Skip to content
This repository has been archived by the owner on Jan 18, 2021. It is now read-only.

update reva #113

Merged
merged 13 commits into from
Mar 22, 2020
Merged

update reva #113

merged 13 commits into from
Mar 22, 2020

Conversation

butonic
Copy link
Member

@butonic butonic commented Mar 17, 2020
edited
Loading

We changed the default configuration to integrate better with ocis.

  • We use ocis-glauth as the default ldap server on port 9125 with base dc=example,dc=org.
  • We use a dedicated technical reva user to make ldap binds
  • Clients are supposed to use the ocis-proxy endpoint https://localhost:9200
  • We removed unneeded ocis configuration from the frontend which no longer serves an oidc provider.
  • We changed the default user OpaqueID attribute from sub to preferred_username. The latter is a claim populated by konnectd that can also be used by the reva ldap user manager to look up users by their OpaqueId

Bugfix: we fixed a typo in the REVA_LDAP_SCHEMA_MAIL environment variable.

It was misspelled as REVA_LDAP_SCHEMA_Mail.

requires owncloud/ocis-glauth#9 and owncloud/ocis-konnectd#52

  • TODO fix testing.md, see .drone.star

@butonic butonic requested review from IljaN, micbar, C0rby and refs March 17, 2020 17:29
@butonic butonic self-assigned this Mar 17, 2020
@butonic butonic added the enhancement New feature or request label Mar 17, 2020
@exalate-issue-sync exalate-issue-sync bot mentioned this pull request Mar 17, 2020
Closed
46 tasks
@butonic butonic mentioned this pull request Mar 17, 2020
Closed
2 tasks
@refs
Copy link
Member

refs commented Mar 17, 2020

Acceptance tests are off

@butonic
Copy link
Member Author

butonic commented Mar 17, 2020

I think because the root storage is no longer used ... will dig into it

@butonic
new ocis config
08c09b7 
Signed-off-by: Jörn Friedrich Dreyer <[email protected]>
@butonic
Copy link
Member Author

butonic commented Mar 18, 2020

the path wrapping changed and trying to update the configs causes the acceptance tests to fail. I had to submit an upstream change to the owncloud storage driver to fix the general problem, but some tests are still off.

@butonic
Copy link
Member Author

butonic commented Mar 18, 2020
edited
Loading

hmmm

242 scenarios (5 passed, 237 failed)
2653 | 1715 steps (134 passed, 237 failed, 1344 skipped)

vs locally

219 scenarios (181 passed, 38 failed)
1554 steps (1466 passed, 38 failed, 50 skipped)

@butonic
Change default settings to be able to run ocis server without any con…
075c660 
…figuration

- Konnectd uses no TLS as it is behind the proxy.
- Glauth generates dev-certificates for ldap on startup if none is provided.
- Glauth can launch unencrypted (9125) and encrypted (9126) port in parallel

Signed-off-by: Jörn Friedrich Dreyer <[email protected]>
@butonic
allow configuring user sharing driver, default to json
39b07d4 
Signed-off-by: Jörn Friedrich Dreyer <[email protected]>
@butonic butonic changed the title new ocis config update reva Mar 19, 2020
@butonic butonic mentioned this pull request Mar 19, 2020
Closed
@butonic
switch to preferred_username as opaqueid
e9c6d2d 
Signed-off-by: Jörn Friedrich Dreyer <[email protected]>
@butonic butonic mentioned this pull request Mar 20, 2020
Merged
@butonic
use latest reva
8ea7293 
Signed-off-by: Jörn Friedrich Dreyer <[email protected]>
@butonic butonic mentioned this pull request Mar 20, 2020
Closed
@butonic butonic mentioned this pull request Mar 20, 2020
Closed
@butonic
Copy link
Member Author

butonic commented Mar 20, 2020

@individual-it with owncloud/core#37149 the acceptance tests pass locally ... what is the process? change the core branch in the .drone.star to ocis-tests-expect-40x-on-not-exist, which should make this PR green, then merge core, then update this PR and revert to the core branch to master, wait for green light, merge?

@butonic
typo
345d528
@butonic
use updatet api tests
c73ad91 
Signed-off-by: Jörn Friedrich Dreyer <[email protected]>
@butonic
core tests got merged already
d936ef5 
Signed-off-by: Jörn Friedrich Dreyer <[email protected]>
@butonic
fix changelog
fcb9f02 
Signed-off-by: Jörn Friedrich Dreyer <[email protected]>
@ownclouders
Copy link

Codacy Here is an overview of what got changed by this pull request:

Clones added
============
- pkg/flagset/storageocdata.go  3
- pkg/flagset/storageoc.go  3
- pkg/flagset/storagehome.go  4
- pkg/flagset/storagehomedata.go  3
- pkg/flagset/storageroot.go  3
- pkg/command/storageoc.go  1
         

Clones removed
==============
+ pkg/command/storagehome.go  -1
+ pkg/flagset/authbearer.go  -1
+ pkg/flagset/frontend.go  -1

See the complete overview on Codacy

@butonic butonic merged commit 7ae8fc2 into owncloud:master Mar 22, 2020
@butonic butonic deleted the config-changes branch March 22, 2020 08:56
ownclouders pushed a commit that referenced this pull request Mar 22, 2020
@butonic
commit 7ae8fc2
6870729 
Author: Jörn Friedrich Dreyer <[email protected]>
Date:   Sun Mar 22 09:56:13 2020 +0100

    update reva (#113)

    * new ocis config

    Signed-off-by: Jörn Friedrich Dreyer <[email protected]>

    * Change default settings to be able to run ocis server without any configuration

    - Konnectd uses no TLS as it is behind the proxy.
    - Glauth generates dev-certificates for ldap on startup if none is provided.
    - Glauth can launch unencrypted (9125) and encrypted (9126) port in parallel

    Signed-off-by: Jörn Friedrich Dreyer <[email protected]>

    * allow configuring user sharing driver, default to json

    Signed-off-by: Jörn Friedrich Dreyer <[email protected]>

    * update reva

    Signed-off-by: Jörn Friedrich Dreyer <[email protected]>

    * switch to preferred_username as opaqueid

    Signed-off-by: Jörn Friedrich Dreyer <[email protected]>

    * update drone config to override new defaults to match test environment

    Signed-off-by: Jörn Friedrich Dreyer <[email protected]>

    * use latest reva

    Signed-off-by: Jörn Friedrich Dreyer <[email protected]>

    * typo

    * use updatet api tests

    Signed-off-by: Jörn Friedrich Dreyer <[email protected]>

    * core tests got merged already

    Signed-off-by: Jörn Friedrich Dreyer <[email protected]>

    * fix changelog

    Signed-off-by: Jörn Friedrich Dreyer <[email protected]>
@individual-it individual-it mentioned this pull request Apr 22, 2020
Merged
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@refs refs refs approved these changes

@IljaN IljaN IljaN approved these changes

@micbar micbar Awaiting requested review from micbar

@C0rby C0rby Awaiting requested review from C0rby

Assignees

@butonic butonic

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@butonic @refs @ownclouders @IljaN