mirror of
https://github.com/nabbar/golib.git
synced 2025-12-24 11:51:02 +08:00
942068222c
Global Repos / Workflow - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - UPDATE workflow: split old workflow into multiple files - UPDATE .gitignore: added cluster.old.tar.gz and build artifacts - UPDATE .golangci.yml: enhanced linter rules and disabled deprecated linters [archive] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - FIX extract: recursive decompression for nested archives (e.g., .tar.gz handling) - FIX extract: ZIP archive support now properly uses ReaderAt interface with seek reset - ADD extract: proper symlink and hard link handling in archives - UPDATE tar/writer: improved error handling and file mode preservation - UPDATE zip/writer: enhanced validation and error messages - UPDATE compress/interface: added support for additional compression formats - UPDATE helper/compressor: fixed typo in error handling [artifact] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE artifact: improved error handling and context management - UPDATE client/interface: enhanced API with better type safety and context propagation - UPDATE client/model: refactored for better maintainability - UPDATE github: removed unused error codes, improved model validation - UPDATE gitlab: enhanced API pagination and error handling - UPDATE jfrog: improved artifactory API compatibility - UPDATE s3aws: enhanced S3 bucket operations and error messages [atomic] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE cast: improved type conversion with better error handling - UPDATE interface: enhanced atomic operations with generics support - UPDATE synmap: fixed race conditions in concurrent access patterns - UPDATE value: improved atomic value operations with better memory ordering [aws] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE bucket: enhanced ACL and CORS configuration with validation - UPDATE configAws/models: improved credential handling and region configuration - UPDATE configCustom/interface: added support for custom endpoints - UPDATE http/request: improved retry logic and timeout handling - UPDATE interface: enhanced AWS client with context propagation - UPDATE model: refactored for AWS SDK v2 compatibility - UPDATE multipart/interface: improved chunk handling for large uploads - UPDATE pusher: optimized hash calculation and upload progress tracking - UPDATE resolver: enhanced endpoint resolution with custom DNS - DELETE test files: removed bucket_test.go, group_test.go, object_test.go, policy_test.go, role_test.go, user_test.go [cache] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - ADD context: context-aware cache lifecycle management - UPDATE interface: complete rewrite with Go generics for type-safe key-value operations - ADD item package: generic cache item with expiration tracking (interface and model) - UPDATE model: refactored to use generics (Cache[K comparable, V any]) - REFACTOR: split item.go into modelAny.go for better code organization [certificates] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE auth/encode: improved PEM encoding with better error messages - UPDATE auth/interface: enhanced authentication certificate handling - UPDATE ca: improved CA certificate generation and validation - UPDATE certs: enhanced certificate configuration with SAN support - UPDATE cipher: improved cipher suite selection and validation - UPDATE curves: enhanced elliptic curve handling with additional curves - ADD deprecated.go: marked deprecated TLS versions and cipher suites - UPDATE interface: enhanced certificate interface with context support - UPDATE model: improved certificate model with better validation - UPDATE rootca: enhanced root CA pool management - UPDATE tlsversion: added TLS 1.3 support with proper validation - UPDATE tools: improved certificate utility functions [cobra] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE completion: improved shell completion generation (bash, zsh, fish, powershell) - UPDATE configure: enhanced configuration file handling - UPDATE printError: improved error formatting with color support - UPDATE interface: enhanced cobra interface with context support - UPDATE model: improved cobra model with better validation [config] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE components: improved component lifecycle management - UPDATE const/const: improved constant definitions - UPDATE context: enhanced context handling with better propagation - UPDATE errors: improved error definitions - UPDATE events: enhanced event management - UPDATE manage: improved configuration management with validation - UPDATE model: refactored config model - UPDATE shell: enhanced shell integration for interactive configuration - UPDATE types: improved component and componentList types [console] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - ADD buff.go: BuffPrintf function for colored output to io.Writer (moved from ioutils/multiplexer) - DELETE color.go: removed legacy color file (consolidated functionality) - UPDATE error: improved error definitions with better messages - ADD interface: console interface for abstraction - ADD model: console model for state management - UPDATE padding: enhanced string padding with Unicode support - UPDATE prompt: improved interactive prompt handling [context] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - DELETE config.go: removed deprecated configuration (replaced by Config[T] interface) - UPDATE context: improved context handling with better cancellation support - UPDATE gin/interface: enhanced Gin context integration with type safety - ADD helper: context helper functions for common operations - ADD interface: generic Config[T comparable] interface for type-safe context storage - ADD map: MapManage[T] interface for concurrent-safe map operations - ADD model: thread-safe context model implementation with sync.Map [database] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE gorm/config: improved database configuration - UPDATE gorm/driver: enhanced database driver with better connection pooling - UPDATE gorm/driver_darwin: macOS-specific database optimizations - UPDATE gorm/interface: improved GORM interface with context support - UPDATE gorm/model: refactored model for better maintainability - UPDATE gorm/monitor: enhanced monitoring for database connections - UPDATE kvtypes: improved types for key-value store (compare, driver, item, table) [duration] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE big: enhanced big.Duration for large time spans with arithmetic operations - UPDATE encode: improved marshaling for JSON, YAML, TOML, Text, CBOR - UPDATE format: enhanced human-readable formatting (ns, μs, ms, s, m, h, d, w) - UPDATE interface: improved duration interface with arithmetic methods - UPDATE model: refactored Duration type - UPDATE operation: enhanced arithmetic operations (Add, Sub, Mul, Div) - UPDATE parse: improved parsing with multiple format support - UPDATE truncate: enhanced truncation for rounding durations [encoding] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE aes: improved AES encryption with reader/writer interfaces - UPDATE hexa: enhanced hexadecimal encoding with better error handling - UPDATE mux: improved multiplexer/demultiplexer for stream handling - UPDATE randRead: enhanced random data generation - UPDATE sha256 package: SHA-256 hashing with reader/writer interfaces [errors] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - ADD pool package: thread-safe error pool for collecting multiple errors with concurrent access - UPDATE code: improved error code definition and lookup - UPDATE errors: enhanced error creation with better stack trace - UPDATE interface: improved error interface with more methods - UPDATE mode: enhanced error mode handling (production vs development) - UPDATE return: improved error return handling with context - UPDATE trace: enhanced error tracing with file and line information [file] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE bandwidth: improved bandwidth tracking with concurrency tests - UPDATE perm: enhanced file permission handling with Unix/Windows support - UPDATE perm/encode: improved marshaling for JSON, YAML, TOML - UPDATE perm/format: enhanced permission formatting (e.g., "rwxr-xr-x") - UPDATE perm/parse: improved parsing of permission strings and octal values - UPDATE progress: enhanced progress tracking for file I/O operations - UPDATE progress/io*: improved reader, writer, seeker, closer interfaces with progress callbacks [ftpclient] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE config: improved FTP configuration with TLS support - UPDATE errors: enhanced error definitions - UPDATE interface: improved FTP client interface - UPDATE model: refactored FTP client model [httpcli] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE cli: improved HTTP client with retry logic and timeout handling - UPDATE dns-mapper: enhanced DNS mapping for custom resolution - UPDATE dns-mapper/config: improved DNS mapper configuration - UPDATE dns-mapper/errors: enhanced error handling - UPDATE dns-mapper/interface: improved DNS mapper interface - UPDATE dns-mapper/transport: enhanced HTTP transport with DNS override - UPDATE errors: improved error definitions - UPDATE options: enhanced client options with context support [httpserver] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE config: improved server configuration with TLS and middleware support - UPDATE handler: enhanced request handler with better error handling - UPDATE interface: improved server interface with context support and monitoring integration - UPDATE model: refactored server model with better validation - UPDATE monitor: enhanced monitoring integration with status tracking - UPDATE pool: improved server pool management (config, interface, list, model) - UPDATE run: enhanced server runtime with graceful shutdown - UPDATE server: improved core server implementation with better lifecycle - ADD testhelpers/certs.go: certificate generation utilities for testing - UPDATE types: improved const, fields, and handler types [ioutils] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE bufferReadCloser: improved buffered reader/writer with closer - UPDATE fileDescriptor: enhanced file descriptor limit management (platform-specific for Linux/macOS/Windows) - UPDATE ioprogress: improved progress tracking for I/O operations - UPDATE iowrapper: enhanced I/O wrapper with custom interfaces - UPDATE mapCloser: improved map of closers for resource management - UPDATE maxstdio: enhanced C implementation for max stdio file descriptor retrieval - DELETE multiplexer/model.go: removed legacy multiplexer (functionality moved to console/buff.go and retro/) - UPDATE nopwritecloser: improved no-op write closer - UPDATE tools: enhanced I/O utility functions [ldap] - UPDATE ldap: improved LDAP client with better connection handling and search operations [logger] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE config: improved default values, file options, and syslog configuration - UPDATE entry/interface: enhanced log entry with context support - UPDATE fields: improved field handling with JSON cloning - UPDATE gorm/interface: enhanced GORM logger with trace ID support - UPDATE hashicorp/interface: improved HashiCorp logger integration - FIX hookfile/system: use os.OpenRoot for secure file operations (prevents path traversal) - FIX hookfile/system: fixed import path from libsrv "golib/server" to "golib/runner" - ADD hookfile: IsRunning() method to track file hook state - UPDATE hookstderr/interface: enhanced stderr hook with better buffering - UPDATE hookstdout/interface: enhanced stdout hook with better buffering - UPDATE hooksyslog: improved syslog integration with channel and priority handling - ADD hookwriter package: generic io.Writer hook for custom output destinations - UPDATE interface: enhanced logger interface with context propagation - UPDATE level: improved log level handling and comparison - UPDATE log: enhanced logging with better formatting - UPDATE manage: improved logger lifecycle management - UPDATE model: refactored logger model for better maintainability [mail] - UPDATE sender: improved mail sender with better MIME handling - UPDATE interface: enhanced interface with monitoring support - UPDATE monitor: added monitoring integration for mail operations [monitor] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - ADD status package: new subpackage for status management with Status type (KO, Warn, OK) - ADD status/encode: marshaling support for JSON, YAML, TOML, Text, CBOR - ADD status/format: human-readable status formatting - ADD status/interface: Status type with Parse and String methods - UPDATE encode: improved encoding with better error handling - UPDATE error: enhanced error definitions - UPDATE info: improved system info collection (CPU, mem, disk, network) - UPDATE interface: enhanced monitor interface with status support and better component integration - UPDATE metrics: improved metrics collection and export - UPDATE middleware: enhanced monitoring middleware for HTTP - UPDATE pool/interface: enhanced pool interface with better monitoring integration - UPDATE pool/metrics: improved metrics collection in pool - UPDATE pool/model: refactored pool model for better maintainability - UPDATE pool/pool: enhanced pool implementation with better lifecycle - UPDATE server: enhanced server monitoring with status tracking - UPDATE types/monitor: improved monitor type definitions [nats] - UPDATE client: improved NATS client with better subscription handling - UPDATE config: enhanced NATS configuration with cluster support - UPDATE monitor: added monitoring integration for NATS operations - UPDATE server: improved NATS server integration with monitoring [network] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE bytes: improved byte size handling for network operations - UPDATE number: enhanced number utilities for network data - UPDATE protocol/encode: improved protocol encoding - ADD protocol/format: protocol formatting utilities - UPDATE protocol/interface: enhanced protocol interface - UPDATE protocol/model: refactored protocol model [password] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE password: improved password utilities with strength validation and secure generation [pidcontroller] - UPDATE interface: improved PID controller interface - UPDATE model: enhanced PID controller model with better tuning parameters [pprof] - UPDATE tools: improved pprof utilities for profiling integration [prometheus] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE bloom/bloom: improved bloom filter with better concurrency handling - UPDATE bloom/collection: enhanced bloom filter collection operations - UPDATE interface: enhanced prometheus interface with better type safety - UPDATE metrics/interface: enhanced metrics interface with better registration - UPDATE metrics/model: refactored metrics model for better maintainability - UPDATE model: refactored prometheus model with better validation - UPDATE pool: enhanced metric pool with concurrent access - UPDATE pool/interface: enhanced pool interface - UPDATE pool/model: refactored pool model - UPDATE route: improved routing for metric endpoints - UPDATE types: enhanced type definitions for metrics - UPDATE webmetrics: improved existing metrics (requestBody, requestIPTotal, requestLatency, requestSlow, requestTotal, requestURITotal, responseBody) - ADD webmetrics/activeConnections: gauge for tracking concurrent HTTP connections - ADD webmetrics/requestErrors: counter for HTTP request errors - ADD webmetrics/responseSizeByEndpoint: histogram for response size distribution by endpoint - ADD webmetrics/statusCodeTotal: counter for HTTP status codes [request] - UPDATE interface: enhanced request interface with better type safety - UPDATE model: refactored request model for better maintainability - UPDATE options: improved request options with better validation - UPDATE url: enhanced URL handling with better parsing [retro] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE encoding: improved encoding utilities with better format support - UPDATE format: enhanced formatting functions for retro compatibility - UPDATE model: refactored retro model with better validation - UPDATE utils: improved utility functions for version handling - UPDATE version: enhanced version utilities for retro compatibility [router] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE auth/interface: enhanced authentication interface with better validation - UPDATE auth/model: improved authentication model - UPDATE authheader/interface: enhanced authentication header interface - UPDATE default: improved default router configuration - UPDATE error: enhanced error definitions for router - UPDATE header/config: improved header configuration - UPDATE header/interface: enhanced header interface - UPDATE header/model: refactored header model - UPDATE interface: improved router interface with better type safety - UPDATE middleware: improved router middleware with better error handling - UPDATE model: refactored router model for better maintainability - UPDATE router: enhanced core router implementation - UPDATE tools: enhanced router utilities for route registration [runner] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE package: move package for lifecycle management of long-running services (moved from server/runner) - ADD interface: Runner