config

package
v0.0.0-...-77c6198 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Mar 6, 2026 License: GPL-3.0 Imports: 7 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type Config 

type Config struct {
	Port string `mapstructure:"PORT"`

	// --- GCP Core ---
	GCPProject          string `mapstructure:"GCP_PROJECT" validate:"required"`
	PlanServiceAccount  string `mapstructure:"PLAN_SERVICE_ACCOUNT" validate:"required"`
	ApplyServiceAccount string `mapstructure:"APPLY_SERVICE_ACCOUNT" validate:"required"`

	// --- SCM Configuration ---
	SCMProvider string `mapstructure:"SCM_PROVIDER" validate:"required,oneof=github azure"`

	// --- GITHUB ---
	GithubAppID         string `mapstructure:"GITHUB_APP_ID"`
	GithubInstallID     string `mapstructure:"GITHUB_INSTALL_ID"`
	GithubPrivateKey    string `mapstructure:"GITHUB_PRIVATE_KEY"`
	GithubWebhookSecret string `mapstructure:"GITHUB_WEBHOOK_SECRET"`

	// Sign
	JITSecretKey string `mapstructure:"JIT_SECRET_KEY" validate:"required"`

	// --- Azure DevOps ---
	ADOOrgURL          string `mapstructure:"ADO_ORG_URL" validate:"required,url"`
	ADOProject         string `mapstructure:"ADO_PROJECT" validate:"required"`
	ADOPAT             string `mapstructure:"ADO_PAT" validate:"required"`
	ADOPipelineID      string `mapstructure:"ADO_PIPELINE_ID" validate:"required"`
	ADOWebhookPassword string `mapstructure:"ADO_WEBHOOK_PASSWORD"`
	ADOWebhookUsername string `mapstructure:"ADO_WEBHOOK_USERNAME"`

	// --- Security ---
	Security struct {
		AllowedInvokers   []string `mapstructure:"allowed_invokers"`
		AllowedAdmins     []string `mapstructure:"allowed_admins"`
		ExpectedAudiences []string `mapstructure:"expected_audiences" validate:"required"`
		AllowedAzps       []string `mapstructure:"allowed_azps" validate:"required"`
	} `mapstructure:"security"`
	// --- Compliance (NOVO) ---
	Compliance struct {
		Rules []compliance.RuleConfig `mapstructure:"rules"`
	} `mapstructure:"compliance"`

	// --- Cloud Tasks ---
	CloudTasks struct {
		QueuePath         string `mapstructure:"queue_path"`
		ServiceURL        string `mapstructure:"service_url"`
		ServiceAccount    string `mapstructure:"service_account"`
		MergeDelaySeconds int    `mapstructure:"merge_delay_seconds"`
	} `mapstructure:"cloud_tasks"`

	// --- Async Security (callback /internal/async/run) ---
	// source: "metadata" → deriva email+sub do GCP metadata server (Cloud Run)
	// source: "config"   → usa allowed_invokers e allowed_azps explícitos
	// ausente            → endpoint /internal/async/run desabilitado
	AsyncSecurity struct {
		Source          string   `mapstructure:"source"` // "metadata" | "config"
		AllowedInvokers []string `mapstructure:"allowed_invokers"`
		AllowedAzps     []string `mapstructure:"allowed_azps"`
	} `mapstructure:"async_security"`
}

func Load 

func Load(ctx context.Context, dir string) (Config, error)

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.