,7 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9199",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
Protocol: "tcp",
},
Service: config.Service{
diff --git a/services/collaboration/pkg/config/defaults/defaultconfig.go b/services/collaboration/pkg/config/defaults/defaultconfig.go
index d0cec439d2..2a6e84df04 100644
--- a/services/collaboration/pkg/config/defaults/defaultconfig.go
+++ b/services/collaboration/pkg/config/defaults/defaultconfig.go
@@ -43,11 +43,11 @@ func DefaultConfig() *config.Config {
GRPC: config.GRPC{
Addr: "127.0.0.1:9301",
Protocol: "tcp",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
},
HTTP: config.HTTP{
Addr: "127.0.0.1:9300",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
},
Debug: config.Debug{
Addr: "127.0.0.1:9304",
diff --git a/services/eventhistory/pkg/config/defaults/defaultconfig.go b/services/eventhistory/pkg/config/defaults/defaultconfig.go
index 4e2d0390ec..95f3ef1817 100644
--- a/services/eventhistory/pkg/config/defaults/defaultconfig.go
+++ b/services/eventhistory/pkg/config/defaults/defaultconfig.go
@@ -41,7 +41,7 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9274",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
},
}
}
diff --git a/services/frontend/pkg/command/events.go b/services/frontend/pkg/command/events.go
index 16d2b941ce..3f1323c503 100644
--- a/services/frontend/pkg/command/events.go
+++ b/services/frontend/pkg/command/events.go
@@ -80,7 +80,7 @@ func ListenForEvents(ctx context.Context, cfg *config.Config, l log.Logger) erro
return err
}
- valueService := settingssvc.NewValueService("com.owncloud.api.settings", grpcClient)
+ valueService := settingssvc.NewValueService("eu.opencloud.api.settings", grpcClient)
wg := sync.WaitGroup{}
for i := 0; i < cfg.MaxConcurrency; i++ {
diff --git a/services/frontend/pkg/config/defaults/defaultconfig.go b/services/frontend/pkg/config/defaults/defaultconfig.go
index 624cff0904..6a5190192a 100644
--- a/services/frontend/pkg/config/defaults/defaultconfig.go
+++ b/services/frontend/pkg/config/defaults/defaultconfig.go
@@ -27,7 +27,7 @@ func DefaultConfig() *config.Config {
},
HTTP: config.HTTPConfig{
Addr: "127.0.0.1:9140",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
Protocol: "tcp",
Prefix: "",
CORS: config.CORS{
@@ -94,7 +94,7 @@ func DefaultConfig() *config.Config {
},
AppHandler: config.AppHandler{
Prefix: "app",
- SecureViewAppAddr: "com.owncloud.api.collaboration",
+ SecureViewAppAddr: "eu.opencloud.api.collaboration",
},
Archiver: config.Archiver{
Insecure: false,
diff --git a/services/gateway/README.md b/services/gateway/README.md
index 7af9034fd9..3fc252aefa 100644
--- a/services/gateway/README.md
+++ b/services/gateway/README.md
@@ -42,7 +42,7 @@ The scheme for this setup is the following. Note that there is, except storage,
|------|------|------|
| OC_GRPC_PROTOCOL or
``_GRPC_PROTOCOL | tcp | unix |
| ``_GRPC_ADDR | 127.0.0.1:`` | /var/run/ocis/``.sock |
-| GATEWAY_``_ENDPOINT | com.owncloud.api.`` | unix:/var/run/ocis/``.sock
dns: ...
kubernetes: ... |
+| GATEWAY_``_ENDPOINT | eu.opencloud.api.`` | unix:/var/run/ocis/``.sock
dns: ...
kubernetes: ... |
```console
USERS_GRPC_PROTOCOL=unix"
@@ -108,7 +108,7 @@ In order to add another storage provider the CS3 storage registry that is runnin
```json
{
- "com.owncloud.api.storage-users": {
+ "eu.opencloud.api.storage-users": {
"providerid": "{storage-users-mount-uuid}",
"spaces": {
"personal": {
@@ -121,7 +121,7 @@ In order to add another storage provider the CS3 storage registry that is runnin
}
}
},
- "com.owncloud.api.storage-shares": {
+ "eu.opencloud.api.storage-shares": {
"providerid": "a0ca6a90-a365-4782-871e-d44447bbc668",
"spaces": {
"virtual": {
@@ -136,7 +136,7 @@ In order to add another storage provider the CS3 storage registry that is runnin
}
}
},
- "com.owncloud.api.storage-publiclink": {
+ "eu.opencloud.api.storage-publiclink": {
"providerid": "7993447f-687f-490d-875c-ac95e89a62a4",
"spaces": {
"grant": {
@@ -148,7 +148,7 @@ In order to add another storage provider the CS3 storage registry that is runnin
}
}
},
- "com.owncloud.api.ocm": {
+ "eu.opencloud.api.ocm": {
"providerid": "89f37a33-858b-45fa-8890-a1f2b27d90e1",
"spaces": {
"grant": {
@@ -160,7 +160,7 @@ In order to add another storage provider the CS3 storage registry that is runnin
}
}
},
- "com.owncloud.api.storage-hello": {
+ "eu.opencloud.api.storage-hello": {
"providerid": "hello-storage-id",
"spaces": {
"project": {
@@ -172,4 +172,4 @@ In order to add another storage provider the CS3 storage registry that is runnin
}
```
-In the above replace `{storage-users-mount-uuid}` with the mount UUID that was generated for the storage-users service. You can find it in the `config.yaml` generated on by `ocis init`. The last entry `com.owncloud.api.storage-hello` and its `providerid` `"hello-storage-id"` are an example for in additional storage provider, in this case running `hellofs`, an example minimal storage driver.
+In the above replace `{storage-users-mount-uuid}` with the mount UUID that was generated for the storage-users service. You can find it in the `config.yaml` generated on by `ocis init`. The last entry `eu.opencloud.api.storage-hello` and its `providerid` `"hello-storage-id"` are an example for in additional storage provider, in this case running `hellofs`, an example minimal storage driver.