interface with Start, Stop, Restart, IsRunning, and Uptime methods - ADD startStop package: service lifecycle with blocking start and graceful stop (interface, model, comprehensive tests) - ADD ticker package: periodic task execution at regular intervals (interface, model, comprehensive tests) - ADD tests: concurrency, construction, errors, lifecycle, and uptime tests for both startStop and ticker - ADD tools: RecoveryCaller for panic recovery in goroutines [semaphore] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - FIX bar/bar: Dec method now properly decrements (was calling Inc64, now calls Dec64 with negative value) - UPDATE bar: improved progress bar with better MPB integration - UPDATE bar/context: enhanced context handling for cancellation - UPDATE bar/interface: added methods for Total() and better progress tracking - UPDATE bar/model: improved model with atomic operations - UPDATE bar tests: enhanced bar_operations_test, edge_cases_test, integration_test, and semaphore_test - UPDATE context: enhanced context propagation - UPDATE interface: improved semaphore interface with weighted operations - UPDATE model: refactored model for better thread safety - UPDATE progress: enhanced progress tracking with multiple bars - UPDATE sem/interface: added IsRunning() method for state tracking - UPDATE sem/ulimit: improved ulimit handling for file descriptors - UPDATE sem/weighted: enhanced weighted semaphore operations - UPDATE types: improved type definitions for bar, progress, and semaphore [server] - REFACTOR: moved runner subpackage to root-level runner package - DELETE: empty package after moved runner subpackage [shell] - UPDATE goprompt: improved interactive prompt handling with better input validation [size] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - ADD arithmetic.go: NEW file with arithmetic operations (Add, Sub, Mul, Div with overflow detection) - UPDATE encode: improved marshaling for JSON, YAML, TOML, Text, CBOR - UPDATE format: enhanced human-readable formatting (B, KB, MB, GB, TB, PB, EB) - UPDATE interface: added arithmetic methods (Mul, MulErr, Div, DivErr, Add, AddErr, Sub, SubErr) - UPDATE model: refactored Size type with better validation - UPDATE parse: improved parsing with unit detection (IEC and SI standards) [smtp] - UPDATE client: improved SMTP client with better error handling - UPDATE config: enhanced configuration with validation - UPDATE config/error: improved error definitions - UPDATE config/interface: enhanced interface with context support - UPDATE config/model: refactored model for better maintainability - UPDATE interface: improved SMTP interface with monitoring support - UPDATE monitor: added monitoring integration for SMTP operations - DELETE network/network.go: removed legacy network handling (consolidated into client) - UPDATE tlsmode/tls: enhanced TLS mode handling (None, TLS, StartTLS) - UPDATE types/interface: improved type interface [socket] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - ADD client/interface_darwin: macOS-specific socket client options - UPDATE client/interface_linux: platform-specific socket options for Linux - UPDATE client/interface_other: platform-specific socket options for other platforms - UPDATE client/tcp/error: improved TCP client error handling - UPDATE client/tcp/interface: enhanced TCP client interface - UPDATE client/tcp/model: improved TCP client model - UPDATE client/udp/error: improved UDP client error handling - UPDATE client/udp/interface: enhanced UDP client interface - UPDATE client/udp/model: improved UDP client model - UPDATE client/unix/error: improved Unix socket client error handling - UPDATE client/unix/ignore: enhanced ignore functionality - UPDATE client/unix/interface: enhanced Unix socket client interface - UPDATE client/unix/model: improved Unix socket client model - UPDATE client/unixgram/error: improved Unix datagram client error handling - UPDATE client/unixgram/ignore: enhanced ignore functionality - UPDATE client/unixgram/interface: enhanced Unix datagram client interface - UPDATE client/unixgram/model: improved Unix datagram client model - UPDATE config/client: improved client configuration - UPDATE config/server: improved server configuration - DELETE delim: moved legacy delimiter to I/O package - UPDATE interface: improved socket interface - UPDATE io: enhanced I/O operations - DELETE multi: moved legacy multi to I/O package - ADD server/interface_darwin: macOS-specific socket server options - UPDATE server/interface_linux: platform-specific server options for Linux - UPDATE server/interface_other: platform-specific server options for other platforms - UPDATE server/tcp/error: improved TCP server error handling - UPDATE server/tcp/interface: enhanced TCP server interface - UPDATE server/tcp/listener: improved TCP server listener - UPDATE server/tcp/model: improved TCP server model - UPDATE server/udp/error: improved UDP server error handling - UPDATE server/udp/interface: enhanced UDP server interface - UPDATE server/udp/listener: improved UDP server listener - UPDATE server/udp/model: improved UDP server model - UPDATE server/unix/error: improved Unix socket server error handling - UPDATE server/unix/ignore: enhanced ignore functionality - UPDATE server/unix/interface: enhanced Unix socket server interface - UPDATE server/unix/listener: improved Unix socket server listener - UPDATE server/unix/model: improved Unix socket server model - UPDATE server/unixgram/error: improved Unix datagram server error handling - UPDATE server/unixgram/ignore: enhanced ignore functionality - UPDATE server/unixgram/interface: enhanced Unix datagram server interface - UPDATE server/unixgram/listener: improved Unix datagram server listener - UPDATE server/unixgram/model: improved Unix datagram server model [static] - UPDATE interface: improved static interface with monitoring support - UPDATE model: refactored static model - UPDATE monitor: added monitoring integration for static file operations [status] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE cache: improved status cache with better synchronization - UPDATE config: improved status configuration - UPDATE control/encode: improved control encoding - UPDATE control/interface: enhanced control interface with status tracking - UPDATE control/model: refactored control model - UPDATE encode: improved status encoding - UPDATE error: enhanced error definitions for status - UPDATE info: improved status info handling - UPDATE interface: enhanced status interface - UPDATE listmandatory/interface: improved list mandatory interface - UPDATE listmandatory/model: refactored list mandatory model - UPDATE mandatory/interface: enhanced mandatory interface - UPDATE mandatory/model: refactored mandatory model - UPDATE model: refactored status model - UPDATE pool: improved status pool - UPDATE route: enhanced status route handling [test] - DELETE: all manual tests are or will be replaced by proper automated test suites in respective packages [version] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE error: improved error definitions for version - UPDATE license: enhanced license handling - UPDATE version: improved version utilities [viper] - ADD/UPDATE documentation: comprehensive documentation with monitoring patterns - ADD/UPDATE tests: enhanced benchmark, config, encoding, example, integration, lifecycle, metrics, security, transitions - UPDATE interface: enhanced viper interface with context support - UPDATE model: refactored viper model for better maintainability
1075 lines
24 KiB
Go
1075 lines
24 KiB
Go
/***********************************************************************************************************************
|
|
*
|
|
* MIT License
|
|
*
|
|
* Copyright (c) 2021 Nicolas JUHEL
|
|
*
|
|
* Permission is hereby granted, free of charge, to any person obtaining a copy
|
|
* of this software and associated documentation files (the "Software"), to deal
|
|
* in the Software without restriction, including without limitation the rights
|
|
* to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
|
|
* copies of the Software, and to permit persons to whom the Software is
|
|
* furnished to do so, subject to the following conditions:
|
|
*
|
|
* The above copyright notice and this permission notice shall be included in all
|
|
* copies or substantial portions of the Software.
|
|
*
|
|
* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
|
|
* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
|
|
* FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
|
|
* AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
|
|
* LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
|
|
* OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
|
|
* SOFTWARE.
