wallet-sync-server/env/env.go

package env

import (
	"fmt"
	"os"
	"strings"

	"lbryio/lbry-id/auth"
)

// NOTE for users: If you have weird characters in your email address, please
// remember to properly escape it as necessary when putting it in an
// environmental variable, lest you run commands you didn't mean to run.
//
// We'll replace this with a config file later.
const whitelistKey = "ACCOUNT_WHITELIST"
const verificationModeKey = "ACCOUNT_VERIFICATION_MODE"

type AccountVerificationMode string

// Everyone can make an account. Only use for dev purposes.
const AccountVerificationModeAllowAll = AccountVerificationMode("AllowAll")

// Verify accounts via email. Good for big open servers.
const AccountVerificationModeEmailVerify = AccountVerificationMode("EmailVerify")

// Specific email accounts are automatically verified. Good for small
// self-hosting users.
const AccountVerificationModeWhitelist = AccountVerificationMode("Whitelist")

// For test stubs
type EnvInterface interface {
	Getenv(key string) string
}

type Env struct{}

func (e *Env) Getenv(key string) string {
	return os.Getenv(key)
}

func GetAccountVerificationMode(e EnvInterface) (AccountVerificationMode, error) {
	return getAccountVerificationMode(e.Getenv(verificationModeKey))
}

func GetAccountWhitelist(e EnvInterface, mode AccountVerificationMode) (emails []auth.Email, err error) {
	return getAccountWhitelist(e.Getenv(whitelistKey), mode)
}

// Factor out the guts of the functions so we can test them by just passing in
// the env vars

func getAccountVerificationMode(modeStr string) (AccountVerificationMode, error) {
	mode := AccountVerificationMode(modeStr)
	switch mode {
	case "":
		// Whitelist is the least dangerous mode. If you forget to set any env
		// vars, it effectively disables all account creation.
		return AccountVerificationModeWhitelist, nil
	case AccountVerificationModeAllowAll:
	case AccountVerificationModeEmailVerify:
	case AccountVerificationModeWhitelist:
	default:
		return "", fmt.Errorf("Invalid account verification mode in %s: %s", verificationModeKey, mode)
	}
	return mode, nil
}

func getAccountWhitelist(whitelist string, mode AccountVerificationMode) (emails []auth.Email, err error) {
	if whitelist == "" {
		return []auth.Email{}, nil
	}

	if mode != AccountVerificationModeWhitelist {
		return nil, fmt.Errorf("Do not specify ACCOUNT_WHITELIST in env if ACCOUNT_VERIFICATION_MODE is not Whitelist")
	}

	rawEmails := strings.Split(whitelist, ",")
	for _, rawEmail := range rawEmails {
		// Give them a specific error here to let them know not to add spaces. It
		// could be confusing otherwise to figure out what's invalid.
		if strings.TrimSpace(rawEmail) != rawEmail {
			return nil, fmt.Errorf("Emails in %s should be comma separated with no spaces.", whitelistKey)
		}
		email := auth.Email(rawEmail)
		if !email.Validate() {
			return nil, fmt.Errorf("Invalid email in %s: %s", whitelistKey, email)
		}
		emails = append(emails, email)
	}
	return emails, nil
}
Create environmental var package 2022-07-24 00:13:56 +02:00			`package env`

			`import (`
`env` package provides config values 2022-07-24 22:02:55 +02:00			`"fmt"`
Create environmental var package 2022-07-24 00:13:56 +02:00			`"os"`
`env` package provides config values 2022-07-24 22:02:55 +02:00			`"strings"`

			`"lbryio/lbry-id/auth"`
Create environmental var package 2022-07-24 00:13:56 +02:00			`)`

Warning for self-hosting users 2022-07-29 19:37:41 +02:00			`// NOTE for users: If you have weird characters in your email address, please`
			`// remember to properly escape it as necessary when putting it in an`
			`// environmental variable, lest you run commands you didn't mean to run.`
			`//`
			`// We'll replace this with a config file later.`
`env` package provides config values 2022-07-24 22:02:55 +02:00			`const whitelistKey = "ACCOUNT_WHITELIST"`
			`const verificationModeKey = "ACCOUNT_VERIFICATION_MODE"`

