synctv/internal/bootstrap/provider.go

package bootstrap

import (
	"context"
	"fmt"
	"os"
	"path/filepath"
	"slices"
	"strings"

	"github.com/hashicorp/go-hclog"
	"github.com/maruel/natural"
	log "github.com/sirupsen/logrus"
	"github.com/synctv-org/synctv/cmd/flags"
	"github.com/synctv-org/synctv/internal/conf"
	"github.com/synctv-org/synctv/internal/model"
	"github.com/synctv-org/synctv/internal/provider"
	"github.com/synctv-org/synctv/internal/provider/aggregations"
	"github.com/synctv-org/synctv/internal/provider/plugins"
	"github.com/synctv-org/synctv/internal/provider/providers"
	"github.com/synctv-org/synctv/internal/settings"
	"github.com/zijiren233/gencontainer/refreshcache0"
)

var ProviderGroupSettings = make(map[model.SettingGroup]*ProviderGroupSetting)

type ProviderGroupSetting struct {
	Enabled           settings.BoolSetting
	ClientID          settings.StringSetting
	ClientSecret      settings.StringSetting
	RedirectURL       settings.StringSetting
	DisableUserSignup settings.BoolSetting
	SignupNeedReview  settings.BoolSetting
}

var Oauth2EnabledCache = refreshcache0.NewRefreshCache[[]provider.OAuth2Provider](func(context.Context) ([]provider.OAuth2Provider, error) {
	ps := providers.EnabledProvider()
	r := make([]provider.OAuth2Provider, 0, ps.Len())
	ps.Range(func(p provider.OAuth2Provider, value struct{}) bool {
		r = append(r, p)
		return true
	})
	slices.SortStableFunc(r, func(a, b provider.OAuth2Provider) int {
		if a == b {
			return 0
		} else if natural.Less(a, b) {
			return -1
		} else {
			return 1
		}
	})
	return r, nil
}, 0)

var Oauth2SignupEnabledCache = refreshcache0.NewRefreshCache[[]provider.OAuth2Provider](func(ctx context.Context) ([]provider.OAuth2Provider, error) {
	ps := providers.EnabledProvider()
	r := make([]provider.OAuth2Provider, 0, ps.Len())
	ps.Range(func(p provider.OAuth2Provider, value struct{}) bool {
		group := model.SettingGroup(fmt.Sprintf("%s_%s", model.SettingGroupOauth2, p))
		groupSettings := ProviderGroupSettings[group]
		if groupSettings.Enabled.Get() && !groupSettings.DisableUserSignup.Get() {
			r = append(r, p)
		}
		return true
	})
	slices.SortStableFunc(r, func(a, b provider.OAuth2Provider) int {
		if a == b {
			return 0
		} else if natural.Less(a, b) {
			return -1
		} else {
			return 1
		}
	})
	return r, nil
}, 0)

func InitProvider(ctx context.Context) (err error) {
	logOur := log.StandardLogger().Writer()
	logLevle := hclog.Info
	if flags.Global.Dev {
		logLevle = hclog.Debug
	}
	for _, op := range conf.Conf.Oauth2Plugins {
		log.Infof("load oauth2 plugin: %s", op.PluginFile)
		err := os.MkdirAll(filepath.Dir(op.PluginFile), 0o755)
		if err != nil {
			log.Fatalf("create plugin dir: %s failed: %s", filepath.Dir(op.PluginFile), err)
			return err
		}
		err = plugins.InitProviderPlugins(op.PluginFile, op.Args, hclog.New(&hclog.LoggerOptions{
			Name:   op.PluginFile,
			Level:  logLevle,
			Output: logOur,
			Color:  hclog.ForceColor,
		}))
		if err != nil {
			log.Fatalf("load oauth2 plugin: %s failed: %s", op.PluginFile, err)
			return err
		}
	}

	for _, pi := range providers.AllProvider() {
		InitProviderSetting(pi)
	}

	for _, api := range aggregations.AllAggregation() {
		InitAggregationSetting(api)
	}
	return nil
}

func InitProviderSetting(pi provider.Provider) {
	group := model.SettingGroup(fmt.Sprintf("%s_%s", model.SettingGroupOauth2, pi.Provider()))
	groupSettings := &ProviderGroupSetting{}
	ProviderGroupSettings[group] = groupSettings