diff --git a/services/gateway/pkg/config/defaults/defaultconfig.go b/services/gateway/pkg/config/defaults/defaultconfig.go
index 84757c0c22..f3036ed170 100644
--- a/services/gateway/pkg/config/defaults/defaultconfig.go
+++ b/services/gateway/pkg/config/defaults/defaultconfig.go
@@ -27,7 +27,7 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9142",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
Protocol: "tcp",
},
Service: config.Service{
@@ -51,19 +51,19 @@ func DefaultConfig() *config.Config {
FrontendPublicURL: "https://localhost:9200",
- AppRegistryEndpoint: "com.owncloud.api.app-registry",
- AuthAppEndpoint: "com.owncloud.api.auth-app",
- AuthBasicEndpoint: "com.owncloud.api.auth-basic",
- AuthMachineEndpoint: "com.owncloud.api.auth-machine",
- AuthServiceEndpoint: "com.owncloud.api.auth-service",
- GroupsEndpoint: "com.owncloud.api.groups",
- PermissionsEndpoint: "com.owncloud.api.settings",
- SharingEndpoint: "com.owncloud.api.sharing",
- StoragePublicLinkEndpoint: "com.owncloud.api.storage-publiclink",
- StorageSharesEndpoint: "com.owncloud.api.storage-shares",
- StorageUsersEndpoint: "com.owncloud.api.storage-users",
- UsersEndpoint: "com.owncloud.api.users",
- OCMEndpoint: "com.owncloud.api.ocm",
+ AppRegistryEndpoint: "eu.opencloud.api.app-registry",
+ AuthAppEndpoint: "eu.opencloud.api.auth-app",
+ AuthBasicEndpoint: "eu.opencloud.api.auth-basic",
+ AuthMachineEndpoint: "eu.opencloud.api.auth-machine",
+ AuthServiceEndpoint: "eu.opencloud.api.auth-service",
+ GroupsEndpoint: "eu.opencloud.api.groups",
+ PermissionsEndpoint: "eu.opencloud.api.settings",
+ SharingEndpoint: "eu.opencloud.api.sharing",
+ StoragePublicLinkEndpoint: "eu.opencloud.api.storage-publiclink",
+ StorageSharesEndpoint: "eu.opencloud.api.storage-shares",
+ StorageUsersEndpoint: "eu.opencloud.api.storage-users",
+ UsersEndpoint: "eu.opencloud.api.users",
+ OCMEndpoint: "eu.opencloud.api.ocm",
StorageRegistry: config.StorageRegistry{
Driver: "spaces",
diff --git a/services/graph/pkg/config/defaults/defaultconfig.go b/services/graph/pkg/config/defaults/defaultconfig.go
index b578c74943..dacde9d33d 100644
--- a/services/graph/pkg/config/defaults/defaultconfig.go
+++ b/services/graph/pkg/config/defaults/defaultconfig.go
@@ -42,7 +42,7 @@ func DefaultConfig() *config.Config {
},
HTTP: config.HTTP{
Addr: "127.0.0.1:9120",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
Root: "/graph",
CORS: config.CORS{
AllowedOrigins: []string{"*"},
@@ -65,7 +65,7 @@ func DefaultConfig() *config.Config {
},
Reva: shared.DefaultRevaConfig(),
Spaces: config.Spaces{
- StorageUsersAddress: "com.owncloud.api.storage-users",
+ StorageUsersAddress: "eu.opencloud.api.storage-users",
WebDavBase: "https://localhost:9200",
WebDavPath: "/dav/spaces/",
DefaultQuota: "1000000000",
diff --git a/services/graph/pkg/server/http/server.go b/services/graph/pkg/server/http/server.go
index 305bdc020a..8f8ad57eae 100644
--- a/services/graph/pkg/server/http/server.go
+++ b/services/graph/pkg/server/http/server.go
@@ -95,8 +95,8 @@ func Server(opts ...Option) (http.Service, error) {
account.Logger(options.Logger),
account.JWTSecret(options.Config.TokenManager.JWTSecret),
))
- roleService = settingssvc.NewRoleService("com.owncloud.api.settings", grpcClient)
- valueService = settingssvc.NewValueService("com.owncloud.api.settings", grpcClient)
+ roleService = settingssvc.NewRoleService("eu.opencloud.api.settings", grpcClient)
+ valueService = settingssvc.NewValueService("eu.opencloud.api.settings", grpcClient)
gatewaySelector, err = pool.GatewaySelector(
options.Config.Reva.Address,
append(
@@ -126,7 +126,7 @@ func Server(opts ...Option) (http.Service, error) {
keyCloakClient = keycloak.New(kcc.BasePath, kcc.ClientID, kcc.ClientSecret, kcc.ClientRealm, kcc.InsecureSkipVerify)
}
- hClient := ehsvc.NewEventHistoryService("com.owncloud.api.eventhistory", grpcClient)
+ hClient := ehsvc.NewEventHistoryService("eu.opencloud.api.eventhistory", grpcClient)
var handle svc.Service
handle, err = svc.NewService(
@@ -140,7 +140,7 @@ func Server(opts ...Option) (http.Service, error) {
svc.WithValueService(valueService),
svc.WithRequireAdminMiddleware(requireAdminMiddleware),
svc.WithGatewaySelector(gatewaySelector),
- svc.WithSearchService(searchsvc.NewSearchProviderService("com.owncloud.api.search", grpcClient)),
+ svc.WithSearchService(searchsvc.NewSearchProviderService("eu.opencloud.api.search", grpcClient)),
svc.KeycloakClient(keyCloakClient),
svc.EventHistoryClient(hClient),
svc.TraceProvider(options.TraceProvider),
diff --git a/services/graph/pkg/service/v0/application_test.go b/services/graph/pkg/service/v0/application_test.go
index 06a75bc424..0cd71254f7 100644
--- a/services/graph/pkg/service/v0/application_test.go
+++ b/services/graph/pkg/service/v0/application_test.go
@@ -50,11 +50,11 @@ var _ = Describe("Applications", func() {
identityBackend = &identitymocks.Backend{}
roleService = &mocks.RoleService{}
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/graph/pkg/service/v0/approleassignments_test.go b/services/graph/pkg/service/v0/approleassignments_test.go
index 9dd3d20f9d..f737e24d60 100644
--- a/services/graph/pkg/service/v0/approleassignments_test.go
+++ b/services/graph/pkg/service/v0/approleassignments_test.go
@@ -60,11 +60,11 @@ var _ = Describe("AppRoleAssignments", func() {
identityBackend = &identitymocks.Backend{}
roleService = &mocks.RoleService{}
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/graph/pkg/service/v0/driveitems_test.go b/services/graph/pkg/service/v0/driveitems_test.go
index b6772feb45..336dd22fce 100644
--- a/services/graph/pkg/service/v0/driveitems_test.go
+++ b/services/graph/pkg/service/v0/driveitems_test.go
@@ -61,11 +61,11 @@ var _ = Describe("Driveitems", func() {
BeforeEach(func() {
eventsPublisher.On("Publish", mock.Anything, mock.Anything, mock.Anything).Return(nil)
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/graph/pkg/service/v0/educationclasses_test.go b/services/graph/pkg/service/v0/educationclasses_test.go
index f15da82294..dd54c62534 100644
--- a/services/graph/pkg/service/v0/educationclasses_test.go
+++ b/services/graph/pkg/service/v0/educationclasses_test.go
@@ -53,11 +53,11 @@ var _ = Describe("EducationClass", func() {
BeforeEach(func() {
eventsPublisher.On("Publish", mock.Anything, mock.Anything, mock.Anything).Return(nil)
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/graph/pkg/service/v0/educationschools_test.go b/services/graph/pkg/service/v0/educationschools_test.go
index 4dbad389df..ec5482dfd0 100644
--- a/services/graph/pkg/service/v0/educationschools_test.go
+++ b/services/graph/pkg/service/v0/educationschools_test.go
@@ -54,11 +54,11 @@ var _ = Describe("Schools", func() {
)
BeforeEach(func() {
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/graph/pkg/service/v0/educationuser_test.go b/services/graph/pkg/service/v0/educationuser_test.go
index 803055253a..bdcb47a4aa 100644
--- a/services/graph/pkg/service/v0/educationuser_test.go
+++ b/services/graph/pkg/service/v0/educationuser_test.go
@@ -58,11 +58,11 @@ var _ = Describe("EducationUsers", func() {
BeforeEach(func() {
eventsPublisher.On("Publish", mock.Anything, mock.Anything, mock.Anything).Return(nil)
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/graph/pkg/service/v0/graph_suite_test.go b/services/graph/pkg/service/v0/graph_suite_test.go
index 37e18501ac..e15620f40b 100644
--- a/services/graph/pkg/service/v0/graph_suite_test.go
+++ b/services/graph/pkg/service/v0/graph_suite_test.go
@@ -12,7 +12,7 @@ import (
func init() {
r := registry.GetRegistry(registry.Inmemory())
- service := registry.BuildGRPCService("com.owncloud.api.gateway", "", "", "")
+ service := registry.BuildGRPCService("eu.opencloud.api.gateway", "", "", "")
service.Nodes = []*mRegistry.Node{{
Address: "any",
}}
diff --git a/services/graph/pkg/service/v0/graph_test.go b/services/graph/pkg/service/v0/graph_test.go
index 21acff91d9..eb0e34a3aa 100644
--- a/services/graph/pkg/service/v0/graph_test.go
+++ b/services/graph/pkg/service/v0/graph_test.go
@@ -68,11 +68,11 @@ var _ = Describe("Graph", func() {
cfg.Commons = &shared.Commons{}
cfg.GRPCClientTLS = &shared.GRPCClientTLS{}
