Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

making NEXTCLOUD_TRUSTED_DOMAINS after installation #2084

Open
wants to merge 3 commits into
base: master
Choose a base branch
from
Open

making NEXTCLOUD_TRUSTED_DOMAINS after installation #2084

wants to merge 3 commits into from

Conversation

melvin-suter
Copy link

ALL configurations should be made with environment variables instead of manually editing configurations.
The ENV variable is already there but ignored after installation. This change will allow trusted domains to be configured over ENV variables, while still considering the configured values inside config.php.

Melvin mngmt-02 added 2 commits October 13, 2023 16:37
@suterdev
making NEXTCLOUD_TRUSTED_DOMAINS after install
a16b4f7 
Signed-off-by: Melvin mngmt-02 <melvin@suter.dev>
Signed-off-by: Melvin Suter <github@suter.dev>
@suterdev
backwards compatibility
d13714b 
Signed-off-by: Melvin mngmt-02 <melvin@suter.dev>
Signed-off-by: Melvin Suter <github@suter.dev>
@kesselb
Copy link
Contributor

kesselb commented Oct 14, 2023

Hi,

@suterdev
Moving Config file to right dir
5a8fe00 
Signed-off-by: Melvin Suter <github@suter.dev>
@melvin-suter
Copy link
Author

Hi,

Changed it. Thanks.

kesselb
kesselb reviewed Oct 16, 2023
View reviewed changes
.config/trusteddomains.config.php

if (getenv('NEXTCLOUD_TRUSTED_DOMAINS')) {
// Get originaly configured values
include(__DIR__.'/config.php');
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

That's evil, don't do that.

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The $CONFIG is overwritten so that shouldn't be an issue. But if anyone does interesting things in config.php it could break things, you are right. I did this to make it backwards compatible, so people can still use their values manually configured in config.php (or with occ). Any ideas how to make this happen?

Copy link
Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@kesselb any ideas?

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sorry, no ideas. But it still looks like a bad idea to include the actual configuration here again.

Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The environment variable should override trusted_domains in config.php. But since this will be a change in behavior from earlier, when it was only set during the installation, I can see the issue of breaking a lot of existing setups. My suggestion is to create a new variable for this. Something like just $TRUSTED_DOMAINS, which will also be more in line with other env variables like $TRUSTED_PROXIES which do not use the NEXTCLOUD_ prefix. Then you could just do this:

$trustedDomains = getenv('TRUSTED_DOMAINS');
if ($trustedDomains) {
  $CONFIG['trusted_domains'] = array_filter(array_map('trim', explode(' ', $trustedDomains)));
}

and nothing should break unless the user explicitly sets the new variable. The old $NEXTCLOUD_TRUSTED_DOMAINS should then perhaps be deprecated.

utshomax
utshomax reviewed Nov 15, 2023
View reviewed changes
.config/trusteddomains.config.php

// Add environment variables
$CONFIG = array(
'trusted_domains' => array_merge($CONFIG['trusted_domains'],array_map(function($domain){return trim($domain);},explode(",",getenv('NEXTCLOUD_TRUSTED_DOMAINS'))))
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@melvin-suter I think the 'NEXTCLOUD_TRUSTED_DOMAINS' is separated as mentioned in the docker doc.

@joshtrichards joshtrichards added the needs review Needs confirmation this is still happening or relevant label Jul 2, 2024
@J0WI J0WI added stale No recent activity (candidate for closure) and removed needs review Needs confirmation this is still happening or relevant labels Oct 24, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@utshomax utshomax utshomax left review comments

@markusnasholm markusnasholm markusnasholm left review comments

@kesselb kesselb kesselb left review comments

Assignees
No one assigned
Labels
stale No recent activity (candidate for closure)
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
7 participants
@melvin-suter @kesselb @markusnasholm @utshomax @joshtrichards @J0WI @suterdev