	groupSettings.Enabled = settings.NewBoolSetting(fmt.Sprintf("%s_enabled", group), false, group,
		settings.WithBeforeInitBool(func(bs settings.BoolSetting, b bool) (bool, error) {
			defer Oauth2EnabledCache.Refresh(context.Background())
			if b {
				return b, providers.EnableProvider(pi.Provider())
			} else {
				providers.DisableProvider(pi.Provider())
				return b, nil
			}
		}),
		settings.WithInitPriorityBool(1),
		settings.WithBeforeSetBool(func(bs settings.BoolSetting, b bool) (bool, error) {
			defer Oauth2EnabledCache.Refresh(context.Background())
			if b {
				return b, providers.EnableProvider(pi.Provider())
			} else {
				providers.DisableProvider(pi.Provider())
				return b, nil
			}
		}),
	)

	opt := provider.Oauth2Option{}

	groupSettings.ClientID = settings.NewStringSetting(fmt.Sprintf("%s_client_id", group), opt.ClientID, group,
		settings.WithBeforeInitString(func(ss settings.StringSetting, s string) (string, error) {
			opt.ClientID = s
			pi.Init(opt)
			return s, nil
		}),
		settings.WithInitPriorityString(1),
		settings.WithBeforeSetString(func(ss settings.StringSetting, s string) (string, error) {
			opt.ClientID = s
			pi.Init(opt)
			return s, nil
		}))

	groupSettings.ClientSecret = settings.NewStringSetting(fmt.Sprintf("%s_client_secret", group), opt.ClientSecret, group,
		settings.WithBeforeInitString(func(ss settings.StringSetting, s string) (string, error) {
			opt.ClientSecret = s
			pi.Init(opt)
			return s, nil
		}),
		settings.WithInitPriorityString(1),
		settings.WithBeforeSetString(func(ss settings.StringSetting, s string) (string, error) {
			opt.ClientSecret = s
			pi.Init(opt)
			return s, nil
		}))

	groupSettings.RedirectURL = settings.NewStringSetting(fmt.Sprintf("%s_redirect_url", group), opt.RedirectURL, group,
		settings.WithBeforeInitString(func(ss settings.StringSetting, s string) (string, error) {
			opt.RedirectURL = s
			pi.Init(opt)
			return s, nil
		}),
		settings.WithInitPriorityString(1),
		settings.WithBeforeSetString(func(ss settings.StringSetting, s string) (string, error) {
			opt.RedirectURL = s
			pi.Init(opt)
			return s, nil
		}))

	groupSettings.DisableUserSignup = settings.NewBoolSetting(fmt.Sprintf("%s_disable_user_signup", group), false, group)

	groupSettings.SignupNeedReview = settings.NewBoolSetting(fmt.Sprintf("%s_signup_need_review", group), false, group)
}

func InitAggregationProviderSetting(pi provider.Provider) {
	group := model.SettingGroup(fmt.Sprintf("%s_%s", model.SettingGroupOauth2, pi.Provider()))
	groupSettings := &ProviderGroupSetting{}
	ProviderGroupSettings[group] = groupSettings

	groupSettings.Enabled = settings.LoadOrNewBoolSetting(fmt.Sprintf("%s_enabled", group), false, group,
		settings.WithBeforeSetBool(func(bs settings.BoolSetting, b bool) (bool, error) {
			defer Oauth2EnabledCache.Refresh(context.Background())
			if b {
				return b, providers.EnableProvider(pi.Provider())
			} else {
				providers.DisableProvider(pi.Provider())
				return b, nil
			}
		}),
	)

	opt := provider.Oauth2Option{}

	groupSettings.ClientID = settings.LoadOrNewStringSetting(fmt.Sprintf("%s_client_id", group), opt.ClientID, group)
	opt.ClientID = groupSettings.ClientID.Get()
	groupSettings.ClientID.SetBeforeSet(func(ss settings.StringSetting, s string) (string, error) {
		opt.ClientID = s
		pi.Init(opt)
		return s, nil
	})

