config: remove unused databroker storage settings

Config options concerning the TLS connection from databroker to storage backend are now unused. TLS options for this connection can instead be set directly in the databroker storage connection string.
2025-07-23 19:49:13 +02:00 · 2024-09-12 15:32:14 -07:00 · 2024-09-12 15:32:14 -07:00 · cbbbe4efb5
commit cbbbe4efb5
parent e21fe2d0b3
6 changed files with 283 additions and 357 deletions
--- a/internal/databroker/config.go
+++ b/internal/databroker/config.go
@ -1,7 +1,6 @@
 package databroker

 import (
-	"crypto/tls"
 	"time"

 	"github.com/pomerium/pomerium/internal/log"
@ -25,9 +24,6 @@ type serverConfig struct {
 	secret                  []byte
 	storageType             string
 	storageConnectionString string
-	storageCAFile           string
-	storageCertSkipVerify   bool
-	storageCertificate      *tls.Certificate
 	getAllPageSize          int
 	registryTTL             time.Duration
 }
@ -95,24 +91,3 @@ func WithStorageConnectionString(connStr string) ServerOption {
 		cfg.storageConnectionString = connStr
 	}
 }
-
-// WithStorageCAFile sets the CA file in the config.
-func WithStorageCAFile(filePath string) ServerOption {
-	return func(cfg *serverConfig) {
-		cfg.storageCAFile = filePath
-	}
-}
-
-// WithStorageCertSkipVerify sets the storageCertSkipVerify in the config.
-func WithStorageCertSkipVerify(storageCertSkipVerify bool) ServerOption {
-	return func(cfg *serverConfig) {
-		cfg.storageCertSkipVerify = storageCertSkipVerify
-	}
-}
-
-// WithStorageCertificate sets the storageCertificate in the config.
-func WithStorageCertificate(certificate *tls.Certificate) ServerOption {
-	return func(cfg *serverConfig) {
-		cfg.storageCertificate = certificate
-	}
-}