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/graph/pkg/service/v0/groups_test.go b/services/graph/pkg/service/v0/groups_test.go
index e70a80fdd6..4a1dc32a32 100644
--- a/services/graph/pkg/service/v0/groups_test.go
+++ b/services/graph/pkg/service/v0/groups_test.go
@@ -59,11 +59,11 @@ var _ = Describe("Groups", func() {
BeforeEach(func() {
eventsPublisher.On("Publish", mock.Anything, mock.Anything, mock.Anything).Return(nil)
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/graph/pkg/service/v0/password_test.go b/services/graph/pkg/service/v0/password_test.go
index eae4d5e35a..a26b4f9634 100644
--- a/services/graph/pkg/service/v0/password_test.go
+++ b/services/graph/pkg/service/v0/password_test.go
@@ -51,11 +51,11 @@ var _ = Describe("Users changing their own password", func() {
cfg.TokenManager.JWTSecret = "loremipsum"
cfg.GRPCClientTLS = &shared.GRPCClientTLS{}
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/graph/pkg/service/v0/service.go b/services/graph/pkg/service/v0/service.go
index bc968366fc..7804033e3c 100644
--- a/services/graph/pkg/service/v0/service.go
+++ b/services/graph/pkg/service/v0/service.go
@@ -170,7 +170,7 @@ func NewService(opts ...Option) (Graph, error) { //nolint:maintidx
if err != nil {
return svc, err
}
- svc.permissionsService = settingssvc.NewPermissionService("com.owncloud.api.settings", grpcClient)
+ svc.permissionsService = settingssvc.NewPermissionService("eu.opencloud.api.settings", grpcClient)
} else {
svc.permissionsService = options.PermissionService
}
diff --git a/services/graph/pkg/service/v0/sharedbyme_test.go b/services/graph/pkg/service/v0/sharedbyme_test.go
index 2484b1a989..c888d54aa4 100644
--- a/services/graph/pkg/service/v0/sharedbyme_test.go
+++ b/services/graph/pkg/service/v0/sharedbyme_test.go
@@ -143,7 +143,7 @@ var _ = Describe("sharedbyme", func() {
rr = httptest.NewRecorder()
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewayClient.On("Stat",
@@ -228,7 +228,7 @@ var _ = Describe("sharedbyme", func() {
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/graph/pkg/service/v0/sharedwithme_test.go b/services/graph/pkg/service/v0/sharedwithme_test.go
index 9ff404f54e..d5461d2ac7 100644
--- a/services/graph/pkg/service/v0/sharedwithme_test.go
+++ b/services/graph/pkg/service/v0/sharedwithme_test.go
@@ -48,11 +48,11 @@ var _ = Describe("SharedWithMe", func() {
)
BeforeEach(func() {
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/graph/pkg/service/v0/users_test.go b/services/graph/pkg/service/v0/users_test.go
index 3fe238848e..fd4945c9c5 100644
--- a/services/graph/pkg/service/v0/users_test.go
+++ b/services/graph/pkg/service/v0/users_test.go
@@ -66,11 +66,11 @@ var _ = Describe("Users", func() {
BeforeEach(func() {
eventsPublisher.On("Publish", mock.Anything, mock.Anything, mock.Anything).Return(nil)
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/groups/pkg/config/defaults/defaultconfig.go b/services/groups/pkg/config/defaults/defaultconfig.go
index 3b9b95e846..db39598762 100644
--- a/services/groups/pkg/config/defaults/defaultconfig.go
+++ b/services/groups/pkg/config/defaults/defaultconfig.go
@@ -28,7 +28,7 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9160",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
Protocol: "tcp",
},
Service: config.Service{
diff --git a/services/idp/pkg/config/defaults/defaultconfig.go b/services/idp/pkg/config/defaults/defaultconfig.go
index 246a3d412c..d64b378abc 100644
--- a/services/idp/pkg/config/defaults/defaultconfig.go
+++ b/services/idp/pkg/config/defaults/defaultconfig.go
@@ -28,7 +28,7 @@ func DefaultConfig() *config.Config {
HTTP: config.HTTP{
Addr: "127.0.0.1:9130",
Root: "/",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
TLSCert: filepath.Join(defaults.BaseDataPath(), "idp", "server.crt"),
TLSKey: filepath.Join(defaults.BaseDataPath(), "idp", "server.key"),
TLS: false,
diff --git a/services/invitations/pkg/config/defaults/defaultconfig.go b/services/invitations/pkg/config/defaults/defaultconfig.go
index 4d54d45162..8a688f9c0a 100644
--- a/services/invitations/pkg/config/defaults/defaultconfig.go
+++ b/services/invitations/pkg/config/defaults/defaultconfig.go
@@ -24,7 +24,7 @@ func DefaultConfig() *config.Config {
HTTP: config.HTTP{
Addr: "127.0.0.1:9265",
Root: "/graph/v1.0",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
CORS: config.CORS{
AllowedOrigins: []string{"https://localhost:9200"},
},
diff --git a/services/notifications/pkg/command/server.go b/services/notifications/pkg/command/server.go
index eb475ca7b8..13bde93449 100644
--- a/services/notifications/pkg/command/server.go
+++ b/services/notifications/pkg/command/server.go
@@ -120,8 +120,8 @@ func Server(cfg *config.Config) *cli.Command {
if err != nil {
logger.Fatal().Err(err).Str("addr", cfg.Notifications.RevaGateway).Msg("could not get reva gateway selector")
}
- valueService := settingssvc.NewValueService("com.owncloud.api.settings", grpcClient)
- historyClient := ehsvc.NewEventHistoryService("com.owncloud.api.eventhistory", grpcClient)
+ valueService := settingssvc.NewValueService("eu.opencloud.api.settings", grpcClient)
+ historyClient := ehsvc.NewEventHistoryService("eu.opencloud.api.eventhistory", grpcClient)
notificationStore := store.Create(
store.Store(cfg.Store.Store),
diff --git a/services/notifications/pkg/service/notification_suite_test.go b/services/notifications/pkg/service/notification_suite_test.go
index 16841667a0..5eca9f4808 100644
--- a/services/notifications/pkg/service/notification_suite_test.go
+++ b/services/notifications/pkg/service/notification_suite_test.go
@@ -12,7 +12,7 @@ import (
func init() {
r := registry.GetRegistry(registry.Inmemory())
- service := registry.BuildGRPCService("com.owncloud.api.gateway", "", "", "")
+ service := registry.BuildGRPCService("eu.opencloud.api.gateway", "", "", "")
service.Nodes = []*mRegistry.Node{{
Address: "any",
}}
diff --git a/services/notifications/pkg/service/service_test.go b/services/notifications/pkg/service/service_test.go
index 4423825076..ab79bb67af 100644
--- a/services/notifications/pkg/service/service_test.go
+++ b/services/notifications/pkg/service/service_test.go
@@ -55,11 +55,11 @@ var _ = Describe("Notifications", func() {
)
BeforeEach(func() {
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
@@ -263,11 +263,11 @@ var _ = Describe("Notifications X-Site Scripting", func() {
)
BeforeEach(func() {
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/ocdav/pkg/config/defaults/defaultconfig.go b/services/ocdav/pkg/config/defaults/defaultconfig.go
index 09d06c6e55..4e4f621e9c 100644
--- a/services/ocdav/pkg/config/defaults/defaultconfig.go
+++ b/services/ocdav/pkg/config/defaults/defaultconfig.go
@@ -26,7 +26,7 @@ func DefaultConfig() *config.Config {
},
HTTP: config.HTTPConfig{
Addr: "127.0.0.1:9350",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
Protocol: "tcp",
Prefix: "",
CORS: config.CORS{
diff --git a/services/ocm/pkg/config/defaults/defaultconfig.go b/services/ocm/pkg/config/defaults/defaultconfig.go
index e90415b82d..af873f9cc1 100644
--- a/services/ocm/pkg/config/defaults/defaultconfig.go
+++ b/services/ocm/pkg/config/defaults/defaultconfig.go
@@ -29,7 +29,7 @@ func DefaultConfig() *config.Config {
},
HTTP: config.HTTPConfig{
Addr: "127.0.0.1:9280",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
Protocol: "tcp",
Prefix: "",
CORS: config.CORS{
@@ -79,7 +79,7 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9282",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
},
Reva: shared.DefaultRevaConfig(),
Service: config.Service{
diff --git a/services/ocs/README.md b/services/ocs/README.md
index 801fd9c536..53c05b1e22 100644
--- a/services/ocs/README.md
+++ b/services/ocs/README.md
@@ -12,7 +12,7 @@ To authenticate presigned URLs the proxy service needs to read the signing keys
Possible stores that can be configured via `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE` are:
- `nats-js-kv`: Stores data using key-value-store feature of [nats jetstream](https://docs.nats.io/nats-concepts/jetstream/key-value-store)
- `redis-sentinel`: Stores data in a configured Redis Sentinel cluster.
