oxyno-zeta
diff --git a/‎.circleci/config.yml
Lines changed: 6 additions & 0 deletions b/‎.circleci/config.yml
Lines changed: 6 additions & 0 deletions
diff --git a/‎Makefile
Lines changed: 2 additions & 2 deletions b/‎Makefile
Lines changed: 2 additions & 2 deletions
diff --git a/‎conf/config-example.yaml
Lines changed: 4 additions & 4 deletions b/‎conf/config-example.yaml
Lines changed: 4 additions & 4 deletions
diff --git a/‎docs/configuration.md
Lines changed: 19 additions & 18 deletions b/‎docs/configuration.md
Lines changed: 19 additions & 18 deletions
diff --git a/‎pkg/bucket/requestContext.go
Lines changed: 14 additions & 9 deletions b/‎pkg/bucket/requestContext.go
Lines changed: 14 additions & 9 deletions
@@ -42,6 +42,12 @@ jobs:
           keys:
             - go-mod-{{ checksum "go.mod"  }}
       - run: make test
+      - run: make coverage-report
+      - run: mv coverage.html /tmp/artifacts
+      - store_artifacts:
+          path: /tmp/artifacts
+      - run: go get github.com/mattn/goveralls
+      - run: goveralls -coverprofile=c.out -service=circle-ci -repotoken=$COVERALLS_TOKEN
 workflows:
   version: 2
   project:
 
@@ -1,7 +1,6 @@
 TARGETS           ?= linux/amd64 darwin/amd64 linux/amd64 windows/amd64 linux/386 linux/ppc64le linux/s390x linux/arm linux/arm64
 PROJECT_NAME	  := s3-proxy
 PKG				  := github.com/oxyno-zeta/$(PROJECT_NAME)
-PKG_LIST		  := $(shell go list ${PKG}/... | grep -v /vendor/)
 
 # go option
 GO        ?= go
@@ -64,11 +63,12 @@ ifndef HAS_GORELEASER
 endif
 
 test: dep ## Run unittests
-	$(GO) test -short -cover -coverprofile=c.out ${PKG_LIST}
+	$(GO) test -v -coverpkg=./pkg/... -coverprofile=c.out ./pkg/...
 
 .PHONY: coverage-report
 coverage-report:
 	$(GO) tool cover -html=c.out -o coverage.html
+	$(GO) tool cover -func c.out
 
 .PHONY: clean
 clean:
 
@@ -20,8 +20,8 @@ log:
 #   targetList: templates/target-list.tpl
 #   unauthorized: templates/unauthorized.tpl
 
-# Authentication
-# auth:
+# Authentication Providers
+# authProviders:
 #   oidc:
 #     provider1:
 #       clientID: client-id
@@ -71,7 +71,7 @@ log:
 #     # OIDC section for access filter
 #     oidc:
 #       # NOTE: This list can be empty ([]) for authentication only and no group filter
-#       authorizationAccesses: # Authorization accesses : groups or email
+#       authorizationAccesses: # Authorization accesses : groups or email or regexp
 #         - group: devops_users
 #     # Basic authentication section
 #     basic:
@@ -107,7 +107,7 @@ targets:
     #     # OIDC section for access filter
     #     oidc:
     #       # NOTE: This list can be empty ([]) for authentication only and no group filter
-    #       authorizationAccesses: # Authorization accesses : groups or email
+    #       authorizationAccesses: # Authorization accesses : groups or email or regexp
     #         - group: specific_users
     #     # A Path must be declared for a resource filtering (a wildcard can be added to match every sub path)
     #   - path: /directory1/*
 
@@ -7,15 +7,15 @@ You can see a full example in the [Example section](#example)
 
