README
¶
Config
Config is a package to read configurations from JSON file, environment and flags.
FromEnv and FromFlags support exported scalar fields, slices of supported scalar values or encoding.TextUnmarshaler values via vsep, and nested exported structs recursively. Map fields are not supported.
If an env or flag tag is omitted, the exported Go field name is used as fallback. Use env:"-" or flag:"-" to ignore a field.
FromFlags uses the standard library flag parser. Flag tags can be written with or without a leading -.
Repeated flags do not append to slices: the last provided flag value wins.
FromJSON can also transparently protect tagged string fields, pointers to string, and slices/arrays of strings with WithJSONSecrets.
Fields tagged with secret:"true" are exposed in plaintext in memory, but if the JSON file still contains plaintext values the package rewrites it using AES-GCM and a passphrase-derived key.
This is useful to hide secrets from casual inspection, but it is not a replacement for a dedicated secret manager.
Installation:
go get github.com/catamat/config@latest
Example:
package main
import (
"log"
"github.com/catamat/config"
)
type configJSON struct {
Word string `json:"word"`
Number int `json:"number"`
Check bool `json:"check"`
Slice []int `json:"myslice"`
}
type configEnv struct {
TmpDir string `env:"TMPDIR"`
HOME string
Shell string `env:"SHELL"`
User string `env:"USER"`
GoRoot string `env:"GOROOT"`
CgoCflags string `env:"CGO_CFLAGS"`
VscodePid int `env:"VSCODE_PID"`
PipeLogging bool `env:"PIPE_LOGGING"`
Slice []int `env:"MY_SLICE" vsep:":"`
}
type configFlags struct {
Word string `flag:"word"`
Number int `flag:"number"`
Check bool `flag:"check"`
Slice []int `flag:"myslice" vsep:","`
}
func main() {
/*
{
"word": "TestWord",
"number": 123456,
"check": true,
"myslice": [1,1,2,3,5,8]
}
*/
log.Println("JSON:")
cfg1 := configJSON{}
if err := config.FromJSON(&cfg1, "config.json"); err != nil {
log.Fatal(err)
}
log.Println(cfg1)
/*
os.Setenv("MY_SLICE", "111:222:333")
*/
log.Println("Env:")
cfg2 := configEnv{}
if err := config.FromEnv(&cfg2); err != nil {
log.Fatal(err)
}
log.Println(cfg2)
/*
./example -word TestWord -number 123456 -check -myslice 1,1,2,3,5,8
*/
log.Println("Flags:")
cfg3 := configFlags{}
if err := config.FromFlags(&cfg3); err != nil {
log.Fatal(err)
}
log.Println(cfg3)
}
JSON secret fields
package main
import (
"log"
"os"
"github.com/catamat/config"
)
type cfg struct {
DBHost string `json:"db_host"`
DBUser string `json:"db_user"`
DBPassword string `json:"db_password" secret:"true"`
}
func main() {
var conf cfg
if err := config.FromJSON(
&conf,
"config.json",
config.WithJSONSecrets([]byte(os.Getenv("SECRET_PASSPHRASE"))),
); err != nil {
log.Fatal(err)
}
log.Println(conf.DBHost, conf.DBUser, conf.DBPassword)
}
On the first load, a plaintext file like:
{
"db_host": "localhost",
"db_user": "app",
"db_password": "super-secret"
}
is rewritten automatically to something like:
{
"db_host": "localhost",
"db_user": "app",
"db_password": "enc:v1:..."
}
Documentation
¶
Overview ¶
Package config is a simple package to read configurations from JSON file, environment and flags.
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func FromEnv ¶
func FromEnv(structure interface{}) error
FromEnv loads the configuration vars from the environment and tries to convert them into a structure.
func FromFlags ¶
func FromFlags(structure interface{}) error
FromFlags loads the configuration flags from the command-line and tries to convert them into a structure.
func FromJSON ¶
func FromJSON(structure interface{}, path string, options ...JSONOption) error
FromJSON loads the JSON configuration file from the path and tries to convert it into a structure.
Types ¶
type JSONOption ¶ added in v0.2.3
type JSONOption func(*jsonOptions) error
JSONOption configures the behavior of FromJSON.
func WithJSONSecrets ¶ added in v0.2.3
func WithJSONSecrets(passphrase []byte) JSONOption
WithJSONSecrets enables transparent encryption for JSON fields tagged with `secret:"true"`.
Tagged string values are returned in plaintext in memory. If the file still contains plaintext, it is automatically rewritten using AES-GCM with the passphrase-derived key.
Source Files