- - `ocisstoreservice`: Stores data in the legacy ocis store service. Requires setting `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` to `com.owncloud.api.store`.
+ - `ocisstoreservice`: Stores data in the legacy ocis store service. Requires setting `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` to `eu.opencloud.api.store`.
The `memory` store cannot be used as it does not share the memory from the ocs service signing key memory store, even in a single process.
@@ -21,4 +21,4 @@ Make sure to configure the same store in the proxy service.
Store specific notes:
- When using `redis-sentinel`, the Redis master to use is configured via e.g. `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` in the form of `:/` like `10.10.0.200:26379/mymaster`.
- When using `nats-js-kv` it is recommended to set `PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` to the same value as `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES`. That way the proxy uses the same nats instance as the ocs service.
- - When using `ocisstoreservice` the `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` must be set to the service name `com.owncloud.api.store`. It does not support TTL and stores the presigning keys indefinitely. Also, the store service needs to be started.
+ - When using `ocisstoreservice` the `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` must be set to the service name `eu.opencloud.api.store`. It does not support TTL and stores the presigning keys indefinitely. Also, the store service needs to be started.
diff --git a/services/ocs/pkg/config/defaults/defaultconfig.go b/services/ocs/pkg/config/defaults/defaultconfig.go
index 41a6101c2d..9d453105f5 100644
--- a/services/ocs/pkg/config/defaults/defaultconfig.go
+++ b/services/ocs/pkg/config/defaults/defaultconfig.go
@@ -28,7 +28,7 @@ func DefaultConfig() *config.Config {
HTTP: config.HTTP{
Addr: "127.0.0.1:9110",
Root: "/ocs",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
CORS: config.CORS{
AllowedOrigins: []string{"*"},
AllowedMethods: []string{"GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS"},
diff --git a/services/policies/pkg/config/defaults/defaultconfig.go b/services/policies/pkg/config/defaults/defaultconfig.go
index 942b748349..d71666e3fb 100644
--- a/services/policies/pkg/config/defaults/defaultconfig.go
+++ b/services/policies/pkg/config/defaults/defaultconfig.go
@@ -29,7 +29,7 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPC{
Addr: "127.0.0.1:9125",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
},
Events: config.Events{
Endpoint: "127.0.0.1:9233",
diff --git a/services/proxy/README.md b/services/proxy/README.md
index 8784c0b2c8..8dad362d37 100644
--- a/services/proxy/README.md
+++ b/services/proxy/README.md
@@ -15,7 +15,7 @@ The following request authentication schemes are implemented:
## Configuring Routes
-The proxy handles routing to all endpoints that ocis offers. The currently availabe default routes can be found [in the code](https://github.com/owncloud/ocis/blob/master/services/proxy/pkg/config/defaults/defaultconfig.go). Changing or adding routes can be necessary when writing own ocis extensions.
+The proxy handles routing to all endpoints that ocis offers. The currently availabe default routes can be found [in the code](https://github.com/opencloud-eu/opencloud/blob/master/services/proxy/pkg/config/defaults/defaultconfig.go). Changing or adding routes can be necessary when writing own ocis extensions.
Due to the complexity when defining routes, these can only be defined in the yaml file but not via environment variables.
@@ -26,9 +26,9 @@ policies:
- name: ocis
routes:
- endpoint: /
- service: com.owncloud.web.web
+ service: eu.opencloud.web.web
- endpoint: /dav/
- service: com.owncloud.web.ocdav
+ service: eu.opencloud.web.ocdav
```
For adding _additional_ routes to the default routes use:
@@ -38,7 +38,7 @@ additional_policies:
- name: ocis
routes:
- endpoint: /custom/endpoint
- service: com.owncloud.custom.custom
+ service: eu.opencloud.custom.custom
```
A route has the following configurable parameters:
@@ -140,14 +140,14 @@ These issued JWT tokens are immutable and integrity-protected. Which means, any
* Infinite Scale can't differentiate between a group being renamed in the IDP and users being reassigned to a different group.
-* Infinite Scale does not get aware when a group is being deleted in the IDP, a new claim will not hold any information from the deleted group. Infinite Scale does not track a claim history to compare.
+* Infinite Scale does not get aware when a group is being deleted in the IDP, a new claim will not hold any information from the deleted group. Infinite Scale does not track a claim history to compare.
#### Impacts
For shares or space memberships based on groups, a renamed or deleted group will impact accessing the resource:
* There is no user notification about the inability accessing the resource.
-* The user will only experience rejected access.
+* The user will only experience rejected access.
* This also applies for connected apps like the Desktop, iOS or Android app!
To give access for rejected users on a resource, one with rights to share must update the group information.
@@ -266,7 +266,7 @@ Store specific notes:
To authenticate presigned URLs the proxy service needs to read signing keys from a store that is populated by the ocs service. Possible stores are:
- `nats-js-kv`: Stores data using key-value-store feature of [nats jetstream](https://docs.nats.io/nats-concepts/jetstream/key-value-store)
- `redis-sentinel`: Stores data in a configured Redis Sentinel cluster.
- - `ocisstoreservice`: Stores data in the legacy ocis store service. Requires setting `PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` to `com.owncloud.api.store`.
+ - `ocisstoreservice`: Stores data in the legacy ocis store service. Requires setting `PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` to `eu.opencloud.api.store`.
The `memory` store cannot be used as it does not share the memory from the ocs service signing key memory store, even in a single process.
@@ -276,7 +276,7 @@ Store specific notes:
- When using `redis-sentinel`, the Redis master to use is configured via e.g. `OC_CACHE_STORE_NODES` in the form of `:/` like `10.10.0.200:26379/mymaster`.
- When using `nats-js-kv` it is recommended to set `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` to the same value as `PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES`. That way the ocs uses the same nats instance as the proxy service.
- When using the `nats-js-kv` store, it is possible to set `PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_DISABLE_PERSISTENCE` to instruct nats to not persist signing key data on disc.
- - When using `ocisstoreservice` the `PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` must be set to the service name `com.owncloud.api.store`. It does not support TTL and stores the presigning keys indefinitely. Also, the store service needs to be started.
+ - When using `ocisstoreservice` the `PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` must be set to the service name `eu.opencloud.api.store`. It does not support TTL and stores the presigning keys indefinitely. Also, the store service needs to be started.
