NotificationsYou must be signed in to change notification settings
Fork928
Star10.1k

Commit145faf4

authored

adding workspace_build resource (#4636)

* adding workspace_build resource* added migration* added migration for audit_actions* fix keyword* got rid oof diffs for workspace builds* adding workspace name to string* renamed migrations* fixed lint* pass throough AdditionalFields and fix tests* no need to pass through each handler* cleaned up migrations

1 parent3e08bb4 commit145faf4Copy full SHA for 145faf4

File tree

13 files changed

+126

-31

lines changed

coderd
- audit
  - diff.go
  - request.go
- audit.go
- database
  - dump.sql
  - migrations
    - 000064_add_audit_enums.down.sql
    - 000064_add_audit_enums.up.sql
  - models.go
- workspacebuilds.go
- workspacebuilds_test.go
codersdk
- audit.go
enterprise/audit
- table.go
site/src
- api
  - typesGenerated.ts
- components/AuditLogRow
  - AuditLogRow.tsx

13 files changed

+126

-31

lines changed

`‎coderd/audit.go`

Lines changed: 16 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -219,12 +219,26 @@ func convertAuditLog(dblog database.GetAuditLogsOffsetRow) codersdk.AuditLog {`
`219`	`219`	`}`
`220`	`220`	`}`
`221`	`221`
	`222`	`+typeWorkspaceResourceInfostruct {`
	`223`	`+WorkspaceNamestring`
	`224`	`+}`
	`225`	`+`
`222`	`226`	`funcauditLogDescription(alog database.GetAuditLogsOffsetRow)string {`
`223`	`227`	`str:=fmt.Sprintf("{user} %s %s",`
`224`	`228`	`codersdk.AuditAction(alog.Action).FriendlyString(),`
`225`	`229`	`codersdk.ResourceType(alog.ResourceType).FriendlyString(),`
`226`	`230`	`)`
`227`	`231`
	`232`	`+// Strings for build updates follow the below format:`
	`233`	`+// "{user} started workspace build for workspace {target}"`
	`234`	`+// where target is a workspace instead of the workspace build`
	`235`	`+ifalog.ResourceType==database.ResourceTypeWorkspaceBuild {`
	`236`	`+workspaceBytes:= []byte(alog.AdditionalFields)`
	`237`	`+varworkspaceResourceInfoWorkspaceResourceInfo`
	`238`	`+_=json.Unmarshal(workspaceBytes,&workspaceResourceInfo)`
	`239`	`+str+=" for workspace "+workspaceResourceInfo.WorkspaceName`
	`240`	`+}`
	`241`	`+`
`228`	`242`	`// We don't display the name for git ssh keys. It's fairly long and doesn't`
`229`	`243`	`// make too much sense to display.`
`230`	`244`	`ifalog.ResourceType!=database.ResourceTypeGitSshKey {`
`@@ -288,6 +302,8 @@ func resourceTypeFromString(resourceTypeString string) string {`
`288`	`302`	`returnresourceTypeString`
`289`	`303`	`casecodersdk.ResourceTypeWorkspace:`
`290`	`304`	`returnresourceTypeString`
	`305`	`+casecodersdk.ResourceTypeWorkspaceBuild:`
	`306`	`+returnresourceTypeString`
`291`	`307`	`casecodersdk.ResourceTypeGitSSHKey:`
`292`	`308`	`returnresourceTypeString`
`293`	`309`	`casecodersdk.ResourceTypeAPIKey:`

`‎coderd/audit/diff.go`

Lines changed: 1 addition & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -15,6 +15,7 @@ type Auditable interface {`
`15`	`15`	`database.TemplateVersion\|`
`16`	`16`	`database.User\|`
`17`	`17`	`database.Workspace\|`
	`18`	`+database.WorkspaceBuild\|`
`18`	`19`	`database.GitSSHKey\|`
`19`	`20`	`database.Group`
`20`	`21`	`}`

