feat: Add option to disable local auth form

author: Finn <gh@finn.io> 2024-08-12 19:27:08 -0700
committer: GitHub <noreply@github.com> 2024-08-12 19:27:08 -0700
commit: 770cc1dbb387af580b9ceba1cba9fda69e4444ed (patch)
tree: c7a4ded9a2cd4ebedd9eda99f85865bf41879d9e /internal/config/options.go
parent: 59dac15bdf66a64b5babbc3d87f0f02571730c4d (diff)
download: v2-770cc1dbb387af580b9ceba1cba9fda69e4444ed.tar.gz
v2-770cc1dbb387af580b9ceba1cba9fda69e4444ed.tar.zst
v2-770cc1dbb387af580b9ceba1cba9fda69e4444ed.zip
1 files changed, 9 insertions, 0 deletions
diff --git a/internal/config/options.go b/internal/config/options.go
index d2536070..484f5f9c 100644
--- a/internal/config/options.go
+++ b/internal/config/options.go
@@ -70,6 +70,7 @@ const (
 	defaultOAuth2RedirectURL                  = ""
 	defaultOAuth2OidcDiscoveryEndpoint        = ""
 	defaultOAuth2Provider                     = ""
+	defaultDisableLocalAuth                   = false
 	defaultPocketConsumerKey                  = ""
 	defaultHTTPClientTimeout                  = 20
 	defaultHTTPClientMaxBodySize              = 15
@@ -154,6 +155,7 @@ type Options struct {
 	oauth2RedirectURL                  string
 	oidcDiscoveryEndpoint              string
 	oauth2Provider                     string
+	disableLocalAuth                   bool
 	pocketConsumerKey                  string
 	httpClientTimeout                  int
 	httpClientMaxBodySize              int64
@@ -231,6 +233,7 @@ func NewOptions() *Options {
 		oauth2RedirectURL:                  defaultOAuth2RedirectURL,
 		oidcDiscoveryEndpoint:              defaultOAuth2OidcDiscoveryEndpoint,
 		oauth2Provider:                     defaultOAuth2Provider,
+		disableLocalAuth:                   defaultDisableLocalAuth,
 		pocketConsumerKey:                  defaultPocketConsumerKey,
 		httpClientTimeout:                  defaultHTTPClientTimeout,
 		httpClientMaxBodySize:              defaultHTTPClientMaxBodySize * 1024 * 1024,
@@ -456,6 +459,11 @@ func (o *Options) OAuth2Provider() string {
 	return o.oauth2Provider
 }
 
+// DisableLocalAUth returns true if the local user database should not be used to authenticate users
+func (o *Options) DisableLocalAuth() bool {
+	return o.disableLocalAuth
+}
+
 // HasHSTS returns true if HTTP Strict Transport Security is enabled.
 func (o *Options) HasHSTS() bool {
 	return o.hsts
@@ -695,6 +703,7 @@ func (o *Options) SortedOptions(redactSecret bool) []*Option {
 		"OAUTH2_PROVIDER":                        o.oauth2Provider,
 		"OAUTH2_REDIRECT_URL":                    o.oauth2RedirectURL,
 		"OAUTH2_USER_CREATION":                   o.oauth2UserCreationAllowed,
+		"DISABLE_LOCAL_AUTH":                     o.disableLocalAuth,
 		"POCKET_CONSUMER_KEY":                    redactSecretValue(o.pocketConsumerKey, redactSecret),
 		"POLLING_FREQUENCY":                      o.pollingFrequency,
 		"FORCE_REFRESH_INTERVAL":                 o.forceRefreshInterval,
author	Finn <gh@finn.io>	2024-08-12 19:27:08 -0700
committer	GitHub <noreply@github.com>	2024-08-12 19:27:08 -0700
commit	770cc1dbb387af580b9ceba1cba9fda69e4444ed (patch)
tree	c7a4ded9a2cd4ebedd9eda99f85865bf41879d9e /internal/config/options.go
parent	59dac15bdf66a64b5babbc3d87f0f02571730c4d (diff)
download	v2-770cc1dbb387af580b9ceba1cba9fda69e4444ed.tar.gz v2-770cc1dbb387af580b9ceba1cba9fda69e4444ed.tar.zst v2-770cc1dbb387af580b9ceba1cba9fda69e4444ed.zip