## Special Settings
diff --git a/services/proxy/pkg/command/server.go b/services/proxy/pkg/command/server.go
index ccc74b7f50..5b3dff4e7b 100644
--- a/services/proxy/pkg/command/server.go
+++ b/services/proxy/pkg/command/server.go
@@ -247,8 +247,8 @@ func loadMiddlewares(logger log.Logger, cfg *config.Config,
userProvider backend.UserBackend, publisher events.Publisher,
gatewaySelector pool.Selectable[gateway.GatewayAPIClient], serviceSelector selector.Selector) alice.Chain {
- rolesClient := settingssvc.NewRoleService("com.owncloud.api.settings", cfg.GrpcClient)
- policiesProviderClient := policiessvc.NewPoliciesProviderService("com.owncloud.api.policies", cfg.GrpcClient)
+ rolesClient := settingssvc.NewRoleService("eu.opencloud.api.settings", cfg.GrpcClient)
+ policiesProviderClient := policiessvc.NewPoliciesProviderService("eu.opencloud.api.policies", cfg.GrpcClient)
var roleAssigner userroles.UserRoleAssigner
switch cfg.RoleAssignment.Driver {
diff --git a/services/proxy/pkg/config/defaults/defaultconfig.go b/services/proxy/pkg/config/defaults/defaultconfig.go
index bb555cec6e..0fd48455ce 100644
--- a/services/proxy/pkg/config/defaults/defaultconfig.go
+++ b/services/proxy/pkg/config/defaults/defaultconfig.go
@@ -31,7 +31,7 @@ func DefaultConfig() *config.Config {
HTTP: config.HTTP{
Addr: "0.0.0.0:9200",
Root: "/",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
TLSCert: path.Join(defaults.BaseDataPath(), "proxy", "server.crt"),
TLSKey: path.Join(defaults.BaseDataPath(), "proxy", "server.key"),
TLS: true,
@@ -111,79 +111,79 @@ func DefaultPolicies() []config.Policy {
Routes: []config.Route{
{
Endpoint: "/",
- Service: "com.owncloud.web.web",
+ Service: "eu.opencloud.web.web",
Unprotected: true,
},
{
Endpoint: "/.well-known/ocm",
- Service: "com.owncloud.web.ocm",
+ Service: "eu.opencloud.web.ocm",
Unprotected: true,
},
{
Endpoint: "/.well-known/webfinger",
- Service: "com.owncloud.web.webfinger",
+ Service: "eu.opencloud.web.webfinger",
Unprotected: true,
},
{
Endpoint: "/.well-known/openid-configuration",
- Service: "com.owncloud.web.idp",
+ Service: "eu.opencloud.web.idp",
Unprotected: true,
},
{
Endpoint: "/branding/logo",
- Service: "com.owncloud.web.web",
+ Service: "eu.opencloud.web.web",
},
{
Endpoint: "/konnect/",
- Service: "com.owncloud.web.idp",
+ Service: "eu.opencloud.web.idp",
Unprotected: true,
},
{
Endpoint: "/signin/",
- Service: "com.owncloud.web.idp",
+ Service: "eu.opencloud.web.idp",
Unprotected: true,
},
{
Endpoint: "/archiver",
- Service: "com.owncloud.web.frontend",
+ Service: "eu.opencloud.web.frontend",
},
{
// reroute oc10 notifications endpoint to userlog service
Endpoint: "/ocs/v2.php/apps/notifications/api/v1/notifications/sse",
- Service: "com.owncloud.sse.sse",
+ Service: "eu.opencloud.sse.sse",
},
{
// reroute oc10 notifications endpoint to userlog service
Endpoint: "/ocs/v2.php/apps/notifications/api/v1/notifications",
- Service: "com.owncloud.web.userlog",
+ Service: "eu.opencloud.web.userlog",
},
{
Type: config.RegexRoute,
Endpoint: "/ocs/v[12].php/cloud/user/signing-key", // only `user/signing-key` is left in ocis-ocs
- Service: "com.owncloud.web.ocs",
+ Service: "eu.opencloud.web.ocs",
},
{
Type: config.RegexRoute,
Endpoint: "/ocs/v[12].php/config",
- Service: "com.owncloud.web.frontend",
+ Service: "eu.opencloud.web.frontend",
Unprotected: true,
},
{
Endpoint: "/sciencemesh/",
- Service: "com.owncloud.web.ocm",
+ Service: "eu.opencloud.web.ocm",
},
{
Endpoint: "/ocm/",
- Service: "com.owncloud.web.ocm",
+ Service: "eu.opencloud.web.ocm",
},
{
Endpoint: "/ocs/",
- Service: "com.owncloud.web.frontend",
+ Service: "eu.opencloud.web.frontend",
},
{
Type: config.QueryRoute,
Endpoint: "/remote.php/?preview=1",
- Service: "com.owncloud.web.webdav",
+ Service: "eu.opencloud.web.webdav",
},
// TODO the actual REPORT goes to /dav/files/{username}, which is user specific ... how would this work in a spaces world?
// TODO what paths are returned? the href contains the full path so it should be possible to return urls from other spaces?
@@ -193,81 +193,81 @@ func DefaultPolicies() []config.Policy {
Type: config.RegexRoute,
Method: "REPORT",
Endpoint: "(/remote.php)?/(web)?dav",
- Service: "com.owncloud.web.webdav",
+ Service: "eu.opencloud.web.webdav",
},
{
Type: config.QueryRoute,
Endpoint: "/dav/?preview=1",
- Service: "com.owncloud.web.webdav",
+ Service: "eu.opencloud.web.webdav",
},
{
Type: config.QueryRoute,
Endpoint: "/webdav/?preview=1",
- Service: "com.owncloud.web.webdav",
+ Service: "eu.opencloud.web.webdav",
},
{
Endpoint: "/remote.php/",
- Service: "com.owncloud.web.ocdav",
+ Service: "eu.opencloud.web.ocdav",
},
{
Endpoint: "/dav/",
- Service: "com.owncloud.web.ocdav",
+ Service: "eu.opencloud.web.ocdav",
},
{
Endpoint: "/webdav/",
- Service: "com.owncloud.web.ocdav",
+ Service: "eu.opencloud.web.ocdav",
},
{
Endpoint: "/status",
- Service: "com.owncloud.web.ocdav",
+ Service: "eu.opencloud.web.ocdav",
Unprotected: true,
},
{
Endpoint: "/status.php",
- Service: "com.owncloud.web.ocdav",
+ Service: "eu.opencloud.web.ocdav",
Unprotected: true,
},
{
Endpoint: "/index.php/",
- Service: "com.owncloud.web.ocdav",
+ Service: "eu.opencloud.web.ocdav",
},
{
Endpoint: "/apps/",
- Service: "com.owncloud.web.ocdav",
+ Service: "eu.opencloud.web.ocdav",
},
{
Endpoint: "/data",
- Service: "com.owncloud.web.frontend",
+ Service: "eu.opencloud.web.frontend",
Unprotected: true,
},
{
Endpoint: "/app/list",
- Service: "com.owncloud.web.frontend",
+ Service: "eu.opencloud.web.frontend",
Unprotected: true,
},
{
Endpoint: "/app/", // /app or /apps? ocdav only handles /apps
- Service: "com.owncloud.web.frontend",
+ Service: "eu.opencloud.web.frontend",
},
{
Endpoint: "/graph/v1beta1/extensions/org.libregraph/activities",
- Service: "com.owncloud.web.activitylog",
+ Service: "eu.opencloud.web.activitylog",
},
{
Endpoint: "/graph/v1.0/invitations",
- Service: "com.owncloud.web.invitations",
+ Service: "eu.opencloud.web.invitations",
},
{
Endpoint: "/graph/",
- Service: "com.owncloud.web.graph",
+ Service: "eu.opencloud.web.graph",
},
{
Endpoint: "/api/v0/settings",
- Service: "com.owncloud.web.settings",
+ Service: "eu.opencloud.web.settings",
},
{
Endpoint: "/auth-app/tokens",
- Service: "com.owncloud.web.auth-app",
+ Service: "eu.opencloud.web.auth-app",
},
},
},
diff --git a/services/proxy/pkg/middleware/app_auth_test.go b/services/proxy/pkg/middleware/app_auth_test.go
index 7e6850d747..93aab1e471 100644
--- a/services/proxy/pkg/middleware/app_auth_test.go
+++ b/services/proxy/pkg/middleware/app_auth_test.go
@@ -17,12 +17,12 @@ import (
var _ = Describe("Authenticating requests", Label("AppAuthAuthenticator"), func() {