|
|
*
|
|
*
|
|
**********************************************************************************************************************/
|
|
|
|
package nats
|
|
|
|
import (
|
|
"crypto/tls"
|
|
"encoding/json"
|
|
"fmt"
|
|
"math"
|
|
"net/url"
|
|
"os"
|
|
"strings"
|
|
"time"
|
|
|
|
libval "github.com/go-playground/validator/v10"
|
|
libtls "github.com/nabbar/golib/certificates"
|
|
libiot "github.com/nabbar/golib/ioutils"
|
|
liblog "github.com/nabbar/golib/logger"
|
|
loglvl "github.com/nabbar/golib/logger/level"
|
|
moncfg "github.com/nabbar/golib/monitor/types"
|
|
natjwt "github.com/nats-io/jwt/v2"
|
|
natsrv "github.com/nats-io/nats-server/v2/server"
|
|
)
|
|
|
|
type Config struct {
|
|
Server ConfigSrv `mapstructure:"server" json:"server" yaml:"server" toml:"server" validate:"required"`
|
|
Cluster ConfigCluster `mapstructure:"cluster" json:"cluster" yaml:"cluster" toml:"cluster" validate:"required"`
|
|
Gateways ConfigGateway `mapstructure:"gateways" json:"gateways" yaml:"gateways" toml:"gateways" validate:"required"`
|
|
Leaf ConfigLeaf `mapstructure:"leaf" json:"leaf" yaml:"leaf" toml:"leaf" validate:"required"`
|
|
Websockets ConfigWebsocket `mapstructure:"websockets" json:"websockets" yaml:"websockets" toml:"websockets" validate:"required"`
|
|
MQTT ConfigMQTT `mapstructure:"mqtt" json:"mqtt" yaml:"mqtt" toml:"mqtt" validate:"required"`
|
|
Limits ConfigLimits `mapstructure:"limits" json:"limits" yaml:"limits" toml:"limits" validate:"required"`
|
|
Logs ConfigLogger `mapstructure:"logs" json:"logs" yaml:"logs" toml:"logs" validate:"required"`
|
|
Auth ConfigAuth `mapstructure:"auth" json:"auth" yaml:"auth" toml:"auth" validate:"required"`
|
|
Monitor moncfg.Config `mapstructure:"monitor" json:"monitor" yaml:"monitor" toml:"monitor" validate:""`
|
|
|
|
//function / interface are not defined in config marshall
|
|
Customs *ConfigCustom `mapstructure:"-" json:"-" yaml:"-" toml:"-"`
|
|
}
|
|
|
|
func (c Config) Validate() error {
|
|
err := ErrorConfigValidation.Error(nil)
|
|
|
|
if er := libval.New().Struct(c); er != nil {
|
|
if e, ok := er.(*libval.InvalidValidationError); ok {
|
|
err.Add(e)
|
|
}
|
|
|
|
for _, e := range er.(libval.ValidationErrors) {
|
|
//nolint goerr113
|
|
err.Add(fmt.Errorf("config field '%s' is not validated by constraint '%s'", e.Namespace(), e.ActualTag()))
|
|
}
|
|
}
|
|
|
|
if err.HasParent() {
|
|
return err
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (c Config) LogConfigJson() error {
|
|
if c.Logs.LogFile == "" {
|
|
return nil
|
|
}
|
|
|
|
permFile := os.FileMode(0644)
|
|
permDirs := os.FileMode(0755)
|
|
|
|
if c.Logs.PermissionFileLogFile > 0 {
|
|
permFile = c.Logs.PermissionFileLogFile
|
|
}
|
|
|
|
if c.Logs.PermissionFolderLogFile > 0 {
|
|
permDirs = c.Logs.PermissionFolderLogFile
|
|
}
|
|
|
|
if e := libiot.PathCheckCreate(true, c.Logs.LogFile, permFile, permDirs); e != nil {
|
|
return ErrorConfigInvalidFilePath.Error(e)
|
|
}
|
|
|
|
// #nosec
|
|
f, e := os.OpenFile(c.Logs.LogFile, os.O_APPEND|os.O_WRONLY, permFile)
|
|
if e != nil {
|
|
return ErrorConfigInvalidFilePath.Error(e)
|
|
}
|
|
|
|
defer func() {
|
|
if f != nil {
|
|
_ = f.Close()
|
|
}
|
|
}()
|
|
|
|
if p, e := json.MarshalIndent(c, "", " "); e != nil {
|
|
return ErrorConfigJsonMarshall.Error(e)
|
|
} else if _, e := f.WriteString("----\nConfig Node: "); e != nil {
|
|
return ErrorConfigWriteInFile.Error(e)
|
|
} else if _, e := f.Write(p); e != nil {
|
|
return ErrorConfigWriteInFile.Error(e)
|
|
} else if _, e := f.WriteString("\n---- \n"); e != nil {
|
|
return ErrorConfigWriteInFile.Error(e)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (c Config) NatsOption(defaultTls libtls.TLSConfig, log liblog.Logger) (*natsrv.Options, error) {
|
|
cfg := &natsrv.Options{
|
|
CheckConfig: false,
|
|
}
|
|
|
|
if e := c.Customs.makeOpt(cfg, defaultTls); e != nil {
|
|
return nil, e
|
|
}
|
|
|
|
if e := c.Logs.makeOpt(log, cfg); e != nil {
|
|
return nil, e
|
|
}
|
|
|
|
if e := c.Limits.makeOpt(cfg); e != nil {
|
|
return nil, e
|
|
}
|
|
|
|
if e := c.Auth.makeOpt(cfg); e != nil {
|
|
return nil, e
|
|
}
|
|
|
|
if e := c.Server.makeOpt(cfg, defaultTls); e != nil {
|
|
return nil, e
|
|
}
|
|
|
|
if r, e := c.Cluster.makeOpt(defaultTls); e != nil {
|
|
return nil, e
|
|
} else {
|
|
cfg.Cluster = r
|
|
}
|
|
|
|
if r, e := c.Gateways.makeOpt(defaultTls); e != nil {
|
|
return nil, e
|
|
} else {
|
|
cfg.Gateway = r
|
|
}
|
|
|
|
if r, e := c.Leaf.makeOpt(cfg, c.Auth, defaultTls); e != nil {
|
|
return nil, e
|
|
} else {
|
|
cfg.LeafNode = r
|
|
}
|
|
|
|
if r, e := c.Websockets.makeOpt(defaultTls); e != nil {
|
|
return nil, e
|
|
} else {
|
|
cfg.Websocket = r
|
|
}
|
|
|
|
if r, e := c.MQTT.makeOpt(defaultTls); e != nil {
|
|
return nil, e
|
|
} else {
|
|
cfg.MQTT = r
|
|
}
|
|
|
|
return cfg, nil
|
|
}
|
|
|
|
func (c *ConfigCustom) makeOpt(cfg *natsrv.Options, defTls libtls.TLSConfig) error {
|
|
if cfg == nil {