	groupSettings.ClientSecret = settings.LoadOrNewStringSetting(fmt.Sprintf("%s_client_secret", group), opt.ClientSecret, group)
	opt.ClientSecret = groupSettings.ClientSecret.Get()
	groupSettings.ClientSecret.SetBeforeSet(func(ss settings.StringSetting, s string) (string, error) {
		opt.ClientSecret = s
		pi.Init(opt)
		return s, nil
	})

	groupSettings.RedirectURL = settings.LoadOrNewStringSetting(fmt.Sprintf("%s_redirect_url", group), opt.RedirectURL, group)
	opt.RedirectURL = groupSettings.RedirectURL.Get()
	groupSettings.RedirectURL.SetBeforeSet(func(ss settings.StringSetting, s string) (string, error) {
		opt.RedirectURL = s
		pi.Init(opt)
		return s, nil
	})

	pi.Init(opt)

	groupSettings.DisableUserSignup = settings.LoadOrNewBoolSetting(fmt.Sprintf("%s_disable_user_signup", group), false, group)

	groupSettings.SignupNeedReview = settings.LoadOrNewBoolSetting(fmt.Sprintf("%s_signup_need_review", group), false, group)
}

func InitAggregationSetting(pi provider.AggregationProviderInterface) {
	group := model.SettingGroup(fmt.Sprintf("%s_%s", model.SettingGroupOauth2, pi.Provider()))

	switch pi := pi.(type) {
	case *aggregations.Rainbow:
		settings.NewStringSetting(fmt.Sprintf("%s_api", group), aggregations.DefaultRainbowApi, group,
			settings.WithBeforeInitString(func(ss settings.StringSetting, s string) (string, error) {
				pi.SetAPI(s)
				return s, nil
			},
			),
			settings.WithBeforeSetString(func(ss settings.StringSetting, s string) (string, error) {
				pi.SetAPI(s)
				return s, nil
			},
			),
		)
	}

	list := settings.NewStringSetting(fmt.Sprintf("%s_enabled_list", group), "", group,
		settings.WithBeforeInitString(func(ss settings.StringSetting, s string) (string, error) {
			return s, nil
		}),
		settings.WithInitPriorityString(1),
		settings.WithBeforeSetString(func(ss settings.StringSetting, s string) (string, error) {
			if s == "" {
				return s, nil
			}
			list := strings.Split(s, ",")
			for _, p := range list {
				if slices.Index(pi.Providers(), p) == -1 {
					return s, fmt.Errorf("provider %s not found", p)
				}
			}
			return s, nil
		}),
	)

	settings.NewBoolSetting(fmt.Sprintf("%s_enabled", group), false, group,
		settings.WithBeforeInitBool(func(bs settings.BoolSetting, b bool) (bool, error) {
			if b {
				s := list.Get()
				if s == "" {
					log.Warnf("aggregation provider %s enabled, but no provider enabled", pi.Provider())
				}
				all := pi.Providers()
				list := strings.Split(s, ",")
				enabled := make([]provider.OAuth2Provider, 0, len(list))
				for _, p := range list {
					if slices.Index(all, p) != -1 {
						enabled = append(enabled, p)
					} else {
						log.Warnf("aggregation provider %s enabled, but provider %s not found", pi.Provider(), p)
					}
				}

				pi2, err := provider.ExtractProviders(pi, enabled...)
				if err != nil {
					log.Errorf("aggregation provider %s enabled, but extract provider failed: %s", pi.Provider(), err)
					return b, nil
				}
				for _, pi2 := range pi2 {
					providers.RegisterProvider(pi2)
					InitAggregationProviderSetting(pi2)
				}
			}
			return b, nil
		}),
		settings.WithBeforeSetBool(func(bs settings.BoolSetting, b bool) (bool, error) {
			if len(list.Get()) == 0 {
				return b, fmt.Errorf("enabled provider list is empty")
			}
			return b, nil
		}),
	)
}
Feat: boot init provider 1 year ago			`package bootstrap`

