272 lines
6.4 KiB
Go
272 lines
6.4 KiB
Go
package config
|
||
|
||
import (
|
||
"fmt"
|
||
"os"
|
||
"strconv"
|
||
"strings"
|
||
"sync"
|
||
"time"
|
||
|
||
"github.com/pelletier/go-toml/v2"
|
||
)
|
||
|
||
// RegistryMapping Registry映射配置
|
||
type RegistryMapping struct {
|
||
Upstream string `toml:"upstream"`
|
||
AuthHost string `toml:"authHost"`
|
||
AuthType string `toml:"authType"`
|
||
Enabled bool `toml:"enabled"`
|
||
}
|
||
|
||
// AppConfig 应用配置结构体
|
||
type AppConfig struct {
|
||
Server struct {
|
||
Host string `toml:"host"`
|
||
Port int `toml:"port"`
|
||
FileSize int64 `toml:"fileSize"`
|
||
EnableH2C bool `toml:"enableH2C"`
|
||
} `toml:"server"`
|
||
|
||
RateLimit struct {
|
||
RequestLimit int `toml:"requestLimit"`
|
||
PeriodHours float64 `toml:"periodHours"`
|
||
} `toml:"rateLimit"`
|
||
|
||
Security struct {
|
||
WhiteList []string `toml:"whiteList"`
|
||
BlackList []string `toml:"blackList"`
|
||
} `toml:"security"`
|
||
|
||
Access struct {
|
||
WhiteList []string `toml:"whiteList"`
|
||
BlackList []string `toml:"blackList"`
|
||
Proxy string `toml:"proxy"`
|
||
} `toml:"access"`
|
||
|
||
Download struct {
|
||
MaxImages int `toml:"maxImages"`
|
||
} `toml:"download"`
|
||
|
||
Registries map[string]RegistryMapping `toml:"registries"`
|
||
|
||
TokenCache struct {
|
||
Enabled bool `toml:"enabled"`
|
||
DefaultTTL string `toml:"defaultTTL"`
|
||
} `toml:"tokenCache"`
|
||
}
|
||
|
||
var (
|
||
appConfig *AppConfig
|
||
appConfigLock sync.RWMutex
|
||
|
||
cachedConfig *AppConfig
|
||
configCacheTime time.Time
|
||
configCacheTTL = 5 * time.Second
|
||
configCacheMutex sync.RWMutex
|
||
)
|
||
|
||
// DefaultConfig 返回默认配置
|
||
func DefaultConfig() *AppConfig {
|
||
return &AppConfig{
|
||
Server: struct {
|
||
Host string `toml:"host"`
|
||
Port int `toml:"port"`
|
||
FileSize int64 `toml:"fileSize"`
|
||
EnableH2C bool `toml:"enableH2C"`
|
||
}{
|
||
Host: "0.0.0.0",
|
||
Port: 5000,
|
||
FileSize: 2 * 1024 * 1024 * 1024, // 2GB
|
||
EnableH2C: false, // 默认关闭H2C
|
||
},
|
||
RateLimit: struct {
|
||
RequestLimit int `toml:"requestLimit"`
|
||
PeriodHours float64 `toml:"periodHours"`
|
||
}{
|
||
RequestLimit: 500,
|
||
PeriodHours: 3.0,
|
||
},
|
||
Security: struct {
|
||
WhiteList []string `toml:"whiteList"`
|
||
BlackList []string `toml:"blackList"`
|
||
}{
|
||
WhiteList: []string{},
|
||
BlackList: []string{},
|
||
},
|
||
Access: struct {
|
||
WhiteList []string `toml:"whiteList"`
|
||
BlackList []string `toml:"blackList"`
|
||
Proxy string `toml:"proxy"`
|
||
}{
|
||
WhiteList: []string{},
|
||
BlackList: []string{},
|
||
Proxy: "",
|
||
},
|
||
Download: struct {
|
||
MaxImages int `toml:"maxImages"`
|
||
}{
|
||
MaxImages: 10,
|
||
},
|
||
Registries: map[string]RegistryMapping{
|
||
"ghcr.io": {
|
||
Upstream: "ghcr.io",
|
||
AuthHost: "ghcr.io/token",
|
||
AuthType: "github",
|
||
Enabled: true,
|
||
},
|
||
"gcr.io": {
|
||
Upstream: "gcr.io",
|
||
AuthHost: "gcr.io/v2/token",
|
||
AuthType: "google",
|
||
Enabled: true,
|
||
},
|
||
"quay.io": {
|
||
Upstream: "quay.io",
|
||
AuthHost: "quay.io/v2/auth",
|
||
AuthType: "quay",
|
||
Enabled: true,
|
||
},
|
||
"registry.k8s.io": {
|
||
Upstream: "registry.k8s.io",
|
||
AuthHost: "registry.k8s.io",
|
||
AuthType: "anonymous",
|
||
Enabled: true,
|
||
},
|
||
},
|
||
TokenCache: struct {
|
||
Enabled bool `toml:"enabled"`
|
||
DefaultTTL string `toml:"defaultTTL"`
|
||
}{
|
||
Enabled: true,
|
||
DefaultTTL: "20m",
|
||
},
|
||
}
|
||
}
|
||
|
||
// GetConfig 安全地获取配置副本
|
||
func GetConfig() *AppConfig {
|
||
configCacheMutex.RLock()
|
||
if cachedConfig != nil && time.Since(configCacheTime) < configCacheTTL {
|
||
config := cachedConfig
|
||
configCacheMutex.RUnlock()
|
||
return config
|
||
}
|
||
configCacheMutex.RUnlock()
|
||
|
||
configCacheMutex.Lock()
|
||
defer configCacheMutex.Unlock()
|
||
|
||
if cachedConfig != nil && time.Since(configCacheTime) < configCacheTTL {
|
||
return cachedConfig
|
||
}
|
||
|
||
appConfigLock.RLock()
|
||
if appConfig == nil {
|
||
appConfigLock.RUnlock()
|
||
defaultCfg := DefaultConfig()
|
||
cachedConfig = defaultCfg
|
||
configCacheTime = time.Now()
|
||
return defaultCfg
|
||
}
|
||
|
||
configCopy := *appConfig
|
||
configCopy.Security.WhiteList = append([]string(nil), appConfig.Security.WhiteList...)