|
|
return ErrorParamsInvalid.Error(nil)
|
|
}
|
|
|
|
if c == nil {
|
|
return nil
|
|
}
|
|
|
|
if c.CustomClientAuthentication != nil {
|
|
cfg.CustomClientAuthentication = c.CustomClientAuthentication
|
|
}
|
|
|
|
if c.CustomRouterAuthentication != nil {
|
|
cfg.CustomRouterAuthentication = c.CustomRouterAuthentication
|
|
}
|
|
|
|
if c.AccountResolver != nil {
|
|
cfg.AccountResolver = c.AccountResolver
|
|
}
|
|
|
|
if c.AccountResolverTLS {
|
|
t := c.AccountResolverTLSConfig.NewFrom(defTls)
|
|
cfg.AccountResolverTLSConfig = t.TlsConfig("")
|
|
} else {
|
|
cfg.AccountResolverTLSConfig = nil
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (c ConfigAuth) makeOpt(cfg *natsrv.Options) error {
|
|
if cfg == nil {
|
|
return ErrorParamsInvalid.Error(nil)
|
|
}
|
|
|
|
if c.AuthTimeout > 0 {
|
|
cfg.AuthTimeout = float64(c.AuthTimeout) / float64(time.Second)
|
|
}
|
|
|
|
if c.NoSystemAccount {
|
|
cfg.NoSystemAccount = true
|
|
}
|
|
|
|
if c.SystemAccount != "" {
|
|
cfg.SystemAccount = c.SystemAccount
|
|
}
|
|
|
|
if c.NoAuthUser != "" {
|
|
cfg.NoAuthUser = c.NoAuthUser
|
|
}
|
|
|
|
if len(c.TrustedKeys) > 0 {
|
|
cfg.TrustedKeys = c.TrustedKeys
|
|
}
|
|
|
|
if len(c.TrustedOperators) > 0 {
|
|
cfg.TrustedOperators = make([]*natjwt.OperatorClaims, 0)
|
|
|
|
for _, t := range c.TrustedOperators {
|
|
if j, e := natsrv.ReadOperatorJWT(t); e != nil {
|
|
return ErrorConfigInvalidJWTOperator.Error(e)
|
|
} else if j != nil {
|
|
cfg.TrustedOperators = append(cfg.TrustedOperators, j)
|
|
}
|
|
}
|
|
}
|
|
|
|
if len(c.NKeys) > 0 {
|
|
cfg.Nkeys = make([]*natsrv.NkeyUser, 0)
|
|
|
|
for _, k := range c.NKeys {
|
|
if r, e := k.makeOpt(c, cfg); e != nil {
|
|
return e
|
|
} else if r != nil {
|
|
cfg.Nkeys = append(cfg.Nkeys, r)
|
|
}
|
|
}
|
|
}
|
|
|
|
if len(c.Users) > 0 {
|
|
cfg.Users = make([]*natsrv.User, 0)
|
|
|
|
for _, k := range c.Users {
|
|
if r, e := k.makeOpt(c, cfg); e != nil {
|
|
return e
|
|
} else if r != nil {
|
|
cfg.Users = append(cfg.Users, r)
|
|
}
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (c ConfigNkey) makeOpt(auth ConfigAuth, cfg *natsrv.Options) (*natsrv.NkeyUser, error) {
|
|
if cfg == nil {
|
|
return nil, ErrorParamsInvalid.Error(nil)
|
|
}
|
|
|
|
var (
|
|
a *ConfigAccount
|
|
t = make(map[string]struct{}, 0)
|
|
)
|
|
|
|
if c.Nkey == "" {
|
|
return nil, nil
|
|
}
|
|
|
|
if c.SigningKey == "" {
|
|
return nil, nil
|
|
}
|
|
|
|
if len(c.AllowedConnectionTypes) < 1 {
|
|
c.AllowedConnectionTypes = []string{natjwt.ConnectionTypeStandard}
|
|
}
|
|
|
|
for _, at := range c.AllowedConnectionTypes {
|
|
if at == "" {
|
|
continue
|
|
}
|
|
switch strings.ToUpper(at) {
|
|
case natjwt.ConnectionTypeStandard:
|
|
t[natjwt.ConnectionTypeStandard] = struct{}{}
|
|
case natjwt.ConnectionTypeWebsocket:
|
|
t[natjwt.ConnectionTypeWebsocket] = struct{}{}
|
|
case natjwt.ConnectionTypeLeafnode:
|
|
t[natjwt.ConnectionTypeLeafnode] = struct{}{}
|
|
case natjwt.ConnectionTypeMqtt:
|
|
t[natjwt.ConnectionTypeMqtt] = struct{}{}
|
|
default:
|
|
return nil, ErrorConfigInvalidAllowedConnectionType.Error(fmt.Errorf("connection type: %s", at))
|
|
}
|
|
}
|
|
|
|
if a = auth.findConfigAccount(c.Account); a == nil {
|
|
return nil, ErrorConfigInvalidAccount.Error(fmt.Errorf("account: %s", c.Account))
|
|
}
|
|
|
|
return &natsrv.NkeyUser{
|
|
Nkey: c.Nkey,
|
|
Permissions: &natsrv.Permissions{
|
|
Publish: a.Permission.Publish.makeOpt(),
|
|
Subscribe: a.Permission.Subscribe.makeOpt(),
|
|
Response: a.Permission.Response.makeOpt(),
|
|
},
|
|
Account: auth.getAccount(cfg, c.Account),
|
|
SigningKey: c.SigningKey,
|
|
AllowedConnectionTypes: t,
|
|
}, nil
|
|
}
|
|
|
|
func (c ConfigUser) makeOpt(auth ConfigAuth, cfg *natsrv.Options) (*natsrv.User, error) {
|
|
if cfg == nil {
|
|
return nil, ErrorParamsInvalid.Error(nil)
|
|
}
|
|
|
|
var (
|
|
a *ConfigAccount
|
|
t = make(map[string]struct{}, 0)
|
|
)
|
|
|
|
if c.Username == "" {
|
|
return nil, nil
|
|
}
|
|
|
|
if c.Password == "" {
|
|
return nil, nil
|
|
}
|
|
|
|
if len(c.AllowedConnectionTypes) < 1 {
|
|
c.AllowedConnectionTypes = []string{natjwt.ConnectionTypeStandard}
|
|
}
|
|
|
|
for _, at := range c.AllowedConnectionTypes {
|
|
if at == "" {
|
|
continue
|
|
}
|
|
switch strings.ToUpper(at) {
|
|
case natjwt.ConnectionTypeStandard:
|
|
t[natjwt.ConnectionTypeStandard] = struct{}{}
|
|
case natjwt.ConnectionTypeWebsocket:
|
|
t[natjwt.ConnectionTypeWebsocket] = struct{}{}
|
|
case natjwt.ConnectionTypeLeafnode:
|
|
t[natjwt.ConnectionTypeLeafnode] = struct{}{}
|
|
case natjwt.ConnectionTypeMqtt:
|
|
t[natjwt.ConnectionTypeMqtt] = struct{}{}
|
|
default:
|
|
return nil, ErrorConfigInvalidAllowedConnectionType.Error(fmt.Errorf("connection type: %s", at))
|
|
}
|
|
}
|
|
|
|
if a = auth.findConfigAccount(c.Account); a == nil {
|
|
return nil, ErrorConfigInvalidAccount.Error(fmt.Errorf("account: %s", c.Account))
|
|
}
|
|
|
|
return &natsrv.User{
|
|