			`import (`
			`"context"`
Feat: oauth2 settings 1 year ago			`"fmt"`
Feat: oauth2 provider plugins 1 year ago			`"os"`
			`"path/filepath"`
Feat: slice sort stable 1 year ago			`"slices"`
Feat: rainbow aggregation oauth2 provider support 1 year ago			`"strings"`
Feat: boot init provider 1 year ago
Opt: oauth2 provider 1 year ago			`"github.com/hashicorp/go-hclog"`
Feat: slice sort stable 1 year ago			`"github.com/maruel/natural"`
Feat: oauth2 provider plugins 1 year ago			`log "github.com/sirupsen/logrus"`
Opt: oauth2 provider 1 year ago			`"github.com/synctv-org/synctv/cmd/flags"`
Feat: boot init provider 1 year ago			`"github.com/synctv-org/synctv/internal/conf"`
Feat: oauth2 settings 1 year ago			`"github.com/synctv-org/synctv/internal/model"`
Feat: boot init provider 1 year ago			`"github.com/synctv-org/synctv/internal/provider"`
Feat: rainbow aggregation oauth2 provider support 1 year ago			`"github.com/synctv-org/synctv/internal/provider/aggregations"`
Feat: settings 1 year ago			`"github.com/synctv-org/synctv/internal/provider/plugins"`
			`"github.com/synctv-org/synctv/internal/provider/providers"`
Feat: oauth2 settings 1 year ago			`"github.com/synctv-org/synctv/internal/settings"`
feat: api v2 (#241) * feat: api v2 init * refactor: vendor service * fix: guest token need is empty * fix: need auth user param * chore: vendor client * feat: impl join v2 api * fix: format and room client hub cmp when delete * fix: auto create member when no need room pwd * refactor: signup api * fix: get rid * feat: joined room list * feat: login with email * fix: update movie need refresh cache * feat: delete member * fix: alist movie path * feat: room info and pwd check * opt: seek can set playing status * feat: login and join status * opt: db opt * opt: smtp rfc * fix: atomic first or create recore * opt: check return status * fix: refresh cache and delete movie cache * refactor: pb proto and sync member status * fix: clear movies cache need close movie prefer * opt: message pb data type * fix: room ttl setting bound check 5 months ago			`"github.com/zijiren233/gencontainer/refreshcache0"`
Feat: boot init provider 1 year ago			`)`

feat: api v2 (#241) * feat: api v2 init * refactor: vendor service * fix: guest token need is empty * fix: need auth user param * chore: vendor client * feat: impl join v2 api * fix: format and room client hub cmp when delete * fix: auto create member when no need room pwd * refactor: signup api * fix: get rid * feat: joined room list * feat: login with email * fix: update movie need refresh cache * feat: delete member * fix: alist movie path * feat: room info and pwd check * opt: seek can set playing status * feat: login and join status * opt: db opt * opt: smtp rfc * fix: atomic first or create recore * opt: check return status * fix: refresh cache and delete movie cache * refactor: pb proto and sync member status * fix: clear movies cache need close movie prefer * opt: message pb data type * fix: room ttl setting bound check 5 months ago			`var ProviderGroupSettings = make(map[model.SettingGroup]*ProviderGroupSetting)`
Feat: provider enable sign up or review 1 year ago
			`type ProviderGroupSetting struct {`
			`Enabled settings.BoolSetting`
			`ClientID settings.StringSetting`
			`ClientSecret settings.StringSetting`
			`RedirectURL settings.StringSetting`
			`DisableUserSignup settings.BoolSetting`
			`SignupNeedReview settings.BoolSetting`
			`}`

feat: api v2 (#241) * feat: api v2 init * refactor: vendor service * fix: guest token need is empty * fix: need auth user param * chore: vendor client * feat: impl join v2 api * fix: format and room client hub cmp when delete * fix: auto create member when no need room pwd * refactor: signup api * fix: get rid * feat: joined room list * feat: login with email * fix: update movie need refresh cache * feat: delete member * fix: alist movie path * feat: room info and pwd check * opt: seek can set playing status * feat: login and join status * opt: db opt * opt: smtp rfc * fix: atomic first or create recore * opt: check return status * fix: refresh cache and delete movie cache * refactor: pb proto and sync member status * fix: clear movies cache need close movie prefer * opt: message pb data type * fix: room ttl setting bound check 5 months ago			`var Oauth2EnabledCache = refreshcache0.NewRefreshCache[[]provider.OAuth2Provider](func(context.Context) ([]provider.OAuth2Provider, error) {`
			`ps := providers.EnabledProvider()`
			`r := make([]provider.OAuth2Provider, 0, ps.Len())`
			`ps.Range(func(p provider.OAuth2Provider, value struct{}) bool {`
			`r = append(r, p)`
			`return true`
			`})`
			`slices.SortStableFunc(r, func(a, b provider.OAuth2Provider) int {`
			`if a == b {`
			`return 0`
			`} else if natural.Less(a, b) {`
			`return -1`
			`} else {`
			`return 1`
			`}`
			`})`
			`return r, nil`
			`}, 0)`

