mirror of
https://github.com/minio/minio.git
synced 2024-12-26 07:05:55 -05:00
5f78691fcf
This change uses the updated ldap library in minio/pkg (bumped up to v3). A new config parameter is added for LDAP configuration to specify extra user attributes to load from the LDAP server and to store them as additional claims for the user. A test is added in sts_handlers.go that shows how to access the LDAP attributes as a claim. This is in preparation for adding SSH pubkey authentication to MinIO's SFTP integration.
216 lines
6.8 KiB
Go
216 lines
6.8 KiB
Go
// Copyright (c) 2015-2021 MinIO, Inc.
|
|
//
|
|
// This file is part of MinIO Object Storage stack
|
|
//
|
|
// This program is free software: you can redistribute it and/or modify
|
|
// it under the terms of the GNU Affero General Public License as published by
|
|
// the Free Software Foundation, either version 3 of the License, or
|
|
// (at your option) any later version.
|
|
//
|
|
// This program is distributed in the hope that it will be useful
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
// GNU Affero General Public License for more details.
|
|
//
|
|
// You should have received a copy of the GNU Affero General Public License
|
|
// along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
package cmd
|
|
|
|
import (
|
|
"fmt"
|
|
"net"
|
|
"net/url"
|
|
"strings"
|
|
|
|
"github.com/minio/madmin-go/v3"
|
|
"github.com/minio/minio/internal/color"
|
|
"github.com/minio/minio/internal/logger"
|
|
xnet "github.com/minio/pkg/v3/net"
|
|
)
|
|
|
|
// generates format string depending on the string length and padding.
|
|
func getFormatStr(strLen int, padding int) string {
|
|
formatStr := fmt.Sprintf("%ds", strLen+padding)
|
|
return "%" + formatStr
|
|
}
|
|
|
|
// Prints the formatted startup message.
|
|
func printStartupMessage(apiEndpoints []string, err error) {
|
|
logger.Info(color.Bold(MinioBannerName))
|
|
if err != nil {
|
|
if globalConsoleSys != nil {
|
|
globalConsoleSys.Send(GlobalContext, fmt.Sprintf("Server startup failed with '%v', some features may be missing", err))
|
|
}
|
|
}
|
|
|
|
if !globalSubnetConfig.Registered() {
|
|
var builder strings.Builder
|
|
startupBanner(&builder)
|
|
logger.Info(builder.String())
|
|
}
|
|
|
|
strippedAPIEndpoints := stripStandardPorts(apiEndpoints, globalMinioHost)
|
|
|
|
// Prints credential, region and browser access.
|
|
printServerCommonMsg(strippedAPIEndpoints)
|
|
|
|
// Prints `mc` cli configuration message chooses
|
|
// first endpoint as default.
|
|
printCLIAccessMsg(strippedAPIEndpoints[0], "myminio")
|
|
|
|
// Prints documentation message.
|
|
printObjectAPIMsg()
|
|
}
|
|
|
|
// Returns true if input is IPv6
|
|
func isIPv6(host string) bool {
|
|
h, _, err := net.SplitHostPort(host)
|
|
if err != nil {
|
|
h = host
|
|
}
|
|
ip := net.ParseIP(h)
|
|
return ip.To16() != nil && ip.To4() == nil
|
|
}
|
|
|
|
// strip api endpoints list with standard ports such as
|
|
// port "80" and "443" before displaying on the startup
|
|
// banner. Returns a new list of API endpoints.
|
|
func stripStandardPorts(apiEndpoints []string, host string) (newAPIEndpoints []string) {
|
|
if len(apiEndpoints) == 1 {
|
|
return apiEndpoints
|
|
}
|
|
newAPIEndpoints = make([]string, len(apiEndpoints))
|
|
// Check all API endpoints for standard ports and strip them.
|
|
for i, apiEndpoint := range apiEndpoints {
|
|
_, err := xnet.ParseHTTPURL(apiEndpoint)
|
|
if err != nil {
|
|
continue
|
|
}
|
|
u, err := url.Parse(apiEndpoint)
|
|
if err != nil {
|
|
continue
|
|
}
|
|
if host == "" && isIPv6(u.Hostname()) {
|
|
// Skip all IPv6 endpoints
|
|
continue
|
|
}
|
|
if u.Port() == "80" && u.Scheme == "http" || u.Port() == "443" && u.Scheme == "https" {
|
|
u.Host = u.Hostname()
|
|
}
|
|
newAPIEndpoints[i] = u.String()
|
|
}
|
|
return newAPIEndpoints
|
|
}
|
|
|
|
// Prints common server startup message. Prints credential, region and browser access.
|
|
func printServerCommonMsg(apiEndpoints []string) {
|
|
// Get saved credentials.
|
|
cred := globalActiveCred
|
|
|
|
// Get saved region.
|
|
region := globalSite.Region()
|
|
|
|
apiEndpointStr := strings.TrimSpace(strings.Join(apiEndpoints, " "))
|
|
// Colorize the message and print.
