2017-10-25 19:19:37 +05:30
2017-04-13 01:57:55 +08:00
'use strict'
2018-03-26 00:30:17 +02:00
const crypto = require ( 'crypto' )
2017-04-13 01:57:55 +08:00
const fs = require ( 'fs' )
const path = require ( 'path' )
2019-04-12 17:58:24 +08:00
const { merge } = require ( 'lodash' )
2017-04-13 01:57:55 +08:00
const deepFreeze = require ( 'deep-freeze' )
2019-04-12 17:58:24 +08:00
const { Environment , Permission } = require ( './enum' )
2018-03-18 02:14:50 +01:00
const logger = require ( '../logger' )
2019-04-12 17:58:24 +08:00
const { getGitCommit , getGitHubURL } = require ( './utils' )
2017-04-13 01:57:55 +08:00
2018-09-10 22:35:38 +02:00
const appRootPath = path . resolve ( _ _dirname , '../../' )
2017-04-13 01:57:55 +08:00
const env = process . env . NODE _ENV || Environment . development
const debugConfig = {
debug : ( env === Environment . development )
}
2018-01-26 14:00:48 +01:00
// Get version string from package.json
2019-04-12 17:58:24 +08:00
const { version , repository } = require ( path . join ( appRootPath , 'package.json' ) )
2018-10-05 19:33:40 +02:00
const commitID = getGitCommit ( appRootPath )
const sourceURL = getGitHubURL ( repository . url , commitID || version )
const fullversion = commitID ? ` ${ version } - ${ commitID } ` : version
2018-01-19 13:23:30 +01:00
2017-04-13 01:57:55 +08:00
const packageConfig = {
2018-01-19 13:23:30 +01:00
version : version ,
2018-10-05 19:33:40 +02:00
minimumCompatibleVersion : '0.5.0' ,
fullversion : fullversion ,
sourceURL : sourceURL
2017-04-13 01:57:55 +08:00
}
2018-09-05 19:50:46 +02:00
const configFilePath = path . resolve ( appRootPath , process . env . CMD _CONFIG _FILE ||
'config.json' )
2017-04-13 01:57:55 +08:00
const fileConfig = fs . existsSync ( configFilePath ) ? require ( configFilePath ) [ env ] : undefined
let config = require ( './default' )
merge ( config , require ( './defaultSSL' ) )
merge ( config , debugConfig )
merge ( config , packageConfig )
merge ( config , fileConfig )
merge ( config , require ( './environment' ) )
merge ( config , require ( './dockerSecret' ) )
2018-11-13 23:29:33 +01:00
if ( [ 'debug' , 'verbose' , 'info' , 'warn' , 'error' ] . includes ( config . loglevel ) ) {
logger . level = config . loglevel
} else {
logger . error ( 'Selected loglevel %s doesn\'t exist, using default level \'debug\'. Available options: debug, verbose, info, warn, error' , config . loglevel )
}
2017-04-13 01:57:55 +08:00
// load LDAP CA
if ( config . ldap . tlsca ) {
2019-08-02 00:57:39 +08:00
const certificateAuthorities = config . ldap . tlsca . split ( ',' )
const caContent = [ ]
for ( const ca of certificateAuthorities ) {
if ( fs . existsSync ( ca ) ) {
caContent . push ( fs . readFileSync ( ca , 'utf8' ) )
2017-04-13 01:57:55 +08:00
}
}
2019-08-02 00:57:39 +08:00
const tlsOptions = {
2017-04-13 01:57:55 +08:00
ca : caContent
}
config . ldap . tlsOptions = config . ldap . tlsOptions ? Object . assign ( config . ldap . tlsOptions , tlsOptions ) : tlsOptions
}
// Permission
config . permission = Permission
2019-02-23 13:33:37 +09:00
let defaultPermission = config . permission . editable
if ( ! config . allowAnonymous && ! config . allowAnonymousViews ) {
delete config . permission . freely
delete config . permission . editable
delete config . permission . locked
defaultPermission = config . permission . limited
} else if ( ! config . allowAnonymous && ! config . allowAnonymousEdits ) {
2017-04-13 01:57:55 +08:00
delete config . permission . freely
}
2018-03-07 15:17:35 +01:00
if ( ! ( config . defaultPermission in config . permission ) ) {
2019-02-23 13:33:37 +09:00
config . defaultPermission = defaultPermission
2017-04-13 01:57:55 +08:00
}
// cache result, cannot change config in runtime!!!