env: rename things, export type 2022-07-25 23:46:41 +02:00			`type AccountVerificationMode string`
`env` package provides config values 2022-07-24 22:02:55 +02:00
			`// Everyone can make an account. Only use for dev purposes.`
env: rename things, export type 2022-07-25 23:46:41 +02:00			`const AccountVerificationModeAllowAll = AccountVerificationMode("AllowAll")`
`env` package provides config values 2022-07-24 22:02:55 +02:00
			`// Verify accounts via email. Good for big open servers.`
env: rename things, export type 2022-07-25 23:46:41 +02:00			`const AccountVerificationModeEmailVerify = AccountVerificationMode("EmailVerify")`
`env` package provides config values 2022-07-24 22:02:55 +02:00
			`// Specific email accounts are automatically verified. Good for small`
			`// self-hosting users.`
env: rename things, export type 2022-07-25 23:46:41 +02:00			`const AccountVerificationModeWhitelist = AccountVerificationMode("Whitelist")`
`env` package provides config values 2022-07-24 22:02:55 +02:00
Create environmental var package 2022-07-24 00:13:56 +02:00			`// For test stubs`
			`type EnvInterface interface {`
			`Getenv(key string) string`
			`}`

			`type Env struct{}`

			`func (e *Env) Getenv(key string) string {`
			`return os.Getenv(key)`
			`}`
`env` package provides config values 2022-07-24 22:02:55 +02:00
env: rename things, export type 2022-07-25 23:46:41 +02:00			`func GetAccountVerificationMode(e EnvInterface) (AccountVerificationMode, error) {`
`env` package provides config values 2022-07-24 22:02:55 +02:00			`return getAccountVerificationMode(e.Getenv(verificationModeKey))`
			`}`

env: rename things, export type 2022-07-25 23:46:41 +02:00			`func GetAccountWhitelist(e EnvInterface, mode AccountVerificationMode) (emails []auth.Email, err error) {`
`env` package provides config values 2022-07-24 22:02:55 +02:00			`return getAccountWhitelist(e.Getenv(whitelistKey), mode)`
			`}`

			`// Factor out the guts of the functions so we can test them by just passing in`
			`// the env vars`

env: rename things, export type 2022-07-25 23:46:41 +02:00			`func getAccountVerificationMode(modeStr string) (AccountVerificationMode, error) {`
			`mode := AccountVerificationMode(modeStr)`
`env` package provides config values 2022-07-24 22:02:55 +02:00			`switch mode {`
			`case "":`
			`// Whitelist is the least dangerous mode. If you forget to set any env`
			`// vars, it effectively disables all account creation.`
env: rename things, export type 2022-07-25 23:46:41 +02:00			`return AccountVerificationModeWhitelist, nil`
			`case AccountVerificationModeAllowAll:`
			`case AccountVerificationModeEmailVerify:`
			`case AccountVerificationModeWhitelist:`
`env` package provides config values 2022-07-24 22:02:55 +02:00			`default:`
			`return "", fmt.Errorf("Invalid account verification mode in %s: %s", verificationModeKey, mode)`
			`}`
			`return mode, nil`
			`}`

env: rename things, export type 2022-07-25 23:46:41 +02:00			`func getAccountWhitelist(whitelist string, mode AccountVerificationMode) (emails []auth.Email, err error) {`
`env` package provides config values 2022-07-24 22:02:55 +02:00			`if whitelist == "" {`
			`return []auth.Email{}, nil`
			`}`

env: rename things, export type 2022-07-25 23:46:41 +02:00			`if mode != AccountVerificationModeWhitelist {`
`env` package provides config values 2022-07-24 22:02:55 +02:00			`return nil, fmt.Errorf("Do not specify ACCOUNT_WHITELIST in env if ACCOUNT_VERIFICATION_MODE is not Whitelist")`
			`}`

			`rawEmails := strings.Split(whitelist, ",")`
			`for _, rawEmail := range rawEmails {`
			`// Give them a specific error here to let them know not to add spaces. It`
			`// could be confusing otherwise to figure out what's invalid.`
			`if strings.TrimSpace(rawEmail) != rawEmail {`
			`return nil, fmt.Errorf("Emails in %s should be comma separated with no spaces.", whitelistKey)`
			`}`
			`email := auth.Email(rawEmail)`
			`if !email.Validate() {`
			`return nil, fmt.Errorf("Invalid email in %s: %s", whitelistKey, email)`
			`}`
			`emails = append(emails, email)`
			`}`
			`return emails, nil`
			`}`