Commiteab8698

authored

feat: Add rbac_roles to coder_workspace_owner data source (#330)

1 parent552eb5e commiteab8698Copy full SHA for eab8698

File tree

6 files changed

+37

-1

lines changed

docs/data-sources
- workspace_owner.md
integration
- integration_test.go
- workspace-owner
  - main.tf
- workspace-owner-filled
  - main.tf
provider
- workspace_owner.go
- workspace_owner_test.go

6 files changed

+37

-1

lines changed

`‎docs/data-sources/workspace_owner.md`

Lines changed: 1 addition & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -53,6 +53,7 @@ resource "coder_env" "git_author_email" {`
`53`	`53`	-`login_type` (String) The type of login the user has.
`54`	`54`	-`name` (String) The username of the user.
`55`	`55`	-`oidc_access_token` (String) A valid OpenID Connect access token of the workspace owner. This is only available if the workspace owner authenticated with OpenID Connect. If a valid token cannot be obtained, this value will be an empty string.
	`56`	+-`rbac_roles` (List of Map) The RBAC roles and associated org ids of which the user is assigned.
`56`	`57`	-`session_token` (String) Session token for authenticating with a Coder deployment. It is regenerated every time a workspace is started.
`57`	`58`	-`ssh_private_key` (String, Sensitive) The user's generated SSH private key.
`58`	`59`	-`ssh_public_key` (String) The user's generated SSH public key.

`‎integration/integration_test.go`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -122,6 +122,7 @@ func TestIntegration(t *testing.T) {`
`122`	`122`	"workspace_owner.ssh_private_key":`(?s)^.+?BEGIN OPENSSH PRIVATE KEY.+?END OPENSSH PRIVATE KEY.+?$`,
`123`	`123`	"workspace_owner.ssh_public_key":`(?s)^ssh-ed25519.+$`,
`124`	`124`	"workspace_owner.login_type":``,
	`125`	+"workspace_owner.rbac_roles":`\[\]`,
`125`	`126`	`},`
`126`	`127`	`},`
`127`	`128`	`{`
`@@ -150,6 +151,7 @@ func TestIntegration(t *testing.T) {`
`150`	`151`	"workspace_owner.ssh_private_key":`(?s)^.+?BEGIN OPENSSH PRIVATE KEY.+?END OPENSSH PRIVATE KEY.+?$`,
`151`	`152`	"workspace_owner.ssh_public_key":`(?s)^ssh-ed25519.+$`,
`152`	`153`	"workspace_owner.login_type":`password`,
	`154`	+"workspace_owner.rbac_roles":`\[\]`,
`153`	`155`	`},`
`154`	`156`	`},`
`155`	`157`	`{`

`‎integration/workspace-owner-filled/main.tf`

Lines changed: 1 addition & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -40,6 +40,7 @@ locals {`
`40`	`40`	`"workspace_owner.ssh_private_key": data.coder_workspace_owner.me.ssh_private_key,`
`41`	`41`	`"workspace_owner.ssh_public_key": data.coder_workspace_owner.me.ssh_public_key,`
`42`	`42`	`"workspace_owner.login_type": data.coder_workspace_owner.me.login_type,`
	`43`	`+"workspace_owner.rbac_roles":jsonencode(data.coder_workspace_owner.me.rbac_roles),`
`43`	`44`	`}`
`44`	`45`	`}`
`45`	`46`

`‎integration/workspace-owner/main.tf`

Lines changed: 1 addition & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -40,6 +40,7 @@ locals {`
`40`	`40`	`"workspace_owner.ssh_private_key": data.coder_workspace_owner.me.ssh_private_key,`
`41`	`41`	`"workspace_owner.ssh_public_key": data.coder_workspace_owner.me.ssh_public_key,`
`42`	`42`	`"workspace_owner.login_type": data.coder_workspace_owner.me.login_type,`
	`43`	`+"workspace_owner.rbac_roles":jsonencode(data.coder_workspace_owner.me.rbac_roles),`
`43`	`44`	`}`
`44`	`45`	`}`
`45`	`46`