config . isStandardHTTPsPort = ( function isStandardHTTPsPort ( ) {
2018-03-07 15:17:35 +01:00
return config . useSSL && config . port === 443
2017-04-13 01:57:55 +08:00
} ) ( )
config . isStandardHTTPPort = ( function isStandardHTTPPort ( ) {
2018-03-07 15:17:35 +01:00
return ! config . useSSL && config . port === 80
2017-04-13 01:57:55 +08:00
} ) ( )
// cache serverURL
2018-03-07 15:17:35 +01:00
config . serverURL = ( function getserverurl ( ) {
2017-04-13 01:57:55 +08:00
var url = ''
if ( config . domain ) {
2018-03-07 15:17:35 +01:00
var protocol = config . protocolUseSSL ? 'https://' : 'http://'
2017-04-13 01:57:55 +08:00
url = protocol + config . domain
2018-03-07 15:17:35 +01:00
if ( config . urlAddPort ) {
2017-04-13 01:57:55 +08:00
if ( ! config . isStandardHTTPPort || ! config . isStandardHTTPsPort ) {
url += ':' + config . port
}
}
}
2018-03-07 15:17:35 +01:00
if ( config . urlPath ) {
url += '/' + config . urlPath
2017-04-13 01:57:55 +08:00
}
return url
} ) ( )
2018-11-28 14:38:42 +01:00
if ( config . serverURL === '' ) {
logger . warn ( 'Neither \'domain\' nor \'CMD_DOMAIN\' is configured. This can cause issues with various components.\nHint: Make sure \'protocolUseSSL\' and \'urlAddPort\' or \'CMD_PROTOCOL_USESSL\' and \'CMD_URL_ADDPORT\' are configured properly.' )
}
2017-04-13 01:57:55 +08:00
config . Environment = Environment
// auth method
config . isFacebookEnable = config . facebook . clientID && config . facebook . clientSecret
config . isGoogleEnable = config . google . clientID && config . google . clientSecret
config . isDropboxEnable = config . dropbox . clientID && config . dropbox . clientSecret
config . isTwitterEnable = config . twitter . consumerKey && config . twitter . consumerSecret
config . isEmailEnable = config . email
2017-08-31 23:33:55 +02:00
config . isOpenIDEnable = config . openID
2017-04-13 01:57:55 +08:00
config . isGitHubEnable = config . github . clientID && config . github . clientSecret
2019-12-28 22:20:18 +09:00
config . isBitbucketEnable = config . bitbucket . clientID && config . bitbucket . clientSecret
2017-04-13 01:57:55 +08:00
config . isGitLabEnable = config . gitlab . clientID && config . gitlab . clientSecret
2017-10-29 11:16:40 +01:00
config . isMattermostEnable = config . mattermost . clientID && config . mattermost . clientSecret
2017-04-13 01:57:55 +08:00
config . isLDAPEnable = config . ldap . url
2017-11-28 12:46:58 +09:00
config . isSAMLEnable = config . saml . idpSsoUrl
2017-06-27 19:08:05 +02:00
config . isOAuth2Enable = config . oauth2 . clientID && config . oauth2 . clientSecret
2018-03-07 15:17:35 +01:00
config . isPDFExportEnable = config . allowPDFExport
2017-04-13 01:57:55 +08:00
2018-07-30 13:47:09 +00:00
// Check gitlab api version
2018-09-25 00:26:30 +02:00
if ( config . gitlab && config . gitlab . version !== 'v4' && config . gitlab . version !== 'v3' ) {
2018-08-23 14:06:26 +02:00
logger . warn ( 'config.js contains wrong version (' + config . gitlab . version + ') for gitlab api; it should be \'v3\' or \'v4\'. Defaulting to v4' )
2018-07-30 13:47:09 +00:00
config . gitlab . version = 'v4'
}
2018-11-07 12:12:50 +00:00
// If gitlab scope is api, enable snippets Export/import
2019-01-25 19:48:31 +01:00
config . isGitlabSnippetsEnable = ( ! config . gitlab . scope || config . gitlab . scope === 'api' ) && config . isGitLabEnable
2018-07-30 13:47:09 +00:00
2018-06-05 01:29:27 +02:00
// Only update i18n files in development setups
config . updateI18nFiles = ( env === Environment . development )
2018-01-26 14:00:48 +01:00
// merge legacy values
2019-08-02 00:57:39 +08:00
const keys = Object . keys ( config )
2018-03-07 15:17:35 +01:00
const uppercase = /[A-Z]/
for ( let i = keys . length ; i -- ; ) {
2019-08-02 00:57:39 +08:00
const lowercaseKey = keys [ i ] . toLowerCase ( )
2018-03-07 15:17:35 +01:00
// if the config contains uppercase letters
// and a lowercase version of this setting exists
// and the config with uppercase is not set
// we set the new config using the old key.
