NotificationsYou must be signed in to change notification settings
Fork947
Star10.5k

Commit65b1054

committed

feat(oauth2): add frontend UI for client credentials applications

- Add ClientCredentialsAppForm and ClientCredentialsAppRow components- Update API schemas to include created_at, grant_types, and user_id fields- Add dedicated pages for creating and managing client credentials apps- Update sidebar navigation and routing for OAuth2 client credentials- Enhance OAuth2AppPageView with user ownership information displayChange-Id: I3271c7fb995d7225dd6cc830066fa2c8cb29720aSigned-off-by: Thomas Kosiewski <tk@coder.com>

1 parentac0d1f6 commit65b1054Copy full SHA for 65b1054

File tree

31 files changed

+1400

-86

lines changed

coderd
- apidoc
  - docs.go
  - swagger.json
- database
  - db2sdk
    - db2sdk.go
  - dbauthz
    - dbauthz.go
    - dbauthz_test.go
  - dbmetrics
    - querymetrics.go
  - dbmock
    - dbmock.go
  - modelmethods.go
  - querier.go
  - queries.sql.go
  - queries
    - oauth2.sql
- oauth2.go
- oauth2provider
  - apps.go
codersdk
- oauth2.go
docs/reference/api
- enterprise.md
- schemas.md
site/src
- api
  - api.ts
  - queries
    - oauth2.ts
  - typesGenerated.ts
- components
  - OAuth2
    - ClientCredentialsAppForm.tsx
    - ClientCredentialsAppRow.tsx
  - Sidebar
    - Sidebar.tsx
- pages
  - DeploymentSettingsPage/OAuth2AppsSettingsPage
    - EditOAuth2AppPageView.tsx
  - UserSettingsPage
    - OAuth2ProviderPage
    - Sidebar.tsx
- router.tsx
- testHelpers
  - entities.ts

31 files changed

+1400

-86

lines changed

`‎coderd/apidoc/docs.go`

Lines changed: 24 additions & 0 deletions

Some generated files are not rendered by default. Learn more aboutcustomizing how changed files appear on GitHub.

`‎coderd/apidoc/swagger.json`

Lines changed: 24 additions & 0 deletions

Some generated files are not rendered by default. Learn more aboutcustomizing how changed files appear on GitHub.

`‎coderd/database/db2sdk/db2sdk.go`

Lines changed: 11 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -354,11 +354,19 @@ func TemplateVersionParameterOptionFromPreview(option *previewtypes.ParameterOpt`
`354`	`354`	`}`
`355`	`355`
`356`	`356`	`funcOAuth2ProviderApp(accessURL*url.URL,dbApp database.OAuth2ProviderApp) codersdk.OAuth2ProviderApp {`
	`357`	`+varuserID uuid.UUID`
	`358`	`+ifdbApp.UserID.Valid {`
	`359`	`+userID=dbApp.UserID.UUID`
	`360`	`+}`
	`361`	`+`
`357`	`362`	`return codersdk.OAuth2ProviderApp{`
`358`	`363`	`ID:dbApp.ID,`
`359`	`364`	`Name:dbApp.Name,`
`360`	`365`	`RedirectURIs:dbApp.RedirectUris,`
`361`	`366`	`Icon:dbApp.Icon,`
	`367`	`+CreatedAt:dbApp.CreatedAt,`
	`368`	`+GrantTypes:dbApp.GrantTypes,`
	`369`	`+UserID:userID,`
`362`	`370`	`Endpoints: codersdk.OAuth2AppEndpoints{`
`363`	`371`	`Authorization:accessURL.ResolveReference(&url.URL{`
`364`	`372`	`Path:"/oauth2/authorize",`
`@@ -369,6 +377,9 @@ func OAuth2ProviderApp(accessURL *url.URL, dbApp database.OAuth2ProviderApp) cod`
`369`	`377`	`DeviceAuth:accessURL.ResolveReference(&url.URL{`
`370`	`378`	`Path:"/oauth2/device/authorize",`
`371`	`379`	`}).String(),`
	`380`	`+Revocation:accessURL.ResolveReference(&url.URL{`
	`381`	`+Path:"/oauth2/revoke",`
	`382`	`+}).String(),`
`372`	`383`	`},`
`373`	`384`	`}`
`374`	`385`	`}`

`‎coderd/database/dbauthz/dbauthz.go`

Lines changed: 4 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -2304,6 +2304,10 @@ func (q *querier) GetOAuth2ProviderApps(ctx context.Context) ([]database.OAuth2P`
`2304`	`2304`	`returnq.db.GetOAuth2ProviderApps(ctx)`
`2305`	`2305`	`}`
`2306`	`2306`
	`2307`	`+func (q*querier)GetOAuth2ProviderAppsByOwnerID(ctx context.Context,userID uuid.NullUUID) ([]database.OAuth2ProviderApp,error) {`
	`2308`	`+returnfetchWithPostFilter(q.auth,policy.ActionRead,q.db.GetOAuth2ProviderAppsByOwnerID)(ctx,userID)`
	`2309`	`+}`
	`2310`	`+`
`2307`	`2311`	`func (q*querier)GetOAuth2ProviderAppsByUserID(ctx context.Context,userID uuid.UUID) ([]database.GetOAuth2ProviderAppsByUserIDRow,error) {`
`2308`	`2312`	`// This authz check is to make sure the caller can read all their own tokens.`
`2309`	`2313`	`iferr:=q.authorizeContext(ctx,policy.ActionRead,`