|
||
configCopy.Security.BlackList = append([]string(nil), appConfig.Security.BlackList...)
|
||
configCopy.Access.WhiteList = append([]string(nil), appConfig.Access.WhiteList...)
|
||
configCopy.Access.BlackList = append([]string(nil), appConfig.Access.BlackList...)
|
||
appConfigLock.RUnlock()
|
||
|
||
cachedConfig = &configCopy
|
||
configCacheTime = time.Now()
|
||
|
||
return cachedConfig
|
||
}
|
||
|
||
// setConfig 安全地设置配置
|
||
func setConfig(cfg *AppConfig) {
|
||
appConfigLock.Lock()
|
||
defer appConfigLock.Unlock()
|
||
appConfig = cfg
|
||
|
||
configCacheMutex.Lock()
|
||
cachedConfig = nil
|
||
configCacheMutex.Unlock()
|
||
}
|
||
|
||
// LoadConfig 加载配置文件
|
||
func LoadConfig() error {
|
||
cfg := DefaultConfig()
|
||
|
||
if data, err := os.ReadFile("config.toml"); err == nil {
|
||
if err := toml.Unmarshal(data, cfg); err != nil {
|
||
return fmt.Errorf("解析配置文件失败: %v", err)
|
||
}
|
||
} else {
|
||
fmt.Println("未找到config.toml,使用默认配置")
|
||
}
|
||
|
||
overrideFromEnv(cfg)
|
||
setConfig(cfg)
|
||
|
||
return nil
|
||
}
|
||
|
||
// overrideFromEnv 从环境变量覆盖配置
|
||
func overrideFromEnv(cfg *AppConfig) {
|
||
if val := os.Getenv("SERVER_HOST"); val != "" {
|
||
cfg.Server.Host = val
|
||
}
|
||
if val := os.Getenv("SERVER_PORT"); val != "" {
|
||
if port, err := strconv.Atoi(val); err == nil && port > 0 {
|
||
cfg.Server.Port = port
|
||
}
|
||
}
|
||
if val := os.Getenv("ENABLE_H2C"); val != "" {
|
||
if enable, err := strconv.ParseBool(val); err == nil {
|
||
cfg.Server.EnableH2C = enable
|
||
}
|
||
}
|
||
if val := os.Getenv("MAX_FILE_SIZE"); val != "" {
|
||
if size, err := strconv.ParseInt(val, 10, 64); err == nil && size > 0 {
|
||
cfg.Server.FileSize = size
|
||
}
|
||
}
|
||
|
||
if val := os.Getenv("RATE_LIMIT"); val != "" {
|
||
if limit, err := strconv.Atoi(val); err == nil && limit > 0 {
|
||
cfg.RateLimit.RequestLimit = limit
|
||
}
|
||
}
|
||
if val := os.Getenv("RATE_PERIOD_HOURS"); val != "" {
|
||
if period, err := strconv.ParseFloat(val, 64); err == nil && period > 0 {
|
||
cfg.RateLimit.PeriodHours = period
|
||
}
|
||
}
|
||
|
||
if val := os.Getenv("IP_WHITELIST"); val != "" {
|
||
cfg.Security.WhiteList = append(cfg.Security.WhiteList, strings.Split(val, ",")...)
|
||
}
|
||
if val := os.Getenv("IP_BLACKLIST"); val != "" {
|
||
cfg.Security.BlackList = append(cfg.Security.BlackList, strings.Split(val, ",")...)
|
||
}
|
||
|
||
if val := os.Getenv("MAX_IMAGES"); val != "" {
|
||
if maxImages, err := strconv.Atoi(val); err == nil && maxImages > 0 {
|
||
cfg.Download.MaxImages = maxImages
|
||
}
|
||
}
|
||
}
|
||
|
||
// CreateDefaultConfigFile 创建默认配置文件
|
||
func CreateDefaultConfigFile() error {
|
||
cfg := DefaultConfig()
|
||
|
||
data, err := toml.Marshal(cfg)
|
||
if err != nil {
|
||
return fmt.Errorf("序列化默认配置失败: %v", err)
|
||
}
|
||
|
||
return os.WriteFile("config.toml", data, 0644)
|
||
}
|