From caa3121edf11faf4d5f057d9723ac3f2530b802e Mon Sep 17 00:00:00 2001 From: Ralf Haferkamp Date: Wed, 15 Jan 2025 15:00:37 +0100 Subject: [PATCH 1/4] Remove all comments file --- pkg/registry/register_test.go | 61 ----------------------------------- 1 file changed, 61 deletions(-) delete mode 100644 pkg/registry/register_test.go diff --git a/pkg/registry/register_test.go b/pkg/registry/register_test.go deleted file mode 100644 index 134fe8b41..000000000 --- a/pkg/registry/register_test.go +++ /dev/null @@ -1,61 +0,0 @@ -package registry - -// -//import ( -// "context" -// "testing" -// -// "github.com/micro/go-micro/v2/registry" -// "github.com/opencloud-eu/opencloud/pkg/log" -//) -// -//func TestRegisterGRPCEndpoint(t *testing.T) { -// ctx, cancel := context.WithCancel(context.Background()) -// err := RegisterGRPCEndpoint(ctx, "test", "1234", "192.168.0.1:777", log.Logger{}) -// if err != nil { -// t.Errorf("Unexpected error: %v", err) -// } -// -// s, err := registry.GetService("test") -// if err != nil { -// t.Errorf("Unexpected error: %v", err) -// } -// -// if len(s) != 1 { -// t.Errorf("Expected exactly one service to be returned got %v", len(s)) -// } -// -// if len(s[0].Nodes) != 1 { -// t.Errorf("Expected exactly one node to be returned got %v", len(s[0].Nodes)) -// } -// -// testSvc := s[0] -// if testSvc.Name != "test" { -// t.Errorf("Expected service name to be 'test' got %v", s[0].Name) -// } -// -// testNode := testSvc.Nodes[0] -// -// if testNode.Address != "192.168.0.1:777" { -// t.Errorf("Expected node address to be '192.168.0.1:777' got %v", testNode.Address) -// } -// -// if testNode.Id != "test-1234" { -// t.Errorf("Expected node id to be 'test-1234' got %v", testNode.Id) -// } -// -// cancel() -// -// // When switching over to monorepo this little test fails. We're unsure of what the cause is, but since this test -// // is testing a framework specific behavior, we're better off letting it commented out. There is also no use of -// // com.owncloud.reva anywhere in the codebase, so we're effectively only registering reva as a go-micro service, -// // but not sending any message. -// s, err = registry.GetService("test") -// if err != nil { -// t.Errorf("Unexpected error: %v", err) -// } -// -// if len(s) != 0 { -// t.Errorf("Deregister on cancelation failed. Result-length should be zero, got %v", len(s)) -// } -//} From 213e9663a9130334fab04a062775f4cec521e99f Mon Sep 17 00:00:00 2001 From: Ralf Haferkamp Date: Wed, 15 Jan 2025 15:11:55 +0100 Subject: [PATCH 2/4] Rename go-micro services --- .../oc10_ocis_parallel/config/ocis/proxy.yaml | 12 ++-- deployments/examples/ocis_full/collabora.yml | 2 +- .../ocis_hello/config/ocis/proxy.yaml | 12 ++-- pkg/config/defaultconfig.go | 2 +- pkg/shared/reva.go | 2 +- services/activitylog/pkg/command/server.go | 4 +- .../pkg/config/defaults/defaultconfig.go | 2 +- .../pkg/config/defaults/defaultconfig.go | 4 +- .../pkg/config/defaults/defaultconfig.go | 2 +- services/auth-app/pkg/command/server.go | 2 +- .../pkg/config/defaults/defaultconfig.go | 4 +- .../pkg/config/defaults/defaultconfig.go | 2 +- .../pkg/config/defaults/defaultconfig.go | 2 +- .../pkg/config/defaults/defaultconfig.go | 2 +- .../pkg/config/defaults/defaultconfig.go | 2 +- .../pkg/config/defaults/defaultconfig.go | 4 +- .../pkg/config/defaults/defaultconfig.go | 2 +- services/frontend/pkg/command/events.go | 2 +- .../pkg/config/defaults/defaultconfig.go | 4 +- services/gateway/README.md | 14 ++-- .../pkg/config/defaults/defaultconfig.go | 28 ++++---- .../pkg/config/defaults/defaultconfig.go | 4 +- services/graph/pkg/server/http/server.go | 8 +-- .../graph/pkg/service/v0/application_test.go | 4 +- .../pkg/service/v0/approleassignments_test.go | 4 +- .../graph/pkg/service/v0/driveitems_test.go | 4 +- .../pkg/service/v0/educationclasses_test.go | 4 +- .../pkg/service/v0/educationschools_test.go | 4 +- .../pkg/service/v0/educationuser_test.go | 4 +- .../graph/pkg/service/v0/graph_suite_test.go | 2 +- services/graph/pkg/service/v0/graph_test.go | 4 +- services/graph/pkg/service/v0/groups_test.go | 4 +- .../graph/pkg/service/v0/password_test.go | 4 +- services/graph/pkg/service/v0/service.go | 2 +- .../graph/pkg/service/v0/sharedbyme_test.go | 4 +- .../graph/pkg/service/v0/sharedwithme_test.go | 4 +- services/graph/pkg/service/v0/users_test.go | 4 +- .../pkg/config/defaults/defaultconfig.go | 2 +- .../idp/pkg/config/defaults/defaultconfig.go | 2 +- .../pkg/config/defaults/defaultconfig.go | 2 +- services/notifications/pkg/command/server.go | 4 +- .../pkg/service/notification_suite_test.go | 2 +- .../notifications/pkg/service/service_test.go | 8 +-- .../pkg/config/defaults/defaultconfig.go | 2 +- .../ocm/pkg/config/defaults/defaultconfig.go | 4 +- services/ocs/README.md | 4 +- .../ocs/pkg/config/defaults/defaultconfig.go | 2 +- .../pkg/config/defaults/defaultconfig.go | 2 +- services/proxy/README.md | 16 ++--- services/proxy/pkg/command/server.go | 4 +- .../pkg/config/defaults/defaultconfig.go | 70 +++++++++---------- .../proxy/pkg/middleware/app_auth_test.go | 4 +- .../pkg/middleware/authentication_test.go | 4 +- .../proxy/pkg/middleware/policies_test.go | 4 +- .../pkg/middleware/public_share_auth_test.go | 4 +- services/proxy/pkg/user/backend/cs3.go | 2 +- services/search/pkg/command/index.go | 2 +- .../pkg/config/defaults/defaultconfig.go | 2 +- .../search/pkg/search/search_suite_test.go | 2 +- services/search/pkg/search/service_test.go | 4 +- .../pkg/config/defaults/defaultconfig.go | 8 +-- .../pkg/config/defaults/defaultconfig.go | 10 +-- .../sse/pkg/config/defaults/defaultconfig.go | 2 +- .../pkg/config/defaults/defaultconfig.go | 2 +- .../pkg/config/defaults/defaultconfig.go | 4 +- .../pkg/config/defaults/defaultconfig.go | 4 +- .../pkg/config/defaults/defaultconfig.go | 12 ++-- .../storage-users/pkg/task/task_suite_test.go | 2 +- .../storage-users/pkg/task/trash_bin_test.go | 4 +- .../pkg/config/defaults/defaultconfig.go | 4 +- services/userlog/pkg/command/server.go | 6 +- .../pkg/config/defaults/defaultconfig.go | 2 +- .../userlog/pkg/service/service_suit_test.go | 2 +- services/userlog/pkg/service/service_test.go | 4 +- .../pkg/config/defaults/defaultconfig.go | 2 +- .../web/pkg/config/defaults/defaultconfig.go | 4 +- .../pkg/config/defaults/defaultconfig.go | 2 +- services/webdav/pkg/service/v0/service.go | 4 +- .../pkg/config/defaults/defaultconfig.go | 2 +- 79 files changed, 203 insertions(+), 203 deletions(-) diff --git a/deployments/examples/oc10_ocis_parallel/config/ocis/proxy.yaml b/deployments/examples/oc10_ocis_parallel/config/ocis/proxy.yaml index 463b29331..40f74e890 100755 --- a/deployments/examples/oc10_ocis_parallel/config/ocis/proxy.yaml +++ b/deployments/examples/oc10_ocis_parallel/config/ocis/proxy.yaml @@ -34,17 +34,17 @@ policies: endpoint: /webdav/?preview=1 backend: http://localhost:9115 - endpoint: /remote.php/ - service: com.owncloud.web.ocdav + service: eu.opencloud.web.ocdav - endpoint: /dav/ - service: com.owncloud.web.ocdav + service: eu.opencloud.web.ocdav - endpoint: /webdav/ - service: com.owncloud.web.ocdav + service: eu.opencloud.web.ocdav - endpoint: /status.php - service: com.owncloud.web.ocdav + service: eu.opencloud.web.ocdav - endpoint: /index.php/ - service: com.owncloud.web.ocdav + service: eu.opencloud.web.ocdav - endpoint: /apps/ - service: com.owncloud.web.ocdav + service: eu.opencloud.web.ocdav - endpoint: /data backend: http://localhost:9140 - endpoint: /app/ diff --git a/deployments/examples/ocis_full/collabora.yml b/deployments/examples/ocis_full/collabora.yml index 642b8638e..1e7a7f654 100644 --- a/deployments/examples/ocis_full/collabora.yml +++ b/deployments/examples/ocis_full/collabora.yml @@ -9,7 +9,7 @@ services: ocis: environment: # make collabora the secure view app - FRONTEND_APP_HANDLER_SECURE_VIEW_APP_ADDR: com.owncloud.api.collaboration.CollaboraOnline + FRONTEND_APP_HANDLER_SECURE_VIEW_APP_ADDR: eu.opencloud.api.collaboration.CollaboraOnline GRAPH_AVAILABLE_ROLES: "b1e2218d-eef8-4d4c-b82d-0f1a1b48f3b5,a8d5fe5e-96e3-418d-825b-534dbdf22b99,fb6c3e19-e378-47e5-b277-9732f9de6e21,58c63c02-1d89-4572-916a-870abc5a1b7d,2d00ce52-1fc2-4dbc-8b95-a73b73395f5a,1c996275-f1c9-4e71-abdf-a42f6495e960,312c0871-5ef7-4b3a-85b6-0e4074c64049,aa97fe03-7980-45ac-9e50-b325749fd7e6" collaboration: diff --git a/deployments/examples/ocis_hello/config/ocis/proxy.yaml b/deployments/examples/ocis_hello/config/ocis/proxy.yaml index 10256bb35..bc3169bb0 100644 --- a/deployments/examples/ocis_hello/config/ocis/proxy.yaml +++ b/deployments/examples/ocis_hello/config/ocis/proxy.yaml @@ -34,17 +34,17 @@ policies: endpoint: /webdav/?preview=1 backend: http://localhost:9115 - endpoint: /remote.php/ - service: com.owncloud.web.ocdav + service: eu.opencloud.web.ocdav - endpoint: /dav/ - service: com.owncloud.web.ocdav + service: eu.opencloud.web.ocdav - endpoint: /webdav/ - service: com.owncloud.web.ocdav + service: eu.opencloud.web.ocdav - endpoint: /status.php - service: com.owncloud.web.ocdav + service: eu.opencloud.web.ocdav - endpoint: /index.php/ - service: com.owncloud.web.ocdav + service: eu.opencloud.web.ocdav - endpoint: /apps/ - service: com.owncloud.web.ocdav + service: eu.opencloud.web.ocdav - endpoint: /data backend: http://localhost:9140 - endpoint: /app/ diff --git a/pkg/config/defaultconfig.go b/pkg/config/defaultconfig.go index 33d049f72..d891130b2 100644 --- a/pkg/config/defaultconfig.go +++ b/pkg/config/defaultconfig.go @@ -54,7 +54,7 @@ func DefaultConfig() *Config { Host: "localhost", }, Reva: &shared.Reva{ - Address: "com.owncloud.api.gateway", + Address: "eu.opencloud.api.gateway", }, Activitylog: activitylog.DefaultConfig(), diff --git a/pkg/shared/reva.go b/pkg/shared/reva.go index a4a9f5555..87bac957d 100644 --- a/pkg/shared/reva.go +++ b/pkg/shared/reva.go @@ -5,7 +5,7 @@ import ( ) var defaultRevaConfig = Reva{ - Address: "com.owncloud.api.gateway", + Address: "eu.opencloud.api.gateway", } func DefaultRevaConfig() *Reva { diff --git a/services/activitylog/pkg/command/server.go b/services/activitylog/pkg/command/server.go index 8c80b6a0c..3b63f95c9 100644 --- a/services/activitylog/pkg/command/server.go +++ b/services/activitylog/pkg/command/server.go @@ -109,8 +109,8 @@ func Server(cfg *config.Config) *cli.Command { return err } - hClient := ehsvc.NewEventHistoryService("com.owncloud.api.eventhistory", grpcClient) - vClient := settingssvc.NewValueService("com.owncloud.api.settings", grpcClient) + hClient := ehsvc.NewEventHistoryService("eu.opencloud.api.eventhistory", grpcClient) + vClient := settingssvc.NewValueService("eu.opencloud.api.settings", grpcClient) { svc, err := http.Server( diff --git a/services/activitylog/pkg/config/defaults/defaultconfig.go b/services/activitylog/pkg/config/defaults/defaultconfig.go index 728d697f8..838689bf3 100644 --- a/services/activitylog/pkg/config/defaults/defaultconfig.go +++ b/services/activitylog/pkg/config/defaults/defaultconfig.go @@ -42,7 +42,7 @@ func DefaultConfig() *config.Config { HTTP: config.HTTP{ Addr: "127.0.0.1:9195", Root: "/", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", CORS: config.CORS{ AllowedOrigins: []string{"*"}, AllowedMethods: []string{"GET"}, diff --git a/services/app-provider/pkg/config/defaults/defaultconfig.go b/services/app-provider/pkg/config/defaults/defaultconfig.go index ae95100e5..4c1da4b88 100644 --- a/services/app-provider/pkg/config/defaults/defaultconfig.go +++ b/services/app-provider/pkg/config/defaults/defaultconfig.go @@ -25,14 +25,14 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9164", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", Protocol: "tcp", }, Service: config.Service{ Name: "app-provider", }, Reva: shared.DefaultRevaConfig(), - ExternalAddr: "com.owncloud.api.app-provider", + ExternalAddr: "eu.opencloud.api.app-provider", Driver: "", Drivers: config.Drivers{ WOPI: config.WOPIDriver{ diff --git a/services/app-registry/pkg/config/defaults/defaultconfig.go b/services/app-registry/pkg/config/defaults/defaultconfig.go index 4ec76636b..9a4c52f78 100644 --- a/services/app-registry/pkg/config/defaults/defaultconfig.go +++ b/services/app-registry/pkg/config/defaults/defaultconfig.go @@ -25,7 +25,7 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9242", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", Protocol: "tcp", }, Service: config.Service{ diff --git a/services/auth-app/pkg/command/server.go b/services/auth-app/pkg/command/server.go index 7b372c2fd..1790e3be0 100644 --- a/services/auth-app/pkg/command/server.go +++ b/services/auth-app/pkg/command/server.go @@ -128,7 +128,7 @@ func Server(cfg *config.Config) *cli.Command { return err } - rClient := settingssvc.NewRoleService("com.owncloud.api.settings", grpcClient) + rClient := settingssvc.NewRoleService("eu.opencloud.api.settings", grpcClient) server, err := http.Server( http.Logger(logger), http.Context(ctx), diff --git a/services/auth-app/pkg/config/defaults/defaultconfig.go b/services/auth-app/pkg/config/defaults/defaultconfig.go index 900f6ebe0..0c726b05a 100644 --- a/services/auth-app/pkg/config/defaults/defaultconfig.go +++ b/services/auth-app/pkg/config/defaults/defaultconfig.go @@ -27,12 +27,12 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9246", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", Protocol: "tcp", }, HTTP: config.HTTP{ Addr: "127.0.0.1:9247", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", Root: "/", CORS: config.CORS{ AllowedOrigins: []string{"*"}, diff --git a/services/auth-basic/pkg/config/defaults/defaultconfig.go b/services/auth-basic/pkg/config/defaults/defaultconfig.go index 80994cb51..b5828bd71 100644 --- a/services/auth-basic/pkg/config/defaults/defaultconfig.go +++ b/services/auth-basic/pkg/config/defaults/defaultconfig.go @@ -28,7 +28,7 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9146", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", Protocol: "tcp", }, Service: config.Service{ diff --git a/services/auth-bearer/pkg/config/defaults/defaultconfig.go b/services/auth-bearer/pkg/config/defaults/defaultconfig.go index 66f6d722a..b35d06346 100644 --- a/services/auth-bearer/pkg/config/defaults/defaultconfig.go +++ b/services/auth-bearer/pkg/config/defaults/defaultconfig.go @@ -25,7 +25,7 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9148", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", Protocol: "tcp", }, Service: config.Service{ diff --git a/services/auth-machine/pkg/config/defaults/defaultconfig.go b/services/auth-machine/pkg/config/defaults/defaultconfig.go index 5f90dbe74..7bb753874 100644 --- a/services/auth-machine/pkg/config/defaults/defaultconfig.go +++ b/services/auth-machine/pkg/config/defaults/defaultconfig.go @@ -25,7 +25,7 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9166", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", Protocol: "tcp", }, Service: config.Service{ diff --git a/services/auth-service/pkg/config/defaults/defaultconfig.go b/services/auth-service/pkg/config/defaults/defaultconfig.go index 14736a918..de1e960ee 100644 --- a/services/auth-service/pkg/config/defaults/defaultconfig.go +++ b/services/auth-service/pkg/config/defaults/defaultconfig.go @@ -25,7 +25,7 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9199", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", Protocol: "tcp", }, Service: config.Service{ diff --git a/services/collaboration/pkg/config/defaults/defaultconfig.go b/services/collaboration/pkg/config/defaults/defaultconfig.go index d0cec439d..2a6e84df0 100644 --- a/services/collaboration/pkg/config/defaults/defaultconfig.go +++ b/services/collaboration/pkg/config/defaults/defaultconfig.go @@ -43,11 +43,11 @@ func DefaultConfig() *config.Config { GRPC: config.GRPC{ Addr: "127.0.0.1:9301", Protocol: "tcp", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", }, HTTP: config.HTTP{ Addr: "127.0.0.1:9300", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", }, Debug: config.Debug{ Addr: "127.0.0.1:9304", diff --git a/services/eventhistory/pkg/config/defaults/defaultconfig.go b/services/eventhistory/pkg/config/defaults/defaultconfig.go index 4e2d0390e..95f3ef181 100644 --- a/services/eventhistory/pkg/config/defaults/defaultconfig.go +++ b/services/eventhistory/pkg/config/defaults/defaultconfig.go @@ -41,7 +41,7 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9274", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", }, } } diff --git a/services/frontend/pkg/command/events.go b/services/frontend/pkg/command/events.go index 16d2b941c..3f1323c50 100644 --- a/services/frontend/pkg/command/events.go +++ b/services/frontend/pkg/command/events.go @@ -80,7 +80,7 @@ func ListenForEvents(ctx context.Context, cfg *config.Config, l log.Logger) erro return err } - valueService := settingssvc.NewValueService("com.owncloud.api.settings", grpcClient) + valueService := settingssvc.NewValueService("eu.opencloud.api.settings", grpcClient) wg := sync.WaitGroup{} for i := 0; i < cfg.MaxConcurrency; i++ { diff --git a/services/frontend/pkg/config/defaults/defaultconfig.go b/services/frontend/pkg/config/defaults/defaultconfig.go index 624cff090..6a5190192 100644 --- a/services/frontend/pkg/config/defaults/defaultconfig.go +++ b/services/frontend/pkg/config/defaults/defaultconfig.go @@ -27,7 +27,7 @@ func DefaultConfig() *config.Config { }, HTTP: config.HTTPConfig{ Addr: "127.0.0.1:9140", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", Protocol: "tcp", Prefix: "", CORS: config.CORS{ @@ -94,7 +94,7 @@ func DefaultConfig() *config.Config { }, AppHandler: config.AppHandler{ Prefix: "app", - SecureViewAppAddr: "com.owncloud.api.collaboration", + SecureViewAppAddr: "eu.opencloud.api.collaboration", }, Archiver: config.Archiver{ Insecure: false, diff --git a/services/gateway/README.md b/services/gateway/README.md index 7af9034fd..3fc252aef 100644 --- a/services/gateway/README.md +++ b/services/gateway/README.md @@ -42,7 +42,7 @@ The scheme for this setup is the following. Note that there is, except storage, |------|------|------| | OC_GRPC_PROTOCOL or
``_GRPC_PROTOCOL | tcp | unix | | ``_GRPC_ADDR | 127.0.0.1:`` | /var/run/ocis/``.sock | -| GATEWAY_``_ENDPOINT | com.owncloud.api.`` | unix:/var/run/ocis/``.sock
dns: ...
kubernetes: ... | +| GATEWAY_``_ENDPOINT | eu.opencloud.api.`` | unix:/var/run/ocis/``.sock
dns: ...
kubernetes: ... | ```console USERS_GRPC_PROTOCOL=unix" @@ -108,7 +108,7 @@ In order to add another storage provider the CS3 storage registry that is runnin ```json { - "com.owncloud.api.storage-users": { + "eu.opencloud.api.storage-users": { "providerid": "{storage-users-mount-uuid}", "spaces": { "personal": { @@ -121,7 +121,7 @@ In order to add another storage provider the CS3 storage registry that is runnin } } }, - "com.owncloud.api.storage-shares": { + "eu.opencloud.api.storage-shares": { "providerid": "a0ca6a90-a365-4782-871e-d44447bbc668", "spaces": { "virtual": { @@ -136,7 +136,7 @@ In order to add another storage provider the CS3 storage registry that is runnin } } }, - "com.owncloud.api.storage-publiclink": { + "eu.opencloud.api.storage-publiclink": { "providerid": "7993447f-687f-490d-875c-ac95e89a62a4", "spaces": { "grant": { @@ -148,7 +148,7 @@ In order to add another storage provider the CS3 storage registry that is runnin } } }, - "com.owncloud.api.ocm": { + "eu.opencloud.api.ocm": { "providerid": "89f37a33-858b-45fa-8890-a1f2b27d90e1", "spaces": { "grant": { @@ -160,7 +160,7 @@ In order to add another storage provider the CS3 storage registry that is runnin } } }, - "com.owncloud.api.storage-hello": { + "eu.opencloud.api.storage-hello": { "providerid": "hello-storage-id", "spaces": { "project": { @@ -172,4 +172,4 @@ In order to add another storage provider the CS3 storage registry that is runnin } ``` -In the above replace `{storage-users-mount-uuid}` with the mount UUID that was generated for the storage-users service. You can find it in the `config.yaml` generated on by `ocis init`. The last entry `com.owncloud.api.storage-hello` and its `providerid` `"hello-storage-id"` are an example for in additional storage provider, in this case running `hellofs`, an example minimal storage driver. +In the above replace `{storage-users-mount-uuid}` with the mount UUID that was generated for the storage-users service. You can find it in the `config.yaml` generated on by `ocis init`. The last entry `eu.opencloud.api.storage-hello` and its `providerid` `"hello-storage-id"` are an example for in additional storage provider, in this case running `hellofs`, an example minimal storage driver. diff --git a/services/gateway/pkg/config/defaults/defaultconfig.go b/services/gateway/pkg/config/defaults/defaultconfig.go index 84757c0c2..f3036ed17 100644 --- a/services/gateway/pkg/config/defaults/defaultconfig.go +++ b/services/gateway/pkg/config/defaults/defaultconfig.go @@ -27,7 +27,7 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9142", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", Protocol: "tcp", }, Service: config.Service{ @@ -51,19 +51,19 @@ func DefaultConfig() *config.Config { FrontendPublicURL: "https://localhost:9200", - AppRegistryEndpoint: "com.owncloud.api.app-registry", - AuthAppEndpoint: "com.owncloud.api.auth-app", - AuthBasicEndpoint: "com.owncloud.api.auth-basic", - AuthMachineEndpoint: "com.owncloud.api.auth-machine", - AuthServiceEndpoint: "com.owncloud.api.auth-service", - GroupsEndpoint: "com.owncloud.api.groups", - PermissionsEndpoint: "com.owncloud.api.settings", - SharingEndpoint: "com.owncloud.api.sharing", - StoragePublicLinkEndpoint: "com.owncloud.api.storage-publiclink", - StorageSharesEndpoint: "com.owncloud.api.storage-shares", - StorageUsersEndpoint: "com.owncloud.api.storage-users", - UsersEndpoint: "com.owncloud.api.users", - OCMEndpoint: "com.owncloud.api.ocm", + AppRegistryEndpoint: "eu.opencloud.api.app-registry", + AuthAppEndpoint: "eu.opencloud.api.auth-app", + AuthBasicEndpoint: "eu.opencloud.api.auth-basic", + AuthMachineEndpoint: "eu.opencloud.api.auth-machine", + AuthServiceEndpoint: "eu.opencloud.api.auth-service", + GroupsEndpoint: "eu.opencloud.api.groups", + PermissionsEndpoint: "eu.opencloud.api.settings", + SharingEndpoint: "eu.opencloud.api.sharing", + StoragePublicLinkEndpoint: "eu.opencloud.api.storage-publiclink", + StorageSharesEndpoint: "eu.opencloud.api.storage-shares", + StorageUsersEndpoint: "eu.opencloud.api.storage-users", + UsersEndpoint: "eu.opencloud.api.users", + OCMEndpoint: "eu.opencloud.api.ocm", StorageRegistry: config.StorageRegistry{ Driver: "spaces", diff --git a/services/graph/pkg/config/defaults/defaultconfig.go b/services/graph/pkg/config/defaults/defaultconfig.go index b578c7494..dacde9d33 100644 --- a/services/graph/pkg/config/defaults/defaultconfig.go +++ b/services/graph/pkg/config/defaults/defaultconfig.go @@ -42,7 +42,7 @@ func DefaultConfig() *config.Config { }, HTTP: config.HTTP{ Addr: "127.0.0.1:9120", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", Root: "/graph", CORS: config.CORS{ AllowedOrigins: []string{"*"}, @@ -65,7 +65,7 @@ func DefaultConfig() *config.Config { }, Reva: shared.DefaultRevaConfig(), Spaces: config.Spaces{ - StorageUsersAddress: "com.owncloud.api.storage-users", + StorageUsersAddress: "eu.opencloud.api.storage-users", WebDavBase: "https://localhost:9200", WebDavPath: "/dav/spaces/", DefaultQuota: "1000000000", diff --git a/services/graph/pkg/server/http/server.go b/services/graph/pkg/server/http/server.go index 305bdc020..8f8ad57ea 100644 --- a/services/graph/pkg/server/http/server.go +++ b/services/graph/pkg/server/http/server.go @@ -95,8 +95,8 @@ func Server(opts ...Option) (http.Service, error) { account.Logger(options.Logger), account.JWTSecret(options.Config.TokenManager.JWTSecret), )) - roleService = settingssvc.NewRoleService("com.owncloud.api.settings", grpcClient) - valueService = settingssvc.NewValueService("com.owncloud.api.settings", grpcClient) + roleService = settingssvc.NewRoleService("eu.opencloud.api.settings", grpcClient) + valueService = settingssvc.NewValueService("eu.opencloud.api.settings", grpcClient) gatewaySelector, err = pool.GatewaySelector( options.Config.Reva.Address, append( @@ -126,7 +126,7 @@ func Server(opts ...Option) (http.Service, error) { keyCloakClient = keycloak.New(kcc.BasePath, kcc.ClientID, kcc.ClientSecret, kcc.ClientRealm, kcc.InsecureSkipVerify) } - hClient := ehsvc.NewEventHistoryService("com.owncloud.api.eventhistory", grpcClient) + hClient := ehsvc.NewEventHistoryService("eu.opencloud.api.eventhistory", grpcClient) var handle svc.Service handle, err = svc.NewService( @@ -140,7 +140,7 @@ func Server(opts ...Option) (http.Service, error) { svc.WithValueService(valueService), svc.WithRequireAdminMiddleware(requireAdminMiddleware), svc.WithGatewaySelector(gatewaySelector), - svc.WithSearchService(searchsvc.NewSearchProviderService("com.owncloud.api.search", grpcClient)), + svc.WithSearchService(searchsvc.NewSearchProviderService("eu.opencloud.api.search", grpcClient)), svc.KeycloakClient(keyCloakClient), svc.EventHistoryClient(hClient), svc.TraceProvider(options.TraceProvider), diff --git a/services/graph/pkg/service/v0/application_test.go b/services/graph/pkg/service/v0/application_test.go index 06a75bc42..0cd71254f 100644 --- a/services/graph/pkg/service/v0/application_test.go +++ b/services/graph/pkg/service/v0/application_test.go @@ -50,11 +50,11 @@ var _ = Describe("Applications", func() { identityBackend = &identitymocks.Backend{} roleService = &mocks.RoleService{} - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/graph/pkg/service/v0/approleassignments_test.go b/services/graph/pkg/service/v0/approleassignments_test.go index 9dd3d20f9..f737e24d6 100644 --- a/services/graph/pkg/service/v0/approleassignments_test.go +++ b/services/graph/pkg/service/v0/approleassignments_test.go @@ -60,11 +60,11 @@ var _ = Describe("AppRoleAssignments", func() { identityBackend = &identitymocks.Backend{} roleService = &mocks.RoleService{} - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/graph/pkg/service/v0/driveitems_test.go b/services/graph/pkg/service/v0/driveitems_test.go index b6772feb4..336dd22fc 100644 --- a/services/graph/pkg/service/v0/driveitems_test.go +++ b/services/graph/pkg/service/v0/driveitems_test.go @@ -61,11 +61,11 @@ var _ = Describe("Driveitems", func() { BeforeEach(func() { eventsPublisher.On("Publish", mock.Anything, mock.Anything, mock.Anything).Return(nil) - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/graph/pkg/service/v0/educationclasses_test.go b/services/graph/pkg/service/v0/educationclasses_test.go index f15da8229..dd54c6253 100644 --- a/services/graph/pkg/service/v0/educationclasses_test.go +++ b/services/graph/pkg/service/v0/educationclasses_test.go @@ -53,11 +53,11 @@ var _ = Describe("EducationClass", func() { BeforeEach(func() { eventsPublisher.On("Publish", mock.Anything, mock.Anything, mock.Anything).Return(nil) - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/graph/pkg/service/v0/educationschools_test.go b/services/graph/pkg/service/v0/educationschools_test.go index 4dbad389d..ec5482dfd 100644 --- a/services/graph/pkg/service/v0/educationschools_test.go +++ b/services/graph/pkg/service/v0/educationschools_test.go @@ -54,11 +54,11 @@ var _ = Describe("Schools", func() { ) BeforeEach(func() { - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/graph/pkg/service/v0/educationuser_test.go b/services/graph/pkg/service/v0/educationuser_test.go index 803055253..bdcb47a4a 100644 --- a/services/graph/pkg/service/v0/educationuser_test.go +++ b/services/graph/pkg/service/v0/educationuser_test.go @@ -58,11 +58,11 @@ var _ = Describe("EducationUsers", func() { BeforeEach(func() { eventsPublisher.On("Publish", mock.Anything, mock.Anything, mock.Anything).Return(nil) - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/graph/pkg/service/v0/graph_suite_test.go b/services/graph/pkg/service/v0/graph_suite_test.go index 37e18501a..e15620f40 100644 --- a/services/graph/pkg/service/v0/graph_suite_test.go +++ b/services/graph/pkg/service/v0/graph_suite_test.go @@ -12,7 +12,7 @@ import ( func init() { r := registry.GetRegistry(registry.Inmemory()) - service := registry.BuildGRPCService("com.owncloud.api.gateway", "", "", "") + service := registry.BuildGRPCService("eu.opencloud.api.gateway", "", "", "") service.Nodes = []*mRegistry.Node{{ Address: "any", }} diff --git a/services/graph/pkg/service/v0/graph_test.go b/services/graph/pkg/service/v0/graph_test.go index 21acff91d..eb0e34a3a 100644 --- a/services/graph/pkg/service/v0/graph_test.go +++ b/services/graph/pkg/service/v0/graph_test.go @@ -68,11 +68,11 @@ var _ = Describe("Graph", func() { cfg.Commons = &shared.Commons{} cfg.GRPCClientTLS = &shared.GRPCClientTLS{} - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/graph/pkg/service/v0/groups_test.go b/services/graph/pkg/service/v0/groups_test.go index e70a80fdd..4a1dc32a3 100644 --- a/services/graph/pkg/service/v0/groups_test.go +++ b/services/graph/pkg/service/v0/groups_test.go @@ -59,11 +59,11 @@ var _ = Describe("Groups", func() { BeforeEach(func() { eventsPublisher.On("Publish", mock.Anything, mock.Anything, mock.Anything).Return(nil) - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/graph/pkg/service/v0/password_test.go b/services/graph/pkg/service/v0/password_test.go index eae4d5e35..a26b4f963 100644 --- a/services/graph/pkg/service/v0/password_test.go +++ b/services/graph/pkg/service/v0/password_test.go @@ -51,11 +51,11 @@ var _ = Describe("Users changing their own password", func() { cfg.TokenManager.JWTSecret = "loremipsum" cfg.GRPCClientTLS = &shared.GRPCClientTLS{} - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/graph/pkg/service/v0/service.go b/services/graph/pkg/service/v0/service.go index bc968366f..7804033e3 100644 --- a/services/graph/pkg/service/v0/service.go +++ b/services/graph/pkg/service/v0/service.go @@ -170,7 +170,7 @@ func NewService(opts ...Option) (Graph, error) { //nolint:maintidx if err != nil { return svc, err } - svc.permissionsService = settingssvc.NewPermissionService("com.owncloud.api.settings", grpcClient) + svc.permissionsService = settingssvc.NewPermissionService("eu.opencloud.api.settings", grpcClient) } else { svc.permissionsService = options.PermissionService } diff --git a/services/graph/pkg/service/v0/sharedbyme_test.go b/services/graph/pkg/service/v0/sharedbyme_test.go index 2484b1a98..c888d54aa 100644 --- a/services/graph/pkg/service/v0/sharedbyme_test.go +++ b/services/graph/pkg/service/v0/sharedbyme_test.go @@ -143,7 +143,7 @@ var _ = Describe("sharedbyme", func() { rr = httptest.NewRecorder() - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewayClient.On("Stat", @@ -228,7 +228,7 @@ var _ = Describe("sharedbyme", func() { gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/graph/pkg/service/v0/sharedwithme_test.go b/services/graph/pkg/service/v0/sharedwithme_test.go index 9ff404f54..d5461d2ac 100644 --- a/services/graph/pkg/service/v0/sharedwithme_test.go +++ b/services/graph/pkg/service/v0/sharedwithme_test.go @@ -48,11 +48,11 @@ var _ = Describe("SharedWithMe", func() { ) BeforeEach(func() { - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/graph/pkg/service/v0/users_test.go b/services/graph/pkg/service/v0/users_test.go index 3fe238848..fd4945c9c 100644 --- a/services/graph/pkg/service/v0/users_test.go +++ b/services/graph/pkg/service/v0/users_test.go @@ -66,11 +66,11 @@ var _ = Describe("Users", func() { BeforeEach(func() { eventsPublisher.On("Publish", mock.Anything, mock.Anything, mock.Anything).Return(nil) - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/groups/pkg/config/defaults/defaultconfig.go b/services/groups/pkg/config/defaults/defaultconfig.go index 3b9b95e84..db3959876 100644 --- a/services/groups/pkg/config/defaults/defaultconfig.go +++ b/services/groups/pkg/config/defaults/defaultconfig.go @@ -28,7 +28,7 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9160", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", Protocol: "tcp", }, Service: config.Service{ diff --git a/services/idp/pkg/config/defaults/defaultconfig.go b/services/idp/pkg/config/defaults/defaultconfig.go index 246a3d412..d64b378ab 100644 --- a/services/idp/pkg/config/defaults/defaultconfig.go +++ b/services/idp/pkg/config/defaults/defaultconfig.go @@ -28,7 +28,7 @@ func DefaultConfig() *config.Config { HTTP: config.HTTP{ Addr: "127.0.0.1:9130", Root: "/", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", TLSCert: filepath.Join(defaults.BaseDataPath(), "idp", "server.crt"), TLSKey: filepath.Join(defaults.BaseDataPath(), "idp", "server.key"), TLS: false, diff --git a/services/invitations/pkg/config/defaults/defaultconfig.go b/services/invitations/pkg/config/defaults/defaultconfig.go index 4d54d4516..8a688f9c0 100644 --- a/services/invitations/pkg/config/defaults/defaultconfig.go +++ b/services/invitations/pkg/config/defaults/defaultconfig.go @@ -24,7 +24,7 @@ func DefaultConfig() *config.Config { HTTP: config.HTTP{ Addr: "127.0.0.1:9265", Root: "/graph/v1.0", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", CORS: config.CORS{ AllowedOrigins: []string{"https://localhost:9200"}, }, diff --git a/services/notifications/pkg/command/server.go b/services/notifications/pkg/command/server.go index eb475ca7b..13bde9344 100644 --- a/services/notifications/pkg/command/server.go +++ b/services/notifications/pkg/command/server.go @@ -120,8 +120,8 @@ func Server(cfg *config.Config) *cli.Command { if err != nil { logger.Fatal().Err(err).Str("addr", cfg.Notifications.RevaGateway).Msg("could not get reva gateway selector") } - valueService := settingssvc.NewValueService("com.owncloud.api.settings", grpcClient) - historyClient := ehsvc.NewEventHistoryService("com.owncloud.api.eventhistory", grpcClient) + valueService := settingssvc.NewValueService("eu.opencloud.api.settings", grpcClient) + historyClient := ehsvc.NewEventHistoryService("eu.opencloud.api.eventhistory", grpcClient) notificationStore := store.Create( store.Store(cfg.Store.Store), diff --git a/services/notifications/pkg/service/notification_suite_test.go b/services/notifications/pkg/service/notification_suite_test.go index 16841667a..5eca9f480 100644 --- a/services/notifications/pkg/service/notification_suite_test.go +++ b/services/notifications/pkg/service/notification_suite_test.go @@ -12,7 +12,7 @@ import ( func init() { r := registry.GetRegistry(registry.Inmemory()) - service := registry.BuildGRPCService("com.owncloud.api.gateway", "", "", "") + service := registry.BuildGRPCService("eu.opencloud.api.gateway", "", "", "") service.Nodes = []*mRegistry.Node{{ Address: "any", }} diff --git a/services/notifications/pkg/service/service_test.go b/services/notifications/pkg/service/service_test.go index 442382507..ab79bb67a 100644 --- a/services/notifications/pkg/service/service_test.go +++ b/services/notifications/pkg/service/service_test.go @@ -55,11 +55,11 @@ var _ = Describe("Notifications", func() { ) BeforeEach(func() { - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, @@ -263,11 +263,11 @@ var _ = Describe("Notifications X-Site Scripting", func() { ) BeforeEach(func() { - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/ocdav/pkg/config/defaults/defaultconfig.go b/services/ocdav/pkg/config/defaults/defaultconfig.go index 09d06c6e5..4e4f621e9 100644 --- a/services/ocdav/pkg/config/defaults/defaultconfig.go +++ b/services/ocdav/pkg/config/defaults/defaultconfig.go @@ -26,7 +26,7 @@ func DefaultConfig() *config.Config { }, HTTP: config.HTTPConfig{ Addr: "127.0.0.1:9350", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", Protocol: "tcp", Prefix: "", CORS: config.CORS{ diff --git a/services/ocm/pkg/config/defaults/defaultconfig.go b/services/ocm/pkg/config/defaults/defaultconfig.go index e90415b82..af873f9cc 100644 --- a/services/ocm/pkg/config/defaults/defaultconfig.go +++ b/services/ocm/pkg/config/defaults/defaultconfig.go @@ -29,7 +29,7 @@ func DefaultConfig() *config.Config { }, HTTP: config.HTTPConfig{ Addr: "127.0.0.1:9280", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", Protocol: "tcp", Prefix: "", CORS: config.CORS{ @@ -79,7 +79,7 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9282", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", }, Reva: shared.DefaultRevaConfig(), Service: config.Service{ diff --git a/services/ocs/README.md b/services/ocs/README.md index 801fd9c53..53c05b1e2 100644 --- a/services/ocs/README.md +++ b/services/ocs/README.md @@ -12,7 +12,7 @@ To authenticate presigned URLs the proxy service needs to read the signing keys Possible stores that can be configured via `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE` are: - `nats-js-kv`: Stores data using key-value-store feature of [nats jetstream](https://docs.nats.io/nats-concepts/jetstream/key-value-store) - `redis-sentinel`: Stores data in a configured Redis Sentinel cluster. - - `ocisstoreservice`: Stores data in the legacy ocis store service. Requires setting `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` to `com.owncloud.api.store`. + - `ocisstoreservice`: Stores data in the legacy ocis store service. Requires setting `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` to `eu.opencloud.api.store`. The `memory` store cannot be used as it does not share the memory from the ocs service signing key memory store, even in a single process. @@ -21,4 +21,4 @@ Make sure to configure the same store in the proxy service. Store specific notes: - When using `redis-sentinel`, the Redis master to use is configured via e.g. `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` in the form of `:/` like `10.10.0.200:26379/mymaster`. - When using `nats-js-kv` it is recommended to set `PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` to the same value as `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES`. That way the proxy uses the same nats instance as the ocs service. - - When using `ocisstoreservice` the `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` must be set to the service name `com.owncloud.api.store`. It does not support TTL and stores the presigning keys indefinitely. Also, the store service needs to be started. + - When using `ocisstoreservice` the `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` must be set to the service name `eu.opencloud.api.store`. It does not support TTL and stores the presigning keys indefinitely. Also, the store service needs to be started. diff --git a/services/ocs/pkg/config/defaults/defaultconfig.go b/services/ocs/pkg/config/defaults/defaultconfig.go index 41a6101c2..9d453105f 100644 --- a/services/ocs/pkg/config/defaults/defaultconfig.go +++ b/services/ocs/pkg/config/defaults/defaultconfig.go @@ -28,7 +28,7 @@ func DefaultConfig() *config.Config { HTTP: config.HTTP{ Addr: "127.0.0.1:9110", Root: "/ocs", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", CORS: config.CORS{ AllowedOrigins: []string{"*"}, AllowedMethods: []string{"GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS"}, diff --git a/services/policies/pkg/config/defaults/defaultconfig.go b/services/policies/pkg/config/defaults/defaultconfig.go index 942b74834..d71666e3f 100644 --- a/services/policies/pkg/config/defaults/defaultconfig.go +++ b/services/policies/pkg/config/defaults/defaultconfig.go @@ -29,7 +29,7 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPC{ Addr: "127.0.0.1:9125", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", }, Events: config.Events{ Endpoint: "127.0.0.1:9233", diff --git a/services/proxy/README.md b/services/proxy/README.md index 8784c0b2c..058a8d3ae 100644 --- a/services/proxy/README.md +++ b/services/proxy/README.md @@ -15,7 +15,7 @@ The following request authentication schemes are implemented: ## Configuring Routes -The proxy handles routing to all endpoints that ocis offers. The currently availabe default routes can be found [in the code](https://github.com/owncloud/ocis/blob/master/services/proxy/pkg/config/defaults/defaultconfig.go). Changing or adding routes can be necessary when writing own ocis extensions. +The proxy handles routing to all endpoints that ocis offers. The currently availabe default routes can be found [in the code](https://github.eu.opencloud.ocis/blob/master/services/proxy/pkg/config/defaults/defaultconfig.go). Changing or adding routes can be necessary when writing own ocis extensions. Due to the complexity when defining routes, these can only be defined in the yaml file but not via environment variables. @@ -26,9 +26,9 @@ policies: - name: ocis routes: - endpoint: / - service: com.owncloud.web.web + service: eu.opencloud.web.web - endpoint: /dav/ - service: com.owncloud.web.ocdav + service: eu.opencloud.web.ocdav ``` For adding _additional_ routes to the default routes use: @@ -38,7 +38,7 @@ additional_policies: - name: ocis routes: - endpoint: /custom/endpoint - service: com.owncloud.custom.custom + service: eu.opencloud.custom.custom ``` A route has the following configurable parameters: @@ -140,14 +140,14 @@ These issued JWT tokens are immutable and integrity-protected. Which means, any * Infinite Scale can't differentiate between a group being renamed in the IDP and users being reassigned to a different group. -* Infinite Scale does not get aware when a group is being deleted in the IDP, a new claim will not hold any information from the deleted group. Infinite Scale does not track a claim history to compare. +* Infinite Scale does not get aware when a group is being deleted in the IDP, a new claim will not hold any information from the deleted group. Infinite Scale does not track a claim history to compare. #### Impacts For shares or space memberships based on groups, a renamed or deleted group will impact accessing the resource: * There is no user notification about the inability accessing the resource. -* The user will only experience rejected access. +* The user will only experience rejected access. * This also applies for connected apps like the Desktop, iOS or Android app! To give access for rejected users on a resource, one with rights to share must update the group information. @@ -266,7 +266,7 @@ Store specific notes: To authenticate presigned URLs the proxy service needs to read signing keys from a store that is populated by the ocs service. Possible stores are: - `nats-js-kv`: Stores data using key-value-store feature of [nats jetstream](https://docs.nats.io/nats-concepts/jetstream/key-value-store) - `redis-sentinel`: Stores data in a configured Redis Sentinel cluster. - - `ocisstoreservice`: Stores data in the legacy ocis store service. Requires setting `PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` to `com.owncloud.api.store`. + - `ocisstoreservice`: Stores data in the legacy ocis store service. Requires setting `PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` to `eu.opencloud.api.store`. The `memory` store cannot be used as it does not share the memory from the ocs service signing key memory store, even in a single process. @@ -276,7 +276,7 @@ Store specific notes: - When using `redis-sentinel`, the Redis master to use is configured via e.g. `OC_CACHE_STORE_NODES` in the form of `:/` like `10.10.0.200:26379/mymaster`. - When using `nats-js-kv` it is recommended to set `OCS_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` to the same value as `PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES`. That way the ocs uses the same nats instance as the proxy service. - When using the `nats-js-kv` store, it is possible to set `PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_DISABLE_PERSISTENCE` to instruct nats to not persist signing key data on disc. - - When using `ocisstoreservice` the `PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` must be set to the service name `com.owncloud.api.store`. It does not support TTL and stores the presigning keys indefinitely. Also, the store service needs to be started. + - When using `ocisstoreservice` the `PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES` must be set to the service name `eu.opencloud.api.store`. It does not support TTL and stores the presigning keys indefinitely. Also, the store service needs to be started. ## Special Settings diff --git a/services/proxy/pkg/command/server.go b/services/proxy/pkg/command/server.go index ccc74b7f5..5b3dff4e7 100644 --- a/services/proxy/pkg/command/server.go +++ b/services/proxy/pkg/command/server.go @@ -247,8 +247,8 @@ func