 ## Main structure
 
-| Key            | Type                                                  | Required | Default | Description                        |
-| -------------- | ----------------------------------------------------- | -------- | ------- | ---------------------------------- |
-| log            | [LogConfiguration](#logconfiguration)                 | No       | None    | Log configurations                 |
-| server         | [ServerConfiguration](#serverconfiguration)           | No       | None    | Server configurations              |
-| internalServer | [ServerConfiguration](#serverconfiguration)           | No       | None    | Internal Server configurations     |
-| template       | [TemplateConfiguration](#templateconfiguration)       | No       | None    | Template configurations            |
-| targets        | [[TargetConfiguration]](#targetconfiguration)         | Yes      | None    | Targets configuration              |
-| auth           | [AuthConfiguration](#authconfiguration)               | No       | None    | Authentication configuration       |
-| listTargets    | [ListTargetsConfiguration](#listtargetsconfiguration) | No       | None    | List targets feature configuration |
+| Key            | Type                                                      | Required | Default | Description                            |
+| -------------- | --------------------------------------------------------- | -------- | ------- | -------------------------------------- |
+| log            | [LogConfiguration](#logconfiguration)                     | No       | None    | Log configurations                     |
+| server         | [ServerConfiguration](#serverconfiguration)               | No       | None    | Server configurations                  |
+| internalServer | [ServerConfiguration](#serverconfiguration)               | No       | None    | Internal Server configurations         |
+| template       | [TemplateConfiguration](#templateconfiguration)           | No       | None    | Template configurations                |
+| targets        | [[TargetConfiguration]](#targetconfiguration)             | Yes      | None    | Targets configuration                  |
+| authProviders  | [AuthProvidersConfiguration](#authProvidersconfiguration) | No       | None    | Authentication providers configuration |
+| listTargets    | [ListTargetsConfiguration](#listtargetsconfiguration)     | No       | None    | List targets feature configuration     |
 
 ## LogConfiguration
 
@@ -114,7 +114,7 @@ You can see a full example in the [Example section](#example)
 | env   | String | Only if path and value are not set | None    | Environment variable name to use to load credential |
 | value | String | Only if path and env are not set   | None    | Credential value directly (Not recommended)         |
 
-## AuthConfiguration
+## AuthProvidersConfiguration
 
 | Key   | Type                                                         | Required | Default | Description                                       |
 | ----- | ------------------------------------------------------------ | -------- | ------- | ------------------------------------------------- |
@@ -162,10 +162,11 @@ You can see a full example in the [Example section](#example)
 
 ## OIDCAuthorizationAccesses
 
-| Key   | Type   | Required               | Default | Description |
-| ----- | ------ | ---------------------- | ------- | ----------- |
-| group | String | Required without email | None    | Group name  |
-| email | String | Required without group | None    | Email       |
+| Key    | Type    | Required               | Default | Description                                    |
+| ------ | ------- | ---------------------- | ------- | ---------------------------------------------- |
+| group  | String  | Required without email | None    | Group name                                     |
+| email  | String  | Required without group | None    | Email                                          |
+| regexp | Boolean | No                     | `false` | Consider group or email as regexp for matching |
 
 ## ResourceBasic
 
@@ -220,8 +221,8 @@ log:
 #   targetList: templates/target-list.tpl
 #   unauthorized: templates/unauthorized.tpl
 
-# Authentication
-# auth:
+# Authentication Providers
+# authProviders:
 #   oidc:
 #     provider1:
 #       clientID: client-id
@@ -265,7 +266,7 @@ log:
 #     # OIDC section for access filter
 #     oidc:
 #       # NOTE: This list can be empty ([]) for authentication only and no group filter
-#       authorizationAccesses: # Authorization accesses : groups or email
+#       authorizationAccesses: # Authorization accesses : groups or email or regexp
 #         - group: devops_users
 #     # Basic authentication section
 #     basic:
@@ -296,7 +297,7 @@ targets:
     #     # OIDC section for access filter
     #     oidc:
     #       # NOTE: This list can be empty ([]) for authentication only and no group filter
-    #       authorizationAccesses: # Authorization accesses : groups or email
+    #       authorizationAccesses: # Authorization accesses : groups or email or regexp
     #         - group: specific_users
     #     # A Path must be declared for a resource filtering (a wildcard can be added to match every sub path)
     #   - path: /directory1/*
 
@@ -90,17 +90,22 @@ func (rctx *requestContext) Get(requestPath string) {
 			if indexDocumentEntry != nil {
 				// Get data
 				err = getFile(rctx, indexDocumentEntry.(*Entry).Key)
-				// Check if error is a not found error
-				if err == s3client.ErrNotFound {
-					// Not found
-					rctx.handleNotFound(rctx.httpRW, requestPath, rctx.logger, rctx.tplConfig)
+				// Check if error exists
+				if err != nil {
+					// Check if error is a not found error
+					if err == s3client.ErrNotFound {
+						// Not found
+						rctx.handleNotFound(rctx.httpRW, requestPath, rctx.logger, rctx.tplConfig)
+						return
+					}
+					// Log error
+					rctx.logger.Error(err)
+					// Response with error
+					rctx.handleInternalServerError(rctx.httpRW, err, requestPath, rctx.logger, rctx.tplConfig)
+					// Stop
 					return
 				}
-				// Log error
-				rctx.logger.Error(err)
-				// Response with error
-				rctx.handleInternalServerError(rctx.httpRW, err, requestPath, rctx.logger, rctx.tplConfig)
-				// Stop
+				// Stop here because no error are present
 				return
 			}
 		}