Skip to content

Commit

Permalink
Merge pull request #29 from uselagoon/no-local-auth
Browse files Browse the repository at this point in the history 
feat: disable NATS auth for ssh-portal-api
  • Loading branch information
@smlx
smlx authored Mar 14, 2022
2 parents 73ac353 + e8c5924 commit 7d8dbad
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 11 deletions.
5 changes: 1 addition & 4 deletions cmd/ssh-portal-api/serve.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,8 +24,6 @@ type ServeCmd struct {
KeycloakClientID string `kong:"default='service-api',env='KEYCLOAK_SERVICE_API_CLIENT_ID',help='Keycloak OAuth2 Client ID'"`
KeycloakClientSecret string `kong:"required,env='KEYCLOAK_SERVICE_API_CLIENT_SECRET',help='Keycloak OAuth2 Client Secret'"`
NATSURL string `kong:"required,env='NATS_URL',help='NATS server URL (nats://... or tls://...)'"`
NATSUsername string `kong:"default='ssh-portal-api',env='NATS_USERNAME',help='NATS Username'"`
NATSPassword string `kong:"default='ssh-portal-api',env='NATS_PASSWORD',help='NATS Password'"`
}

// Run the serve command to ssh-portal API requests.
Expand Down Expand Up @@ -57,6 +55,5 @@ func (cmd *ServeCmd) Run(log *zap.Logger) error {
return fmt.Errorf("couldn't init keycloak Client: %v", err)
}
// start serving NATS requests
return sshportalapi.ServeNATS(ctx, stop, log, l, k, cmd.NATSURL,
cmd.NATSUsername, cmd.NATSPassword)
return sshportalapi.ServeNATS(ctx, stop, log, l, k, cmd.NATSURL)
}
9 changes: 2 additions & 7 deletions internal/sshportalapi/server.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,8 +29,7 @@ type KeycloakService interface {

// ServeNATS sshportalapi NATS requests.
func ServeNATS(ctx context.Context, stop context.CancelFunc, log *zap.Logger,
l LagoonDBService, k KeycloakService, natsURL, natsUser,
natsPass string) error {
l LagoonDBService, k KeycloakService, natsURL string) error {
// setup synchronisation
wg := sync.WaitGroup{}
wg.Add(1)
Expand All @@ -40,12 +39,8 @@ func ServeNATS(ctx context.Context, stop context.CancelFunc, log *zap.Logger,
nats.ClosedHandler(func(_ *nats.Conn) {
stop()
wg.Done()
}),
// pass credentials
nats.UserInfo(natsUser, natsPass))
}))
if err != nil {
log.Debug("NATS connect error", zap.Error(err),
zap.String("user", natsUser), zap.String("pass", natsPass))
return fmt.Errorf("couldn't connect to NATS server: %v", err)
}
c, err := nats.NewEncodedConn(nc, "json")
Expand Down

0 comments on commit 7d8dbad

Please sign in to comment.