Username: c.Username,
|
|
Password: c.Password,
|
|
Permissions: &natsrv.Permissions{
|
|
Publish: a.Permission.Publish.makeOpt(),
|
|
Subscribe: a.Permission.Subscribe.makeOpt(),
|
|
Response: a.Permission.Response.makeOpt(),
|
|
},
|
|
Account: auth.getAccount(cfg, c.Account),
|
|
AllowedConnectionTypes: t,
|
|
}, nil
|
|
}
|
|
|
|
func (c ConfigAuth) findConfigAccount(account string) *ConfigAccount {
|
|
if len(c.Accounts) < 1 {
|
|
return nil
|
|
}
|
|
|
|
for i, a := range c.Accounts {
|
|
if a.Name == account {
|
|
return &c.Accounts[i]
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (c ConfigAuth) getAccount(cfg *natsrv.Options, account string) *natsrv.Account {
|
|
a := natsrv.NewAccount(account)
|
|
|
|
if len(cfg.Accounts) < 1 {
|
|
cfg.Accounts = make([]*natsrv.Account, 0)
|
|
}
|
|
|
|
for i, n := range cfg.Accounts {
|
|
if a.Name == n.Name {
|
|
return cfg.Accounts[i]
|
|
}
|
|
}
|
|
|
|
cfg.Accounts = append(cfg.Accounts, a)
|
|
|
|
return a
|
|
}
|
|
|
|
func (c ConfigPermissionSubject) makeOpt() *natsrv.SubjectPermission {
|
|
res := &natsrv.SubjectPermission{
|
|
Allow: make([]string, 0),
|
|
Deny: make([]string, 0),
|
|
}
|
|
|
|
if len(c.Allow) > 0 {
|
|
for _, p := range c.Allow {
|
|
if p != "" {
|
|
res.Allow = append(res.Allow, p)
|
|
}
|
|
}
|
|
}
|
|
|
|
if len(c.Deny) > 0 {
|
|
for _, p := range c.Deny {
|
|
if p != "" {
|
|
res.Deny = append(res.Deny, p)
|
|
}
|
|
}
|
|
}
|
|
|
|
return res
|
|
}
|
|
|
|
func (c ConfigPermissionResponse) makeOpt() *natsrv.ResponsePermission {
|
|
res := &natsrv.ResponsePermission{
|
|
MaxMsgs: natsrv.DEFAULT_ALLOW_RESPONSE_MAX_MSGS,
|
|
Expires: natsrv.DEFAULT_ALLOW_RESPONSE_EXPIRATION,
|
|
}
|
|
|
|
if c.MaxMsgs > 0 {
|
|
res.MaxMsgs = c.MaxMsgs
|
|
}
|
|
|
|
if c.Expires > 0 {
|
|
res.Expires = c.Expires
|
|
}
|
|
|
|
return res
|
|
}
|
|
|
|
func (c ConfigLogger) makeOpt(log liblog.Logger, cfg *natsrv.Options) error {
|
|
if cfg == nil {
|
|
return ErrorParamsInvalid.Error(nil)
|
|
}
|
|
|
|
var (
|
|
permDir os.FileMode = 0755
|
|
permFile os.FileMode = 0644
|
|
)
|
|
|
|
if c.Syslog {
|
|
cfg.Syslog = true
|
|
}
|
|
|
|
if c.RemoteSyslog != "" {
|
|
cfg.RemoteSyslog = c.RemoteSyslog
|
|
}
|
|
|
|
if c.PermissionFolderLogFile > 0 {
|
|
permDir = c.PermissionFolderLogFile
|
|
}
|
|
|
|
if c.PermissionFileLogFile > 0 {
|
|
permFile = c.PermissionFileLogFile
|
|
}
|
|
|
|
if c.LogFile != "" {
|
|
if e := libiot.PathCheckCreate(true, c.LogFile, permFile, permDir); e != nil {
|
|
return ErrorConfigInvalidFilePath.Error(e)
|
|
}
|
|
cfg.LogFile = c.LogFile
|
|
}
|
|
|
|
if c.LogSizeLimit > 0 {
|
|
cfg.LogSizeLimit = c.LogSizeLimit
|
|
}
|
|
|
|
if c.MaxTracedMsgLen > 0 {
|
|
cfg.MaxTracedMsgLen = c.MaxTracedMsgLen
|
|
}
|
|
|
|
if c.ConnectErrorReports > 0 {
|
|
cfg.ConnectErrorReports = c.ConnectErrorReports
|
|
}
|
|
|
|
if c.ReconnectErrorReports > 0 {
|
|
cfg.ReconnectErrorReports = c.ReconnectErrorReports
|
|
}
|
|
|
|
cfg.Logtime = true
|
|
cfg.Trace = true
|
|
|
|
switch log.GetLevel() {
|
|
case loglvl.DebugLevel:
|
|
cfg.Debug = true
|
|
cfg.NoLog = false
|
|
case loglvl.NilLevel:
|
|
cfg.Debug = false
|
|
cfg.NoLog = true
|
|
default:
|
|
cfg.Debug = false
|
|
cfg.NoLog = false
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (c ConfigLimits) makeOpt(cfg *natsrv.Options) error {
|
|
if cfg == nil {
|
|
return ErrorParamsInvalid.Error(nil)
|
|
}
|
|
|
|
if c.MaxConn > 0 {
|
|
cfg.MaxConn = c.MaxConn
|
|
}
|
|
|
|
if c.MaxSubs > 0 {
|
|
cfg.MaxSubs = c.MaxSubs
|
|
}
|
|
|
|
if c.PingInterval > 0 {
|
|
cfg.PingInterval = c.PingInterval
|
|
}
|
|
|
|
if c.MaxPingsOut > 0 {
|
|
cfg.MaxPingsOut = c.MaxPingsOut
|
|
}
|
|
|
|
if c.MaxControlLine > 0 && c.MaxControlLine < math.MaxInt32 {
|
|
cfg.MaxControlLine = int32(c.MaxControlLine)
|
|
} else if c.MaxControlLine > 0 {
|
|
cfg.MaxControlLine = math.MaxInt32
|
|
}
|
|
|
|
if c.MaxPayload > 0 && c.MaxPayload < math.MaxInt32 {
|
|
cfg.MaxPayload = int32(c.MaxPayload)
|
|
} else if c.MaxPayload > 0 {
|
|
cfg.MaxPayload = math.MaxInt32
|
|
}
|
|
|
|
if c.MaxPending > 0 {
|
|
cfg.MaxPending = c.MaxPending
|
|
}
|
|
|
|
if c.WriteDeadline > 0 {
|
|
cfg.WriteDeadline = c.WriteDeadline
|
|
}
|
|
|
|
if c.MaxClosedClients > 0 {
|
|
cfg.MaxClosedClients = c.MaxClosedClients
|
|
}
|
|
|
|
if c.LameDuckDuration > 0 {
|
|
cfg.LameDuckDuration = c.LameDuckDuration
|
|
}
|
|
|
|
if c.LameDuckGracePeriod > 0 {
|
|
cfg.LameDuckGracePeriod = c.LameDuckGracePeriod
|
|
}
|
|
|
|
if c.NoSublistCache {
|
|
cfg.NoSublistCache = true
|
|
}
|
|
|
|
if c.NoHeaderSupport {
|
|
cfg.NoHeaderSupport = true
|
|
}
|
|
|
|
if c.DisableShortFirstPing {
|
|
cfg.DisableShortFirstPing = true
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (c ConfigSrv) makeOpt(cfg *natsrv.Options, defTls libtls.TLSConfig) error {
|
|
if cfg == nil {
|
|
return ErrorParamsInvalid.Error(nil)
|
|
}
|
|
|
|
var (
|
|
perm os.FileMode = 0755
|
|
)
|
|
|
|
if c.PermissionStoreDir > 0 {