if ( uppercase . test ( keys [ i ] ) &&
2018-03-26 20:49:24 +02:00
config [ lowercaseKey ] !== undefined &&
fileConfig [ keys [ i ] ] === undefined ) {
2018-03-07 15:17:35 +01:00
logger . warn ( 'config.js contains deprecated lowercase setting for ' + keys [ i ] + '. Please change your config.js file to replace ' + lowercaseKey + ' with ' + keys [ i ] )
config [ keys [ i ] ] = config [ lowercaseKey ]
}
2018-01-26 14:00:48 +01:00
}
2018-06-24 13:22:51 +02:00
// Notify users about the prefix change and inform them they use legacy prefix for environment variables
if ( Object . keys ( process . env ) . toString ( ) . indexOf ( 'HMD_' ) !== - 1 ) {
2020-03-02 18:32:32 +08:00
logger . warn ( 'Using legacy HMD prefix for environment variables. Please change your variables in future. For details see: https://hackmd.io/c/codimd-documentation/%2F%40codimd%2Fmigrate-2-0#1-Drop-old-environment-variables-support' )
2018-06-24 13:22:51 +02:00
}
2018-03-26 00:30:17 +02:00
// Generate session secret if it stays on default values
if ( config . sessionSecret === 'secret' ) {
logger . warn ( 'Session secret not set. Using random generated one. Please set `sessionSecret` in your config.js file. All users will be logged out.' )
config . sessionSecret = crypto . randomBytes ( Math . ceil ( config . sessionSecretLen / 2 ) ) // generate crypto graphic random number
2019-04-12 17:58:24 +08:00
. toString ( 'hex' ) // convert to hexadecimal format
. slice ( 0 , config . sessionSecretLen ) // return required number of characters
2018-03-26 00:30:17 +02:00
}
2018-03-18 02:14:50 +01:00
// Validate upload upload providers
2019-02-01 12:36:58 +01:00
if ( [ 'filesystem' , 's3' , 'minio' , 'imgur' , 'azure' , 'lutim' ] . indexOf ( config . imageUploadType ) === - 1 ) {
logger . error ( '"imageuploadtype" is not correctly set. Please use "filesystem", "s3", "minio", "azure", "lutim" or "imgur". Defaulting to "filesystem"' )
2018-07-09 20:27:15 +02:00
config . imageUploadType = 'filesystem'
2018-03-18 02:14:50 +01:00
}
2018-01-20 15:08:31 +01:00
// figure out mime types for image uploads
2018-03-07 15:17:35 +01:00
switch ( config . imageUploadType ) {
2018-01-20 15:08:31 +01:00
case 'imgur' :
config . allowedUploadMimeTypes = [
'image/jpeg' ,
'image/png' ,
'image/jpg' ,
'image/gif'
]
break
default :
config . allowedUploadMimeTypes = [
'image/jpeg' ,
'image/png' ,
'image/jpg' ,
'image/gif' ,
2020-12-23 15:45:49 +08:00
'image/svg+xml' ,
'image/bmp' ,
'image/tiff'
2018-01-20 15:08:31 +01:00
]
}
2017-04-13 01:57:55 +08:00
// generate correct path
2018-03-07 15:17:35 +01:00
config . sslCAPath . forEach ( function ( capath , i , array ) {
2017-12-22 12:25:13 +01:00
array [ i ] = path . resolve ( appRootPath , capath )
2017-12-22 12:19:19 +01:00
} )
2017-11-28 21:23:50 +08:00
2019-10-21 13:37:59 +09:00
config . appRootPath = appRootPath
2018-09-05 19:56:41 +02:00
config . sslCertPath = path . resolve ( appRootPath , config . sslCertPath )
config . sslKeyPath = path . resolve ( appRootPath , config . sslKeyPath )
config . dhParamPath = path . resolve ( appRootPath , config . dhParamPath )
2018-09-10 22:35:38 +02:00
config . viewPath = path . resolve ( appRootPath , config . viewPath )
2018-09-05 19:56:41 +02:00
config . tmpPath = path . resolve ( appRootPath , config . tmpPath )
config . defaultNotePath = path . resolve ( appRootPath , config . defaultNotePath )
config . docsPath = path . resolve ( appRootPath , config . docsPath )
config . uploadsPath = path . resolve ( appRootPath , config . uploadsPath )
2017-04-13 01:57:55 +08:00
2017-10-25 19:19:37 +05:30
// make config readonly
2017-04-13 01:57:55 +08:00
config = deepFreeze ( config )
module . exports = config