var authenticator Authenticator
BeforeEach(func() {
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
authenticator = AppAuthAuthenticator{
Logger: log.NewLogger(),
RevaGatewaySelector: pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return mockGatewayClient{
AuthenticateFunc: func(authType, clientID, clientSecret string) (string, rpcv1beta1.Code) {
diff --git a/services/proxy/pkg/middleware/authentication_test.go b/services/proxy/pkg/middleware/authentication_test.go
index 98dc6579fd..fefabe52cb 100644
--- a/services/proxy/pkg/middleware/authentication_test.go
+++ b/services/proxy/pkg/middleware/authentication_test.go
@@ -72,7 +72,7 @@ var _ = Describe("Authenticating requests", Label("Authentication"), func() {
ub.On("Authenticate", mock.Anything, mock.Anything, mock.Anything).Return(nil, "", backend.ErrAccountNotFound)
BeforeEach(func() {
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
logger := log.NewLogger()
authenticators = []Authenticator{
@@ -91,7 +91,7 @@ var _ = Describe("Authenticating requests", Label("Authentication"), func() {
Logger: logger,
RevaGatewaySelector: pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return mockGatewayClient{
AuthenticateFunc: func(authType, clientID, clientSecret string) (string, rpcv1beta1.Code) {
diff --git a/services/proxy/pkg/middleware/policies_test.go b/services/proxy/pkg/middleware/policies_test.go
index 1f9e7ddcf1..e008981311 100644
--- a/services/proxy/pkg/middleware/policies_test.go
+++ b/services/proxy/pkg/middleware/policies_test.go
@@ -146,12 +146,12 @@ func prepare(q string) (http.Handler, *mocks.PoliciesProviderService, *cs3mocks.
gatewayClient := &cs3mocks.GatewayAPIClient{}
gatewaySelector := pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
)
- defer pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ defer pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
// mocked policiesProviderService
policiesProviderService := &mocks.PoliciesProviderService{}
diff --git a/services/proxy/pkg/middleware/public_share_auth_test.go b/services/proxy/pkg/middleware/public_share_auth_test.go
index f3371d8afc..4c4731e2fa 100644
--- a/services/proxy/pkg/middleware/public_share_auth_test.go
+++ b/services/proxy/pkg/middleware/public_share_auth_test.go
@@ -18,12 +18,12 @@ import (
var _ = Describe("Authenticating requests", Label("PublicShareAuthenticator"), func() {
var authenticator Authenticator
BeforeEach(func() {
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
authenticator = PublicShareAuthenticator{
Logger: log.NewLogger(),
RevaGatewaySelector: pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return mockGatewayClient{
AuthenticateFunc: func(authType, clientID, clientSecret string) (string, rpcv1beta1.Code) {
diff --git a/services/proxy/pkg/user/backend/cs3.go b/services/proxy/pkg/user/backend/cs3.go
index 1a30089b14..f7263a9901 100644
--- a/services/proxy/pkg/user/backend/cs3.go
+++ b/services/proxy/pkg/user/backend/cs3.go
@@ -427,7 +427,7 @@ func (c cs3backend) updateLibregraphUser(userid string, user libregraph.UserUpda
func (c cs3backend) setupLibregraphClient(_ context.Context, cs3token string) (*libregraph.APIClient, error) {
// Use micro registry to resolve next graph service endpoint
- next, err := c.graphSelector.Select("com.owncloud.web.graph")
+ next, err := c.graphSelector.Select("eu.opencloud.web.graph")
if err != nil {
c.logger.Debug().Err(err).Msg("setupLibregraphClient: error during Select")
return nil, err
diff --git a/services/search/pkg/command/index.go b/services/search/pkg/command/index.go
index c12e8df57d..2980ca35e3 100644
--- a/services/search/pkg/command/index.go
+++ b/services/search/pkg/command/index.go
@@ -56,7 +56,7 @@ func Index(cfg *config.Config) *cli.Command {
return err
}
- c := searchsvc.NewSearchProviderService("com.owncloud.api.search", grpcClient)
+ c := searchsvc.NewSearchProviderService("eu.opencloud.api.search", grpcClient)
_, err = c.IndexSpace(context.Background(), &searchsvc.IndexSpaceRequest{
SpaceId: ctx.String("space"),
}, func(opts *client.CallOptions) { opts.RequestTimeout = 10 * time.Minute })
diff --git a/services/search/pkg/config/defaults/defaultconfig.go b/services/search/pkg/config/defaults/defaultconfig.go
index 7f78f449df..4258467562 100644
--- a/services/search/pkg/config/defaults/defaultconfig.go
+++ b/services/search/pkg/config/defaults/defaultconfig.go
@@ -27,7 +27,7 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9220",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
},
Service: config.Service{
Name: "search",
diff --git a/services/search/pkg/search/search_suite_test.go b/services/search/pkg/search/search_suite_test.go
index 8950b54d74..05bc288b1d 100644
--- a/services/search/pkg/search/search_suite_test.go
+++ b/services/search/pkg/search/search_suite_test.go
@@ -12,7 +12,7 @@ import (
func init() {
r := registry.GetRegistry(registry.Inmemory())
- service := registry.BuildGRPCService("com.owncloud.api.gateway", "", "", "")
+ service := registry.BuildGRPCService("eu.opencloud.api.gateway", "", "", "")
service.Nodes = []*mRegistry.Node{{
Address: "any",
}}
diff --git a/services/search/pkg/search/service_test.go b/services/search/pkg/search/service_test.go
index ac7c6d1c7c..deb3558a6f 100644
--- a/services/search/pkg/search/service_test.go
+++ b/services/search/pkg/search/service_test.go
@@ -76,11 +76,11 @@ var _ = Describe("Searchprovider", func() {
)
BeforeEach(func() {
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/settings/pkg/config/defaults/defaultconfig.go b/services/settings/pkg/config/defaults/defaultconfig.go
index 08de3bfd24..9a5a8ed9c4 100644
--- a/services/settings/pkg/config/defaults/defaultconfig.go
+++ b/services/settings/pkg/config/defaults/defaultconfig.go
@@ -34,7 +34,7 @@ func DefaultConfig() *config.Config {
},
HTTP: config.HTTP{
Addr: "127.0.0.1:9190",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
Root: "/",
CORS: config.CORS{
AllowedOrigins: []string{"*"},
@@ -45,12 +45,12 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9191",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
},
SetupDefaultAssignments: false,
Metadata: config.Metadata{
- GatewayAddress: "com.owncloud.api.storage-system",
- StorageAddress: "com.owncloud.api.storage-system",
+ GatewayAddress: "eu.opencloud.api.storage-system",
+ StorageAddress: "eu.opencloud.api.storage-system",
SystemUserIDP: "internal",
Cache: &config.Cache{
Store: "memory",
diff --git a/services/sharing/pkg/config/defaults/defaultconfig.go b/services/sharing/pkg/config/defaults/defaultconfig.go
index 0f176cd7d3..c733b9622a 100644
--- a/services/sharing/pkg/config/defaults/defaultconfig.go