|
|
perm = c.PermissionStoreDir
|
|
}
|
|
|
|
if c.Name != "" {
|
|
cfg.ServerName = c.Name
|
|
}
|
|
|
|
if c.Host != "" {
|
|
cfg.Host = c.Host
|
|
}
|
|
|
|
if c.Port > 0 {
|
|
cfg.Port = c.Port
|
|
}
|
|
|
|
if c.ClientAdvertise != "" {
|
|
cfg.ClientAdvertise = c.ClientAdvertise
|
|
}
|
|
|
|
if c.HTTPHost != "" {
|
|
cfg.HTTPHost = c.HTTPHost
|
|
}
|
|
|
|
if c.HTTPPort > 0 {
|
|
cfg.HTTPPort = c.HTTPPort
|
|
}
|
|
|
|
if c.HTTPSPort > 0 {
|
|
cfg.HTTPSPort = c.HTTPSPort
|
|
}
|
|
|
|
if c.HTTPBasePath != "" {
|
|
cfg.HTTPBasePath = c.HTTPBasePath
|
|
}
|
|
|
|
if c.ProfPort > 0 {
|
|
cfg.ProfPort = c.ProfPort
|
|
}
|
|
|
|
if c.PidFile != "" {
|
|
cfg.PidFile = c.PidFile
|
|
}
|
|
|
|
if c.PortsFileDir != "" {
|
|
cfg.PortsFileDir = c.PortsFileDir
|
|
}
|
|
|
|
if len(c.Routes) > 0 {
|
|
cfg.Routes = make([]*url.URL, 0)
|
|
|
|
for _, u := range c.Routes {
|
|
if u == nil || u.Host == "" {
|
|
continue
|
|
}
|
|
if u.Scheme == "" {
|
|
u.Scheme = "nats"
|
|
}
|
|
cfg.Routes = append(cfg.Routes, u)
|
|
}
|
|
}
|
|
|
|
if c.RoutesStr != "" {
|
|
cfg.RoutesStr = c.RoutesStr
|
|
}
|
|
|
|
if c.NoSig {
|
|
cfg.NoSigs = true
|
|
}
|
|
|
|
if c.Username != "" {
|
|
cfg.Username = c.Username
|
|
}
|
|
|
|
if c.Password != "" {
|
|
cfg.Password = c.Password
|
|
}
|
|
|
|
if c.Token != "" {
|
|
cfg.Authorization = c.Token
|
|
}
|
|
|
|
if c.JetStream {
|
|
cfg.JetStream = true
|
|
|
|
if c.JetStreamMaxMemory > 0 {
|
|
cfg.JetStreamMaxMemory = c.JetStreamMaxMemory
|
|
}
|
|
|
|
if c.JetStreamMaxStore > 0 {
|
|
cfg.JetStreamMaxStore = c.JetStreamMaxStore
|
|
}
|
|
|
|
if c.StoreDir != "" {
|
|
if e := libiot.PathCheckCreate(false, c.StoreDir, 0644, perm); e != nil {
|
|
return ErrorConfigInvalidFilePath.Error(e)
|
|
}
|
|
|
|
cfg.StoreDir = c.StoreDir
|
|
}
|
|
}
|
|
|
|
if len(c.Tags) > 0 {
|
|
l := make(natjwt.TagList, 0)
|
|
|
|
for _, t := range c.Tags {
|
|
if t == "" {
|
|
continue
|
|
}
|
|
l = append(l, t)
|
|
}
|
|
|
|
if len(l) > 0 {
|
|
cfg.Tags = l
|
|
}
|
|
}
|
|
|
|
if c.TLS {
|
|
cfg.TLS = true
|
|
cfg.TLSConfig = c.TLSConfig.NewFrom(defTls).TlsConfig("")
|
|
|
|
if c.TLSTimeout > 0 {
|
|
cfg.TLSTimeout = float64(c.TLSTimeout) / float64(time.Second)
|
|
}
|
|
|
|
if c.AllowNoTLS {
|
|
cfg.AllowNonTLS = true
|
|
}
|
|
} else {
|
|
cfg.TLS = false
|
|
cfg.TLSConfig = nil
|
|
cfg.TLSTimeout = 0
|
|
cfg.HTTPSPort = 0
|
|
cfg.AllowNonTLS = true
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func (c ConfigCluster) makeOpt(defTls libtls.TLSConfig) (natsrv.ClusterOpts, error) {
|
|
cfg := natsrv.ClusterOpts{
|
|
Name: c.Name,
|
|
Host: c.Host,
|
|
Port: c.Port,
|
|
Username: c.Username,
|
|
Password: c.Password,
|
|
AuthTimeout: 0,
|
|
Permissions: nil,
|
|
TLSTimeout: 0,
|
|
TLSConfig: nil,
|
|
TLSMap: false,
|
|
TLSCheckKnownURLs: false,
|
|
ListenStr: c.ListenStr,
|
|
Advertise: c.Advertise,
|
|
NoAdvertise: c.NoAdvertise,
|
|
ConnectRetries: c.ConnectRetries,
|
|
}
|
|
|
|
if c.AuthTimeout > 0 {
|
|
cfg.AuthTimeout = float64(c.AuthTimeout) / float64(time.Second)
|
|
}
|
|
|
|
cfg.Permissions = &natsrv.RoutePermissions{
|
|
Import: c.Permissions.Import.makeOpt(),
|
|
Export: c.Permissions.Export.makeOpt(),
|
|
}
|
|
|
|
if c.TLS {
|
|
cfg.TLSConfig = c.TLSConfig.NewFrom(defTls).TlsConfig("")
|
|
|
|
if c.TLSTimeout > 0 {
|
|
cfg.TLSTimeout = float64(c.TLSTimeout) / float64(time.Second)
|
|
}
|
|
} else {
|
|
cfg.TLSConfig = nil
|
|
cfg.TLSTimeout = 0
|
|
}
|
|
|
|
return cfg, nil
|
|
}
|
|
|
|
func (c ConfigGateway) makeOpt(defTls libtls.TLSConfig) (natsrv.GatewayOpts, error) {
|
|
cfg := natsrv.GatewayOpts{
|
|
Name: c.Name,
|
|
Host: c.Host,
|
|
Port: c.Port,
|
|
Username: c.Username,
|
|
Password: c.Password,
|
|
AuthTimeout: 0,
|
|
TLSConfig: nil,
|
|
TLSTimeout: 0,
|
|
TLSMap: false,
|
|
TLSCheckKnownURLs: false,
|
|
Advertise: c.Advertise,
|
|
ConnectRetries: c.ConnectRetries,
|
|
Gateways: make([]*natsrv.RemoteGatewayOpts, 0),
|
|
RejectUnknown: c.RejectUnknown,
|
|
}
|
|
|
|
if c.AuthTimeout > 0 {
|
|
cfg.AuthTimeout = float64(c.AuthTimeout) / float64(time.Second)
|
|
}
|
|
|
|
if c.TLS {
|
|
cfg.TLSConfig = c.TLSConfig.NewFrom(defTls).TlsConfig("")
|
|
|
|
if c.TLSTimeout > 0 {
|
|
cfg.TLSTimeout = float64(c.TLSTimeout) / float64(time.Second)
|
|
}
|
|
}
|
|
|
|
if len(c.Gateways) > 0 {
|
|
for _, g := range c.Gateways {
|
|
if r, e := g.makeOpt(defTls); e != nil {
|
|
return cfg, e
|
|
} else if r != nil {
|
|
cfg.Gateways = append(cfg.Gateways, r)
|
|
}
|
|
}
|
|
}
|
|
|
|
return cfg, nil
|
|
}
|
|
|
|
func (c ConfigGatewayRemote) makeOpt(defTls libtls.TLSConfig) (*natsrv.RemoteGatewayOpts, error) {
|
|
res := &natsrv.RemoteGatewayOpts{
|
|
Name: "",
|
|
TLSConfig: nil,
|
|
TLSTimeout: 0,
|
|
URLs: nil,
|
|
}
|
|
|
|
if c.Name != "" {
|
|
res.Name = c.Name
|
|
}
|
|
|
|
if c.TLS {
|
|
res.TLSConfig = c.TLSConfig.NewFrom(defTls).TlsConfig("")
|
|
|
|
if c.TLSTimeout > 0 {
|
|
res.TLSTimeout = float64(c.TLSTimeout) / float64(time.Second)