			`var Oauth2SignupEnabledCache = refreshcache0.NewRefreshCache[[]provider.OAuth2Provider](func(ctx context.Context) ([]provider.OAuth2Provider, error) {`
			`ps := providers.EnabledProvider()`
			`r := make([]provider.OAuth2Provider, 0, ps.Len())`
			`ps.Range(func(p provider.OAuth2Provider, value struct{}) bool {`
			`group := model.SettingGroup(fmt.Sprintf("%s_%s", model.SettingGroupOauth2, p))`
			`groupSettings := ProviderGroupSettings[group]`
			`if groupSettings.Enabled.Get() && !groupSettings.DisableUserSignup.Get() {`
Feat: rainbow aggregation oauth2 provider support 1 year ago			`r = append(r, p)`
feat: api v2 (#241) * feat: api v2 init * refactor: vendor service * fix: guest token need is empty * fix: need auth user param * chore: vendor client * feat: impl join v2 api * fix: format and room client hub cmp when delete * fix: auto create member when no need room pwd * refactor: signup api * fix: get rid * feat: joined room list * feat: login with email * fix: update movie need refresh cache * feat: delete member * fix: alist movie path * feat: room info and pwd check * opt: seek can set playing status * feat: login and join status * opt: db opt * opt: smtp rfc * fix: atomic first or create recore * opt: check return status * fix: refresh cache and delete movie cache * refactor: pb proto and sync member status * fix: clear movies cache need close movie prefer * opt: message pb data type * fix: room ttl setting bound check 5 months ago			`}`
			`return true`
			`})`
			`slices.SortStableFunc(r, func(a, b provider.OAuth2Provider) int {`
			`if a == b {`
			`return 0`
			`} else if natural.Less(a, b) {`
			`return -1`
			`} else {`
			`return 1`
			`}`
			`})`
			`return r, nil`
			`}, 0)`
Feat: oauth2 settings 1 year ago
Opt: opt file path 1 year ago			`func InitProvider(ctx context.Context) (err error) {`
Opt: oauth2 provider 1 year ago			`logOur := log.StandardLogger().Writer()`
			`logLevle := hclog.Info`
Feat: load flags form env 10 months ago			`if flags.Global.Dev {`
Opt: oauth2 provider 1 year ago			`logLevle = hclog.Debug`
			`}`
Opt: oauth2 plugins config 1 year ago			`for _, op := range conf.Conf.Oauth2Plugins {`
Feat: oauth2 provider plugins 1 year ago			`log.Infof("load oauth2 plugin: %s", op.PluginFile)`
feat: api v2 (#241) * feat: api v2 init * refactor: vendor service * fix: guest token need is empty * fix: need auth user param * chore: vendor client * feat: impl join v2 api * fix: format and room client hub cmp when delete * fix: auto create member when no need room pwd * refactor: signup api * fix: get rid * feat: joined room list * feat: login with email * fix: update movie need refresh cache * feat: delete member * fix: alist movie path * feat: room info and pwd check * opt: seek can set playing status * feat: login and join status * opt: db opt * opt: smtp rfc * fix: atomic first or create recore * opt: check return status * fix: refresh cache and delete movie cache * refactor: pb proto and sync member status * fix: clear movies cache need close movie prefer * opt: message pb data type * fix: room ttl setting bound check 5 months ago			`err := os.MkdirAll(filepath.Dir(op.PluginFile), 0o755)`
Feat: oauth2 provider plugins 1 year ago			`if err != nil {`
Opt: opt file path 1 year ago			`log.Fatalf("create plugin dir: %s failed: %s", filepath.Dir(op.PluginFile), err)`
Feat: oauth2 provider plugins 1 year ago			`return err`
			`}`
Feat: oauth2 settings 1 year ago			`err = plugins.InitProviderPlugins(op.PluginFile, op.Args, hclog.New(&hclog.LoggerOptions{`
Opt: oauth2 provider 1 year ago			`Name: op.PluginFile,`
			`Level: logLevle,`
			`Output: logOur,`
			`Color: hclog.ForceColor,`
			`}))`
Feat: oauth2 provider plugins 1 year ago			`if err != nil {`
Opt: opt file path 1 year ago			`log.Fatalf("load oauth2 plugin: %s failed: %s", op.PluginFile, err)`
Feat: oauth2 provider plugins 1 year ago			`return err`
			`}`
			`}`
Feat: oauth2 settings 1 year ago
Feat: rainbow aggregation oauth2 provider support 1 year ago			`for _, pi := range providers.AllProvider() {`
			`InitProviderSetting(pi)`
			`}`