+++ b/services/sharing/pkg/config/defaults/defaultconfig.go
@@ -28,7 +28,7 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9150",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
Protocol: "tcp",
},
Service: config.Service{
@@ -41,11 +41,11 @@ func DefaultConfig() *config.Config {
File: filepath.Join(defaults.BaseDataPath(), "storage", "shares.json"),
},
CS3: config.UserSharingCS3Driver{
- ProviderAddr: "com.owncloud.api.storage-system",
+ ProviderAddr: "eu.opencloud.api.storage-system",
SystemUserIDP: "internal",
},
JSONCS3: config.UserSharingJSONCS3Driver{
- ProviderAddr: "com.owncloud.api.storage-system",
+ ProviderAddr: "eu.opencloud.api.storage-system",
SystemUserIDP: "internal",
MaxConcurrency: 1,
},
@@ -62,11 +62,11 @@ func DefaultConfig() *config.Config {
File: filepath.Join(defaults.BaseDataPath(), "storage", "publicshares.json"),
},
CS3: config.PublicSharingCS3Driver{
- ProviderAddr: "com.owncloud.api.storage-system", // system storage
+ ProviderAddr: "eu.opencloud.api.storage-system", // system storage
SystemUserIDP: "internal",
},
JSONCS3: config.PublicSharingJSONCS3Driver{
- ProviderAddr: "com.owncloud.api.storage-system", // system storage
+ ProviderAddr: "eu.opencloud.api.storage-system", // system storage
SystemUserIDP: "internal",
},
// TODO implement and add owncloudsql publicshare driver
diff --git a/services/sse/pkg/config/defaults/defaultconfig.go b/services/sse/pkg/config/defaults/defaultconfig.go
index 8f8d48b41b..6814b6a496 100644
--- a/services/sse/pkg/config/defaults/defaultconfig.go
+++ b/services/sse/pkg/config/defaults/defaultconfig.go
@@ -31,7 +31,7 @@ func DefaultConfig() *config.Config {
HTTP: config.HTTP{
Addr: "127.0.0.1:9135",
Root: "/",
- Namespace: "com.owncloud.sse",
+ Namespace: "eu.opencloud.sse",
CORS: config.CORS{
AllowedOrigins: []string{"*"},
AllowedMethods: []string{"GET"},
diff --git a/services/storage-publiclink/pkg/config/defaults/defaultconfig.go b/services/storage-publiclink/pkg/config/defaults/defaultconfig.go
index ebc10fa13b..5c149918a0 100644
--- a/services/storage-publiclink/pkg/config/defaults/defaultconfig.go
+++ b/services/storage-publiclink/pkg/config/defaults/defaultconfig.go
@@ -25,7 +25,7 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9178",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
Protocol: "tcp",
},
Service: config.Service{
diff --git a/services/storage-shares/pkg/config/defaults/defaultconfig.go b/services/storage-shares/pkg/config/defaults/defaultconfig.go
index 341507c6ed..9ad9dee361 100644
--- a/services/storage-shares/pkg/config/defaults/defaultconfig.go
+++ b/services/storage-shares/pkg/config/defaults/defaultconfig.go
@@ -25,7 +25,7 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9154",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
Protocol: "tcp",
},
Service: config.Service{
@@ -34,7 +34,7 @@ func DefaultConfig() *config.Config {
Reva: shared.DefaultRevaConfig(),
MountID: "7639e57c-4433-4a12-8201-722fd0009154",
ReadOnly: false,
- SharesProviderEndpoint: "com.owncloud.api.sharing",
+ SharesProviderEndpoint: "eu.opencloud.api.sharing",
}
}
diff --git a/services/storage-system/pkg/config/defaults/defaultconfig.go b/services/storage-system/pkg/config/defaults/defaultconfig.go
index 0d45e76a4b..da5ae5da9e 100644
--- a/services/storage-system/pkg/config/defaults/defaultconfig.go
+++ b/services/storage-system/pkg/config/defaults/defaultconfig.go
@@ -29,12 +29,12 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9215",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
Protocol: "tcp",
},
HTTP: config.HTTPConfig{
Addr: "127.0.0.1:9216",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
Protocol: "tcp",
},
Service: config.Service{
diff --git a/services/storage-users/pkg/config/defaults/defaultconfig.go b/services/storage-users/pkg/config/defaults/defaultconfig.go
index e05689ad49..6c9f0d40ea 100644
--- a/services/storage-users/pkg/config/defaults/defaultconfig.go
+++ b/services/storage-users/pkg/config/defaults/defaultconfig.go
@@ -29,12 +29,12 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9157",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
Protocol: "tcp",
},
HTTP: config.HTTPConfig{
Addr: "127.0.0.1:9158",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
Protocol: "tcp",
Prefix: "data",
CORS: config.CORS{
@@ -103,7 +103,7 @@ func DefaultConfig() *config.Config {
DBHost: "",
DBPort: 3306,
DBName: "owncloud",
- UsersProviderEndpoint: "com.owncloud.api.users",
+ UsersProviderEndpoint: "eu.opencloud.api.users",
},
S3NG: config.S3NGDriver{
Propagator: "sync",
@@ -118,7 +118,7 @@ func DefaultConfig() *config.Config {
PersonalSpacePathTemplate: "",
GeneralSpaceAliasTemplate: "{{.SpaceType}}/{{.SpaceName | replace \" \" \"-\" | lower}}",
GeneralSpacePathTemplate: "",
- PermissionsEndpoint: "com.owncloud.api.settings",
+ PermissionsEndpoint: "eu.opencloud.api.settings",
MaxAcquireLockCycles: 20,
MaxConcurrency: 5,
LockCycleDurationFactor: 30,
@@ -133,7 +133,7 @@ func DefaultConfig() *config.Config {
PersonalSpacePathTemplate: "",
GeneralSpaceAliasTemplate: "{{.SpaceType}}/{{.SpaceName | replace \" \" \"-\" | lower}}",
GeneralSpacePathTemplate: "",
- PermissionsEndpoint: "com.owncloud.api.settings",
+ PermissionsEndpoint: "eu.opencloud.api.settings",
MaxAcquireLockCycles: 20,
MaxConcurrency: 5,
LockCycleDurationFactor: 30,
@@ -144,7 +144,7 @@ func DefaultConfig() *config.Config {
Root: filepath.Join(defaults.BaseDataPath(), "storage", "users"),
PersonalSpacePathTemplate: "users/{{.User.Username}}",
GeneralSpacePathTemplate: "projects/{{.SpaceId}}",
- PermissionsEndpoint: "com.owncloud.api.settings",
+ PermissionsEndpoint: "eu.opencloud.api.settings",
AsyncUploads: true,
ScanDebounceDelay: 1 * time.Second,
},
diff --git a/services/storage-users/pkg/task/task_suite_test.go b/services/storage-users/pkg/task/task_suite_test.go
index 3ed0b41d20..947bccd419 100644
--- a/services/storage-users/pkg/task/task_suite_test.go
+++ b/services/storage-users/pkg/task/task_suite_test.go
@@ -12,7 +12,7 @@ import (
func init() {
r := registry.GetRegistry(registry.Inmemory())
- service := registry.BuildGRPCService("com.owncloud.api.gateway", "", "", "")
+ service := registry.BuildGRPCService("eu.opencloud.api.gateway", "", "", "")
service.Nodes = []*mRegistry.Node{{
Address: "any",
}}
diff --git a/services/storage-users/pkg/task/trash_bin_test.go b/services/storage-users/pkg/task/trash_bin_test.go
index 487f181192..f0d95d3440 100644
--- a/services/storage-users/pkg/task/trash_bin_test.go
+++ b/services/storage-users/pkg/task/trash_bin_test.go
@@ -48,11 +48,11 @@ var _ = Describe("trash", func() {
)
BeforeEach(func() {