|
|
}
|
|
} else {
|
|
res.TLSConfig = nil
|
|
res.TLSTimeout = 0
|
|
}
|
|
|
|
if len(c.URLs) > 0 {
|
|
res.URLs = make([]*url.URL, 0)
|
|
|
|
for _, u := range c.URLs {
|
|
if u == nil || u.Host == "" {
|
|
continue
|
|
}
|
|
res.URLs = append(res.URLs, u)
|
|
}
|
|
}
|
|
|
|
return res, nil
|
|
}
|
|
|
|
func (c ConfigLeaf) makeOpt(cfg *natsrv.Options, auth ConfigAuth, defTls libtls.TLSConfig) (natsrv.LeafNodeOpts, error) {
|
|
res := natsrv.LeafNodeOpts{
|
|
Host: c.Host,
|
|
Port: c.Port,
|
|
Username: c.Username,
|
|
Password: c.Password,
|
|
Account: c.Account,
|
|
Users: make([]*natsrv.User, 0),
|
|
AuthTimeout: 0,
|
|
TLSConfig: nil,
|
|
TLSTimeout: 0,
|
|
TLSMap: false,
|
|
Advertise: c.Advertise,
|
|
NoAdvertise: c.NoAdvertise,
|
|
ReconnectInterval: c.ReconnectInterval,
|
|
Remotes: make([]*natsrv.RemoteLeafOpts, 0),
|
|
}
|
|
|
|
if c.AuthTimeout > 0 {
|
|
res.AuthTimeout = float64(c.AuthTimeout) / float64(time.Second)
|
|
}
|
|
|
|
if len(c.Users) > 0 {
|
|
for _, u := range c.Users {
|
|
if r, e := u.makeOpt(auth, cfg); e != nil {
|
|
return res, e
|
|
} else if r != nil {
|
|
res.Users = append(res.Users, r)
|
|
}
|
|
}
|
|
}
|
|
|
|
if c.TLS {
|
|
res.TLSConfig = c.TLSConfig.NewFrom(defTls).TlsConfig("")
|
|
|
|
if c.TLSTimeout > 0 {
|
|
res.TLSTimeout = float64(c.TLSTimeout) / float64(time.Second)
|
|
}
|
|
} else {
|
|
res.TLSConfig = nil
|
|
res.TLSTimeout = 0
|
|
}
|
|
|
|
if len(c.Remotes) > 0 {
|
|
for _, l := range c.Remotes {
|
|
if r, e := l.makeOpt(defTls); e != nil {
|
|
return res, e
|
|
} else if r != nil {
|
|
res.Remotes = append(res.Remotes, r)
|
|
}
|
|
}
|
|
}
|
|
|
|
return res, nil
|
|
}
|
|
|
|
func (c ConfigLeafRemote) makeOpt(defTls libtls.TLSConfig) (*natsrv.RemoteLeafOpts, error) {
|
|
res := &natsrv.RemoteLeafOpts{
|
|
LocalAccount: c.LocalAccount,
|
|
URLs: make([]*url.URL, 0),
|
|
Credentials: c.Credentials,
|
|
TLS: false,
|
|
TLSConfig: nil,
|
|
TLSTimeout: 0,
|
|
Hub: c.Hub,
|
|
DenyImports: make([]string, 0),
|
|
DenyExports: make([]string, 0),
|
|
Websocket: struct {
|
|
Compression bool `json:"-"`
|
|
NoMasking bool `json:"-"`
|
|
}{
|
|
Compression: c.Websocket.Compression,
|
|
NoMasking: c.Websocket.NoMasking,
|
|
},
|
|
}
|
|
|
|
if c.TLS {
|
|
res.TLS = true
|
|
res.TLSConfig = c.TLSConfig.NewFrom(defTls).TlsConfig("")
|
|
|
|
if c.TLSTimeout > 0 {
|
|
res.TLSTimeout = float64(c.TLSTimeout) / float64(time.Second)
|
|
}
|
|
} else {
|
|
res.TLS = false
|
|
res.TLSConfig = nil
|
|
res.TLSTimeout = 0
|
|
}
|
|
|
|
if len(c.URLs) > 0 {
|
|
for _, u := range c.URLs {
|
|
if u == nil || u.Host == "" {
|
|
continue
|
|
}
|
|
res.URLs = append(res.URLs, u)
|
|
}
|
|
}
|
|
|
|
if len(c.DenyImports) > 0 {
|
|
res.DenyImports = c.DenyImports
|
|
}
|
|
|
|
if len(c.DenyExports) > 0 {
|
|
res.DenyExports = c.DenyExports
|
|
}
|
|
|
|
return res, nil
|
|
}
|
|
|
|
func (c ConfigWebsocket) makeOpt(defTls libtls.TLSConfig) (natsrv.WebsocketOpts, error) {
|
|
cfg := natsrv.WebsocketOpts{
|
|
Host: c.Host,
|
|
Port: c.Port,
|
|
Advertise: c.Advertise,
|
|
NoAuthUser: c.NoAuthUser,
|
|
JWTCookie: c.JWTCookie,
|
|
Username: c.Username,
|
|
Password: c.Password,
|
|
Token: c.Token,
|
|
AuthTimeout: 0,
|
|
NoTLS: false,
|
|
TLSConfig: nil,
|
|
TLSMap: false,
|
|
SameOrigin: c.SameOrigin,
|
|
AllowedOrigins: make([]string, 0),
|
|
Compression: c.Compression,
|
|
HandshakeTimeout: 0,
|
|
}
|
|
|
|
if c.AuthTimeout > 0 {
|
|
cfg.AuthTimeout = float64(c.AuthTimeout) / float64(time.Second)
|
|
}
|
|
|
|
if len(c.AllowedOrigins) > 0 {
|
|
for _, o := range c.AllowedOrigins {
|
|
if o != "" {
|
|
cfg.AllowedOrigins = append(cfg.AllowedOrigins, o)
|
|
}
|
|
}
|
|
}
|
|
|
|
if !c.NoTLS {
|
|
cfg.NoTLS = false
|
|
cfg.TLSConfig = c.TLSConfig.NewFrom(defTls).TlsConfig("")
|
|
|
|
if c.HandshakeTimeout > 0 {
|
|
cfg.HandshakeTimeout = c.HandshakeTimeout
|
|
}
|
|
} else {
|
|
cfg.NoTLS = true
|
|
cfg.TLSConfig = &tls.Config{
|
|
MinVersion: tls.VersionTLS12,
|
|
MaxVersion: tls.VersionTLS13,
|
|
}
|
|
cfg.HandshakeTimeout = 0
|
|
}
|
|
|
|
return cfg, nil
|
|
}
|
|
|
|
func (c ConfigMQTT) makeOpt(defTls libtls.TLSConfig) (natsrv.MQTTOpts, error) {
|
|
cfg := natsrv.MQTTOpts{
|
|
Host: c.Host,
|
|
Port: c.Port,
|
|
NoAuthUser: c.NoAuthUser,
|
|
Username: c.Username,
|
|
Password: c.Password,
|
|
Token: c.Token,
|
|
AuthTimeout: 0,
|
|
TLSConfig: nil,
|
|
TLSMap: false,
|
|
TLSTimeout: 0,
|
|
AckWait: c.AckWait,
|
|
MaxAckPending: c.MaxAckPending,
|
|
}
|
|
|
|
if c.AuthTimeout > 0 {
|
|
cfg.AuthTimeout = float64(c.AuthTimeout) / float64(time.Second)
|
|
}
|
|
|
|
if !c.TLS {
|
|
cfg.TLSConfig = c.TLSConfig.NewFrom(defTls).TlsConfig("")
|
|
|
|
if c.TLSTimeout > 0 {
|
|
cfg.TLSTimeout = float64(c.TLSTimeout) / float64(time.Second)
|
|
}
|
|
} else {
|
|
// #nosec
|
|
cfg.TLSConfig = &tls.Config{
|
|
MinVersion: tls.VersionTLS12,
|
|
MaxVersion: tls.VersionTLS13,
|
|
}
|
|
cfg.TLSTimeout = 0
|
|
}
|
|
|
|
return cfg, nil
|
|
}
|