			`for _, api := range aggregations.AllAggregation() {`
			`InitAggregationSetting(api)`
			`}`
			`return nil`
			`}`

			`func InitProviderSetting(pi provider.Provider) {`
			`group := model.SettingGroup(fmt.Sprintf("%s_%s", model.SettingGroupOauth2, pi.Provider()))`
			`groupSettings := &ProviderGroupSetting{}`
			`ProviderGroupSettings[group] = groupSettings`
Feat: oauth2 settings 1 year ago
Feat: rainbow aggregation oauth2 provider support 1 year ago			`groupSettings.Enabled = settings.NewBoolSetting(fmt.Sprintf("%s_enabled", group), false, group,`
			`settings.WithBeforeInitBool(func(bs settings.BoolSetting, b bool) (bool, error) {`
			`defer Oauth2EnabledCache.Refresh(context.Background())`
Feat: oauth2 settings 1 year ago			`if b {`
Feat: rainbow aggregation oauth2 provider support 1 year ago			`return b, providers.EnableProvider(pi.Provider())`
Feat: oauth2 settings 1 year ago			`} else {`
Feat: rainbow aggregation oauth2 provider support 1 year ago			`providers.DisableProvider(pi.Provider())`
Feat: version setting and releases dont show db log 1 year ago			`return b, nil`
Feat: oauth2 custom endpoint 1 year ago			`}`
Feat: rainbow aggregation oauth2 provider support 1 year ago			`}),`
			`settings.WithInitPriorityBool(1),`
			`settings.WithBeforeSetBool(func(bs settings.BoolSetting, b bool) (bool, error) {`
			`defer Oauth2EnabledCache.Refresh(context.Background())`
Feat: oauth2 settings 1 year ago			`if b {`
Feat: rainbow aggregation oauth2 provider support 1 year ago			`return b, providers.EnableProvider(pi.Provider())`
Feat: oauth2 settings 1 year ago			`} else {`
Feat: rainbow aggregation oauth2 provider support 1 year ago			`providers.DisableProvider(pi.Provider())`
Feat: version setting and releases dont show db log 1 year ago			`return b, nil`
Feat: oauth2 settings 1 year ago			`}`
Feat: rainbow aggregation oauth2 provider support 1 year ago			`}),`
			`)`
Feat: oauth2 settings 1 year ago
Feat: rainbow aggregation oauth2 provider support 1 year ago			`opt := provider.Oauth2Option{}`
Feat: oauth2 settings 1 year ago
Feat: rainbow aggregation oauth2 provider support 1 year ago			`groupSettings.ClientID = settings.NewStringSetting(fmt.Sprintf("%s_client_id", group), opt.ClientID, group,`
			`settings.WithBeforeInitString(func(ss settings.StringSetting, s string) (string, error) {`
Feat: oauth2 settings 1 year ago			`opt.ClientID = s`
			`pi.Init(opt)`
Feat: version setting and releases dont show db log 1 year ago			`return s, nil`
Feat: rainbow aggregation oauth2 provider support 1 year ago			`}),`
			`settings.WithInitPriorityString(1),`
			`settings.WithBeforeSetString(func(ss settings.StringSetting, s string) (string, error) {`
Feat: oauth2 settings 1 year ago			`opt.ClientID = s`
			`pi.Init(opt)`
Feat: version setting and releases dont show db log 1 year ago			`return s, nil`
Feat: oauth2 settings 1 year ago			`}))`