loadMiddlewares(logger log.Logger, cfg *config.Config, userProvider backend.UserBackend, publisher events.Publisher, gatewaySelector pool.Selectable[gateway.GatewayAPIClient], serviceSelector selector.Selector) alice.Chain { - rolesClient := settingssvc.NewRoleService("com.owncloud.api.settings", cfg.GrpcClient) - policiesProviderClient := policiessvc.NewPoliciesProviderService("com.owncloud.api.policies", cfg.GrpcClient) + rolesClient := settingssvc.NewRoleService("eu.opencloud.api.settings", cfg.GrpcClient) + policiesProviderClient := policiessvc.NewPoliciesProviderService("eu.opencloud.api.policies", cfg.GrpcClient) var roleAssigner userroles.UserRoleAssigner switch cfg.RoleAssignment.Driver { diff --git a/services/proxy/pkg/config/defaults/defaultconfig.go b/services/proxy/pkg/config/defaults/defaultconfig.go index bb555cec6..0fd48455c 100644 --- a/services/proxy/pkg/config/defaults/defaultconfig.go +++ b/services/proxy/pkg/config/defaults/defaultconfig.go @@ -31,7 +31,7 @@ func DefaultConfig() *config.Config { HTTP: config.HTTP{ Addr: "0.0.0.0:9200", Root: "/", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", TLSCert: path.Join(defaults.BaseDataPath(), "proxy", "server.crt"), TLSKey: path.Join(defaults.BaseDataPath(), "proxy", "server.key"), TLS: true, @@ -111,79 +111,79 @@ func DefaultPolicies() []config.Policy { Routes: []config.Route{ { Endpoint: "/", - Service: "com.owncloud.web.web", + Service: "eu.opencloud.web.web", Unprotected: true, }, { Endpoint: "/.well-known/ocm", - Service: "com.owncloud.web.ocm", + Service: "eu.opencloud.web.ocm", Unprotected: true, }, { Endpoint: "/.well-known/webfinger", - Service: "com.owncloud.web.webfinger", + Service: "eu.opencloud.web.webfinger", Unprotected: true, }, { Endpoint: "/.well-known/openid-configuration", - Service: "com.owncloud.web.idp", + Service: "eu.opencloud.web.idp", Unprotected: true, }, { Endpoint: "/branding/logo", - Service: "com.owncloud.web.web", + Service: "eu.opencloud.web.web", }, { Endpoint: "/konnect/", - Service: "com.owncloud.web.idp", + Service: "eu.opencloud.web.idp", Unprotected: true, }, { Endpoint: "/signin/", - Service: "com.owncloud.web.idp", + Service: "eu.opencloud.web.idp", Unprotected: true, }, { Endpoint: "/archiver", - Service: "com.owncloud.web.frontend", + Service: "eu.opencloud.web.frontend", }, { // reroute oc10 notifications endpoint to userlog service Endpoint: "/ocs/v2.php/apps/notifications/api/v1/notifications/sse", - Service: "com.owncloud.sse.sse", + Service: "eu.opencloud.sse.sse", }, { // reroute oc10 notifications endpoint to userlog service Endpoint: "/ocs/v2.php/apps/notifications/api/v1/notifications", - Service: "com.owncloud.web.userlog", + Service: "eu.opencloud.web.userlog", }, { Type: config.RegexRoute, Endpoint: "/ocs/v[12].php/cloud/user/signing-key", // only `user/signing-key` is left in ocis-ocs - Service: "com.owncloud.web.ocs", + Service: "eu.opencloud.web.ocs", }, { Type: config.RegexRoute, Endpoint: "/ocs/v[12].php/config", - Service: "com.owncloud.web.frontend", + Service: "eu.opencloud.web.frontend", Unprotected: true, }, { Endpoint: "/sciencemesh/", - Service: "com.owncloud.web.ocm", + Service: "eu.opencloud.web.ocm", }, { Endpoint: "/ocm/", - Service: "com.owncloud.web.ocm", + Service: "eu.opencloud.web.ocm", }, { Endpoint: "/ocs/", - Service: "com.owncloud.web.frontend", + Service: "eu.opencloud.web.frontend", }, { Type: config.QueryRoute, Endpoint: "/remote.php/?preview=1", - Service: "com.owncloud.web.webdav", + Service: "eu.opencloud.web.webdav", }, // TODO the actual REPORT goes to /dav/files/{username}, which is user specific ... how would this work in a spaces world? // TODO what paths are returned? the href contains the full path so it should be possible to return urls from other spaces? @@ -193,81 +193,81 @@ func DefaultPolicies() []config.Policy { Type: config.RegexRoute, Method: "REPORT", Endpoint: "(/remote.php)?/(web)?dav", - Service: "com.owncloud.web.webdav", + Service: "eu.opencloud.web.webdav", }, { Type: config.QueryRoute, Endpoint: "/dav/?preview=1", - Service: "com.owncloud.web.webdav", + Service: "eu.opencloud.web.webdav", }, { Type: config.QueryRoute, Endpoint: "/webdav/?preview=1", - Service: "com.owncloud.web.webdav", + Service: "eu.opencloud.web.webdav", }, { Endpoint: "/remote.php/", - Service: "com.owncloud.web.ocdav", + Service: "eu.opencloud.web.ocdav", }, { Endpoint: "/dav/", - Service: "com.owncloud.web.ocdav", + Service: "eu.opencloud.web.ocdav", }, { Endpoint: "/webdav/", - Service: "com.owncloud.web.ocdav", + Service: "eu.opencloud.web.ocdav", }, { Endpoint: "/status", - Service: "com.owncloud.web.ocdav", + Service: "eu.opencloud.web.ocdav", Unprotected: true, }, { Endpoint: "/status.php", - Service: "com.owncloud.web.ocdav", + Service: "eu.opencloud.web.ocdav", Unprotected: true, }, { Endpoint: "/index.php/", - Service: "com.owncloud.web.ocdav", + Service: "eu.opencloud.web.ocdav", }, { Endpoint: "/apps/", - Service: "com.owncloud.web.ocdav", + Service: "eu.opencloud.web.ocdav", }, { Endpoint: "/data", - Service: "com.owncloud.web.frontend", + Service: "eu.opencloud.web.frontend", Unprotected: true, }, { Endpoint: "/app/list", - Service: "com.owncloud.web.frontend", + Service: "eu.opencloud.web.frontend", Unprotected: true, }, { Endpoint: "/app/", // /app or /apps? ocdav only handles /apps - Service: "com.owncloud.web.frontend", + Service: "eu.opencloud.web.frontend", }, { Endpoint: "/graph/v1beta1/extensions/org.libregraph/activities", - Service: "com.owncloud.web.activitylog", + Service: "eu.opencloud.web.activitylog", }, { Endpoint: "/graph/v1.0/invitations", - Service: "com.owncloud.web.invitations", + Service: "eu.opencloud.web.invitations", }, { Endpoint: "/graph/", - Service: "com.owncloud.web.graph", + Service: "eu.opencloud.web.graph", }, { Endpoint: "/api/v0/settings", - Service: "com.owncloud.web.settings", + Service: "eu.opencloud.web.settings", }, { Endpoint: "/auth-app/tokens", - Service: "com.owncloud.web.auth-app", + Service: "eu.opencloud.web.auth-app", }, }, }, diff --git a/services/proxy/pkg/middleware/app_auth_test.go b/services/proxy/pkg/middleware/app_auth_test.go index 7e6850d74..93aab1e47 100644 --- a/services/proxy/pkg/middleware/app_auth_test.go +++ b/services/proxy/pkg/middleware/app_auth_test.go @@ -17,12 +17,12 @@ import ( var _ = Describe("Authenticating requests", Label("AppAuthAuthenticator"), func() { var authenticator Authenticator BeforeEach(func() { - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") authenticator = AppAuthAuthenticator{ Logger: log.NewLogger(), RevaGatewaySelector: pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return mockGatewayClient{ AuthenticateFunc: func(authType, clientID, clientSecret string) (string, rpcv1beta1.Code) { diff --git a/services/proxy/pkg/middleware/authentication_test.go b/services/proxy/pkg/middleware/authentication_test.go index 98dc6579f..fefabe52c 100644 --- a/services/proxy/pkg/middleware/authentication_test.go +++ b/services/proxy/pkg/middleware/authentication_test.go @@ -72,7 +72,7 @@ var _ = Describe("Authenticating requests", Label("Authentication"), func() { ub.On("Authenticate", mock.Anything, mock.Anything, mock.Anything).Return(nil, "", backend.ErrAccountNotFound) BeforeEach(func() { - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") logger := log.NewLogger() authenticators = []Authenticator{ @@ -91,7 +91,7 @@ var _ = Describe("Authenticating requests", Label("Authentication"), func() { Logger: logger, RevaGatewaySelector: pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return mockGatewayClient{ AuthenticateFunc: func(authType, clientID, clientSecret string) (string, rpcv1beta1.Code) { diff --git a/services/proxy/pkg/middleware/policies_test.go b/services/proxy/pkg/middleware/policies_test.go index 1f9e7ddcf..e00898131 100644 --- a/services/proxy/pkg/middleware/policies_test.go +++ b/services/proxy/pkg/middleware/policies_test.go @@ -146,12 +146,12 @@ func prepare(q string) (http.Handler, *mocks.PoliciesProviderService, *cs3mocks. gatewayClient := &cs3mocks.GatewayAPIClient{} gatewaySelector := pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, ) - defer pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + defer pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") // mocked policiesProviderService policiesProviderService := &mocks.PoliciesProviderService{} diff --git a/services/proxy/pkg/middleware/public_share_auth_test.go b/services/proxy/pkg/middleware/public_share_auth_test.go index f3371d8af..4c4731e2f 100644 --- a/services/proxy/pkg/middleware/public_share_auth_test.go +++ b/services/proxy/pkg/middleware/public_share_auth_test.go @@ -18,12 +18,12 @@ import ( var _ = Describe("Authenticating requests", Label("PublicShareAuthenticator"), func() { var authenticator Authenticator BeforeEach(func() { - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") authenticator = PublicShareAuthenticator{ Logger: log.NewLogger(), RevaGatewaySelector: pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return mockGatewayClient{ AuthenticateFunc: func(authType, clientID, clientSecret string) (string, rpcv1beta1.Code) { diff --git a/services/proxy/pkg/user/backend/cs3.go b/services/proxy/pkg/user/backend/cs3.go index 1a30089b1..f7263a990 100644 --- a/services/proxy/pkg/user/backend/cs3.go +++ b/services/proxy/pkg/user/backend/cs3.go @@ -427,7 +427,7 @@ func (c cs3backend) updateLibregraphUser(userid string, user libregraph.UserUpda func (c cs3backend) setupLibregraphClient(_ context.Context, cs3token string) (*libregraph.APIClient, error) { // Use micro registry to resolve next graph service endpoint - next, err := c.graphSelector.Select("com.owncloud.web.graph") + next, err := c.graphSelector.Select("eu.opencloud.web.graph") if err != nil { c.logger.Debug().Err(err).Msg("setupLibregraphClient: error during Select") return nil, err diff --git a/services/search/pkg/command/index.go b/services/search/pkg/command/index.go index c12e8df57..2980ca35e 100644 --- a/services/search/pkg/command/index.go +++ b/services/search/pkg/command/index.go @@ -56,7 +56,7 @@ func Index(cfg *config.Config) *cli.Command { return err } - c := searchsvc.NewSearchProviderService("com.owncloud.api.search", grpcClient) + c := searchsvc.NewSearchProviderService("eu.opencloud.api.search", grpcClient) _, err = c.IndexSpace(context.Background(), &searchsvc.IndexSpaceRequest{ SpaceId: ctx.String("space"), }, func(opts *client.CallOptions) { opts.RequestTimeout = 10 * time.Minute }) diff --git a/services/search/pkg/config/defaults/defaultconfig.go b/services/search/pkg/config/defaults/defaultconfig.go index 7f78f449d..425846756 100644 --- a/services/search/pkg/config/defaults/defaultconfig.go +++ b/services/search/pkg/config/defaults/defaultconfig.go @@ -27,7 +27,7 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9220", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", }, Service: config.Service{ Name: "search", diff --git a/services/search/pkg/search/search_suite_test.go b/services/search/pkg/search/search_suite_test.go index 8950b54d7..05bc288b1 100644 --- a/services/search/pkg/search/search_suite_test.go +++ b/services/search/pkg/search/search_suite_test.go @@ -12,7 +12,7 @@ import ( func init() { r := registry.GetRegistry(registry.Inmemory()) - service := registry.BuildGRPCService("com.owncloud.api.gateway", "", "", "") + service := registry.BuildGRPCService("eu.opencloud.api.gateway", "", "", "") service.Nodes = []*mRegistry.Node{{ Address: "any", }} diff --git a/services/search/pkg/search/service_test.go b/services/search/pkg/search/service_test.go index ac7c6d1c7..deb3558a6 100644 --- a/services/search/pkg/search/service_test.go +++ b/services/search/pkg/search/service_test.go @@ -76,11 +76,11 @@ var _ = Describe("Searchprovider", func() { ) BeforeEach(func() { - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/settings/pkg/config/defaults/defaultconfig.go b/services/settings/pkg/config/defaults/defaultconfig.go index 08de3bfd2..9a5a8ed9c 100644 --- a/services/settings/pkg/config/defaults/defaultconfig.go +++ b/services/settings/pkg/config/defaults/defaultconfig.go @@ -34,7 +34,7 @@ func DefaultConfig() *config.Config { }, HTTP: config.HTTP{ Addr: "127.0.0.1:9190", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", Root: "/", CORS: config.CORS{ AllowedOrigins: []string{"*"}, @@ -45,12 +45,12 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9191", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", }, SetupDefaultAssignments: false, Metadata: config.Metadata{ - GatewayAddress: "com.owncloud.api.storage-system", - StorageAddress: "com.owncloud.api.storage-system", + GatewayAddress: "eu.opencloud.api.storage-system", + StorageAddress: "eu.opencloud.api.storage-system", SystemUserIDP: "internal", Cache: &config.Cache{ Store: "memory", diff --git a/services/sharing/pkg/config/defaults/defaultconfig.go b/services/sharing/pkg/config/defaults/defaultconfig.go index 0f176cd7d..c733b9622 100644 --- a/services/sharing/pkg/config/defaults/defaultconfig.go +++ b/services/sharing/pkg/config/defaults/defaultconfig.go @@ -28,7 +28,7 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9150", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", Protocol: "tcp", }, Service: config.Service{ @@ -41,11 +41,11 @@ func DefaultConfig() *config.Config { File: filepath.Join(defaults.BaseDataPath(), "storage", "shares.json"), }, CS3: config.UserSharingCS3Driver{ - ProviderAddr: "com.owncloud.api.storage-system", + ProviderAddr: "eu.opencloud.api.storage-system", SystemUserIDP: "internal", }, JSONCS3: config.UserSharingJSONCS3Driver{ - ProviderAddr: "com.owncloud.api.storage-system", + ProviderAddr: "eu.opencloud.api.storage-system", SystemUserIDP: "internal", MaxConcurrency: 1, }, @@ -62,11 +62,11 @@ func DefaultConfig() *config.Config { File: filepath.Join(defaults.BaseDataPath(), "storage", "publicshares.json"), }, CS3: config.PublicSharingCS3Driver{ - ProviderAddr: "com.owncloud.api.storage-system", // system storage + ProviderAddr: "eu.opencloud.api.storage-system", // system storage SystemUserIDP: "internal", }, JSONCS3: config.PublicSharingJSONCS3Driver{ - ProviderAddr: "com.owncloud.api.storage-system", // system storage + ProviderAddr: "eu.opencloud.api.storage-system", // system storage SystemUserIDP: "internal", }, // TODO implement and add owncloudsql publicshare driver diff --git a/services/sse/pkg/config/defaults/defaultconfig.go b/services/sse/pkg/config/defaults/defaultconfig.go index 8f8d48b41..6814b6a49 100644 --- a/services/sse/pkg/config/defaults/defaultconfig.go +++ b/services/sse/pkg/config/defaults/defaultconfig.go @@ -31,7 +31,7 @@ func DefaultConfig() *config.Config { HTTP: config.HTTP{ Addr: "127.0.0.1:9135", Root: "/", - Namespace: "com.owncloud.sse", + Namespace: "eu.opencloud.sse", CORS: config.CORS{ AllowedOrigins: []string{"*"}, AllowedMethods: []string{"GET"}, diff --git a/services/storage-publiclink/pkg/config/defaults/defaultconfig.go b/services/storage-publiclink/pkg/config/defaults/defaultconfig.go index ebc10fa13..5c149918a 100644 --- a/services/storage-publiclink/pkg/config/defaults/defaultconfig.go +++ b/services/storage-publiclink/pkg/config/defaults/defaultconfig.go @@ -25,7 +25,7 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9178", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", Protocol: "tcp", }, Service: config.Service{ diff --git a/services/storage-shares/pkg/config/defaults/defaultconfig.go b/services/storage-shares/pkg/config/defaults/defaultconfig.go index 341507c6e..9ad9dee36 100644 --- a/services/storage-shares/pkg/config/defaults/defaultconfig.go +++ b/services/storage-shares/pkg/config/defaults/defaultconfig.go @@ -25,7 +25,7 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9154", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", Protocol: "tcp", }, Service: config.Service{ @@ -34,7 +34,7 @@ func DefaultConfig() *config.Config { Reva: shared.DefaultRevaConfig(), MountID: "7639e57c-4433-4a12-8201-722fd0009154", ReadOnly: false, - SharesProviderEndpoint: "com.owncloud.api.sharing", + SharesProviderEndpoint: "eu.opencloud.api.sharing", } } diff --git a/services/storage-system/pkg/config/defaults/defaultconfig.go b/services/storage-system/pkg/config/defaults/defaultconfig.go index 0d45e76a4..da5ae5da9 100644 --- a/services/storage-system/pkg/config/defaults/defaultconfig.go +++ b/services/storage-system/pkg/config/defaults/defaultconfig.go @@ -29,12 +29,12 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9215", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", Protocol: "tcp", }, HTTP: config.HTTPConfig{ Addr: "127.0.0.1:9216", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", Protocol: "tcp", }, Service: config.Service{ diff --git a/services/storage-users/pkg/config/defaults/defaultconfig.go b/services/storage-users/pkg/config/defaults/defaultconfig.go index e05689ad4..6c9f0d40e 100644 --- a/services/storage-users/pkg/config/defaults/defaultconfig.go +++ b/services/storage-users/pkg/config/defaults/defaultconfig.go @@ -29,12 +29,12 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9157", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", Protocol: "tcp", }, HTTP: config.HTTPConfig{ Addr: "127.0.0.1:9158", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", Protocol: "tcp", Prefix: "data", CORS: config.CORS{ @@ -103,7 +103,7 @@ func DefaultConfig() *config.Config { DBHost: "", DBPort: 3306, DBName: "owncloud", - UsersProviderEndpoint: "com.owncloud.api.users", + UsersProviderEndpoint: "eu.opencloud.api.users", }, S3NG: config.S3NGDriver{ Propagator: "sync", @@ -118,7 +118,7 @@ func DefaultConfig() *config.Config { PersonalSpacePathTemplate: "", GeneralSpaceAliasTemplate: "{{.SpaceType}}/{{.SpaceName | replace \" \" \"-\" | lower}}", GeneralSpacePathTemplate: "", - PermissionsEndpoint: "com.owncloud.api.settings", + PermissionsEndpoint: "eu.opencloud.api.settings", MaxAcquireLockCycles: 20, MaxConcurrency: 5, LockCycleDurationFactor: 30, @@ -133,7 +133,7 @@ func DefaultConfig() *config.Config { PersonalSpacePathTemplate: "", GeneralSpaceAliasTemplate: "{{.SpaceType}}/{{.SpaceName | replace \" \" \"-\" | lower}}", GeneralSpacePathTemplate: "", - PermissionsEndpoint: "com.owncloud.api.settings", + PermissionsEndpoint: "eu.opencloud.api.settings", MaxAcquireLockCycles: 20, MaxConcurrency: 5, LockCycleDurationFactor: 30, @@ -144,7 +144,7 @@ func DefaultConfig() *config.Config { Root: filepath.Join(defaults.BaseDataPath(), "storage", "users"), PersonalSpacePathTemplate: "users/{{.User.Username}}", GeneralSpacePathTemplate: "projects/{{.SpaceId}}", - PermissionsEndpoint: "com.owncloud.api.settings", + PermissionsEndpoint: "eu.opencloud.api.settings", AsyncUploads: true, ScanDebounceDelay: 1 * time.Second, }, diff --git a/services/storage-users/pkg/task/task_suite_test.go b/services/storage-users/pkg/task/task_suite_test.go index 3ed0b41d2..947bccd41 100644 --- a/services/storage-users/pkg/task/task_suite_test.go +++ b/services/storage-users/pkg/task/task_suite_test.go @@ -12,7 +12,7 @@ import ( func init() { r := registry.GetRegistry(registry.Inmemory()) - service := registry.BuildGRPCService("com.owncloud.api.gateway", "", "", "") + service := registry.BuildGRPCService("eu.opencloud.api.gateway", "", "", "") service.Nodes = []*mRegistry.Node{{ Address: "any", }} diff --git a/services/storage-users/pkg/task/trash_bin_test.go b/services/storage-users/pkg/task/trash_bin_test.go index 487f18119..f0d95d344 100644 --- a/services/storage-users/pkg/task/trash_bin_test.go +++ b/services/storage-users/pkg/task/trash_bin_test.go @@ -48,11 +48,11 @@ var _ = Describe("trash", func() { ) BeforeEach(func() { - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/thumbnails/pkg/config/defaults/defaultconfig.go b/services/thumbnails/pkg/config/defaults/defaultconfig.go index f525ba16e..37551d8d2 100644 --- a/services/thumbnails/pkg/config/defaults/defaultconfig.go +++ b/services/thumbnails/pkg/config/defaults/defaultconfig.go @@ -29,13 +29,13 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9185", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", MaxConcurrentRequests: 0, }, HTTP: config.HTTP{ Addr: "127.0.0.1:9186", Root: "/thumbnails", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", CORS: config.CORS{ AllowedOrigins: []string{"*"}, AllowedMethods: []string{"GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS"}, diff --git a/services/userlog/pkg/command/server.go b/services/userlog/pkg/command/server.go index 286b54db8..f9a2a083c 100644 --- a/services/userlog/pkg/command/server.go +++ b/services/userlog/pkg/command/server.go @@ -105,9 +105,9 @@ func Server(cfg *config.Config) *cli.Command { return fmt.Errorf("could not get reva client selector: %s", err) } - hClient := ehsvc.NewEventHistoryService("com.owncloud.api.eventhistory", grpcClient) - vClient := settingssvc.NewValueService("com.owncloud.api.settings", grpcClient) - rClient := settingssvc.NewRoleService("com.owncloud.api.settings", grpcClient) + hClient := ehsvc.NewEventHistoryService("eu.opencloud.api.eventhistory", grpcClient) + vClient := settingssvc.NewValueService("eu.opencloud.api.settings", grpcClient) + rClient := settingssvc.NewRoleService("eu.opencloud.api.settings", grpcClient) { server, err := http.Server( diff --git a/services/userlog/pkg/config/defaults/defaultconfig.go b/services/userlog/pkg/config/defaults/defaultconfig.go index 41ac75cc3..86cc8a23a 100644 --- a/services/userlog/pkg/config/defaults/defaultconfig.go +++ b/services/userlog/pkg/config/defaults/defaultconfig.go @@ -45,7 +45,7 @@ func DefaultConfig() *config.Config { HTTP: config.HTTP{ Addr: "127.0.0.1:9210", Root: "/", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", CORS: config.CORS{ AllowedOrigins: []string{"*"}, AllowedMethods: []string{"GET"}, diff --git a/services/userlog/pkg/service/service_suit_test.go b/services/userlog/pkg/service/service_suit_test.go index 3e703cfb9..f9c92bf2e 100644 --- a/services/userlog/pkg/service/service_suit_test.go +++ b/services/userlog/pkg/service/service_suit_test.go @@ -12,7 +12,7 @@ import ( func init() { r := registry.GetRegistry(registry.Inmemory()) - service := registry.BuildGRPCService("com.owncloud.api.gateway", "", "", "") + service := registry.BuildGRPCService("eu.opencloud.api.gateway", "", "", "") service.Nodes = []*mRegistry.Node{{ Address: "any", }} diff --git a/services/userlog/pkg/service/service_test.go b/services/userlog/pkg/service/service_test.go index 9152dfc8c..0bd08cccc 100644 --- a/services/userlog/pkg/service/service_test.go +++ b/services/userlog/pkg/service/service_test.go @@ -59,11 +59,11 @@ var _ = Describe("UserlogService", func() { sto = store.Create() bus = testBus(make(chan events.Event)) - pool.RemoveSelector("GatewaySelector" + "com.owncloud.api.gateway") + pool.RemoveSelector("GatewaySelector" + "eu.opencloud.api.gateway") gatewayClient = &cs3mocks.GatewayAPIClient{} gatewaySelector = pool.GetSelector[gateway.GatewayAPIClient]( "GatewaySelector", - "com.owncloud.api.gateway", + "eu.opencloud.api.gateway", func(cc grpc.ClientConnInterface) gateway.GatewayAPIClient { return gatewayClient }, diff --git a/services/users/pkg/config/defaults/defaultconfig.go b/services/users/pkg/config/defaults/defaultconfig.go index 8d561f159..e9c1f29a8 100644 --- a/services/users/pkg/config/defaults/defaultconfig.go +++ b/services/users/pkg/config/defaults/defaultconfig.go @@ -28,7 +28,7 @@ func DefaultConfig() *config.Config { }, GRPC: config.GRPCConfig{ Addr: "127.0.0.1:9144", - Namespace: "com.owncloud.api", + Namespace: "eu.opencloud.api", Protocol: "tcp", }, Service: config.Service{ diff --git a/services/web/pkg/config/defaults/defaultconfig.go b/services/web/pkg/config/defaults/defaultconfig.go index de16d33d0..781108794 100644 --- a/services/web/pkg/config/defaults/defaultconfig.go +++ b/services/web/pkg/config/defaults/defaultconfig.go @@ -28,7 +28,7 @@ func DefaultConfig() *config.Config { HTTP: config.HTTP{ Addr: "127.0.0.1:9100", Root: "/", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", CacheTTL: 604800, // 7 days CORS: config.CORS{ @@ -84,7 +84,7 @@ func DefaultConfig() *config.Config { AppsPath: filepath.Join(defaults.BaseDataPath(), "web/assets/apps"), ThemesPath: filepath.Join(defaults.BaseDataPath(), "web/assets/themes"), }, - GatewayAddress: "com.owncloud.api.gateway", + GatewayAddress: "eu.opencloud.api.gateway", Web: config.Web{ ThemeServer: "https://localhost:9200", ThemePath: "/themes/opencloud/theme.json", diff --git a/services/webdav/pkg/config/defaults/defaultconfig.go b/services/webdav/pkg/config/defaults/defaultconfig.go index a0ac05715..6acda5eb4 100644 --- a/services/webdav/pkg/config/defaults/defaultconfig.go +++ b/services/webdav/pkg/config/defaults/defaultconfig.go @@ -28,7 +28,7 @@ func DefaultConfig() *config.Config { HTTP: config.HTTP{ Addr: "127.0.0.1:9115", Root: "/", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", CORS: config.CORS{ AllowedOrigins: []string{"*"}, AllowedMethods: []string{"GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS"}, diff --git a/services/webdav/pkg/service/v0/service.go b/services/webdav/pkg/service/v0/service.go index 40e63130b..ab3583594 100644 --- a/services/webdav/pkg/service/v0/service.go +++ b/services/webdav/pkg/service/v0/service.go @@ -83,8 +83,8 @@ func NewService(opts ...Option) (Service, error) { config: conf, log: options.Logger, mux: m, - searchClient: searchsvc.NewSearchProviderService("com.owncloud.api.search", conf.GrpcClient), - thumbnailsClient: thumbnailssvc.NewThumbnailService("com.owncloud.api.thumbnails", conf.GrpcClient), + searchClient: searchsvc.NewSearchProviderService("eu.opencloud.api.search", conf.GrpcClient), + thumbnailsClient: thumbnailssvc.NewThumbnailService("eu.opencloud.api.thumbnails", conf.GrpcClient), gatewaySelector: gatewaySelector, } diff --git a/services/webfinger/pkg/config/defaults/defaultconfig.go b/services/webfinger/pkg/config/defaults/defaultconfig.go index 8dfedb0d6..b1f367623 100644 --- a/services/webfinger/pkg/config/defaults/defaultconfig.go +++ b/services/webfinger/pkg/config/defaults/defaultconfig.go @@ -27,7 +27,7 @@ func DefaultConfig() *config.Config { HTTP: config.HTTP{ Addr: "127.0.0.1:9275", Root: "/", - Namespace: "com.owncloud.web", + Namespace: "eu.opencloud.web", CORS: config.CORS{ AllowedOrigins: []string{"https://localhost:9200"}, AllowCredentials: false, From a11de74668fc096399998f4f740600e02bb2c5b2 Mon Sep 17 00:00:00 2001 From: Ralf Haferkamp Date: Wed, 15 Jan 2025 15:14:47 +0100 Subject: [PATCH 3/4] re-generate env_vars.yaml --- docs/helpers/env_vars.yaml | 1890 ++++++++++++++++++------------------ 1 file changed, 950 insertions(+), 940 deletions(-) diff --git a/docs/helpers/env_vars.yaml b/docs/helpers/env_vars.yaml index b85fb36de..407f4c1d9 100644 --- a/docs/helpers/env_vars.yaml +++ b/docs/helpers/env_vars.yaml @@ -345,7 +345,7 @@ ANTIVIRUS_EVENTS_AUTH_PASSWORD: defaultValue: "" type: string description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -355,7 +355,7 @@ ANTIVIRUS_EVENTS_AUTH_USERNAME: defaultValue: "" type: string description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -376,7 +376,7 @@ ANTIVIRUS_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" @@ -607,7 +607,7 @@ APP_PROVIDER_DRIVER: deprecationInfo: "" APP_PROVIDER_EXTERNAL_ADDR: name: APP_PROVIDER_EXTERNAL_ADDR - defaultValue: com.owncloud.api.app-provider + defaultValue: eu.opencloud.api.app-provider type: string description: Address of the app provider, where the GATEWAY service can reach it. introductionVersion: pre5.0 @@ -1025,7 +1025,7 @@ AUDIT_EVENTS_AUTH_PASSWORD: defaultValue: "" type: string description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -1035,7 +1035,7 @@ AUDIT_EVENTS_AUTH_USERNAME: defaultValue: "" type: string description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -1056,7 +1056,7 @@ AUDIT_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" @@ -2522,7 +2522,7 @@ CLIENTLOG_EVENTS_AUTH_PASSWORD: defaultValue: "" type: string description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -2532,7 +2532,7 @@ CLIENTLOG_EVENTS_AUTH_USERNAME: defaultValue: "" type: string description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -2553,7 +2553,7 @@ CLIENTLOG_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -2598,7 +2598,7 @@ CLIENTLOG_JWT_SECRET: deprecationInfo: "" CLIENTLOG_REVA_GATEWAY: name: OC_REVA_GATEWAY;CLIENTLOG_REVA_GATEWAY - defaultValue: com.owncloud.api.gateway + defaultValue: eu.opencloud.api.gateway type: string description: CS3 gateway used to look up user metadata introductionVersion: "5.0" @@ -3026,9 +3026,8 @@ COLLABORATION_WOPI_PROXY_SECRET: name: COLLABORATION_WOPI_PROXY_SECRET defaultValue: "" type: string - description: Optional, the secret to authenticate against the ownCloud Office365 - WOPI proxy. This secret can be obtained from ownCloud via the office365 proxy - subscription. + description: Optional, the secret to authenticate against the OpenCloud WOPI proxy. + This secret can be obtained from ownCloud via the office365 proxy subscription. introductionVersion: 7.0.0 deprecationVersion: "" removalVersion: "" @@ -3037,8 +3036,8 @@ COLLABORATION_WOPI_PROXY_URL: name: COLLABORATION_WOPI_PROXY_URL defaultValue: "" type: string - description: The URL to the ownCloud Office365 WOPI proxy. Optional. To use this - feature, you need an office365 proxy subscription. If you become part of the Microsoft + description: The URL to the OpenCloud WOPI proxy. Optional. To use this feature, + you need an office365 proxy subscription. If you become part of the Microsoft CSP program (https://learn.microsoft.com/en-us/partner-center/enroll/csp-overview), you can use WebOffice without a proxy. introductionVersion: 7.0.0 @@ -3072,7 +3071,7 @@ COLLABORATION_WOPI_SRC: type: string description: The WOPI source base URL containing schema, host and port. Set this to the schema and domain where the collaboration service is reachable for the - wopi app, such as https://office.owncloud.test. + wopi app, such as https://office.example.test. introductionVersion: 6.0.0 deprecationVersion: "" removalVersion: "" @@ -3120,7 +3119,7 @@ EVENTHISTORY_EVENTS_AUTH_PASSWORD: defaultValue: "" type: string description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -3130,7 +3129,7 @@ EVENTHISTORY_EVENTS_AUTH_USERNAME: defaultValue: "" type: string description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -3151,7 +3150,7 @@ EVENTHISTORY_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" @@ -3350,7 +3349,7 @@ FRONTEND_APP_HANDLER_INSECURE: deprecationInfo: "" FRONTEND_APP_HANDLER_SECURE_VIEW_APP_ADDR: name: FRONTEND_APP_HANDLER_SECURE_VIEW_APP_ADDR - defaultValue: com.owncloud.api.collaboration + defaultValue: eu.opencloud.api.collaboration type: string description: Service name or address of the app provider to use for secure view. Should match the service name or address of the registered CS3 app provider. @@ -3594,7 +3593,7 @@ FRONTEND_EVENTS_AUTH_PASSWORD: defaultValue: "" type: string description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -3604,7 +3603,7 @@ FRONTEND_EVENTS_AUTH_USERNAME: defaultValue: "" type: string description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -3625,7 +3624,7 @@ FRONTEND_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -3850,7 +3849,8 @@ FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD: removalVersion: "" deprecationInfo: FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated | | FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated | - FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated + FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated | FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, + the OCS API is deprecated FRONTEND_OCS_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD: name: OC_SHARING_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD;FRONTEND_OCS_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD defaultValue: "false" @@ -3863,6 +3863,7 @@ FRONTEND_OCS_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD: deprecationInfo: FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated | | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD, + the OCS API is deprecated | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated FRONTEND_OCS_SHARE_PREFIX: name: FRONTEND_OCS_SHARE_PREFIX @@ -4133,7 +4134,7 @@ FRONTEND_UPLOAD_MAX_CHUNK_SIZE: deprecationInfo: "" GATEWAY_APP_REGISTRY_ENDPOINT: name: GATEWAY_APP_REGISTRY_ENDPOINT - defaultValue: com.owncloud.api.app-registry + defaultValue: eu.opencloud.api.app-registry type: string description: The endpoint of the app-registry service. Can take a service name or a gRPC URI with the dns, kubernetes or unix protocol. @@ -4143,7 +4144,7 @@ GATEWAY_APP_REGISTRY_ENDPOINT: deprecationInfo: "" GATEWAY_AUTH_APP_ENDPOINT: name: GATEWAY_AUTH_APP_ENDPOINT - defaultValue: com.owncloud.api.auth-app + defaultValue: eu.opencloud.api.auth-app type: string description: The endpoint of the auth-app service. Can take a service name or a gRPC URI with the dns, kubernetes or unix protocol. @@ -4153,7 +4154,7 @@ GATEWAY_AUTH_APP_ENDPOINT: deprecationInfo: "" GATEWAY_AUTH_BASIC_ENDPOINT: name: GATEWAY_AUTH_BASIC_ENDPOINT - defaultValue: com.owncloud.api.auth-basic + defaultValue: eu.opencloud.api.auth-basic type: string description: The endpoint of the auth-basic service. Can take a service name or a gRPC URI with the dns, kubernetes or unix protocol. @@ -4173,7 +4174,7 @@ GATEWAY_AUTH_BEARER_ENDPOINT: deprecationInfo: "" GATEWAY_AUTH_MACHINE_ENDPOINT: name: GATEWAY_AUTH_MACHINE_ENDPOINT - defaultValue: com.owncloud.api.auth-machine + defaultValue: eu.opencloud.api.auth-machine type: string description: The endpoint of the auth-machine service. Can take a service name or a gRPC URI with the dns, kubernetes or unix protocol. @@ -4183,7 +4184,7 @@ GATEWAY_AUTH_MACHINE_ENDPOINT: deprecationInfo: "" GATEWAY_AUTH_SERVICE_ENDPOINT: name: GATEWAY_AUTH_SERVICE_ENDPOINT - defaultValue: com.owncloud.api.auth-service + defaultValue: eu.opencloud.api.auth-service type: string description: The endpoint of the auth-service service. Can take a service name or a gRPC URI with the dns, kubernetes or unix protocol. @@ -4322,7 +4323,7 @@ GATEWAY_FRONTEND_PUBLIC_URL: deprecationInfo: "" GATEWAY_GROUPS_ENDPOINT: name: GATEWAY_GROUPS_ENDPOINT - defaultValue: com.owncloud.api.groups + defaultValue: eu.opencloud.api.groups type: string description: The endpoint of the groups service. Can take a service name or a gRPC URI with the dns, kubernetes or unix protocol. @@ -4396,7 +4397,7 @@ GATEWAY_LOG_PRETTY: deprecationInfo: "" GATEWAY_OCM_ENDPOINT: name: GATEWAY_OCM_ENDPOINT - defaultValue: com.owncloud.api.ocm + defaultValue: eu.opencloud.api.ocm type: string description: The endpoint of the ocm service. Can take a service name or a gRPC URI with the dns, kubernetes or unix protocol. @@ -4406,7 +4407,7 @@ GATEWAY_OCM_ENDPOINT: deprecationInfo: "" GATEWAY_PERMISSIONS_ENDPOINT: name: GATEWAY_PERMISSIONS_ENDPOINT - defaultValue: com.owncloud.api.settings + defaultValue: eu.opencloud.api.settings type: string description: The endpoint of the permissions service. Can take a service name or a gRPC URI with the dns, kubernetes or unix protocol. @@ -4488,7 +4489,7 @@ GATEWAY_SHARE_FOLDER_NAME: deprecationInfo: "" GATEWAY_SHARING_ENDPOINT: name: GATEWAY_SHARING_ENDPOINT - defaultValue: com.owncloud.api.sharing + defaultValue: eu.opencloud.api.sharing type: string description: The endpoint of the shares service. Can take a service name or a gRPC URI with the dns, kubernetes or unix protocol. @@ -4508,7 +4509,7 @@ GATEWAY_SKIP_USER_GROUPS_IN_TOKEN: deprecationInfo: "" GATEWAY_STORAGE_PUBLIC_LINK_ENDPOINT: name: GATEWAY_STORAGE_PUBLIC_LINK_ENDPOINT - defaultValue: com.owncloud.api.storage-publiclink + defaultValue: eu.opencloud.api.storage-publiclink type: string description: The endpoint of the storage-publiclink service. Can take a service name or a gRPC URI with the dns, kubernetes or unix protocol. @@ -4546,7 +4547,7 @@ GATEWAY_STORAGE_REGISTRY_RULES: deprecationInfo: "" GATEWAY_STORAGE_SHARES_ENDPOINT: name: GATEWAY_STORAGE_SHARES_ENDPOINT - defaultValue: com.owncloud.api.storage-shares + defaultValue: eu.opencloud.api.storage-shares type: string description: The endpoint of the storage-shares service. Can take a service name or a gRPC URI with the dns, kubernetes or unix protocol. @@ -4556,7 +4557,7 @@ GATEWAY_STORAGE_SHARES_ENDPOINT: deprecationInfo: "" GATEWAY_STORAGE_USERS_ENDPOINT: name: GATEWAY_STORAGE_USERS_ENDPOINT - defaultValue: com.owncloud.api.storage-users + defaultValue: eu.opencloud.api.storage-users type: string description: The endpoint of the storage-users service. Can take a service name or a gRPC URI with the dns, kubernetes or unix protocol. @@ -4624,7 +4625,7 @@ GATEWAY_TRANSFER_EXPIRES: deprecationInfo: "" GATEWAY_USERS_ENDPOINT: name: GATEWAY_USERS_ENDPOINT - defaultValue: com.owncloud.api.users + defaultValue: eu.opencloud.api.users type: string description: The endpoint of the users service. Can take a service name or a gRPC URI with the dns, kubernetes or unix protocol. @@ -4864,7 +4865,7 @@ GRAPH_EVENTS_AUTH_PASSWORD: defaultValue: "" type: string description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -4874,7 +4875,7 @@ GRAPH_EVENTS_AUTH_USERNAME: defaultValue: "" type: string description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -4894,7 +4895,7 @@ GRAPH_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" @@ -5342,7 +5343,8 @@ GRAPH_LDAP_USER_DISPLAYNAME_ATTRIBUTE: removalVersion: "" deprecationInfo: LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | | | | LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | LDAP_USER_SCHEMA_DISPLAY_NAME - changing name for consistency + changing name for consistency | LDAP_USER_SCHEMA_DISPLAY_NAME changing name for + consistency GRAPH_LDAP_USER_EMAIL_ATTRIBUTE: name: OC_LDAP_USER_SCHEMA_MAIL;GRAPH_LDAP_USER_EMAIL_ATTRIBUTE defaultValue: mail @@ -5515,7 +5517,7 @@ GRAPH_SPACES_GROUPS_CACHE_TTL: deprecationInfo: "" GRAPH_SPACES_STORAGE_USERS_ADDRESS: name: GRAPH_SPACES_STORAGE_USERS_ADDRESS - defaultValue: com.owncloud.api.storage-users + defaultValue: eu.opencloud.api.storage-users type: string description: The address of the storage-users service. introductionVersion: "5.0" @@ -6737,8 +6739,8 @@ IDP_SIGNING_PRIVATE_KEY_FILES: defaultValue: '[/var/lib/ocis/idp/private-key.pem]' type: '[]string' description: A list of private key files for signing IDP requests. If not defined, - the root directory derives from $OC_BASE_DATA_PATH/idp. See the Environment - Variable Types description for more details. + the root directory derives from $OC_BASE_DATA_PATH/idp. See the Environment Variable + Types description for more details. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" @@ -7110,7 +7112,8 @@ LDAP_USER_SCHEMA_DISPLAY_NAME: removalVersion: "" deprecationInfo: LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | | | | LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | LDAP_USER_SCHEMA_DISPLAY_NAME - changing name for consistency + changing name for consistency | LDAP_USER_SCHEMA_DISPLAY_NAME changing name for + consistency LDAP_USER_SUBSTRING_FILTER_TYPE: name: LDAP_USER_SUBSTRING_FILTER_TYPE;USERS_LDAP_USER_SUBSTRING_FILTER_TYPE defaultValue: any @@ -7165,7 +7168,7 @@ NATS_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" @@ -7364,7 +7367,7 @@ NOTIFICATIONS_EVENTS_AUTH_PASSWORD: defaultValue: "" type: string description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -7374,7 +7377,7 @@ NOTIFICATIONS_EVENTS_AUTH_USERNAME: defaultValue: "" type: string description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -7395,7 +7398,7 @@ NOTIFICATIONS_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" @@ -7689,1464 +7692,1471 @@ NOTIFICATIONS_WEB_UI_URL: deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_ALLOW_PROPFIND_DEPTH_INFINITY: - name: OCDAV_ALLOW_PROPFIND_DEPTH_INFINITY - defaultValue: "false" +OC_ADMIN_USER_ID: + name: OC_ADMIN_USER_ID;STORAGE_USERS_PURGE_TRASH_BIN_USER_ID + defaultValue: "" + type: string + description: ID of the user who collects all necessary information for deletion. + Consider that the UUID can be encoded in some LDAP deployment configurations like + in .ldif files. These need to be decoded beforehand. + introductionVersion: pre5.0 + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OC_ASSET_THEMES_PATH: + name: OC_ASSET_THEMES_PATH;WEB_ASSET_THEMES_PATH + defaultValue: /var/lib/ocis/web/assets/themes + type: string + description: Serve ownCloud themes from a path on the filesystem instead of the + builtin assets. If not defined, the root directory derives from $OC_BASE_DATA_PATH/web/assets/themes + introductionVersion: 6.0.0 + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OC_ASYNC_UPLOADS: + name: OC_ASYNC_UPLOADS + defaultValue: "true" type: bool - description: Allow the use of depth infinity in PROPFINDS. When enabled, a propfind - will traverse through all subfolders. If many subfolders are expected, depth infinity - can cause heavy server load and/or delayed response times. + description: Enable asynchronous file uploads. