This repository has been archived by the owner on Oct 9, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 63
/
Copy pathconfig.go
80 lines (66 loc) · 2.96 KB
/
config.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
package config
import (
"fmt"
config2 "github.com/lyft/flyteadmin/pkg/auth/config"
"github.com/lyft/flytestdlib/config"
)
const SectionKey = "server"
//go:generate pflags ServerConfig --default-var=defaultServerConfig
type ServerConfig struct {
HTTPPort int `json:"httpPort" pflag:",On which http port to serve admin"`
GrpcPort int `json:"grpcPort" pflag:",On which grpc port to serve admin"`
GrpcServerReflection bool `json:"grpcServerReflection" pflag:",Enable GRPC Server Reflection"`
KubeConfig string `json:"kube-config" pflag:",Path to kubernetes client config file."`
Master string `json:"master" pflag:",The address of the Kubernetes API server."`
Security ServerSecurityOptions `json:"security"`
ThirdPartyConfig ThirdPartyConfigOptions `json:"thirdPartyConfig"`
}
type ServerSecurityOptions struct {
Secure bool `json:"secure"`
Ssl SslOptions `json:"ssl"`
UseAuth bool `json:"useAuth"`
Oauth config2.OAuthOptions `json:"oauth"`
AuditAccess bool `json:"auditAccess"`
// These options are here to allow deployments where the Flyte UI (Console) is served from a different domain/port.
// Note that CORS only applies to Admin's API endpoints. The health check endpoint for instance is unaffected.
// Please obviously evaluate security concerns before turning this on.
AllowCors bool `json:"allowCors"`
// Defines origins which are allowed to make CORS requests. This list should _not_ contain "*", as that
// will make CORS header responses incompatible with the `withCredentials=true` setting.
AllowedOrigins []string `json:"allowedOrigins"`
// These are the Access-Control-Request-Headers that the server will respond to.
// By default, the server will allow Accept, Accept-Language, Content-Language, and Content-Type.
// User this setting to add any additional headers which are needed
AllowedHeaders []string `json:"allowedHeaders"`
}
type SslOptions struct {
CertificateFile string `json:"certificateFile"`
KeyFile string `json:"keyFile"`
}
var defaultServerConfig = &ServerConfig{
Security: ServerSecurityOptions{
Oauth: config2.OAuthOptions{
// Please see the comments in this struct's definition for more information
HTTPAuthorizationHeader: "flyte-authorization",
GrpcAuthorizationHeader: "flyte-authorization",
},
},
}
var serverConfig = config.MustRegisterSection(SectionKey, defaultServerConfig)
func GetConfig() *ServerConfig {
return serverConfig.GetConfig().(*ServerConfig)
}
func SetConfig(s *ServerConfig) {
if err := serverConfig.SetConfig(s); err != nil {
panic(err)
}
}
func (s ServerConfig) GetHostAddress() string {
return fmt.Sprintf(":%d", s.HTTPPort)
}
func (s ServerConfig) GetGrpcHostAddress() string {
return fmt.Sprintf(":%d", s.GrpcPort)
}
func init() {
SetConfig(&ServerConfig{})
}