Feat: rainbow aggregation oauth2 provider support 1 year ago			`groupSettings.ClientSecret = settings.NewStringSetting(fmt.Sprintf("%s_client_secret", group), opt.ClientSecret, group,`
			`settings.WithBeforeInitString(func(ss settings.StringSetting, s string) (string, error) {`
Feat: oauth2 settings 1 year ago			`opt.ClientSecret = s`
			`pi.Init(opt)`
Feat: version setting and releases dont show db log 1 year ago			`return s, nil`
Feat: rainbow aggregation oauth2 provider support 1 year ago			`}),`
			`settings.WithInitPriorityString(1),`
			`settings.WithBeforeSetString(func(ss settings.StringSetting, s string) (string, error) {`
Feat: oauth2 settings 1 year ago			`opt.ClientSecret = s`
			`pi.Init(opt)`
Feat: version setting and releases dont show db log 1 year ago			`return s, nil`
Feat: oauth2 settings 1 year ago			`}))`

Feat: rainbow aggregation oauth2 provider support 1 year ago			`groupSettings.RedirectURL = settings.NewStringSetting(fmt.Sprintf("%s_redirect_url", group), opt.RedirectURL, group,`
			`settings.WithBeforeInitString(func(ss settings.StringSetting, s string) (string, error) {`
Feat: oauth2 settings 1 year ago			`opt.RedirectURL = s`
			`pi.Init(opt)`
Feat: version setting and releases dont show db log 1 year ago			`return s, nil`
Feat: rainbow aggregation oauth2 provider support 1 year ago			`}),`
			`settings.WithInitPriorityString(1),`
			`settings.WithBeforeSetString(func(ss settings.StringSetting, s string) (string, error) {`
Feat: oauth2 settings 1 year ago			`opt.RedirectURL = s`
			`pi.Init(opt)`
Feat: version setting and releases dont show db log 1 year ago			`return s, nil`
Feat: oauth2 settings 1 year ago			`}))`
Feat: provider enable sign up or review 1 year ago
Feat: rainbow aggregation oauth2 provider support 1 year ago			`groupSettings.DisableUserSignup = settings.NewBoolSetting(fmt.Sprintf("%s_disable_user_signup", group), false, group)`

			`groupSettings.SignupNeedReview = settings.NewBoolSetting(fmt.Sprintf("%s_signup_need_review", group), false, group)`
			`}`

			`func InitAggregationProviderSetting(pi provider.Provider) {`
			`group := model.SettingGroup(fmt.Sprintf("%s_%s", model.SettingGroupOauth2, pi.Provider()))`
			`groupSettings := &ProviderGroupSetting{}`
			`ProviderGroupSettings[group] = groupSettings`

			`groupSettings.Enabled = settings.LoadOrNewBoolSetting(fmt.Sprintf("%s_enabled", group), false, group,`
			`settings.WithBeforeSetBool(func(bs settings.BoolSetting, b bool) (bool, error) {`
			`defer Oauth2EnabledCache.Refresh(context.Background())`
			`if b {`
			`return b, providers.EnableProvider(pi.Provider())`
			`} else {`
			`providers.DisableProvider(pi.Provider())`
			`return b, nil`
			`}`
			`}),`
			`)`

			`opt := provider.Oauth2Option{}`

			`groupSettings.ClientID = settings.LoadOrNewStringSetting(fmt.Sprintf("%s_client_id", group), opt.ClientID, group)`
			`opt.ClientID = groupSettings.ClientID.Get()`
			`groupSettings.ClientID.SetBeforeSet(func(ss settings.StringSetting, s string) (string, error) {`
			`opt.ClientID = s`
			`pi.Init(opt)`
			`return s, nil`
			`})`
Feat: provider enable sign up or review 1 year ago
Feat: rainbow aggregation oauth2 provider support 1 year ago			`groupSettings.ClientSecret = settings.LoadOrNewStringSetting(fmt.Sprintf("%s_client_secret", group), opt.ClientSecret, group)`
			`opt.ClientSecret = groupSettings.ClientSecret.Get()`
			`groupSettings.ClientSecret.SetBeforeSet(func(ss settings.StringSetting, s string) (string, error) {`
			`opt.ClientSecret = s`
			`pi.Init(opt)`
			`return s, nil`
			`})`

