refactor for secrets management in API and private key handling in SFTPFs

Signed-off-by: Nicola Murino <nicola.murino@gmail.com>
2025-12-08 07:10:56 +03:00 · 2024-04-26 16:17:24 +02:00
parent aa426016f2
commit 2bcf05ca45
5 changed files with 47 additions and 70 deletions
--- a/internal/httpd/api_group.go
+++ b/internal/httpd/api_group.go
@@ -79,17 +79,6 @@ func updateGroup(w http.ResponseWriter, r *http.Request) {
 		return
 	}

-	currentS3AccessSecret := group.UserSettings.FsConfig.S3Config.AccessSecret
-	currentAzAccountKey := group.UserSettings.FsConfig.AzBlobConfig.AccountKey
-	currentAzSASUrl := group.UserSettings.FsConfig.AzBlobConfig.SASURL
-	currentGCSCredentials := group.UserSettings.FsConfig.GCSConfig.Credentials
-	currentCryptoPassphrase := group.UserSettings.FsConfig.CryptConfig.Passphrase
-	currentSFTPPassword := group.UserSettings.FsConfig.SFTPConfig.Password
-	currentSFTPKey := group.UserSettings.FsConfig.SFTPConfig.PrivateKey
-	currentSFTPKeyPassphrase := group.UserSettings.FsConfig.SFTPConfig.KeyPassphrase
-	currentHTTPPassword := group.UserSettings.FsConfig.HTTPConfig.Password
-	currentHTTPAPIKey := group.UserSettings.FsConfig.HTTPConfig.APIKey
-
 	var updatedGroup dataprovider.Group
 	err = render.DecodeJSON(r.Body, &updatedGroup)
 	if err != nil {
@@ -99,9 +88,7 @@ func updateGroup(w http.ResponseWriter, r *http.Request) {
 	updatedGroup.ID = group.ID
 	updatedGroup.Name = group.Name
 	updatedGroup.UserSettings.FsConfig.SetEmptySecretsIfNil()
-	updateEncryptedSecrets(&updatedGroup.UserSettings.FsConfig, currentS3AccessSecret, currentAzAccountKey, currentAzSASUrl,
-		currentGCSCredentials, currentCryptoPassphrase, currentSFTPPassword, currentSFTPKey, currentSFTPKeyPassphrase,
-		currentHTTPPassword, currentHTTPAPIKey)
+	updateEncryptedSecrets(&updatedGroup.UserSettings.FsConfig, &group.UserSettings.FsConfig)
 	err = dataprovider.UpdateGroup(&updatedGroup, group.Users, claims.Username, util.GetIPFromRemoteAddress(r.RemoteAddr),
 		claims.Role)
 	if err != nil {