mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-21 07:17:39 +00:00
12d4d3ea0b
* fix: enable env vars in setup steps (and deprecate admin subcommand) * fix tests and error text
47 lines
1.1 KiB
Go
47 lines
1.1 KiB
Go
package tls
|
|
|
|
import (
|
|
"errors"
|
|
|
|
"github.com/spf13/cobra"
|
|
"github.com/spf13/viper"
|
|
)
|
|
|
|
const (
|
|
flagTLSMode = "tlsMode"
|
|
)
|
|
|
|
var (
|
|
ErrValidValue = errors.New("value must either be `enabled`, `external` or `disabled`")
|
|
)
|
|
|
|
func AddTLSModeFlag(cmd *cobra.Command) {
|
|
if cmd.PersistentFlags().Lookup(flagTLSMode) != nil {
|
|
return
|
|
}
|
|
cmd.PersistentFlags().String(flagTLSMode, "", "start ZITADEL with (enabled), without (disabled) TLS or external component e.g. reverse proxy (external) terminating TLS, this flag will overwrite `externalSecure` and `tls.enabled` in configs files")
|
|
}
|
|
|
|
func ModeFromFlag(cmd *cobra.Command) error {
|
|
tlsMode, _ := cmd.Flags().GetString(flagTLSMode)
|
|
var tlsEnabled, externalSecure bool
|
|
switch tlsMode {
|
|
case "enabled":
|
|
tlsEnabled = true
|
|
externalSecure = true
|
|
case "external":
|
|
tlsEnabled = false
|
|
externalSecure = true
|
|
case "disabled":
|
|
tlsEnabled = false
|
|
externalSecure = false
|
|
case "":
|
|
return nil
|
|
default:
|
|
return ErrValidValue
|
|
}
|
|
viper.Set("tls.enabled", tlsEnabled)
|
|
viper.Set("externalSecure", externalSecure)
|
|
return nil
|
|
}
|