|
|
logger.Info(color.Blue("API: ") + color.Bold(fmt.Sprintf("%s ", apiEndpointStr)))
|
|
if color.IsTerminal() && (!globalServerCtxt.Anonymous && !globalServerCtxt.JSON && globalAPIConfig.permitRootAccess()) {
|
|
logger.Info(color.Blue(" RootUser: ") + color.Bold("%s ", cred.AccessKey))
|
|
logger.Info(color.Blue(" RootPass: ") + color.Bold("%s \n", cred.SecretKey))
|
|
if region != "" {
|
|
logger.Info(color.Blue(" Region: ") + color.Bold("%s", fmt.Sprintf(getFormatStr(len(region), 2), region)))
|
|
}
|
|
}
|
|
|
|
if globalBrowserEnabled {
|
|
consoleEndpointStr := strings.Join(stripStandardPorts(getConsoleEndpoints(), globalMinioConsoleHost), " ")
|
|
logger.Info(color.Blue("WebUI: ") + color.Bold(fmt.Sprintf("%s ", consoleEndpointStr)))
|
|
if color.IsTerminal() && (!globalServerCtxt.Anonymous && !globalServerCtxt.JSON && globalAPIConfig.permitRootAccess()) {
|
|
logger.Info(color.Blue(" RootUser: ") + color.Bold("%s ", cred.AccessKey))
|
|
logger.Info(color.Blue(" RootPass: ") + color.Bold("%s ", cred.SecretKey))
|
|
}
|
|
}
|
|
|
|
printEventNotifiers()
|
|
printLambdaTargets()
|
|
}
|
|
|
|
// Prints startup message for Object API access, prints link to our SDK documentation.
|
|
func printObjectAPIMsg() {
|
|
logger.Info(color.Blue("\nDocs: ") + "https://min.io/docs/minio/linux/index.html")
|
|
}
|
|
|
|
func printLambdaTargets() {
|
|
if globalLambdaTargetList == nil || globalLambdaTargetList.Empty() {
|
|
return
|
|
}
|
|
|
|
arnMsg := color.Blue("Object Lambda ARNs: ")
|
|
for _, arn := range globalLambdaTargetList.List(globalSite.Region()) {
|
|
arnMsg += color.Bold(fmt.Sprintf("%s ", arn))
|
|
}
|
|
logger.Info(arnMsg + "\n")
|
|
}
|
|
|
|
// Prints bucket notification configurations.
|
|
func printEventNotifiers() {
|
|
if globalNotificationSys == nil {
|
|
return
|
|
}
|
|
|
|
arns := globalEventNotifier.GetARNList(true)
|
|
if len(arns) == 0 {
|
|
return
|
|
}
|
|
|
|
arnMsg := color.Blue("SQS ARNs: ")
|
|
for _, arn := range arns {
|
|
arnMsg += color.Bold(fmt.Sprintf("%s ", arn))
|
|
}
|
|
|
|
logger.Info(arnMsg + "\n")
|
|
}
|
|
|
|
// Prints startup message for command line access. Prints link to our documentation
|
|
// and custom platform specific message.
|
|
func printCLIAccessMsg(endPoint string, alias string) {
|
|
// Get saved credentials.
|
|
cred := globalActiveCred
|
|
|
|
const mcQuickStartGuide = "https://min.io/docs/minio/linux/reference/minio-mc.html#quickstart"
|
|
|
|
// Configure 'mc', following block prints platform specific information for minio client.
|
|
if color.IsTerminal() && (!globalServerCtxt.Anonymous && globalAPIConfig.permitRootAccess()) {
|
|
logger.Info(color.Blue("\nCLI: ") + mcQuickStartGuide)
|
|
mcMessage := fmt.Sprintf("$ mc alias set '%s' '%s' '%s' '%s'", alias,
|
|
endPoint, cred.AccessKey, cred.SecretKey)
|
|
logger.Info(fmt.Sprintf(getFormatStr(len(mcMessage), 3), mcMessage))
|
|
}
|
|
}
|
|
|
|
// Get formatted disk/storage info message.
|
|
func getStorageInfoMsg(storageInfo StorageInfo) string {
|
|
var msg string
|
|
var mcMessage string
|
|
onlineDisks, offlineDisks := getOnlineOfflineDisksStats(storageInfo.Disks)
|
|
if storageInfo.Backend.Type == madmin.Erasure {
|
|
if offlineDisks.Sum() > 0 {
|
|
mcMessage = "Use `mc admin info` to look for latest server/drive info\n"
|
|
}
|
|
|
|
diskInfo := fmt.Sprintf(" %d Online, %d Offline. ", onlineDisks.Sum(), offlineDisks.Sum())
|
|
msg += color.Blue("Status:") + fmt.Sprintf(getFormatStr(len(diskInfo), 8), diskInfo)
|
|
if len(mcMessage) > 0 {
|
|
msg = fmt.Sprintf("%s %s", mcMessage, msg)
|
|
}
|
|
}
|
|
return msg
|
|
}
|
|
|
|
// Prints startup message of storage capacity and erasure information.
|
|
func printStorageInfo(storageInfo StorageInfo) {
|
|
if msg := getStorageInfoMsg(storageInfo); msg != "" {
|
|
logger.Info(msg)
|
|
}
|
|
}
|