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_CORS_ALLOW_CREDENTIALS: - name: OC_CORS_ALLOW_CREDENTIALS;OCDAV_CORS_ALLOW_CREDENTIALS - defaultValue: "false" +OC_CACHE_AUTH_PASSWORD: + name: OC_CACHE_AUTH_PASSWORD;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_AUTH_PASSWORD + defaultValue: "" + type: string + description: The password to authenticate with the store. Only applies when store + type 'nats-js-kv' is configured. + introductionVersion: "5.0" + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OC_CACHE_AUTH_USERNAME: + name: OC_CACHE_AUTH_USERNAME;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_AUTH_USERNAME + defaultValue: "" + type: string + description: The username to authenticate with the store. Only applies when store + type 'nats-js-kv' is configured. + introductionVersion: "5.0" + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OC_CACHE_DATABASE: + name: OC_CACHE_DATABASE + defaultValue: cache-userinfo + type: string + description: The database name the configured store should use. + introductionVersion: pre5.0 + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OC_CACHE_DISABLE_PERSISTENCE: + name: OC_CACHE_DISABLE_PERSISTENCE;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_DISABLE_PERSISTENCE + defaultValue: "true" + type: bool + description: Disables persistence of the store. Only applies when store type 'nats-js-kv' + is configured. Defaults to true. + introductionVersion: "5.0" + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OC_CACHE_STORE: + name: OC_CACHE_STORE;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE + defaultValue: nats-js-kv + type: string + description: 'The type of the signing key store. Supported values are: ''redis-sentinel'', + ''nats-js-kv'' and ''ocisstoreservice'' (deprecated). See the text description + for details.' + introductionVersion: "5.0" + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OC_CACHE_STORE_NODES: + name: OC_CACHE_STORE_NODES;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES + defaultValue: '[127.0.0.1:9233]' + type: '[]string' + description: A list of nodes to access the configured store. Note that the behaviour + how nodes are used is dependent on the library of the configured store. See the + Environment Variable Types description for more details. + introductionVersion: "5.0" + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OC_CACHE_TTL: + name: OC_CACHE_TTL;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_TTL + defaultValue: 12h0m0s + type: Duration + description: Default time to live for signing keys. See the Environment Variable + Types description for more details. + introductionVersion: "5.0" + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OC_CORS_ALLOW_CREDENTIALS: + name: OC_CORS_ALLOW_CREDENTIALS;THUMBNAILS_CORS_ALLOW_CREDENTIALS + defaultValue: "true" type: bool description: 'Allow credentials for CORS.See following chapter for more details: *Access-Control-Allow-Credentials* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Credentials.' - introductionVersion: pre5.0 + introductionVersion: "6.0" deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_CORS_ALLOW_HEADERS: - name: OC_CORS_ALLOW_HEADERS;OCDAV_CORS_ALLOW_HEADERS - defaultValue: '[Origin Accept Content-Type Depth Authorization Ocs-Apirequest If-None-Match - If-Match Destination Overwrite X-Request-Id X-Requested-With Tus-Resumable Tus-Checksum-Algorithm - Upload-Concat Upload-Length Upload-Metadata Upload-Defer-Length Upload-Expires - Upload-Checksum Upload-Offset X-HTTP-Method-Override Cache-Control]' +OC_CORS_ALLOW_HEADERS: + name: OC_CORS_ALLOW_HEADERS;THUMBNAILS_CORS_ALLOW_HEADERS + defaultValue: '[Authorization Origin Content-Type Accept X-Requested-With X-Request-Id + Cache-Control]' type: '[]string' description: 'A list of allowed CORS headers. See following chapter for more details: *Access-Control-Request-Headers* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Request-Headers. See the Environment Variable Types description for more details.' - introductionVersion: pre5.0 + introductionVersion: "6.0" deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_CORS_ALLOW_METHODS: - name: OC_CORS_ALLOW_METHODS;OCDAV_CORS_ALLOW_METHODS - defaultValue: '[OPTIONS HEAD GET PUT POST DELETE MKCOL PROPFIND PROPPATCH MOVE COPY - REPORT SEARCH]' +OC_CORS_ALLOW_METHODS: + name: OC_CORS_ALLOW_METHODS;THUMBNAILS_CORS_ALLOW_METHODS + defaultValue: '[GET POST PUT PATCH DELETE OPTIONS]' type: '[]string' description: 'A list of allowed CORS methods. See following chapter for more details: *Access-Control-Request-Method* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Request-Method. See the Environment Variable Types description for more details.' - introductionVersion: pre5.0 + introductionVersion: "6.0" deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_CORS_ALLOW_ORIGINS: - name: OC_CORS_ALLOW_ORIGINS;OCDAV_CORS_ALLOW_ORIGINS - defaultValue: '[https://localhost:9200]' +OC_CORS_ALLOW_ORIGINS: + name: OC_CORS_ALLOW_ORIGINS;THUMBNAILS_CORS_ALLOW_ORIGINS + defaultValue: '[*]' type: '[]string' description: 'A list of allowed CORS origins. See following chapter for more details: *Access-Control-Allow-Origin* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin. See the Environment Variable Types description for more details.' + introductionVersion: "6.0" + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OC_CORS_EXPOSE_HEADERS: + name: OC_CORS_EXPOSE_HEADERS;STORAGE_USERS_CORS_EXPOSE_HEADERS + defaultValue: '[Upload-Offset Location Upload-Length Tus-Version Tus-Resumable Tus-Max-Size + Tus-Extension Upload-Metadata Upload-Defer-Length Upload-Concat Upload-Incomplete + Upload-Draft-Interop-Version]' + type: '[]string' + description: 'A list of exposed CORS headers. See following chapter for more details: + *Access-Control-Expose-Headers* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Expose-Headers. + See the Environment Variable Types description for more details.' introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_DEBUG_ADDR: - name: OCDAV_DEBUG_ADDR - defaultValue: 127.0.0.1:9163 - type: string - description: Bind address of the debug server, where metrics, health, config and - debug endpoints will be exposed. +OC_CORS_MAX_AGE: + name: OC_CORS_MAX_AGE;STORAGE_USERS_CORS_MAX_AGE + defaultValue: "86400" + type: uint + description: 'The max cache duration of preflight headers. See following chapter + for more details: *Access-Control-Max-Age* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Max-Age. + See the Environment Variable Types description for more details.' introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_DEBUG_PPROF: - name: OCDAV_DEBUG_PPROF - defaultValue: "false" - type: bool - description: Enables pprof, which can be used for profiling. +OC_DECOMPOSEDFS_PROPAGATOR: + name: OC_DECOMPOSEDFS_PROPAGATOR;STORAGE_USERS_S3NG_PROPAGATOR + defaultValue: sync + type: string + description: The propagator used for decomposedfs. At the moment, only 'sync' is + fully supported, 'async' is available as an experimental option. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_DEBUG_TOKEN: - name: OCDAV_DEBUG_TOKEN +OC_DEFAULT_LANGUAGE: + name: OC_DEFAULT_LANGUAGE defaultValue: "" type: string - description: Token to secure the metrics endpoint. - introductionVersion: pre5.0 + description: The default language used by services and the WebUI. If not defined, + English will be used as default. See the documentation for more details. + introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_DEBUG_ZPAGES: - name: OCDAV_DEBUG_ZPAGES +OC_DISABLE_PREVIEWS: + name: OC_DISABLE_PREVIEWS;WEBDAV_DISABLE_PREVIEWS defaultValue: "false" type: bool - description: Enables zpages, which can be used for collecting and viewing in-memory - traces. + description: Set this option to 'true' to disable rendering of thumbnails triggered + via webdav access. Note that when disabled, all access to preview related webdav + paths will return a 404. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_EDITION: - name: OC_EDITION;OCDAV_EDITION - defaultValue: Community - type: string - description: Edition of oCIS. Used for branding purposes. +OC_DISABLE_SSE: + name: OC_DISABLE_SSE;FRONTEND_DISABLE_SSE + defaultValue: "false" + type: bool + description: When set to true, clients are informed that the Server-Sent Events + endpoint is not accessible. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_FILES_NAMESPACE: - name: OCDAV_FILES_NAMESPACE - defaultValue: /users/{{.Id.OpaqueId}} - type: string - description: Jail requests to /dav/files/{username} into this CS3 namespace. Supports - template layouting with CS3 User properties. +OC_DISABLE_SSE,USERLOG_DISABLE_SSE: + name: OC_DISABLE_SSE,USERLOG_DISABLE_SSE + defaultValue: "false" + type: bool + description: Disables server-sent events (sse). When disabled, clients will no longer + receive sse notifications. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_GATEWAY_REQUEST_TIMEOUT: - name: OCDAV_GATEWAY_REQUEST_TIMEOUT - defaultValue: "84300" - type: int64 - description: Request timeout in seconds for requests from the oCDAV service to the - GATEWAY service. - introductionVersion: pre5.0 +OC_DISABLE_VERSIONING: + name: OC_DISABLE_VERSIONING + defaultValue: "false" + type: bool + description: Disables versioning of files. When set to true, new uploads with the + same filename will overwrite existing files instead of creating a new version. + introductionVersion: 7.0.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_HTTP_ADDR: - name: OCDAV_HTTP_ADDR - defaultValue: 127.0.0.1:9350 +OC_EDITION: + name: OC_EDITION;OCDAV_EDITION + defaultValue: Community type: string - description: The bind address of the HTTP service. + description: Edition of oCIS. Used for branding purposes. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_HTTP_PREFIX: - name: OCDAV_HTTP_PREFIX +OC_EMAIL_TEMPLATE_PATH: + name: OC_EMAIL_TEMPLATE_PATH;NOTIFICATIONS_EMAIL_TEMPLATE_PATH defaultValue: "" type: string - description: A URL path prefix for the handler. - introductionVersion: pre5.0 - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" -OCDAV_HTTP_PROTOCOL: - name: OCDAV_HTTP_PROTOCOL - defaultValue: tcp - type: string - description: The transport protocol of the HTTP service. + description: Path to Email notification templates overriding embedded ones. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_INSECURE: - name: OC_INSECURE;OCDAV_INSECURE +OC_ENABLE_OCM: + name: OC_ENABLE_OCM;GRAPH_INCLUDE_OCM_SHAREES defaultValue: "false" type: bool - description: Allow insecure connections to the GATEWAY service. - introductionVersion: pre5.0 + description: Include OCM sharees when listing users. + introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_JWT_SECRET: - name: OC_JWT_SECRET;OCDAV_JWT_SECRET +OC_EVENTS_AUTH_PASSWORD: + name: OC_EVENTS_AUTH_PASSWORD;PROXY_EVENTS_AUTH_PASSWORD defaultValue: "" type: string - description: The secret to mint and validate jwt tokens. - introductionVersion: pre5.0 + description: The password to authenticate with the events broker. The events broker + is the OpenCloud service which receives and delivers events between the services. + introductionVersion: 7.0.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_LOG_COLOR: - name: OC_LOG_COLOR;OCDAV_LOG_COLOR +OC_EVENTS_AUTH_USERNAME: + name: OC_EVENTS_AUTH_USERNAME;PROXY_EVENTS_AUTH_USERNAME + defaultValue: "" + type: string + description: The username to authenticate with the events broker. The events broker + is the OpenCloud service which receives and delivers events between the services. + introductionVersion: 7.0.0 + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OC_EVENTS_CLUSTER: + name: OC_EVENTS_CLUSTER;PROXY_EVENTS_CLUSTER + defaultValue: ocis-cluster + type: string + description: The clusterID of the event system. The event system is the message + queuing service. It is used as message broker for the microservice architecture. + introductionVersion: 7.0.0 + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OC_EVENTS_ENABLE_TLS: + name: OC_EVENTS_ENABLE_TLS;PROXY_EVENTS_ENABLE_TLS defaultValue: "false" type: bool - description: Activates colorized log output. - introductionVersion: pre5.0 + description: Enable TLS for the connection to the events broker. The events broker + is the OpenCloud service which receives and delivers events between the services. + introductionVersion: 7.0.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_LOG_FILE: - name: OC_LOG_FILE;OCDAV_LOG_FILE - defaultValue: "" +OC_EVENTS_ENDPOINT: + name: OC_EVENTS_ENDPOINT;PROXY_EVENTS_ENDPOINT + defaultValue: 127.0.0.1:9233 type: string - description: The path to the log file. Activates logging to this file if set. - introductionVersion: pre5.0 + description: The address of the event system. The event system is the message queuing + service. It is used as message broker for the microservice architecture. Set to + a empty string to disable emitting events. + introductionVersion: 7.0.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_LOG_LEVEL: - name: OC_LOG_LEVEL;OCDAV_LOG_LEVEL +OC_EVENTS_TLS_ROOT_CA_CERTIFICATE: + name: OC_EVENTS_TLS_ROOT_CA_CERTIFICATE;PROXY_EVENTS_TLS_ROOT_CA_CERTIFICATE defaultValue: "" type: string - description: 'The log level. Valid values are: ''panic'', ''fatal'', ''error'', - ''warn'', ''info'', ''debug'', ''trace''.' - introductionVersion: pre5.0 + description: The root CA certificate used to validate the server's TLS certificate. + If provided PROXY_EVENTS_TLS_INSECURE will be seen as false. + introductionVersion: 7.0.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_LOG_PRETTY: - name: OC_LOG_PRETTY;OCDAV_LOG_PRETTY - defaultValue: "false" - type: bool - description: Activates pretty log output. - introductionVersion: pre5.0 +OC_GATEWAY_GRPC_ADDR: + name: OC_GATEWAY_GRPC_ADDR;STORAGE_USERS_GATEWAY_GRPC_ADDR + defaultValue: 127.0.0.1:9142 + type: string + description: The bind address of the gateway GRPC address. + introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_MACHINE_AUTH_API_KEY: - name: OC_MACHINE_AUTH_API_KEY;OCDAV_MACHINE_AUTH_API_KEY +OC_GRPC_CLIENT_TLS_CACERT: + name: OC_GRPC_CLIENT_TLS_CACERT defaultValue: "" type: string - description: Machine auth API key used to validate internal requests necessary for - the access to resources from other services. + description: Path/File name for the root CA certificate (in PEM format) used to + validate TLS server certificates of the go-micro based grpc services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_OCM_NAMESPACE: - name: OCDAV_OCM_NAMESPACE - defaultValue: /public +OC_GRPC_CLIENT_TLS_MODE: + name: OC_GRPC_CLIENT_TLS_MODE + defaultValue: "" type: string - description: The human readable path prefix for the ocm shares. - introductionVersion: "5.0" + description: 'TLS mode for grpc connection to the go-micro based grpc services. + Possible values are ''off'', ''insecure'' and ''on''. ''off'': disables transport + security for the clients. ''insecure'' allows using transport security, but disables + certificate verification (to be used with the autogenerated self-signed certificates). + ''on'' enables transport security, including server certificate verification.' + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_PUBLIC_URL: - name: OC_URL;OCDAV_PUBLIC_URL - defaultValue: https://localhost:9200 +OC_GRPC_PROTOCOL: + name: OC_GRPC_PROTOCOL;STORAGE_PUBLICLINK_GRPC_PROTOCOL + defaultValue: "" type: string - description: URL where oCIS is reachable for users. + description: The transport protocol of the GRPC service. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_SHARES_NAMESPACE: - name: OCDAV_SHARES_NAMESPACE - defaultValue: /Shares +OC_HTTP_TLS_CERTIFICATE: + name: OC_HTTP_TLS_CERTIFICATE + defaultValue: "" type: string - description: The human readable path for the share jail. Relative to a users personal - space root. Upcased intentionally. + description: Path/File name of the TLS server certificate (in PEM format) for the + http services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_SKIP_USER_GROUPS_IN_TOKEN: - name: OCDAV_SKIP_USER_GROUPS_IN_TOKEN +OC_HTTP_TLS_ENABLED: + name: OC_HTTP_TLS_ENABLED defaultValue: "false" type: bool - description: Disables the loading of user's group memberships from the reva access - token. + description: Activates TLS for the http based services using the server certifcate + and key configured via OC_HTTP_TLS_CERTIFICATE and OC_HTTP_TLS_KEY. If OC_HTTP_TLS_CERTIFICATE + is not set a temporary server certificate is generated - to be used with PROXY_INSECURE_BACKEND=true. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_TRACING_COLLECTOR: - name: OC_TRACING_COLLECTOR;OCDAV_TRACING_COLLECTOR +OC_HTTP_TLS_KEY: + name: OC_HTTP_TLS_KEY defaultValue: "" type: string - description: The HTTP endpoint for sending spans directly to a collector, i.e. http://jaeger-collector:14268/api/traces. - Only used if the tracing endpoint is unset. + description: Path/File name for the TLS certificate key (in PEM format) for the + server certificate to use for the http services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_TRACING_ENABLED: - name: OC_TRACING_ENABLED;OCDAV_TRACING_ENABLED +OC_INSECURE: + name: OC_INSECURE;PROXY_EVENTS_TLS_INSECURE defaultValue: "false" type: bool - description: Activates tracing. - introductionVersion: pre5.0 + description: Whether to verify the server TLS certificates. + introductionVersion: 7.0.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_TRACING_ENDPOINT: - name: OC_TRACING_ENDPOINT;OCDAV_TRACING_ENDPOINT +OC_JWT_SECRET: + name: OC_JWT_SECRET;STORAGE_PUBLICLINK_JWT_SECRET defaultValue: "" type: string - description: The endpoint of the tracing agent. + description: The secret to mint and validate jwt tokens. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_TRACING_TYPE: - name: OC_TRACING_TYPE;OCDAV_TRACING_TYPE +OC_KEYCLOAK_BASE_PATH: + name: OC_KEYCLOAK_BASE_PATH;GRAPH_KEYCLOAK_BASE_PATH defaultValue: "" type: string - description: The type of tracing. Defaults to '', which is the same as 'jaeger'. - Allowed tracing types are 'jaeger' and '' as of now. + description: The URL to access keycloak. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OCDAV_WEBDAV_NAMESPACE: - name: OCDAV_WEBDAV_NAMESPACE - defaultValue: /users/{{.Id.OpaqueId}} +OC_KEYCLOAK_CLIENT_ID: + name: OC_KEYCLOAK_CLIENT_ID;GRAPH_KEYCLOAK_CLIENT_ID + defaultValue: "" type: string - description: Jail requests to /dav/webdav into this CS3 namespace. Supports template - layouting with CS3 User properties. + description: The client id to authenticate with keycloak. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_ADMIN_USER_ID: - name: OC_ADMIN_USER_ID;IDM_ADMIN_USER_ID +OC_KEYCLOAK_CLIENT_REALM: + name: OC_KEYCLOAK_CLIENT_REALM;GRAPH_KEYCLOAK_CLIENT_REALM defaultValue: "" type: string - description: ID of the user that should receive admin privileges. Consider that - the UUID can be encoded in some LDAP deployment configurations like in .ldif files. - These need to be decoded beforehand. + description: The realm the client is defined in. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_ASSET_THEMES_PATH: - name: OC_ASSET_THEMES_PATH;WEB_ASSET_THEMES_PATH - defaultValue: /var/lib/ocis/web/assets/themes +OC_KEYCLOAK_CLIENT_SECRET: + name: OC_KEYCLOAK_CLIENT_SECRET;GRAPH_KEYCLOAK_CLIENT_SECRET + defaultValue: "" type: string - description: Serve ownCloud themes from a path on the filesystem instead of the - builtin assets. If not defined, the root directory derives from $OC_BASE_DATA_PATH/web/assets/themes - introductionVersion: 6.0.0 + description: The client secret to use in authentication. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_ASYNC_UPLOADS: - name: OC_ASYNC_UPLOADS;SEARCH_EVENTS_ASYNC_UPLOADS - defaultValue: "true" +OC_KEYCLOAK_INSECURE_SKIP_VERIFY: + name: OC_KEYCLOAK_INSECURE_SKIP_VERIFY;GRAPH_KEYCLOAK_INSECURE_SKIP_VERIFY + defaultValue: "false" type: bool - description: Enable asynchronous file uploads. + description: Disable TLS certificate validation for Keycloak connections. Do not + set this in production environments. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_CACHE_AUTH_PASSWORD: - name: OC_CACHE_AUTH_PASSWORD;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_AUTH_PASSWORD +OC_KEYCLOAK_USER_REALM: + name: OC_KEYCLOAK_USER_REALM;GRAPH_KEYCLOAK_USER_REALM defaultValue: "" type: string - description: The password to authenticate with the store. Only applies when store - type 'nats-js-kv' is configured. - introductionVersion: "5.0" + description: The realm users are defined. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_CACHE_AUTH_USERNAME: - name: OC_CACHE_AUTH_USERNAME;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_AUTH_USERNAME - defaultValue: "" +OC_LDAP_BIND_DN: + name: OC_LDAP_BIND_DN;USERS_LDAP_BIND_DN + defaultValue: uid=reva,ou=sysusers,o=libregraph-idm type: string - description: The username to authenticate with the store. Only applies when store - type 'nats-js-kv' is configured. - introductionVersion: "5.0" + description: LDAP DN to use for simple bind authentication with the target LDAP + server. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_CACHE_DATABASE: - name: OC_CACHE_DATABASE - defaultValue: cache-userinfo +OC_LDAP_BIND_PASSWORD: + name: OC_LDAP_BIND_PASSWORD;USERS_LDAP_BIND_PASSWORD + defaultValue: "" type: string - description: The database name the configured store should use. + description: Password to use for authenticating the 'bind_dn'. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_CACHE_DISABLE_PERSISTENCE: - name: OC_CACHE_DISABLE_PERSISTENCE;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_DISABLE_PERSISTENCE - defaultValue: "true" - type: bool - description: Disables persistence of the store. Only applies when store type 'nats-js-kv' - is configured. Defaults to true. - introductionVersion: "5.0" +OC_LDAP_CACERT: + name: OC_LDAP_CACERT;USERS_LDAP_CACERT + defaultValue: /var/lib/ocis/idm/ldap.crt + type: string + description: Path/File name for the root CA certificate (in PEM format) used to + validate TLS server certificates of the LDAP service. If not defined, the root + directory derives from $OC_BASE_DATA_PATH/idm. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_CACHE_STORE: - name: OC_CACHE_STORE;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE - defaultValue: nats-js-kv +OC_LDAP_DISABLE_USER_MECHANISM: + name: OC_LDAP_DISABLE_USER_MECHANISM;USERS_LDAP_DISABLE_USER_MECHANISM + defaultValue: attribute type: string - description: 'The type of the signing key store. Supported values are: ''redis-sentinel'', - ''nats-js-kv'' and ''ocisstoreservice'' (deprecated). See the text description - for details.' - introductionVersion: "5.0" + description: An option to control the behavior for disabling users. Valid options + are 'none', 'attribute' and 'group'. If set to 'group', disabling a user via API + will add the user to the configured group for disabled users, if set to 'attribute' + this will be done in the ldap user entry, if set to 'none' the disable request + is not processed. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_CACHE_STORE_NODES: - name: OC_CACHE_STORE_NODES;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_NODES - defaultValue: '[127.0.0.1:9233]' - type: '[]string' - description: A list of nodes to access the configured store. Note that the behaviour - how nodes are used is dependent on the library of the configured store. See the - Environment Variable Types description for more details. - introductionVersion: "5.0" +OC_LDAP_DISABLED_USERS_GROUP_DN: + name: OC_LDAP_DISABLED_USERS_GROUP_DN;USERS_LDAP_DISABLED_USERS_GROUP_DN + defaultValue: cn=DisabledUsersGroup,ou=groups,o=libregraph-idm + type: string + description: The distinguished name of the group to which added users will be classified + as disabled when 'disable_user_mechanism' is set to 'group'. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_CACHE_TTL: - name: OC_CACHE_TTL;PROXY_PRESIGNEDURL_SIGNING_KEYS_STORE_TTL - defaultValue: 12h0m0s - type: Duration - description: Default time to live for signing keys. See the Environment Variable - Types description for more details. - introductionVersion: "5.0" +OC_LDAP_GROUP_BASE_DN: + name: OC_LDAP_GROUP_BASE_DN;USERS_LDAP_GROUP_BASE_DN + defaultValue: ou=groups,o=libregraph-idm + type: string + description: Search base DN for looking up LDAP groups. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_CORS_ALLOW_CREDENTIALS: - name: OC_CORS_ALLOW_CREDENTIALS;WEBFINGER_CORS_ALLOW_CREDENTIALS - defaultValue: "false" - type: bool - description: 'Allow credentials for CORS.See following chapter for more details: - *Access-Control-Allow-Credentials* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Credentials.' +OC_LDAP_GROUP_FILTER: + name: OC_LDAP_GROUP_FILTER;USERS_LDAP_GROUP_FILTER + defaultValue: "" + type: string + description: LDAP filter to add to the default filters for group searches. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_CORS_ALLOW_HEADERS: - name: OC_CORS_ALLOW_HEADERS;WEBFINGER_CORS_ALLOW_HEADERS - defaultValue: '[]' - type: '[]string' - description: 'A list of allowed CORS headers. See following chapter for more details: - *Access-Control-Request-Headers* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Request-Headers. - See the Environment Variable Types description for more details.' +OC_LDAP_GROUP_OBJECTCLASS: + name: OC_LDAP_GROUP_OBJECTCLASS;USERS_LDAP_GROUP_OBJECTCLASS + defaultValue: groupOfNames + type: string + description: The object class to use for groups in the default group search filter + like 'groupOfNames'. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_CORS_ALLOW_METHODS: - name: OC_CORS_ALLOW_METHODS;WEBFINGER_CORS_ALLOW_METHODS - defaultValue: '[]' - type: '[]string' - description: 'A list of allowed CORS methods. See following chapter for more details: - *Access-Control-Request-Method* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Request-Method. - See the Environment Variable Types description for more details.' +OC_LDAP_GROUP_SCHEMA_DISPLAYNAME: + name: OC_LDAP_GROUP_SCHEMA_DISPLAYNAME;USERS_LDAP_GROUP_SCHEMA_DISPLAYNAME + defaultValue: cn + type: string + description: LDAP Attribute to use for the displayname of groups (often the same + as groupname attribute). introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_CORS_ALLOW_ORIGINS: - name: OC_CORS_ALLOW_ORIGINS;WEBFINGER_CORS_ALLOW_ORIGINS - defaultValue: '[https://localhost:9200]' - type: '[]string' - description: 'A list of allowed CORS origins. See following chapter for more details: - *Access-Control-Allow-Origin* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin. - See the Environment Variable Types description for more details.' +OC_LDAP_GROUP_SCHEMA_GROUPNAME: + name: OC_LDAP_GROUP_SCHEMA_GROUPNAME;USERS_LDAP_GROUP_SCHEMA_GROUPNAME + defaultValue: cn + type: string + description: LDAP Attribute to use for the name of groups. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_CORS_EXPOSE_HEADERS: - name: OC_CORS_EXPOSE_HEADERS;STORAGE_USERS_CORS_EXPOSE_HEADERS - defaultValue: '[Upload-Offset Location Upload-Length Tus-Version Tus-Resumable Tus-Max-Size - Tus-Extension Upload-Metadata Upload-Defer-Length Upload-Concat Upload-Incomplete - Upload-Draft-Interop-Version]' - type: '[]string' - description: 'A list of exposed CORS headers. See following chapter for more details: - *Access-Control-Expose-Headers* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Expose-Headers. - See the Environment Variable Types description for more details.' +OC_LDAP_GROUP_SCHEMA_ID: + name: OC_LDAP_GROUP_SCHEMA_ID;USERS_LDAP_GROUP_SCHEMA_ID + defaultValue: ownclouduuid + type: string + description: LDAP Attribute to use as the unique ID for groups. This should be a + stable globally unique ID like a UUID. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_CORS_MAX_AGE: - name: OC_CORS_MAX_AGE;STORAGE_USERS_CORS_MAX_AGE - defaultValue: "86400" - type: uint - description: 'The max cache duration of preflight headers. See following chapter - for more details: *Access-Control-Max-Age* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Max-Age. - See the Environment Variable Types description for more details.' +OC_LDAP_GROUP_SCHEMA_ID_IS_OCTETSTRING: + name: OC_LDAP_GROUP_SCHEMA_ID_IS_OCTETSTRING;USERS_LDAP_GROUP_SCHEMA_ID_IS_OCTETSTRING + defaultValue: "false" + type: bool + description: Set this to true if the defined 'id' attribute for groups is of the + 'OCTETSTRING' syntax. This is e.g. required when using the 'objectGUID' attribute + of Active Directory for the group ID's. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_DECOMPOSEDFS_PROPAGATOR: - name: OC_DECOMPOSEDFS_PROPAGATOR;STORAGE_USERS_S3NG_PROPAGATOR - defaultValue: sync +OC_LDAP_GROUP_SCHEMA_MAIL: + name: OC_LDAP_GROUP_SCHEMA_MAIL;USERS_LDAP_GROUP_SCHEMA_MAIL + defaultValue: mail type: string - description: The propagator used for decomposedfs. At the moment, only 'sync' is - fully supported, 'async' is available as an experimental option. + description: LDAP Attribute to use for the email address of groups (can be empty). introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_DEFAULT_LANGUAGE: - name: OC_DEFAULT_LANGUAGE - defaultValue: "" +OC_LDAP_GROUP_SCHEMA_MEMBER: + name: OC_LDAP_GROUP_SCHEMA_MEMBER;USERS_LDAP_GROUP_SCHEMA_MEMBER + defaultValue: member type: string - description: The default language used by services and the WebUI. If not defined, - English will be used as default. See the documentation for more details. - introductionVersion: "5.0" + description: LDAP Attribute that is used for group members. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_DISABLE_PREVIEWS: - name: OC_DISABLE_PREVIEWS;WEBDAV_DISABLE_PREVIEWS - defaultValue: "false" - type: bool - description: Set this option to 'true' to disable rendering of thumbnails triggered - via webdav access. Note that when disabled, all access to preview related webdav - paths will return a 404. +OC_LDAP_GROUP_SCOPE: + name: OC_LDAP_GROUP_SCOPE;USERS_LDAP_GROUP_SCOPE + defaultValue: sub + type: string + description: LDAP search scope to use when looking up groups. Supported values are + 'base', 'one' and 'sub'. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_DISABLE_SSE: - name: OC_DISABLE_SSE;FRONTEND_DISABLE_SSE +OC_LDAP_INSECURE: + name: OC_LDAP_INSECURE;USERS_LDAP_INSECURE defaultValue: "false" type: bool - description: When set to true, clients are informed that the Server-Sent Events - endpoint is not accessible. + description: Disable TLS certificate validation for the LDAP connections. Do not + set this in production environments. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_DISABLE_SSE,USERLOG_DISABLE_SSE: - name: OC_DISABLE_SSE,USERLOG_DISABLE_SSE - defaultValue: "false" +OC_LDAP_SERVER_WRITE_ENABLED: + name: OC_LDAP_SERVER_WRITE_ENABLED;GRAPH_LDAP_SERVER_WRITE_ENABLED + defaultValue: "true" type: bool - description: Disables server-sent events (sse). When disabled, clients will no longer - receive sse notifications. + description: Allow creating, modifying and deleting LDAP users via the GRAPH API. + This can only be set to 'true' when keeping default settings for the LDAP user + and group attribute types (the 'OC_LDAP_USER_SCHEMA_* and 'OC_LDAP_GROUP_SCHEMA_* + variables). introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_DISABLE_VERSIONING: - name: OC_DISABLE_VERSIONING - defaultValue: "false" - type: bool - description: Disables versioning of files. When set to true, new uploads with the - same filename will overwrite existing files instead of creating a new version. - introductionVersion: 7.0.0 +OC_LDAP_URI: + name: OC_LDAP_URI;USERS_LDAP_URI + defaultValue: ldaps://localhost:9235 + type: string + description: URI of the LDAP Server to connect to. Supported URI schemes are 'ldaps://' + and 'ldap://' + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_EDITION: - name: OC_EDITION;FRONTEND_EDITION - defaultValue: Community +OC_LDAP_USER_BASE_DN: + name: OC_LDAP_USER_BASE_DN;USERS_LDAP_USER_BASE_DN + defaultValue: ou=users,o=libregraph-idm type: string - description: Edition of oCIS. Used for branding purposes. + description: Search base DN for looking up LDAP users. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_EMAIL_TEMPLATE_PATH: - name: OC_EMAIL_TEMPLATE_PATH;NOTIFICATIONS_EMAIL_TEMPLATE_PATH - defaultValue: "" +OC_LDAP_USER_ENABLED_ATTRIBUTE: + name: OC_LDAP_USER_ENABLED_ATTRIBUTE;USERS_LDAP_USER_ENABLED_ATTRIBUTE + defaultValue: ownCloudUserEnabled type: string - description: Path to Email notification templates overriding embedded ones. + description: LDAP attribute to use as a flag telling if the user is enabled or disabled. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_ENABLE_OCM: - name: OC_ENABLE_OCM;FRONTEND_OCS_INCLUDE_OCM_SHAREES - defaultValue: "false" - type: bool - description: Include OCM sharees when listing sharees. - introductionVersion: "5.0" +OC_LDAP_USER_FILTER: + name: OC_LDAP_USER_FILTER;USERS_LDAP_USER_FILTER + defaultValue: "" + type: string + description: LDAP filter to add to the default filters for user search like '(objectclass=ownCloud)'. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_EVENTS_AUTH_PASSWORD: - name: OC_EVENTS_AUTH_PASSWORD;AUDIT_EVENTS_AUTH_PASSWORD - defaultValue: "" +OC_LDAP_USER_OBJECTCLASS: + name: OC_LDAP_USER_OBJECTCLASS;USERS_LDAP_USER_OBJECTCLASS + defaultValue: inetOrgPerson type: string - description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. - introductionVersion: "5.0" + description: The object class to use for users in the default user search filter + like 'inetOrgPerson'. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_EVENTS_AUTH_USERNAME: - name: OC_EVENTS_AUTH_USERNAME;AUDIT_EVENTS_AUTH_USERNAME - defaultValue: "" +OC_LDAP_USER_SCHEMA_DISPLAYNAME: + name: OC_LDAP_USER_SCHEMA_DISPLAYNAME;USERS_LDAP_USER_SCHEMA_DISPLAYNAME + defaultValue: displayname type: string - description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. - introductionVersion: "5.0" + description: LDAP Attribute to use for the displayname of users. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" - deprecationInfo: "" -OC_EVENTS_CLUSTER: - name: OC_EVENTS_CLUSTER;AUDIT_EVENTS_CLUSTER - defaultValue: ocis-cluster + deprecationInfo: 'LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | | | | | | | + LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | | | | LDAP_USER_SCHEMA_DISPLAY_NAME + changing name for consistency | | | LDAP_USER_SCHEMA_DISPLAY_NAME changing name + for consistency | ' +OC_LDAP_USER_SCHEMA_ID: + name: OC_LDAP_USER_SCHEMA_ID;USERS_LDAP_USER_SCHEMA_ID + defaultValue: ownclouduuid type: string - description: The clusterID of the event system. The event system is the message - queuing service. It is used as message broker for the microservice architecture. - Mandatory when using NATS as event system. + description: LDAP Attribute to use as the unique ID for users. This should be a + stable globally unique ID like a UUID. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_EVENTS_ENABLE_TLS: - name: OC_EVENTS_ENABLE_TLS;AUDIT_EVENTS_ENABLE_TLS +OC_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING: + name: OC_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING;USERS_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING defaultValue: "false" type: bool - description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + description: Set this to true if the defined 'ID' attribute for users is of the + 'OCTETSTRING' syntax. This is e.g. required when using the 'objectGUID' attribute + of Active Directory for the user ID's. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_EVENTS_ENDPOINT: - name: OC_EVENTS_ENDPOINT;AUDIT_EVENTS_ENDPOINT - defaultValue: 127.0.0.1:9233 +OC_LDAP_USER_SCHEMA_MAIL: + name: OC_LDAP_USER_SCHEMA_MAIL;USERS_LDAP_USER_SCHEMA_MAIL + defaultValue: mail type: string - description: The address of the event system. The event system is the message queuing - service. It is used as message broker for the microservice architecture. + description: LDAP Attribute to use for the email address of users. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_EVENTS_TLS_ROOT_CA_CERTIFICATE: - name: OC_EVENTS_TLS_ROOT_CA_CERTIFICATE;AUDIT_EVENTS_TLS_ROOT_CA_CERTIFICATE - defaultValue: "" +OC_LDAP_USER_SCHEMA_USER_TYPE: + name: OC_LDAP_USER_SCHEMA_USER_TYPE;USERS_LDAP_USER_TYPE_ATTRIBUTE + defaultValue: ownCloudUserType type: string - description: The root CA certificate used to validate the server's TLS certificate. - If provided AUDIT_EVENTS_TLS_INSECURE will be seen as false. - introductionVersion: pre5.0 + description: LDAP Attribute to distinguish between 'Member' and 'Guest' users. Default + is 'ownCloudUserType'. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_GATEWAY_GRPC_ADDR: - name: OC_GATEWAY_GRPC_ADDR;GATEWAY_GRPC_ADDR - defaultValue: 127.0.0.1:9142 +OC_LDAP_USER_SCHEMA_USERNAME: + name: OC_LDAP_USER_SCHEMA_USERNAME;USERS_LDAP_USER_SCHEMA_USERNAME + defaultValue: uid type: string - description: The bind address of the GRPC service. + description: LDAP Attribute to use for username of users. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_GRPC_CLIENT_TLS_CACERT: - name: OC_GRPC_CLIENT_TLS_CACERT - defaultValue: "" +OC_LDAP_USER_SCOPE: + name: OC_LDAP_USER_SCOPE;USERS_LDAP_USER_SCOPE + defaultValue: sub type: string - description: Path/File name for the root CA certificate (in PEM format) used to - validate TLS server certificates of the go-micro based grpc services. + description: LDAP search scope to use when looking up users. Supported values are + 'base', 'one' and 'sub'. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_GRPC_CLIENT_TLS_MODE: - name: OC_GRPC_CLIENT_TLS_MODE - defaultValue: "" - type: string - description: 'TLS mode for grpc connection to the go-micro based grpc services. - Possible values are ''off'', ''insecure'' and ''on''. ''off'': disables transport - security for the clients. ''insecure'' allows using transport security, but disables - certificate verification (to be used with the autogenerated self-signed certificates). - ''on'' enables transport security, including server certificate verification.' +OC_LOG_COLOR: + name: OC_LOG_COLOR;PROXY_LOG_COLOR + defaultValue: "false" + type: bool + description: Activates colorized log output. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_GRPC_PROTOCOL: - name: OC_GRPC_PROTOCOL;COLLABORATION_GRPC_PROTOCOL +OC_LOG_FILE: + name: OC_LOG_FILE;PROXY_LOG_FILE defaultValue: "" type: string - description: The transport protocol of the GRPC service. - introductionVersion: 7.0.0 + description: The path to the log file. Activates logging to this file if set. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_HTTP_TLS_CERTIFICATE: - name: OC_HTTP_TLS_CERTIFICATE +OC_LOG_LEVEL: + name: OC_LOG_LEVEL;PROXY_LOG_LEVEL defaultValue: "" type: string - description: Path/File name of the TLS server certificate (in PEM format) for the - http services. + description: 'The log level. Valid values are: ''panic'', ''fatal'', ''error'', + ''warn'', ''info'', ''debug'', ''trace''.' introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_HTTP_TLS_ENABLED: - name: OC_HTTP_TLS_ENABLED +OC_LOG_PRETTY: + name: OC_LOG_PRETTY;PROXY_LOG_PRETTY defaultValue: "false" type: bool - description: Activates TLS for the http based services using the server certifcate - and key configured via OC_HTTP_TLS_CERTIFICATE and OC_HTTP_TLS_KEY. If OC_HTTP_TLS_CERTIFICATE - is not set a temporary server certificate is generated - to be used with PROXY_INSECURE_BACKEND=true. + description: Activates pretty log output. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_HTTP_TLS_KEY: - name: OC_HTTP_TLS_KEY +OC_MACHINE_AUTH_API_KEY: + name: OC_MACHINE_AUTH_API_KEY;PROXY_MACHINE_AUTH_API_KEY defaultValue: "" type: string - description: Path/File name for the TLS certificate key (in PEM format) for the - server certificate to use for the http services. + description: Machine auth API key used to validate internal requests necessary to + access resources from other services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_INSECURE: - name: OC_INSECURE;AUDIT_EVENTS_TLS_INSECURE - defaultValue: "false" - type: bool - description: Whether to verify the server TLS certificates. +OC_MAX_CONCURRENCY: + name: OC_MAX_CONCURRENCY;STORAGE_USERS_S3NG_MAX_CONCURRENCY + defaultValue: "5" + type: int + description: Maximum number of concurrent go-routines. Higher values can potentially + get work done faster but will also cause more load on the system. Values of 0 + or below will be ignored and the default value of 100 will be used. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_JWT_SECRET: - name: OC_JWT_SECRET;COLLABORATION_JWT_SECRET - defaultValue: "" +OC_OIDC_CLIENT_ID: + name: OC_OIDC_CLIENT_ID;WEB_OIDC_CLIENT_ID + defaultValue: web type: string - description: The secret to mint and validate jwt tokens. + description: The OIDC client ID which ownCloud Web uses. This client needs to be + set up in your IDP. Note that this setting has no effect when using the builtin + IDP. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_KEYCLOAK_BASE_PATH: - name: OC_KEYCLOAK_BASE_PATH;INVITATIONS_KEYCLOAK_BASE_PATH - defaultValue: "" +OC_OIDC_ISSUER: + name: OC_URL;OC_OIDC_ISSUER;PROXY_OIDC_ISSUER + defaultValue: https://localhost:9200 type: string - description: The URL to access keycloak. + description: URL of the OIDC issuer. It defaults to URL of the builtin IDP. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_KEYCLOAK_CLIENT_ID: - name: OC_KEYCLOAK_CLIENT_ID;INVITATIONS_KEYCLOAK_CLIENT_ID +OC_PASSWORD_POLICY_BANNED_PASSWORDS_LIST: + name: OC_PASSWORD_POLICY_BANNED_PASSWORDS_LIST;FRONTEND_PASSWORD_POLICY_BANNED_PASSWORDS_LIST defaultValue: "" type: string - description: The client ID to authenticate with keycloak. - introductionVersion: pre5.0 + description: Path to the 'banned passwords list' file. This only impacts public + link password validation. See the documentation for more details. + introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_KEYCLOAK_CLIENT_REALM: - name: OC_KEYCLOAK_CLIENT_REALM;INVITATIONS_KEYCLOAK_CLIENT_REALM - defaultValue: "" - type: string - description: The realm the client is defined in. - introductionVersion: pre5.0 +OC_PASSWORD_POLICY_DISABLED: + name: OC_PASSWORD_POLICY_DISABLED;FRONTEND_PASSWORD_POLICY_DISABLED + defaultValue: "false" + type: bool + description: Disable the password policy. Defaults to false if not set. + introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_KEYCLOAK_CLIENT_SECRET: - name: OC_KEYCLOAK_CLIENT_SECRET;INVITATIONS_KEYCLOAK_CLIENT_SECRET - defaultValue: "" - type: string - description: The client secret to use in authentication. - introductionVersion: pre5.0 +OC_PASSWORD_POLICY_MIN_CHARACTERS: + name: OC_PASSWORD_POLICY_MIN_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_CHARACTERS + defaultValue: "8" + type: int + description: Define the minimum password length. Defaults to 8 if not set. + introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_KEYCLOAK_INSECURE_SKIP_VERIFY: - name: OC_KEYCLOAK_INSECURE_SKIP_VERIFY;INVITATIONS_KEYCLOAK_INSECURE_SKIP_VERIFY - defaultValue: "false" - type: bool - description: Disable TLS certificate validation for Keycloak connections. Do not - set this in production environments. - introductionVersion: pre5.0 +OC_PASSWORD_POLICY_MIN_DIGITS: + name: OC_PASSWORD_POLICY_MIN_DIGITS;FRONTEND_PASSWORD_POLICY_MIN_DIGITS + defaultValue: "1" + type: int + description: Define the minimum number of digits. Defaults to 1 if not set. + introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_KEYCLOAK_USER_REALM: - name: OC_KEYCLOAK_USER_REALM;INVITATIONS_KEYCLOAK_USER_REALM - defaultValue: "" - type: string - description: The realm users are defined. - introductionVersion: pre5.0 +OC_PASSWORD_POLICY_MIN_LOWERCASE_CHARACTERS: + name: OC_PASSWORD_POLICY_MIN_LOWERCASE_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_LOWERCASE_CHARACTERS + defaultValue: "1" + type: int + description: Define the minimum number of uppercase letters. Defaults to 1 if not + set. + introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_BIND_DN: - name: OC_LDAP_BIND_DN;IDP_LDAP_BIND_DN - defaultValue: uid=idp,ou=sysusers,o=libregraph-idm +OC_PASSWORD_POLICY_MIN_SPECIAL_CHARACTERS: + name: OC_PASSWORD_POLICY_MIN_SPECIAL_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_SPECIAL_CHARACTERS + defaultValue: "1" + type: int + description: Define the minimum number of characters from the special characters + list to be present. Defaults to 1 if not set. + introductionVersion: "5.0" + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OC_PASSWORD_POLICY_MIN_UPPERCASE_CHARACTERS: + name: OC_PASSWORD_POLICY_MIN_UPPERCASE_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_UPPERCASE_CHARACTERS + defaultValue: "1" + type: int + description: Define the minimum number of lowercase letters. Defaults to 1 if not + set. + introductionVersion: "5.0" + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OC_PERSISTENT_STORE: + name: OC_PERSISTENT_STORE;EVENTHISTORY_STORE + defaultValue: nats-js-kv type: string - description: LDAP DN to use for simple bind authentication with the target LDAP - server. + description: 'The type of the store. Supported values are: ''memory'', ''nats-js-kv'', + ''redis-sentinel'', ''noop''. See the text description for details.' introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_BIND_PASSWORD: - name: OC_LDAP_BIND_PASSWORD;IDP_LDAP_BIND_PASSWORD +OC_PERSISTENT_STORE_AUTH_PASSWORD: + name: OC_PERSISTENT_STORE_AUTH_PASSWORD;EVENTHISTORY_STORE_AUTH_PASSWORD defaultValue: "" type: string - description: Password to use for authenticating the 'bind_dn'. - introductionVersion: pre5.0 + description: The password to authenticate with the store. Only applies when store + type 'nats-js-kv' is configured. + introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_CACERT: - name: OC_LDAP_CACERT;IDP_LDAP_TLS_CACERT - defaultValue: /var/lib/ocis/idm/ldap.crt +OC_PERSISTENT_STORE_AUTH_USERNAME: + name: OC_PERSISTENT_STORE_AUTH_USERNAME;EVENTHISTORY_STORE_AUTH_USERNAME + defaultValue: "" type: string - description: Path/File name for the root CA certificate (in PEM format) used to - validate TLS server certificates of the LDAP service. If not defined, the root - directory derives from $OC_BASE_DATA_PATH/idp. + description: The username to authenticate with the store. Only applies when store + type 'nats-js-kv' is configured. + introductionVersion: "5.0" + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OC_PERSISTENT_STORE_NODES: + name: OC_PERSISTENT_STORE_NODES;EVENTHISTORY_STORE_NODES + defaultValue: '[127.0.0.1:9233]' + type: '[]string' + description: A list of nodes to access the configured store. This has no effect + when 'memory' store is configured. Note that the behaviour how nodes are used + is dependent on the library of the configured store. See the Environment Variable + Types description for more details. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_DISABLE_USER_MECHANISM: - name: OC_LDAP_DISABLE_USER_MECHANISM;GRAPH_DISABLE_USER_MECHANISM - defaultValue: attribute - type: string - description: An option to control the behavior for disabling users. Supported options - are 'none', 'attribute' and 'group'. If set to 'group', disabling a user via API - will add the user to the configured group for disabled users, if set to 'attribute' - this will be done in the ldap user entry, if set to 'none' the disable request - is not processed. Default is 'attribute'. +OC_PERSISTENT_STORE_TTL: + name: OC_PERSISTENT_STORE_TTL;EVENTHISTORY_STORE_TTL + defaultValue: 336h0m0s + type: Duration + description: Time to live for events in the store. Defaults to '336h' (2 weeks). + See the Environment Variable Types description for more details. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_DISABLED_USERS_GROUP_DN: - name: OC_LDAP_DISABLED_USERS_GROUP_DN;GRAPH_DISABLED_USERS_GROUP_DN - defaultValue: cn=DisabledUsersGroup,ou=groups,o=libregraph-idm +OC_PUBLIC_URL: + name: OC_URL;OC_PUBLIC_URL + defaultValue: https://127.0.0.1:9200 type: string - description: The distinguished name of the group to which added users will be classified - as disabled when 'disable_user_mechanism' is set to 'group'. + description: URL, where oCIS is reachable for users. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_GROUP_BASE_DN: - name: OC_LDAP_GROUP_BASE_DN;GRAPH_LDAP_GROUP_BASE_DN - defaultValue: ou=groups,o=libregraph-idm +OC_REVA_GATEWAY: + name: OC_REVA_GATEWAY + defaultValue: eu.opencloud.api.gateway type: string - description: Search base DN for looking up LDAP groups. + description: The CS3 gateway endpoint. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_GROUP_FILTER: - name: OC_LDAP_GROUP_FILTER;GRAPH_LDAP_GROUP_FILTER +OC_REVA_GATEWAY_TLS_CACERT: + name: OC_REVA_GATEWAY_TLS_CACERT defaultValue: "" type: string - description: LDAP filter to add to the default filters for group searches. + description: The root CA certificate used to validate the gateway's TLS certificate. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_GROUP_OBJECTCLASS: - name: OC_LDAP_GROUP_OBJECTCLASS;GRAPH_LDAP_GROUP_OBJECTCLASS - defaultValue: groupOfNames +OC_REVA_GATEWAY_TLS_MODE: + name: OC_REVA_GATEWAY_TLS_MODE + defaultValue: "" type: string - description: The object class to use for groups in the default group search filter - ('groupOfNames'). + description: 'TLS mode for grpc connection to the CS3 gateway endpoint. Possible + values are ''off'', ''insecure'' and ''on''. ''off'': disables transport security + for the clients. ''insecure'' allows using transport security, but disables certificate + verification (to be used with the autogenerated self-signed certificates). ''on'' + enables transport security, including server certificate verification.' introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_GROUP_SCHEMA_DISPLAYNAME: - name: OC_LDAP_GROUP_SCHEMA_DISPLAYNAME;AUTH_BASIC_LDAP_GROUP_SCHEMA_DISPLAYNAME - defaultValue: cn +OC_SERVICE_ACCOUNT_ID: + name: OC_SERVICE_ACCOUNT_ID;PROXY_SERVICE_ACCOUNT_ID + defaultValue: "" type: string - description: LDAP Attribute to use for the displayname of groups (often the same - as groupname attribute). - introductionVersion: pre5.0 + description: The ID of the service account the service should use. See the 'auth-service' + service description for more details. + introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_GROUP_SCHEMA_GROUPNAME: - name: OC_LDAP_GROUP_SCHEMA_GROUPNAME;GRAPH_LDAP_GROUP_NAME_ATTRIBUTE - defaultValue: cn +OC_SERVICE_ACCOUNT_SECRET: + name: OC_SERVICE_ACCOUNT_SECRET;PROXY_SERVICE_ACCOUNT_SECRET + defaultValue: "" type: string - description: LDAP Attribute to use for the name of groups. - introductionVersion: pre5.0 + description: The service account secret. + introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_GROUP_SCHEMA_ID: - name: OC_LDAP_GROUP_SCHEMA_ID;GRAPH_LDAP_GROUP_ID_ATTRIBUTE - defaultValue: owncloudUUID - type: string - description: LDAP Attribute to use as the unique id for groups. This should be a - stable globally unique ID like a UUID. - introductionVersion: pre5.0 +OC_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD: + name: OC_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD;FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD + defaultValue: "true" + type: bool + description: Set this to true if you want to enforce passwords on all public shares. + introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" - deprecationInfo: "" -OC_LDAP_GROUP_SCHEMA_ID_IS_OCTETSTRING: - name: OC_LDAP_GROUP_SCHEMA_ID_IS_OCTETSTRING;GRAPH_LDAP_GROUP_SCHEMA_ID_IS_OCTETSTRING + deprecationInfo: FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated + | | FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated | | | + FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated | | FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, + the OCS API is deprecated +OC_SHARING_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD: + name: OC_SHARING_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD;FRONTEND_OCS_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD defaultValue: "false" type: bool - description: Set this to true if the defined 'ID' attribute for groups is of the - 'OCTETSTRING' syntax. This is required when using the 'objectGUID' attribute of - Active Directory for the group ID's. - introductionVersion: pre5.0 - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" -OC_LDAP_GROUP_SCHEMA_MAIL: - name: OC_LDAP_GROUP_SCHEMA_MAIL;AUTH_BASIC_LDAP_GROUP_SCHEMA_MAIL - defaultValue: mail - type: string - description: LDAP Attribute to use for the email address of groups (can be empty). - introductionVersion: pre5.0 - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" -OC_LDAP_GROUP_SCHEMA_MEMBER: - name: OC_LDAP_GROUP_SCHEMA_MEMBER;GRAPH_LDAP_GROUP_MEMBER_ATTRIBUTE - defaultValue: member - type: string - description: LDAP Attribute that is used for group members. - introductionVersion: pre5.0 - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" -OC_LDAP_GROUP_SCOPE: - name: OC_LDAP_GROUP_SCOPE;GRAPH_LDAP_GROUP_SEARCH_SCOPE - defaultValue: sub - type: string - description: LDAP search scope to use when looking up groups. Supported scopes are - 'base', 'one' and 'sub'. - introductionVersion: pre5.0 + description: Set this to true if you want to enforce passwords for writable shares. + Only effective if the setting for 'passwords on all public shares' is set to false. + introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" - deprecationInfo: "" -OC_LDAP_INSECURE: - name: OC_LDAP_INSECURE;IDP_INSECURE + deprecationInfo: FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD, the OCS + API is deprecated | | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD, + the OCS API is deprecated | | | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD, + the OCS API is deprecated | | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD, + the OCS API is deprecated +OC_SHOW_USER_EMAIL_IN_RESULTS: + name: OC_SHOW_USER_EMAIL_IN_RESULTS defaultValue: "false" type: bool - description: Disable TLS certificate validation for the LDAP connections. Do not - set this in production environments. - introductionVersion: pre5.0 + description: Include user email addresses in responses. If absent or set to false + emails will be omitted from results. Please note that admin users can always see + all email addresses. + introductionVersion: 6.0.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_SERVER_WRITE_ENABLED: - name: OC_LDAP_SERVER_WRITE_ENABLED;FRONTEND_LDAP_SERVER_WRITE_ENABLED - defaultValue: "true" - type: bool - description: Allow creating, modifying and deleting LDAP users via the GRAPH API. - This can only be set to 'true' when keeping default settings for the LDAP user - and group attribute types (the 'OC_LDAP_USER_SCHEMA_* and 'OC_LDAP_GROUP_SCHEMA_* - variables). +OC_SPACES_MAX_QUOTA: + name: OC_SPACES_MAX_QUOTA;STORAGE_USERS_OCIS_MAX_QUOTA + defaultValue: "0" + type: uint64 + description: Set a global max quota for spaces in bytes. A value of 0 equals unlimited. + If not using the global OC_SPACES_MAX_QUOTA, you must define the FRONTEND_MAX_QUOTA + in the frontend service. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_URI: - name: OC_LDAP_URI;IDP_LDAP_URI - defaultValue: ldaps://localhost:9235 +OC_SYSTEM_USER_API_KEY: + name: OC_SYSTEM_USER_API_KEY + defaultValue: "" type: string - description: Url of the LDAP service to use as IDP. + description: API key for the STORAGE-SYSTEM system user. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_USER_BASE_DN: - name: OC_LDAP_USER_BASE_DN;IDP_LDAP_BASE_DN - defaultValue: ou=users,o=libregraph-idm +OC_SYSTEM_USER_ID: + name: OC_SYSTEM_USER_ID + defaultValue: "" type: string - description: Search base DN for looking up LDAP users. + description: ID of the oCIS storage-system system user. Admins need to set the ID + for the STORAGE-SYSTEM system user in this config option which is then used to + reference the user. Any reasonable long string is possible, preferably this would + be an UUIDv4 format. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_USER_ENABLED_ATTRIBUTE: - name: OC_LDAP_USER_ENABLED_ATTRIBUTE;IDP_USER_ENABLED_ATTRIBUTE - defaultValue: ownCloudUserEnabled +OC_SYSTEM_USER_IDP: + name: OC_SYSTEM_USER_IDP;SHARING_PUBLIC_CS3_SYSTEM_USER_IDP + defaultValue: internal type: string - description: LDAP Attribute to use as a flag telling if the user is enabled or disabled. + description: IDP of the oCIS STORAGE-SYSTEM system user. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_USER_FILTER: - name: OC_LDAP_USER_FILTER;IDP_LDAP_FILTER +OC_TRACING_COLLECTOR: + name: OC_TRACING_COLLECTOR;PROXY_TRACING_COLLECTOR defaultValue: "" type: string - description: LDAP filter to add to the default filters for user search like '(objectclass=ownCloud)'. + description: The HTTP endpoint for sending spans directly to a collector, i.e. http://jaeger-collector:14268/api/traces. + Only used if the tracing endpoint is unset. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_USER_OBJECTCLASS: - name: OC_LDAP_USER_OBJECTCLASS;IDP_LDAP_OBJECTCLASS - defaultValue: inetOrgPerson - type: string - description: LDAP User ObjectClass like 'inetOrgPerson'. +OC_TRACING_ENABLED: + name: OC_TRACING_ENABLED;PROXY_TRACING_ENABLED + defaultValue: "false" + type: bool + description: Activates tracing. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_USER_SCHEMA_DISPLAYNAME: - name: OC_LDAP_USER_SCHEMA_DISPLAYNAME;LDAP_USER_SCHEMA_DISPLAY_NAME;GRAPH_LDAP_USER_DISPLAYNAME_ATTRIBUTE - defaultValue: displayName - type: string - description: LDAP Attribute to use for the display name of users. - introductionVersion: pre5.0 - deprecationVersion: "" - removalVersion: "" - deprecationInfo: LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | | | | | | | - LDAP_USER_SCHEMA_DISPLAY_NAME changing name for consistency | | | | LDAP_USER_SCHEMA_DISPLAY_NAME - changing name for consistency -OC_LDAP_USER_SCHEMA_ID: - name: OC_LDAP_USER_SCHEMA_ID;IDP_LDAP_UUID_ATTRIBUTE - defaultValue: ownCloudUUID +OC_TRACING_ENDPOINT: + name: OC_TRACING_ENDPOINT;PROXY_TRACING_ENDPOINT + defaultValue: "" type: string - description: LDAP User UUID attribute like 'uid'. - introductionVersion: pre5.0 - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" -OC_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING: - name: OC_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING;GRAPH_LDAP_USER_SCHEMA_ID_IS_OCTETSTRING - defaultValue: "false" - type: bool - description: Set this to true if the defined 'ID' attribute for users is of the - 'OCTETSTRING' syntax. This is required when using the 'objectGUID' attribute of - Active Directory for the user ID's. + description: The endpoint of the tracing agent. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_USER_SCHEMA_MAIL: - name: OC_LDAP_USER_SCHEMA_MAIL;IDP_LDAP_EMAIL_ATTRIBUTE - defaultValue: mail +OC_TRACING_TYPE: + name: OC_TRACING_TYPE;PROXY_TRACING_TYPE + defaultValue: "" type: string - description: LDAP User email attribute like 'mail'. + description: The type of tracing. Defaults to '', which is the same as 'jaeger'. + Allowed tracing types are 'jaeger' and '' as of now. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_USER_SCHEMA_USER_TYPE: - name: OC_LDAP_USER_SCHEMA_USER_TYPE;GRAPH_LDAP_USER_TYPE_ATTRIBUTE - defaultValue: ownCloudUserType +OC_TRANSFER_SECRET: + name: OC_TRANSFER_SECRET + defaultValue: "" type: string - description: LDAP Attribute to distinguish between 'Member' and 'Guest' users. Default - is 'ownCloudUserType'. + description: Transfer secret for signing file up- and download requests. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_USER_SCHEMA_USERNAME: - name: OC_LDAP_USER_SCHEMA_USERNAME;IDP_LDAP_NAME_ATTRIBUTE - defaultValue: displayName +OC_TRANSLATION_PATH: + name: OC_TRANSLATION_PATH;GRAPH_TRANSLATION_PATH + defaultValue: "" type: string - description: LDAP User name attribute like 'displayName'. - introductionVersion: pre5.0 + description: (optional) Set this to a path with custom translations to overwrite + the builtin translations. Note that file and folder naming rules apply, see the + documentation for more details. + introductionVersion: 7.0.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LDAP_USER_SCOPE: - name: OC_LDAP_USER_SCOPE;IDP_LDAP_SCOPE - defaultValue: sub +OC_URL: + name: OC_URL;OC_OIDC_ISSUER;PROXY_OIDC_ISSUER + defaultValue: https://localhost:9200 type: string - description: LDAP search scope to use when looking up users. Supported scopes are - 'base', 'one' and 'sub'. + description: URL of the OIDC issuer. It defaults to URL of the builtin IDP. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LOG_COLOR: - name: OC_LOG_COLOR;IDM_LOG_COLOR +OC_WOPI_DISABLE_CHAT: + name: APP_PROVIDER_WOPI_DISABLE_CHAT;OC_WOPI_DISABLE_CHAT defaultValue: "false" type: bool - description: Activates colorized log output. - introductionVersion: pre5.0 - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" -OC_LOG_FILE: - name: OC_LOG_FILE;IDM_LOG_FILE - defaultValue: "" - type: string - description: The path to the log file. Activates logging to this file if set. + description: Disable the chat functionality of the office app. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LOG_LEVEL: - name: OC_LOG_LEVEL;IDM_LOG_LEVEL - defaultValue: "" - type: string - description: 'The log level. Valid values are: ''panic'', ''fatal'', ''error'', - ''warn'', ''info'', ''debug'', ''trace''.' +OCDAV_ALLOW_PROPFIND_DEPTH_INFINITY: + name: OCDAV_ALLOW_PROPFIND_DEPTH_INFINITY + defaultValue: "false" + type: bool + description: Allow the use of depth infinity in PROPFINDS. When enabled, a propfind + will traverse through all subfolders. If many subfolders are expected, depth infinity + can cause heavy server load and/or delayed response times. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_LOG_PRETTY: - name: OC_LOG_PRETTY;IDM_LOG_PRETTY +OCDAV_CORS_ALLOW_CREDENTIALS: + name: OC_CORS_ALLOW_CREDENTIALS;OCDAV_CORS_ALLOW_CREDENTIALS defaultValue: "false" type: bool - description: Activates pretty log output. + description: 'Allow credentials for CORS.See following chapter for more details: + *Access-Control-Allow-Credentials* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Credentials.' introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_MACHINE_AUTH_API_KEY: - name: OC_MACHINE_AUTH_API_KEY;PROXY_MACHINE_AUTH_API_KEY - defaultValue: "" - type: string - description: Machine auth API key used to validate internal requests necessary to - access resources from other services. +OCDAV_CORS_ALLOW_HEADERS: + name: OC_CORS_ALLOW_HEADERS;OCDAV_CORS_ALLOW_HEADERS + defaultValue: '[Origin Accept Content-Type Depth Authorization Ocs-Apirequest If-None-Match + If-Match Destination Overwrite X-Request-Id X-Requested-With Tus-Resumable Tus-Checksum-Algorithm + Upload-Concat Upload-Length Upload-Metadata Upload-Defer-Length Upload-Expires + Upload-Checksum Upload-Offset X-HTTP-Method-Override Cache-Control]' + type: '[]string' + description: 'A list of allowed CORS headers. See following chapter for more details: + *Access-Control-Request-Headers* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Request-Headers. + See the Environment Variable Types description for more details.' introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_MAX_CONCURRENCY: - name: OC_MAX_CONCURRENCY;USERLOG_MAX_CONCURRENCY - defaultValue: "1" - type: int - description: Maximum number of concurrent go-routines. Higher values can potentially - get work done faster but will also cause more load on the system. Values of 0 - or below will be ignored and the default value will be used. - introductionVersion: 7.0.0 - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" -OC_OIDC_CLIENT_ID: - name: OC_OIDC_CLIENT_ID;WEB_OIDC_CLIENT_ID - defaultValue: web - type: string - description: The OIDC client ID which ownCloud Web uses. This client needs to be - set up in your IDP. Note that this setting has no effect when using the builtin - IDP. +OCDAV_CORS_ALLOW_METHODS: + name: OC_CORS_ALLOW_METHODS;OCDAV_CORS_ALLOW_METHODS + defaultValue: '[OPTIONS HEAD GET PUT POST DELETE MKCOL PROPFIND PROPPATCH MOVE COPY + REPORT SEARCH]' + type: '[]string' + description: 'A list of allowed CORS methods. See following chapter for more details: + *Access-Control-Request-Method* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Request-Method. + See the Environment Variable Types description for more details.' introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_OIDC_ISSUER: - name: OC_URL;OC_OIDC_ISSUER - defaultValue: https://localhost:9200 - type: string - description: The OIDC issuer URL to assign to the demo users. +OCDAV_CORS_ALLOW_ORIGINS: + name: OC_CORS_ALLOW_ORIGINS;OCDAV_CORS_ALLOW_ORIGINS + defaultValue: '[https://localhost:9200]' + type: '[]string' + description: 'A list of allowed CORS origins. See following chapter for more details: + *Access-Control-Allow-Origin* at https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Access-Control-Allow-Origin. + See the Environment Variable Types description for more details.' introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_PASSWORD_POLICY_BANNED_PASSWORDS_LIST: - name: OC_PASSWORD_POLICY_BANNED_PASSWORDS_LIST;FRONTEND_PASSWORD_POLICY_BANNED_PASSWORDS_LIST - defaultValue: "" +OCDAV_DEBUG_ADDR: + name: OCDAV_DEBUG_ADDR + defaultValue: 127.0.0.1:9163 type: string - description: Path to the 'banned passwords list' file. This only impacts public - link password validation. See the documentation for more details. - introductionVersion: "5.0" + description: Bind address of the debug server, where metrics, health, config and + debug endpoints will be exposed. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_PASSWORD_POLICY_DISABLED: - name: OC_PASSWORD_POLICY_DISABLED;FRONTEND_PASSWORD_POLICY_DISABLED +OCDAV_DEBUG_PPROF: + name: OCDAV_DEBUG_PPROF defaultValue: "false" type: bool - description: Disable the password policy. Defaults to false if not set. - introductionVersion: "5.0" - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" -OC_PASSWORD_POLICY_MIN_CHARACTERS: - name: OC_PASSWORD_POLICY_MIN_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_CHARACTERS - defaultValue: "8" - type: int - description: Define the minimum password length. Defaults to 8 if not set. - introductionVersion: "5.0" - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" -OC_PASSWORD_POLICY_MIN_DIGITS: - name: OC_PASSWORD_POLICY_MIN_DIGITS;FRONTEND_PASSWORD_POLICY_MIN_DIGITS - defaultValue: "1" - type: int - description: Define the minimum number of digits. Defaults to 1 if not set. - introductionVersion: "5.0" - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" -OC_PASSWORD_POLICY_MIN_LOWERCASE_CHARACTERS: - name: OC_PASSWORD_POLICY_MIN_LOWERCASE_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_LOWERCASE_CHARACTERS - defaultValue: "1" - type: int - description: Define the minimum number of uppercase letters. Defaults to 1 if not - set. - introductionVersion: "5.0" - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" -OC_PASSWORD_POLICY_MIN_SPECIAL_CHARACTERS: - name: OC_PASSWORD_POLICY_MIN_SPECIAL_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_SPECIAL_CHARACTERS - defaultValue: "1" - type: int - description: Define the minimum number of characters from the special characters - list to be present. Defaults to 1 if not set. - introductionVersion: "5.0" - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" -OC_PASSWORD_POLICY_MIN_UPPERCASE_CHARACTERS: - name: OC_PASSWORD_POLICY_MIN_UPPERCASE_CHARACTERS;FRONTEND_PASSWORD_POLICY_MIN_UPPERCASE_CHARACTERS - defaultValue: "1" - type: int - description: Define the minimum number of lowercase letters. Defaults to 1 if not - set. - introductionVersion: "5.0" - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" -OC_PERSISTENT_STORE: - name: OC_PERSISTENT_STORE;COLLABORATION_STORE - defaultValue: nats-js-kv - type: string - description: 'The type of the store. Supported values are: ''memory'', ''nats-js-kv'', - ''redis-sentinel'', ''noop''. See the text description for details.' - introductionVersion: 7.0.0 - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" -OC_PERSISTENT_STORE_AUTH_PASSWORD: - name: OC_PERSISTENT_STORE_AUTH_PASSWORD;COLLABORATION_STORE_AUTH_PASSWORD - defaultValue: "" - type: string - description: The password to authenticate with the store. Only applies when store - type 'nats-js-kv' is configured. - introductionVersion: 7.0.0 + description: Enables pprof, which can be used for profiling. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_PERSISTENT_STORE_AUTH_USERNAME: - name: OC_PERSISTENT_STORE_AUTH_USERNAME;COLLABORATION_STORE_AUTH_USERNAME +OCDAV_DEBUG_TOKEN: + name: OCDAV_DEBUG_TOKEN defaultValue: "" type: string - description: The username to authenticate with the store. Only applies when store - type 'nats-js-kv' is configured. - introductionVersion: 7.0.0 - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" -OC_PERSISTENT_STORE_NODES: - name: OC_PERSISTENT_STORE_NODES;COLLABORATION_STORE_NODES - defaultValue: '[127.0.0.1:9233]' - type: '[]string' - description: A list of nodes to access the configured store. This has no effect - when 'memory' store is configured. Note that the behaviour how nodes are used - is dependent on the library of the configured store. See the Environment Variable - Types description for more details. - introductionVersion: 7.0.0 + description: Token to secure the metrics endpoint. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_PERSISTENT_STORE_TTL: - name: OC_PERSISTENT_STORE_TTL;COLLABORATION_STORE_TTL - defaultValue: 30m0s - type: Duration - description: Time to live for events in the store. Defaults to '30m' (30 minutes). - See the Environment Variable Types description for more details. - introductionVersion: 7.0.0 +OCDAV_DEBUG_ZPAGES: + name: OCDAV_DEBUG_ZPAGES + defaultValue: "false" + type: bool + description: Enables zpages, which can be used for collecting and viewing in-memory + traces. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_PUBLIC_URL: - name: OC_URL;OC_PUBLIC_URL - defaultValue: https://127.0.0.1:9200 +OCDAV_EDITION: + name: OC_EDITION;OCDAV_EDITION + defaultValue: Community type: string - description: URL, where oCIS is reachable for users. + description: Edition of oCIS. Used for branding purposes. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_REVA_GATEWAY: - name: OC_REVA_GATEWAY - defaultValue: com.owncloud.api.gateway +OCDAV_FILES_NAMESPACE: + name: OCDAV_FILES_NAMESPACE + defaultValue: /users/{{.Id.OpaqueId}} type: string - description: CS3 gateway used to look up user metadata. - introductionVersion: 6.0.0 + description: Jail requests to /dav/files/{username} into this CS3 namespace. Supports + template layouting with CS3 User properties. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_REVA_GATEWAY_TLS_CACERT: - name: OC_REVA_GATEWAY_TLS_CACERT - defaultValue: "" - type: string - description: The root CA certificate used to validate the gateway's TLS certificate. +OCDAV_GATEWAY_REQUEST_TIMEOUT: + name: OCDAV_GATEWAY_REQUEST_TIMEOUT + defaultValue: "84300" + type: int64 + description: Request timeout in seconds for requests from the oCDAV service to the + GATEWAY service. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_REVA_GATEWAY_TLS_MODE: - name: OC_REVA_GATEWAY_TLS_MODE - defaultValue: "" +OCDAV_HTTP_ADDR: + name: OCDAV_HTTP_ADDR + defaultValue: 127.0.0.1:9350 type: string - description: 'TLS mode for grpc connection to the CS3 gateway endpoint. Possible - values are ''off'', ''insecure'' and ''on''. ''off'': disables transport security - for the clients. ''insecure'' allows using transport security, but disables certificate - verification (to be used with the autogenerated self-signed certificates). ''on'' - enables transport security, including server certificate verification.' + description: The bind address of the HTTP service. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_SERVICE_ACCOUNT_ID: - name: OC_SERVICE_ACCOUNT_ID;USERLOG_SERVICE_ACCOUNT_ID +OCDAV_HTTP_PREFIX: + name: OCDAV_HTTP_PREFIX defaultValue: "" type: string - description: The ID of the service account the service should use. See the 'auth-service' - service description for more details. - introductionVersion: "5.0" + description: A URL path prefix for the handler. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_SERVICE_ACCOUNT_SECRET: - name: OC_SERVICE_ACCOUNT_SECRET;USERLOG_SERVICE_ACCOUNT_SECRET - defaultValue: "" +OCDAV_HTTP_PROTOCOL: + name: OCDAV_HTTP_PROTOCOL + defaultValue: tcp type: string - description: The service account secret. - introductionVersion: "5.0" + description: The transport protocol of the HTTP service. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD: - name: OC_SHARING_PUBLIC_SHARE_MUST_HAVE_PASSWORD;FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD - defaultValue: "true" +OCDAV_INSECURE: + name: OC_INSECURE;OCDAV_INSECURE + defaultValue: "false" type: bool - description: Set this to true if you want to enforce passwords on all public shares. - introductionVersion: "5.0" + description: Allow insecure connections to the GATEWAY service. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" - deprecationInfo: FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated - | | FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated | | | - FRONTEND_OCS_PUBLIC_SHARE_MUST_HAVE_PASSWORD, the OCS API is deprecated -OC_SHARING_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD: - name: OC_SHARING_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD;FRONTEND_OCS_PUBLIC_WRITEABLE_SHARE_MUST_HAVE_PASSWORD - defaultValue: "false" - type: bool - description: Set this to true if you want to enforce passwords for writable shares. - Only effective if the setting for 'passwords on all public shares' is set to false. - introductionVersion: "5.0" + deprecationInfo: "" +OCDAV_JWT_SECRET: + name: OC_JWT_SECRET;OCDAV_JWT_SECRET + defaultValue: "" + type: string + description: The secret to mint and validate jwt tokens. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" - deprecationInfo: FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD, the OCS - API is deprecated | | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD, - the OCS API is deprecated | | | FRONTEND_OCS_PUBLIC_WRITABLE_SHARE_MUST_HAVE_PASSWORD, - the OCS API is deprecated -OC_SHOW_USER_EMAIL_IN_RESULTS: - name: OC_SHOW_USER_EMAIL_IN_RESULTS + deprecationInfo: "" +OCDAV_LOG_COLOR: + name: OC_LOG_COLOR;OCDAV_LOG_COLOR defaultValue: "false" type: bool - description: Include user email addresses in responses. If absent or set to false - emails will be omitted from results. Please note that admin users can always see - all email addresses. - introductionVersion: 6.0.0 + description: Activates colorized log output. + introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_SPACES_MAX_QUOTA: - name: OC_SPACES_MAX_QUOTA;FRONTEND_MAX_QUOTA - defaultValue: "0" - type: uint64 - description: Set the global max quota value in bytes. A value of 0 equals unlimited. - The value is provided via capabilities. +OCDAV_LOG_FILE: + name: OC_LOG_FILE;OCDAV_LOG_FILE + defaultValue: "" + type: string + description: The path to the log file. Activates logging to this file if set. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_SYSTEM_USER_API_KEY: - name: OC_SYSTEM_USER_API_KEY +OCDAV_LOG_LEVEL: + name: OC_LOG_LEVEL;OCDAV_LOG_LEVEL defaultValue: "" type: string - description: API key for the STORAGE-SYSTEM system user. + description: 'The log level. Valid values are: ''panic'', ''fatal'', ''error'', + ''warn'', ''info'', ''debug'', ''trace''.' introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_SYSTEM_USER_ID: - name: OC_SYSTEM_USER_ID;SETTINGS_SYSTEM_USER_ID +OCDAV_LOG_PRETTY: + name: OC_LOG_PRETTY;OCDAV_LOG_PRETTY + defaultValue: "false" + type: bool + description: Activates pretty log output. + introductionVersion: pre5.0 + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OCDAV_MACHINE_AUTH_API_KEY: + name: OC_MACHINE_AUTH_API_KEY;OCDAV_MACHINE_AUTH_API_KEY defaultValue: "" type: string - description: ID of the oCIS STORAGE-SYSTEM system user. Admins need to set the ID - for the STORAGE-SYSTEM system user in this config option which is then used to - reference the user. Any reasonable long string is possible, preferably this would - be an UUIDv4 format. + description: Machine auth API key used to validate internal requests necessary for + the access to resources from other services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_SYSTEM_USER_IDP: - name: OC_SYSTEM_USER_IDP;SETTINGS_SYSTEM_USER_IDP - defaultValue: internal +OCDAV_OCM_NAMESPACE: + name: OCDAV_OCM_NAMESPACE + defaultValue: /public type: string - description: IDP of the oCIS STORAGE-SYSTEM system user. + description: The human readable path prefix for the ocm shares. + introductionVersion: "5.0" + deprecationVersion: "" + removalVersion: "" + deprecationInfo: "" +OCDAV_PUBLIC_URL: + name: OC_URL;OCDAV_PUBLIC_URL + defaultValue: https://localhost:9200 + type: string + description: URL where oCIS is reachable for users. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_TRACING_COLLECTOR: - name: OC_TRACING_COLLECTOR;IDM_TRACING_COLLECTOR - defaultValue: "" +OCDAV_SHARES_NAMESPACE: + name: OCDAV_SHARES_NAMESPACE + defaultValue: /Shares type: string - description: The HTTP endpoint for sending spans directly to a collector, i.e. http://jaeger-collector:14268/api/traces. - Only used if the tracing endpoint is unset. + description: The human readable path for the share jail. Relative to a users personal + space root. Upcased intentionally. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_TRACING_ENABLED: - name: OC_TRACING_ENABLED;IDM_TRACING_ENABLED +OCDAV_SKIP_USER_GROUPS_IN_TOKEN: + name: OCDAV_SKIP_USER_GROUPS_IN_TOKEN defaultValue: "false" type: bool - description: Activates tracing. + description: Disables the loading of user's group memberships from the reva access + token. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_TRACING_ENDPOINT: - name: OC_TRACING_ENDPOINT;IDM_TRACING_ENDPOINT +OCDAV_TRACING_COLLECTOR: + name: OC_TRACING_COLLECTOR;OCDAV_TRACING_COLLECTOR defaultValue: "" type: string - description: The endpoint of the tracing agent. + description: The HTTP endpoint for sending spans directly to a collector, i.e. http://jaeger-collector:14268/api/traces. + Only used if the tracing endpoint is unset. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_TRACING_TYPE: - name: OC_TRACING_TYPE;IDM_TRACING_TYPE - defaultValue: "" - type: string - description: The type of tracing. Defaults to '', which is the same as 'jaeger'. - Allowed tracing types are 'jaeger' and '' as of now. +OCDAV_TRACING_ENABLED: + name: OC_TRACING_ENABLED;OCDAV_TRACING_ENABLED + defaultValue: "false" + type: bool + description: Activates tracing. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_TRANSFER_SECRET: - name: OC_TRANSFER_SECRET +OCDAV_TRACING_ENDPOINT: + name: OC_TRACING_ENDPOINT;OCDAV_TRACING_ENDPOINT defaultValue: "" type: string - description: Transfer secret for signing file up- and download requests. + description: The endpoint of the tracing agent. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_TRANSLATION_PATH: - name: OC_TRANSLATION_PATH;USERLOG_TRANSLATION_PATH +OCDAV_TRACING_TYPE: + name: OC_TRACING_TYPE;OCDAV_TRACING_TYPE defaultValue: "" type: string - description: (optional) Set this to a path with custom translations to overwrite - the builtin translations. Note that file and folder naming rules apply, see the - documentation for more details. + description: The type of tracing. Defaults to '', which is the same as 'jaeger'. + Allowed tracing types are 'jaeger' and '' as of now. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_URL: - name: OC_URL;OC_OIDC_ISSUER - defaultValue: https://localhost:9200 +OCDAV_WEBDAV_NAMESPACE: + name: OCDAV_WEBDAV_NAMESPACE + defaultValue: /users/{{.Id.OpaqueId}} type: string - description: The OIDC issuer URL to assign to the demo users. + description: Jail requests to /dav/webdav into this CS3 namespace. Supports template + layouting with CS3 User properties. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" deprecationInfo: "" -OC_WOPI_DISABLE_CHAT: - name: COLLABORATION_WOPI_DISABLE_CHAT;OC_WOPI_DISABLE_CHAT - defaultValue: "false" - type: bool - description: Disable chat in the office web frontend. This feature applies to OnlyOffice - and Microsoft. - introductionVersion: 7.0.0 - deprecationVersion: "" - removalVersion: "" - deprecationInfo: "" OCM_CORS_ALLOW_CREDENTIALS: name: OC_CORS_ALLOW_CREDENTIALS;OCM_CORS_ALLOW_CREDENTIALS defaultValue: "false" @@ -9237,7 +9247,7 @@ OCM_EVENTS_AUTH_PASSWORD: defaultValue: "" type: string description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -9247,7 +9257,7 @@ OCM_EVENTS_AUTH_USERNAME: defaultValue: "" type: string description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -9268,7 +9278,7 @@ OCM_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" @@ -9943,7 +9953,7 @@ POLICIES_EVENTS_AUTH_PASSWORD: defaultValue: "" type: string description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -9953,7 +9963,7 @@ POLICIES_EVENTS_AUTH_USERNAME: defaultValue: "" type: string description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -9974,7 +9984,7 @@ POLICIES_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" @@ -10160,7 +10170,7 @@ POSTPROCESSING_EVENTS_AUTH_PASSWORD: defaultValue: "" type: string description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -10170,7 +10180,7 @@ POSTPROCESSING_EVENTS_AUTH_USERNAME: defaultValue: "" type: string description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -10191,7 +10201,7 @@ POSTPROCESSING_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" @@ -10549,7 +10559,7 @@ PROXY_EVENTS_AUTH_PASSWORD: defaultValue: "" type: string description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: 7.0.0 deprecationVersion: "" removalVersion: "" @@ -10559,7 +10569,7 @@ PROXY_EVENTS_AUTH_USERNAME: defaultValue: "" type: string description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: 7.0.0 deprecationVersion: "" removalVersion: "" @@ -10579,7 +10589,7 @@ PROXY_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: 7.0.0 deprecationVersion: "" removalVersion: "" @@ -11151,7 +11161,7 @@ SEARCH_EVENTS_AUTH_PASSWORD: defaultValue: "" type: string description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -11161,7 +11171,7 @@ SEARCH_EVENTS_AUTH_USERNAME: defaultValue: "" type: string description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -11182,7 +11192,7 @@ SEARCH_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" @@ -11666,7 +11676,7 @@ SETTINGS_SETUP_DEFAULT_ASSIGNMENTS: deprecationInfo: "" SETTINGS_STORAGE_GATEWAY_GRPC_ADDR: name: SETTINGS_STORAGE_GATEWAY_GRPC_ADDR;STORAGE_GATEWAY_GRPC_ADDR - defaultValue: com.owncloud.api.storage-system + defaultValue: eu.opencloud.api.storage-system type: string description: GRPC address of the STORAGE-SYSTEM service. introductionVersion: pre5.0 @@ -11675,7 +11685,7 @@ SETTINGS_STORAGE_GATEWAY_GRPC_ADDR: deprecationInfo: "" SETTINGS_STORAGE_GRPC_ADDR: name: SETTINGS_STORAGE_GRPC_ADDR;STORAGE_GRPC_ADDR - defaultValue: com.owncloud.api.storage-system + defaultValue: eu.opencloud.api.storage-system type: string description: GRPC address of the STORAGE-SYSTEM service. introductionVersion: pre5.0 @@ -11824,7 +11834,7 @@ SHARING_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" @@ -12000,7 +12010,7 @@ SHARING_PASSWORD_POLICY_MIN_UPPERCASE_CHARACTERS: deprecationInfo: "" SHARING_PUBLIC_CS3_PROVIDER_ADDR: name: SHARING_PUBLIC_CS3_PROVIDER_ADDR - defaultValue: com.owncloud.api.storage-system + defaultValue: eu.opencloud.api.storage-system type: string description: GRPC address of the STORAGE-SYSTEM service. introductionVersion: pre5.0 @@ -12060,7 +12070,7 @@ SHARING_PUBLIC_JSON_FILE: deprecationInfo: "" SHARING_PUBLIC_JSONCS3_PROVIDER_ADDR: name: SHARING_PUBLIC_JSONCS3_PROVIDER_ADDR - defaultValue: com.owncloud.api.storage-system + defaultValue: eu.opencloud.api.storage-system type: string description: GRPC address of the STORAGE-SYSTEM service. introductionVersion: pre5.0 @@ -12168,7 +12178,7 @@ SHARING_TRACING_TYPE: deprecationInfo: "" SHARING_USER_CS3_PROVIDER_ADDR: name: SHARING_USER_CS3_PROVIDER_ADDR - defaultValue: com.owncloud.api.storage-system + defaultValue: eu.opencloud.api.storage-system type: string description: GRPC address of the STORAGE-SYSTEM service. introductionVersion: pre5.0 @@ -12247,7 +12257,7 @@ SHARING_USER_JSONCS3_MAX_CONCURRENCY: deprecationInfo: "" SHARING_USER_JSONCS3_PROVIDER_ADDR: name: SHARING_USER_JSONCS3_PROVIDER_ADDR - defaultValue: com.owncloud.api.storage-system + defaultValue: eu.opencloud.api.storage-system type: string description: GRPC address of the STORAGE-SYSTEM service. introductionVersion: pre5.0 @@ -12425,7 +12435,7 @@ SSE_EVENTS_AUTH_PASSWORD: defaultValue: "" type: string description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -12435,7 +12445,7 @@ SSE_EVENTS_AUTH_USERNAME: defaultValue: "" type: string description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -12456,7 +12466,7 @@ SSE_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -12604,7 +12614,7 @@ SSE_TRACING_TYPE: deprecationInfo: "" STORAGE_GATEWAY_GRPC_ADDR: name: SETTINGS_STORAGE_GATEWAY_GRPC_ADDR;STORAGE_GATEWAY_GRPC_ADDR - defaultValue: com.owncloud.api.storage-system + defaultValue: eu.opencloud.api.storage-system type: string description: GRPC address of the STORAGE-SYSTEM service. introductionVersion: pre5.0 @@ -12613,7 +12623,7 @@ STORAGE_GATEWAY_GRPC_ADDR: deprecationInfo: "" STORAGE_GRPC_ADDR: name: SETTINGS_STORAGE_GRPC_ADDR;STORAGE_GRPC_ADDR - defaultValue: com.owncloud.api.storage-system + defaultValue: eu.opencloud.api.storage-system type: string description: GRPC address of the STORAGE-SYSTEM service. introductionVersion: pre5.0 @@ -12953,7 +12963,7 @@ STORAGE_SHARES_TRACING_TYPE: deprecationInfo: "" STORAGE_SHARES_USER_SHARE_PROVIDER_ENDPOINT: name: STORAGE_SHARES_USER_SHARE_PROVIDER_ENDPOINT - defaultValue: com.owncloud.api.sharing + defaultValue: eu.opencloud.api.sharing type: string description: GRPC endpoint of the SHARING service. introductionVersion: pre5.0 @@ -13408,7 +13418,7 @@ STORAGE_USERS_EVENTS_AUTH_PASSWORD: defaultValue: "" type: string description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -13418,7 +13428,7 @@ STORAGE_USERS_EVENTS_AUTH_USERNAME: defaultValue: "" type: string description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -13439,7 +13449,7 @@ STORAGE_USERS_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" @@ -13809,7 +13819,7 @@ STORAGE_USERS_OCIS_MAX_QUOTA: deprecationInfo: "" STORAGE_USERS_OCIS_PERMISSIONS_ENDPOINT: name: STORAGE_USERS_PERMISSION_ENDPOINT;STORAGE_USERS_OCIS_PERMISSIONS_ENDPOINT - defaultValue: com.owncloud.api.settings + defaultValue: eu.opencloud.api.settings type: string description: Endpoint of the permissions service. The endpoints can differ for 'ocis' and 's3ng'. @@ -13959,7 +13969,7 @@ STORAGE_USERS_OWNCLOUDSQL_UPLOADINFO_DIR: deprecationInfo: "" STORAGE_USERS_OWNCLOUDSQL_USERS_PROVIDER_ENDPOINT: name: STORAGE_USERS_OWNCLOUDSQL_USERS_PROVIDER_ENDPOINT - defaultValue: com.owncloud.api.users + defaultValue: eu.opencloud.api.users type: string description: Endpoint of the users provider. introductionVersion: pre5.0 @@ -13968,7 +13978,7 @@ STORAGE_USERS_OWNCLOUDSQL_USERS_PROVIDER_ENDPOINT: deprecationInfo: "" STORAGE_USERS_PERMISSION_ENDPOINT: name: STORAGE_USERS_PERMISSION_ENDPOINT;STORAGE_USERS_POSIX_PERMISSIONS_ENDPOINT - defaultValue: com.owncloud.api.settings + defaultValue: eu.opencloud.api.settings type: string description: Endpoint of the permissions service. The endpoints can differ for 'ocis', 'posix' and 's3ng'. @@ -13987,7 +13997,7 @@ STORAGE_USERS_POSIX_GENERAL_SPACE_PATH_TEMPLATE: deprecationInfo: "" STORAGE_USERS_POSIX_PERMISSIONS_ENDPOINT: name: STORAGE_USERS_PERMISSION_ENDPOINT;STORAGE_USERS_POSIX_PERMISSIONS_ENDPOINT - defaultValue: com.owncloud.api.settings + defaultValue: eu.opencloud.api.settings type: string description: Endpoint of the permissions service. The endpoints can differ for 'ocis', 'posix' and 's3ng'. @@ -14189,7 +14199,7 @@ STORAGE_USERS_S3NG_MAX_CONCURRENCY: deprecationInfo: "" STORAGE_USERS_S3NG_PERMISSIONS_ENDPOINT: name: STORAGE_USERS_PERMISSION_ENDPOINT;STORAGE_USERS_S3NG_PERMISSIONS_ENDPOINT - defaultValue: com.owncloud.api.settings + defaultValue: eu.opencloud.api.settings type: string description: Endpoint of the permissions service. The endpoints can differ for 'ocis' and 's3ng'. @@ -14801,7 +14811,7 @@ USERLOG_EVENTS_AUTH_PASSWORD: defaultValue: "" type: string description: The password to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -14811,7 +14821,7 @@ USERLOG_EVENTS_AUTH_USERNAME: defaultValue: "" type: string description: The username to authenticate with the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: "5.0" deprecationVersion: "" removalVersion: "" @@ -14832,7 +14842,7 @@ USERLOG_EVENTS_ENABLE_TLS: defaultValue: "false" type: bool description: Enable TLS for the connection to the events broker. The events broker - is the ocis service which receives and delivers events between the services. + is the OpenCloud service which receives and delivers events between the services. introductionVersion: pre5.0 deprecationVersion: "" removalVersion: "" @@ -15763,7 +15773,7 @@ WEB_DEBUG_ZPAGES: deprecationInfo: "" WEB_GATEWAY_GRPC_ADDR: name: WEB_GATEWAY_GRPC_ADDR - defaultValue: com.owncloud.api.gateway + defaultValue: eu.opencloud.api.gateway type: string description: The bind address of the GRPC service. introductionVersion: pre5.0 @@ -16155,7 +16165,7 @@ WEB_UI_CONFIG_SERVER: deprecationInfo: "" WEB_UI_THEME_PATH: name: WEB_UI_THEME_PATH - defaultValue: /themes/owncloud/theme.json + defaultValue: /themes/opencloud/theme.json type: string description: Path to the theme json file. Will be appended to the URL of the theme server. From 08547351b3e32e397f229f490d8ec61479b238d8 Mon Sep 17 00:00:00 2001 From: Ralf Haferkamp Date: Wed, 15 Jan 2025 16:22:22 +0100 Subject: [PATCH 4/4] fix github url in services/proxy/README.md MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Co-authored-by: Jörn Friedrich Dreyer --- services/proxy/README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/services/proxy/README.md b/services/proxy/README.md index 058a8d3ae..8dad362d3 100644 --- a/services/proxy/README.md +++ b/services/proxy/README.md @@ -15,7 +15,7 @@ The following request authentication schemes are implemented: ## Configuring Routes -The proxy handles routing to all endpoints that ocis offers. The currently availabe default routes can be found [in the code](https://github.eu.opencloud.ocis/blob/master/services/proxy/pkg/config/defaults/defaultconfig.go). Changing or adding routes can be necessary when writing own ocis extensions. +The proxy handles routing to all endpoints that ocis offers. The currently availabe default routes can be found [in the code](https://github.com/opencloud-eu/opencloud/blob/master/services/proxy/pkg/config/defaults/defaultconfig.go). Changing or adding routes can be necessary when writing own ocis extensions. Due to the complexity when defining routes, these can only be defined in the yaml file but not via environment variables.