feat(stacks): support compose v2.0 stack (#1963)

2025-07-22 06:49:40 +02:00 · 2018-06-11 15:13:19 +02:00 · 2018-06-11 15:13:19 +02:00 · e3d564325b
commit e3d564325b
parent ef15cd30eb
174 changed files with 7898 additions and 5849 deletions
--- a/api/http/handler/settings/settings_update.go
+++ b/api/http/handler/settings/settings_update.go
@ -0,0 +1,85 @@
+package settings
+
+import (
+	"net/http"
+
+	"github.com/asaskevich/govalidator"
+	"github.com/portainer/portainer"
+	"github.com/portainer/portainer/filesystem"
+	httperror "github.com/portainer/portainer/http/error"
+	"github.com/portainer/portainer/http/request"
+	"github.com/portainer/portainer/http/response"
+)
+
+type settingsUpdatePayload struct {
+	TemplatesURL                       string
+	LogoURL                            string
+	BlackListedLabels                  []portainer.Pair
+	DisplayExternalContributors        bool
+	AuthenticationMethod               int
+	LDAPSettings                       portainer.LDAPSettings
+	AllowBindMountsForRegularUsers     bool
+	AllowPrivilegedModeForRegularUsers bool
+}
+
+func (payload *settingsUpdatePayload) Validate(r *http.Request) error {
+	if govalidator.IsNull(payload.TemplatesURL) || !govalidator.IsURL(payload.TemplatesURL) {
+		return portainer.Error("Invalid templates URL. Must correspond to a valid URL format")
+	}
+	if payload.AuthenticationMethod == 0 {
+		return portainer.Error("Invalid authentication method")
+	}
+	if payload.AuthenticationMethod != 1 && payload.AuthenticationMethod != 2 {
+		return portainer.Error("Invalid authentication method value. Value must be one of: 1 (internal) or 2 (LDAP/AD)")
+	}
+	if !govalidator.IsNull(payload.LogoURL) && !govalidator.IsURL(payload.LogoURL) {
+		return portainer.Error("Invalid logo URL. Must correspond to a valid URL format")
+	}
+	return nil
+}
+
+// PUT request on /api/settings
+func (handler *Handler) settingsUpdate(w http.ResponseWriter, r *http.Request) *httperror.HandlerError {
+	var payload settingsUpdatePayload
+	err := request.DecodeAndValidateJSONPayload(r, &payload)
+	if err != nil {
+		return &httperror.HandlerError{http.StatusBadRequest, "Invalid request payload", err}
+	}
+
+	settings := &portainer.Settings{
+		TemplatesURL:                       payload.TemplatesURL,
+		LogoURL:                            payload.LogoURL,
+		BlackListedLabels:                  payload.BlackListedLabels,
+		DisplayExternalContributors:        payload.DisplayExternalContributors,
+		LDAPSettings:                       payload.LDAPSettings,
+		AllowBindMountsForRegularUsers:     payload.AllowBindMountsForRegularUsers,
+		AllowPrivilegedModeForRegularUsers: payload.AllowPrivilegedModeForRegularUsers,
+	}
+
+	settings.AuthenticationMethod = portainer.AuthenticationMethod(payload.AuthenticationMethod)
+	tlsError := handler.updateTLS(settings)
+	if tlsError != nil {
+		return tlsError
+	}
+
+	err = handler.SettingsService.StoreSettings(settings)
+	if err != nil {
+		return &httperror.HandlerError{http.StatusInternalServerError, "Unable to persist settings changes inside the database", err}
+	}
+
+	return response.JSON(w, settings)
+}
+
+func (handler *Handler) updateTLS(settings *portainer.Settings) *httperror.HandlerError {
+	if (settings.LDAPSettings.TLSConfig.TLS || settings.LDAPSettings.StartTLS) && !settings.LDAPSettings.TLSConfig.TLSSkipVerify {
+		caCertPath, _ := handler.FileService.GetPathForTLSFile(filesystem.LDAPStorePath, portainer.TLSFileCA)
+		settings.LDAPSettings.TLSConfig.TLSCACertPath = caCertPath
+	} else {
+		settings.LDAPSettings.TLSConfig.TLSCACertPath = ""
+		err := handler.FileService.DeleteTLSFiles(filesystem.LDAPStorePath)
+		if err != nil {
+			return &httperror.HandlerError{http.StatusInternalServerError, "Unable to remove TLS files from disk", err}
+		}
+	}
+	return nil
+}