`‎provider/workspace_owner.go`

Lines changed: 27 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -59,6 +59,14 @@ func workspaceOwnerDataSource() *schema.Resource {`
`59`	`59`	`_=rd.Set("login_type",loginType)`
`60`	`60`	`}`
`61`	`61`
	`62`	`+varrbacRoles []map[string]string`
	`63`	`+ifrolesRaw,ok:=os.LookupEnv("CODER_WORKSPACE_OWNER_RBAC_ROLES");ok {`
	`64`	`+iferr:=json.NewDecoder(strings.NewReader(rolesRaw)).Decode(&rbacRoles);err!=nil {`
	`65`	`+returndiag.Errorf("invalid user rbac roles: %s",err.Error())`
	`66`	`+}`
	`67`	`+}`
	`68`	`+_=rd.Set("rbac_roles",rbacRoles)`
	`69`	`+`
`62`	`70`	`returndiags`
`63`	`71`	`},`
`64`	`72`	`Schema:map[string]*schema.Schema{`
`@@ -118,6 +126,25 @@ func workspaceOwnerDataSource() *schema.Resource {`
`118`	`126`	`Computed:true,`
`119`	`127`	`Description:"The type of login the user has.",`
`120`	`128`	`},`
	`129`	`+"rbac_roles": {`
	`130`	`+Type:schema.TypeList,`
	`131`	`+Elem:&schema.Resource{`
	`132`	`+Schema:map[string]*schema.Schema{`
	`133`	`+"name": {`
	`134`	`+Type:schema.TypeString,`
	`135`	`+Computed:true,`
	`136`	`+Description:"The name of the RBAC role.",`
	`137`	`+},`
	`138`	`+"org_id": {`
	`139`	`+Type:schema.TypeString,`
	`140`	`+Computed:true,`
	`141`	`+Description:"The organization ID associated with the RBAC role.",`
	`142`	`+},`
	`143`	`+},`
	`144`	`+},`
	`145`	`+Computed:true,`
	`146`	`+Description:"The RBAC roles of which the user is assigned.",`
	`147`	`+},`
`121`	`148`	`},`
`122`	`149`	`}`
`123`	`150`	`}`

`‎provider/workspace_owner_test.go`

Lines changed: 5 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -34,6 +34,7 @@ func TestWorkspaceOwnerDatasource(t *testing.T) {`
`34`	`34`	t.Setenv("CODER_WORKSPACE_OWNER_SESSION_TOKEN",`supersecret`)
`35`	`35`	t.Setenv("CODER_WORKSPACE_OWNER_OIDC_ACCESS_TOKEN",`alsosupersecret`)
`36`	`36`	t.Setenv("CODER_WORKSPACE_OWNER_LOGIN_TYPE",`github`)
	`37`	+t.Setenv("CODER_WORKSPACE_OWNER_RBAC_ROLES",`[{"name":"member","org_id":"00000000-0000-0000-0000-000000000000"}]`)
`37`	`38`
`38`	`39`	`resource.Test(t, resource.TestCase{`
`39`	`40`	`ProviderFactories:coderFactory(),`
`@@ -61,7 +62,8 @@ func TestWorkspaceOwnerDatasource(t *testing.T) {`
`61`	`62`	assert.Equal(t,`supersecret`,attrs["session_token"])
`62`	`63`	assert.Equal(t,`alsosupersecret`,attrs["oidc_access_token"])
`63`	`64`	assert.Equal(t,`github`,attrs["login_type"])
`64`		`-`
	`65`	+assert.Equal(t,`member`,attrs["rbac_roles.0.name"])
	`66`	+assert.Equal(t,`00000000-0000-0000-0000-000000000000`,attrs["rbac_roles.0.org_id"])
`65`	`67`	`returnnil`
`66`	`68`	`},`
`67`	`69`	`}},`
`@@ -80,6 +82,7 @@ func TestWorkspaceOwnerDatasource(t *testing.T) {`
`80`	`82`	`"CODER_WORKSPACE_OWNER_SSH_PUBLIC_KEY",`
`81`	`83`	`"CODER_WORKSPACE_OWNER_SSH_PRIVATE_KEY",`
`82`	`84`	`"CODER_WORKSPACE_OWNER_LOGIN_TYPE",`
	`85`	`+"CODER_WORKSPACE_OWNER_RBAC_ROLES",`
`83`	`86`	`} {// https://github.com/golang/go/issues/52817`
`84`	`87`	`t.Setenv(v,"")`
`85`	`88`	`os.Unsetenv(v)`
`@@ -110,6 +113,7 @@ func TestWorkspaceOwnerDatasource(t *testing.T) {`
`110`	`113`	`assert.Empty(t,attrs["session_token"])`
`111`	`114`	`assert.Empty(t,attrs["oidc_access_token"])`
`112`	`115`	`assert.Empty(t,attrs["login_type"])`
	`116`	`+assert.Empty(t,attrs["rbac_roles.0"])`
`113`	`117`	`returnnil`
`114`	`118`	`},`
`115`	`119`	`}},`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commiteab8698

File tree

6 files changed

6 files changed

`‎docs/data-sources/workspace_owner.md`

`‎integration/integration_test.go`

`‎integration/workspace-owner-filled/main.tf`

`‎integration/workspace-owner/main.tf`

`‎provider/workspace_owner.go`

`‎provider/workspace_owner_test.go`

0 commit comments