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/thumbnails/pkg/config/defaults/defaultconfig.go b/services/thumbnails/pkg/config/defaults/defaultconfig.go
index f525ba16e7..37551d8d24 100644
--- a/services/thumbnails/pkg/config/defaults/defaultconfig.go
+++ b/services/thumbnails/pkg/config/defaults/defaultconfig.go
@@ -29,13 +29,13 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9185",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
MaxConcurrentRequests: 0,
},
HTTP: config.HTTP{
Addr: "127.0.0.1:9186",
Root: "/thumbnails",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
CORS: config.CORS{
AllowedOrigins: []string{"*"},
AllowedMethods: []string{"GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS"},
diff --git a/services/userlog/pkg/command/server.go b/services/userlog/pkg/command/server.go
index 286b54db8f..f9a2a083c2 100644
--- a/services/userlog/pkg/command/server.go
+++ b/services/userlog/pkg/command/server.go
@@ -105,9 +105,9 @@ func Server(cfg *config.Config) *cli.Command {
return fmt.Errorf("could not get reva client selector: %s", err)
}
- hClient := ehsvc.NewEventHistoryService("com.owncloud.api.eventhistory", grpcClient)
- vClient := settingssvc.NewValueService("com.owncloud.api.settings", grpcClient)
- rClient := settingssvc.NewRoleService("com.owncloud.api.settings", grpcClient)
+ hClient := ehsvc.NewEventHistoryService("eu.opencloud.api.eventhistory", grpcClient)
+ vClient := settingssvc.NewValueService("eu.opencloud.api.settings", grpcClient)
+ rClient := settingssvc.NewRoleService("eu.opencloud.api.settings", grpcClient)
{
server, err := http.Server(
diff --git a/services/userlog/pkg/config/defaults/defaultconfig.go b/services/userlog/pkg/config/defaults/defaultconfig.go
index 41ac75cc30..86cc8a23a9 100644
--- a/services/userlog/pkg/config/defaults/defaultconfig.go
+++ b/services/userlog/pkg/config/defaults/defaultconfig.go
@@ -45,7 +45,7 @@ func DefaultConfig() *config.Config {
HTTP: config.HTTP{
Addr: "127.0.0.1:9210",
Root: "/",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
CORS: config.CORS{
AllowedOrigins: []string{"*"},
AllowedMethods: []string{"GET"},
diff --git a/services/userlog/pkg/service/service_suit_test.go b/services/userlog/pkg/service/service_suit_test.go
index 3e703cfb93..f9c92bf2e7 100644
--- a/services/userlog/pkg/service/service_suit_test.go
+++ b/services/userlog/pkg/service/service_suit_test.go
@@ -12,7 +12,7 @@ import (
func init() {
r := registry.GetRegistry(registry.Inmemory())
- service := registry.BuildGRPCService("com.owncloud.api.gateway", "", "", "")
+ service := registry.BuildGRPCService("eu.opencloud.api.gateway", "", "", "")
service.Nodes = []*mRegistry.Node{{
Address: "any",
}}
diff --git a/services/userlog/pkg/service/service_test.go b/services/userlog/pkg/service/service_test.go
index 9152dfc8cc..0bd08cccc5 100644
--- a/services/userlog/pkg/service/service_test.go
+++ b/services/userlog/pkg/service/service_test.go
@@ -59,11 +59,11 @@ var _ = Describe("UserlogService", func() {
sto = store.Create()
bus = testBus(make(chan events.Event))
- pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway")
+ pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway")
gatewayClient = &cs3mocks.GatewayAPIClient{}
gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient](
"GatewaySelector",
- "com.owncloud.api.gateway",
+ "eu.opencloud.api.gateway",
func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient {
return gatewayClient
},
diff --git a/services/users/pkg/config/defaults/defaultconfig.go b/services/users/pkg/config/defaults/defaultconfig.go
index 8d561f159b..e9c1f29a8a 100644
--- a/services/users/pkg/config/defaults/defaultconfig.go
+++ b/services/users/pkg/config/defaults/defaultconfig.go
@@ -28,7 +28,7 @@ func DefaultConfig() *config.Config {
},
GRPC: config.GRPCConfig{
Addr: "127.0.0.1:9144",
- Namespace: "com.owncloud.api",
+ Namespace: "eu.opencloud.api",
Protocol: "tcp",
},
Service: config.Service{
diff --git a/services/web/pkg/config/defaults/defaultconfig.go b/services/web/pkg/config/defaults/defaultconfig.go
index de16d33d09..7811087940 100644
--- a/services/web/pkg/config/defaults/defaultconfig.go
+++ b/services/web/pkg/config/defaults/defaultconfig.go
@@ -28,7 +28,7 @@ func DefaultConfig() *config.Config {
HTTP: config.HTTP{
Addr: "127.0.0.1:9100",
Root: "/",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
CacheTTL: 604800, // 7 days
CORS: config.CORS{
@@ -84,7 +84,7 @@ func DefaultConfig() *config.Config {
AppsPath: filepath.Join(defaults.BaseDataPath(), "web/assets/apps"),
ThemesPath: filepath.Join(defaults.BaseDataPath(), "web/assets/themes"),
},
- GatewayAddress: "com.owncloud.api.gateway",
+ GatewayAddress: "eu.opencloud.api.gateway",
Web: config.Web{
ThemeServer: "https://localhost:9200",
ThemePath: "/themes/opencloud/theme.json",
diff --git a/services/webdav/pkg/config/defaults/defaultconfig.go b/services/webdav/pkg/config/defaults/defaultconfig.go
index a0ac05715b..6acda5eb44 100644
--- a/services/webdav/pkg/config/defaults/defaultconfig.go
+++ b/services/webdav/pkg/config/defaults/defaultconfig.go
@@ -28,7 +28,7 @@ func DefaultConfig() *config.Config {
HTTP: config.HTTP{
Addr: "127.0.0.1:9115",
Root: "/",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
CORS: config.CORS{
AllowedOrigins: []string{"*"},
AllowedMethods: []string{"GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS"},
diff --git a/services/webdav/pkg/service/v0/service.go b/services/webdav/pkg/service/v0/service.go
index 40e63130bf..ab35835945 100644
--- a/services/webdav/pkg/service/v0/service.go
+++ b/services/webdav/pkg/service/v0/service.go
@@ -83,8 +83,8 @@ func NewService(opts ...Option) (Service, error) {
config: conf,
log: options.Logger,
mux: m,
- searchClient: searchsvc.NewSearchProviderService("com.owncloud.api.search", conf.GrpcClient),
- thumbnailsClient: thumbnailssvc.NewThumbnailService("com.owncloud.api.thumbnails", conf.GrpcClient),
+ searchClient: searchsvc.NewSearchProviderService("eu.opencloud.api.search", conf.GrpcClient),
+ thumbnailsClient: thumbnailssvc.NewThumbnailService("eu.opencloud.api.thumbnails", conf.GrpcClient),
gatewaySelector: gatewaySelector,
}
diff --git a/services/webfinger/pkg/config/defaults/defaultconfig.go b/services/webfinger/pkg/config/defaults/defaultconfig.go
index 8dfedb0d62..b1f367623a 100644
--- a/services/webfinger/pkg/config/defaults/defaultconfig.go
+++ b/services/webfinger/pkg/config/defaults/defaultconfig.go
@@ -27,7 +27,7 @@ func DefaultConfig() *config.Config {
HTTP: config.HTTP{
Addr: "127.0.0.1:9275",
Root: "/",
- Namespace: "com.owncloud.web",
+ Namespace: "eu.opencloud.web",
CORS: config.CORS{
AllowedOrigins: []string{"https://localhost:9200"},
AllowCredentials: false,