`‎coderd/database/dbauthz/dbauthz_test.go`

Lines changed: 22 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -5288,6 +5288,28 @@ func (s *MethodTestSuite) TestOAuth2ProviderApps() {`
`5288`	`5288`	`app:=dbgen.OAuth2ProviderApp(s.T(),db, database.OAuth2ProviderApp{})`
`5289`	`5289`	`check.Args(app.ID).Asserts(rbac.ResourceOauth2App,policy.ActionDelete)`
`5290`	`5290`	`}))`
	`5291`	`+s.Run("GetOAuth2ProviderAppsByOwnerID",s.Subtest(func(db database.Store,check*expects) {`
	`5292`	`+owner:=dbgen.User(s.T(),db, database.User{})`
	`5293`	`+// Create multiple apps with the same owner`
	`5294`	`+app1:=dbgen.OAuth2ProviderApp(s.T(),db, database.OAuth2ProviderApp{`
	`5295`	`+UserID: uuid.NullUUID{UUID:owner.ID,Valid:true},`
	`5296`	`+})`
	`5297`	`+app2:=dbgen.OAuth2ProviderApp(s.T(),db, database.OAuth2ProviderApp{`
	`5298`	`+UserID: uuid.NullUUID{UUID:owner.ID,Valid:true},`
	`5299`	`+})`
	`5300`	`+// Create an app with a different owner to ensure filtering works`
	`5301`	`+differentOwner:=dbgen.User(s.T(),db, database.User{})`
	`5302`	`+_=dbgen.OAuth2ProviderApp(s.T(),db, database.OAuth2ProviderApp{`
	`5303`	`+UserID: uuid.NullUUID{UUID:differentOwner.ID,Valid:true},`
	`5304`	`+})`
	`5305`	`+// fetchWithPostFilter will check each individual app, so we need to assert those checks`
	`5306`	`+check.Args(uuid.NullUUID{UUID:owner.ID,Valid:true}).`
	`5307`	`+Asserts(`
	`5308`	`+app1,policy.ActionRead,// Check for first app (includes owner)`
	`5309`	`+app2,policy.ActionRead,// Check for second app (includes owner)`
	`5310`	`+).`
	`5311`	`+Returns([]database.OAuth2ProviderApp{app1,app2})`
	`5312`	`+}))`
`5291`	`5313`	`s.Run("GetOAuth2ProviderAppByClientID",s.Subtest(func(db database.Store,check*expects) {`
`5292`	`5314`	`app:=dbgen.OAuth2ProviderApp(s.T(),db, database.OAuth2ProviderApp{})`
`5293`	`5315`	`check.Args(app.ID).Asserts(rbac.ResourceOauth2App,policy.ActionRead).Returns(app)`

`‎coderd/database/dbmetrics/querymetrics.go`

Lines changed: 7 additions & 0 deletions

Some generated files are not rendered by default. Learn more aboutcustomizing how changed files appear on GitHub.

`‎coderd/database/dbmock/dbmock.go`

Lines changed: 15 additions & 0 deletions

Some generated files are not rendered by default. Learn more aboutcustomizing how changed files appear on GitHub.

`‎coderd/database/modelmethods.go`

Lines changed: 4 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -391,7 +391,10 @@ func (OAuth2ProviderAppSecret) RBACObject() rbac.Object {`
`391`	`391`	`returnrbac.ResourceOauth2AppSecret`
`392`	`392`	`}`
`393`	`393`
`394`		`-func (OAuth2ProviderApp)RBACObject() rbac.Object {`
	`394`	`+func (appOAuth2ProviderApp)RBACObject() rbac.Object {`
	`395`	`+ifapp.UserID.Valid {`
	`396`	`+returnrbac.ResourceOauth2App.WithOwner(app.UserID.UUID.String())`
	`397`	`+}`
`395`	`398`	`returnrbac.ResourceOauth2App`
`396`	`399`	`}`
`397`	`400`

`‎coderd/database/querier.go`

Lines changed: 1 addition & 0 deletions

Some generated files are not rendered by default. Learn more aboutcustomizing how changed files appear on GitHub.

`‎coderd/database/queries.sql.go`

Lines changed: 54 additions & 0 deletions

Some generated files are not rendered by default. Learn more aboutcustomizing how changed files appear on GitHub.

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit65b1054

File tree

31 files changed

31 files changed

`‎coderd/apidoc/docs.go`

`‎coderd/apidoc/swagger.json`

`‎coderd/database/db2sdk/db2sdk.go`

`‎coderd/database/dbauthz/dbauthz.go`

`‎coderd/database/dbauthz/dbauthz_test.go`

`‎coderd/database/dbmetrics/querymetrics.go`

`‎coderd/database/dbmock/dbmock.go`

`‎coderd/database/modelmethods.go`

`‎coderd/database/querier.go`

`‎coderd/database/queries.sql.go`

0 commit comments