refactor: replace os.Getenv calls with viper configuration

- Add SMS, email, push notification, and encryption key config fields to Config struct
- Add default values for all new configuration fields
- Update DefaultServiceProviderOptions and SSOServerOptions to include AppConfig
- Refactor SMS, email, and push service initialization to use viper config
- Refactor encryption key initialization to use viper config instead of os.Getenv
- Update test cases to include AppConfig in service provider options
- Regenerate mocks to include ConfigurationRepository method
- Remove unused os imports

Author: paalgyula

apps/ssso/config/config.go

@@ -29,6 +29,23 @@ type Config struct {
 	DTSConnectTimeout time.Duration `mapstructure:"dts_connect_timeout"`
 	DTSDefaultPKCETTL time.Duration `mapstructure:"dts_default_pkce_ttl"`
 
+	// SMS configuration
+	TwilioAccountSID   string `mapstructure:"twilio_account_sid"`
+	TwilioAuthToken    string `mapstructure:"twilio_auth_token"`
+	TwilioPhoneNumber  string `mapstructure:"twilio_phone_number"`
+
+	// Email service configuration
+	ResendAPIKey      string `mapstructure:"resend_api_key"`
+	FromEmail         string `mapstructure:"from_email"`
+	NextPublicBaseURL string `mapstructure:"next_public_base_url"`
+
+	// Push notification service configuration
+	FirebaseProjectID       string `mapstructure:"firebase_project_id"`
+	FirebaseCredentialsPath string `mapstructure:"firebase_credentials_path"`
+
+	// Configuration service encryption key
+	ConfigEncryptionKey string `mapstructure:"config_encryption_key"`
+
 	// Token signing
 	TokenSigningKey     string `mapstructure:"token_signing_key"`
 	TokenSigningKeyFile string `mapstructure:"token_signing_key_file"`
@@ -141,6 +158,23 @@ func LoadConfig() (config Config, err error) {
 	viper.SetDefault("dts_connect_timeout", "5s")             // Consistent with time.ParseDuration
 	viper.SetDefault("dts_default_pkce_ttl", "10m")           // Consistent with time.ParseDuration
 
+	// Default values for SMS configuration
+	viper.SetDefault("twilio_account_sid", "")
+	viper.SetDefault("twilio_auth_token", "")
+	viper.SetDefault("twilio_phone_number", "")
+
+	// Default values for email service configuration
+	viper.SetDefault("resend_api_key", "")
+	viper.SetDefault("from_email", "")
+	viper.SetDefault("next_public_base_url", "")
+
+	// Default values for push notification service configuration
+	viper.SetDefault("firebase_project_id", "")
+	viper.SetDefault("firebase_credentials_path", "")
+
+	// Default value for configuration service encryption key
+	viper.SetDefault("config_encryption_key", "your-32-byte-encryption-key-here!!")
+
 	if errRead := viper.ReadInConfig(); errRead != nil {
 		if _, ok := errRead.(viper.ConfigFileNotFoundError); ok {
 			// Config file not found; ignore error if desired or load from env only

apps/ssso/ssso.go

@@ -12,13 +12,17 @@ import (
 	"github.com/pilab-dev/shadow-sso/mongodb"
 	"github.com/pilab-dev/shadow-sso/services"
 	"github.com/gin-gonic/gin"
+	"github.com/joho/godotenv"
 	"github.com/prometheus/client_golang/prometheus"
 	"github.com/prometheus/client_golang/prometheus/promhttp"
 	"github.com/rs/zerolog"
 	"github.com/rs/zerolog/log"
 )
 
 func main() {
+	// Load .env file if it exists
+	_ = godotenv.Load()
+
 	cfg, err := config.LoadConfig()
 	if err != nil {
 		log.Fatal().Err(err).Msg("Failed to load configuration")
@@ -77,6 +81,15 @@ func main() {
 		}
 	}
 
+	// Bootstrap default configurations from environment variables
+	log.Info().Msg("Bootstrapping default configurations...")
+	configRepo := repoProvider.ConfigurationRepository(context.Background())
+	if err := configRepo.CreateDefaultConfigs(context.Background()); err != nil {
+		log.Warn().Err(err).Msg("Failed to bootstrap default configurations, some features may not work correctly")
+	} else {
+		log.Info().Msg("Default configurations bootstrapped successfully")
+	}
+
 	// Initialize TokenSigner (potentially from file/env)
 	tokenSigner := services.NewTokenSigner()
 	if cfg.TokenSigningKey != "" {
@@ -92,15 +105,25 @@ func main() {
 		tokenSigner.AddKeySigner("temporary-secret-for-hs256-change-me") // Fallback for HS256
 	}
 
+	// Get encryption key for configuration service from viper config
+	encryptionKey := cfg.ConfigEncryptionKey
+	if encryptionKey == "" {
+		// Use a default key for development - in production, this should be set
+		encryptionKey = "your-32-byte-encryption-key-here!!" // 32 bytes
+		log.Warn().Msg("config_encryption_key not set, using default key. Set this configuration in production!")
+	}
+
 	// Create SSOServerOptions
 	opts := ssso.SSOServerOptions{
 		Config:             oidcConfig,
+		AppConfig:          &cfg,
 		RepositoryProvider: repoProvider,
 		TokenSigner:        tokenSigner,
 		TokenCache:         cache.NewMemoryTokenStore(oidcConfig.AccessTokenTTL), // Use OIDC config's TTL
 		PkceRepository:     nil, // Let NewSSOServer default to in-memory if not provided by repoProvider
 		FlowStore:          nil, // Let NewSSOServer default to in-memory
 		UserSessionStore:   nil, // Let NewSSOServer default to in-memory
+		EncryptionKey:      encryptionKey,
 	}
 
 	router, err := ssso.NewSSOServer(opts)