			`groupSettings.RedirectURL = settings.LoadOrNewStringSetting(fmt.Sprintf("%s_redirect_url", group), opt.RedirectURL, group)`
			`opt.RedirectURL = groupSettings.RedirectURL.Get()`
			`groupSettings.RedirectURL.SetBeforeSet(func(ss settings.StringSetting, s string) (string, error) {`
			`opt.RedirectURL = s`
			`pi.Init(opt)`
			`return s, nil`
			`})`

			`pi.Init(opt)`

			`groupSettings.DisableUserSignup = settings.LoadOrNewBoolSetting(fmt.Sprintf("%s_disable_user_signup", group), false, group)`

			`groupSettings.SignupNeedReview = settings.LoadOrNewBoolSetting(fmt.Sprintf("%s_signup_need_review", group), false, group)`
			`}`

			`func InitAggregationSetting(pi provider.AggregationProviderInterface) {`
			`group := model.SettingGroup(fmt.Sprintf("%s_%s", model.SettingGroupOauth2, pi.Provider()))`

			`switch pi := pi.(type) {`
			`case *aggregations.Rainbow:`
			`settings.NewStringSetting(fmt.Sprintf("%s_api", group), aggregations.DefaultRainbowApi, group,`
			`settings.WithBeforeInitString(func(ss settings.StringSetting, s string) (string, error) {`
			`pi.SetAPI(s)`
			`return s, nil`
			`},`
			`),`
			`settings.WithBeforeSetString(func(ss settings.StringSetting, s string) (string, error) {`
			`pi.SetAPI(s)`
			`return s, nil`
			`},`
			`),`
			`)`
Feat: boot init provider 1 year ago			`}`
Feat: rainbow aggregation oauth2 provider support 1 year ago
			`list := settings.NewStringSetting(fmt.Sprintf("%s_enabled_list", group), "", group,`
			`settings.WithBeforeInitString(func(ss settings.StringSetting, s string) (string, error) {`
			`return s, nil`
			`}),`
			`settings.WithInitPriorityString(1),`
			`settings.WithBeforeSetString(func(ss settings.StringSetting, s string) (string, error) {`
			`if s == "" {`
			`return s, nil`
			`}`
			`list := strings.Split(s, ",")`
			`for _, p := range list {`
			`if slices.Index(pi.Providers(), p) == -1 {`
			`return s, fmt.Errorf("provider %s not found", p)`
			`}`
			`}`
			`return s, nil`
			`}),`
			`)`

			`settings.NewBoolSetting(fmt.Sprintf("%s_enabled", group), false, group,`
			`settings.WithBeforeInitBool(func(bs settings.BoolSetting, b bool) (bool, error) {`
			`if b {`
			`s := list.Get()`
			`if s == "" {`
			`log.Warnf("aggregation provider %s enabled, but no provider enabled", pi.Provider())`
			`}`
			`all := pi.Providers()`
			`list := strings.Split(s, ",")`
			`enabled := make([]provider.OAuth2Provider, 0, len(list))`
			`for _, p := range list {`
			`if slices.Index(all, p) != -1 {`
			`enabled = append(enabled, p)`
			`} else {`
			`log.Warnf("aggregation provider %s enabled, but provider %s not found", pi.Provider(), p)`
			`}`
			`}`

			`pi2, err := provider.ExtractProviders(pi, enabled...)`
			`if err != nil {`
			`log.Errorf("aggregation provider %s enabled, but extract provider failed: %s", pi.Provider(), err)`
			`return b, nil`
			`}`
			`for _, pi2 := range pi2 {`
			`providers.RegisterProvider(pi2)`
			`InitAggregationProviderSetting(pi2)`
			`}`
			`}`
			`return b, nil`
			`}),`
			`settings.WithBeforeSetBool(func(bs settings.BoolSetting, b bool) (bool, error) {`
			`if len(list.Get()) == 0 {`
			`return b, fmt.Errorf("enabled provider list is empty")`
			`}`
			`return b, nil`
			`}),`
			`)`
Feat: boot init provider 1 year ago			`}`