mirror of
https://github.com/zitadel/zitadel.git
synced 2025-01-12 00:03:58 +00:00
47 lines
1.1 KiB
Go
47 lines
1.1 KiB
Go
|
package tls
|
||
|
|
||
|
import (
|
||
|
"errors"
|
||
|
|
||
|
"github.com/spf13/cobra"
|
||
|
"github.com/spf13/viper"
|
||
|
)
|
||
|
|
||
|
const (
|
||
|
flagTLSMode = "tlsMode"
|
||
|
)
|
||
|
|
||
|
var (
|
||
|
ErrValidValue = errors.New("value must either be `enabled`, `external` or `disabled`")
|
||
|
)
|
||
|
|
||
|
func AddTLSModeFlag(cmd *cobra.Command) {
|
||
|
if cmd.PersistentFlags().Lookup(flagTLSMode) != nil {
|
||
|
return
|
||
|
}
|
||
|
cmd.PersistentFlags().String(flagTLSMode, "", "start ZITADEL with (enabled), without (disabled) TLS or external component e.g. reverse proxy (external) terminating TLS, this flag will overwrite `externalSecure` and `tls.enabled` in configs files")
|
||
|
}
|
||
|
|
||
|
func ModeFromFlag(cmd *cobra.Command) error {
|
||
|
tlsMode, _ := cmd.Flags().GetString(flagTLSMode)
|
||
|
var tlsEnabled, externalSecure bool
|
||
|
switch tlsMode {
|
||
|
case "enabled":
|
||
|
tlsEnabled = true
|
||
|
externalSecure = true
|
||
|
case "external":
|
||
|
tlsEnabled = false
|
||
|
externalSecure = true
|
||
|
case "disabled":
|
||
|
tlsEnabled = false
|
||
|
externalSecure = false
|
||
|
case "":
|
||
|
return nil
|
||
|
default:
|
||
|
return ErrValidValue
|
||
|
}
|
||
|
viper.Set("tls.enabled", tlsEnabled)
|
||
|
viper.Set("externalSecure", externalSecure)
|
||
|
return nil
|
||
|
}
|