`‎coderd/audit/request.go`

Lines changed: 15 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -20,8 +20,9 @@ type RequestParams struct {`
`20`	`20`	`AuditAuditor`
`21`	`21`	`Log slog.Logger`
`22`	`22`
`23`		`-Request*http.Request`
`24`		`-Action database.AuditAction`
	`23`	`+Request*http.Request`
	`24`	`+Action database.AuditAction`
	`25`	`+AdditionalFields json.RawMessage`
`25`	`26`	`}`
`26`	`27`
`27`	`28`	`typeRequest[TAuditable]struct {`
`@@ -43,6 +44,9 @@ func ResourceTarget[T Auditable](tgt T) string {`
`43`	`44`	`returntyped.Username`
`44`	`45`	`case database.Workspace:`
`45`	`46`	`returntyped.Name`
	`47`	`+case database.WorkspaceBuild:`
	`48`	`+// this isn't used`
	`49`	`+returnstring(typed.BuildNumber)`
`46`	`50`	`case database.GitSSHKey:`
`47`	`51`	`returntyped.PublicKey`
`48`	`52`	`case database.Group:`
`@@ -64,6 +68,8 @@ func ResourceID[T Auditable](tgt T) uuid.UUID {`
`64`	`68`	`returntyped.ID`
`65`	`69`	`case database.Workspace:`
`66`	`70`	`returntyped.ID`
	`71`	`+case database.WorkspaceBuild:`
	`72`	`+returntyped.ID`
`67`	`73`	`case database.GitSSHKey:`
`68`	`74`	`returntyped.UserID`
`69`	`75`	`case database.Group:`
`@@ -85,6 +91,8 @@ func ResourceType[T Auditable](tgt T) database.ResourceType {`
`85`	`91`	`returndatabase.ResourceTypeUser`
`86`	`92`	`case database.Workspace:`
`87`	`93`	`returndatabase.ResourceTypeWorkspace`
	`94`	`+case database.WorkspaceBuild:`
	`95`	`+returndatabase.ResourceTypeWorkspaceBuild`
`88`	`96`	`case database.GitSSHKey:`
`89`	`97`	`returndatabase.ResourceTypeGitSshKey`
`90`	`98`	`case database.Group:`
`@@ -129,6 +137,10 @@ func InitRequest[T Auditable](w http.ResponseWriter, p RequestParams) (Request`
`129`	`137`	`}`
`130`	`138`	`}`
`131`	`139`
	`140`	`+ifp.AdditionalFields==nil {`
	`141`	`+p.AdditionalFields=json.RawMessage("{}")`
	`142`	`+}`
	`143`	`+`
`132`	`144`	`ip:=parseIP(p.Request.RemoteAddr)`
`133`	`145`	`err:=p.Audit.Export(ctx, database.AuditLog{`
`134`	`146`	`ID:uuid.New(),`
`@@ -143,7 +155,7 @@ func InitRequest[T Auditable](w http.ResponseWriter, p RequestParams) (Request`
`143`	`155`	`Diff:diffRaw,`
`144`	`156`	`StatusCode:int32(sw.Status),`
`145`	`157`	`RequestID:httpmw.RequestID(p.Request),`
`146`		`-AdditionalFields:json.RawMessage("{}"),`
	`158`	`+AdditionalFields:p.AdditionalFields,`
`147`	`159`	`})`
`148`	`160`	`iferr!=nil {`
`149`	`161`	`p.Log.Error(logCtx,"export audit log",slog.Error(err))`

`‎coderd/database/dump.sql`

Lines changed: 5 additions & 2 deletions

Some generated files are not rendered by default. Learn more aboutcustomizing how changed files appear on GitHub.

`‎coderd/database/migrations/000064_add_audit_enums.down.sql`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+-- It's not possible to drop enum values from enum types, so the UP has "IF NOT`
	`2`	`+-- EXISTS".`

`‎coderd/database/migrations/000064_add_audit_enums.up.sql`

Lines changed: 4 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,4 @@`
	`1`	`+ALTERTYPE audit_action ADD VALUE IF NOT EXISTS'start';`
	`2`	`+ALTERTYPE audit_action ADD VALUE IF NOT EXISTS'stop';`
	`3`	`+`
	`4`	`+ALTERTYPE resource_type ADD VALUE IF NOT EXISTS'workspace_build';`

`‎coderd/database/models.go`

Lines changed: 3 additions & 0 deletions

Some generated files are not rendered by default. Learn more aboutcustomizing how changed files appear on GitHub.

`‎coderd/workspacebuilds.go`

Lines changed: 44 additions & 13 deletions

Original file line number	Diff line number	Diff line change
`@@ -278,28 +278,59 @@ func (api API) postWorkspaceBuilds(rw http.ResponseWriter, r http.Request) {`
`278`	`278`	`return`
`279`	`279`	`}`
`280`	`280`
`281`		`-// we only want to create audit logs for delete builds right now`
	`281`	`+auditor:=api.Auditor.Load()`
	`282`	`+`
	`283`	`+// if user deletes a workspace, audit the workspace`
`282`	`284`	`ifaction==rbac.ActionDelete {`
`283`		`-var (`
`284`		`-auditor=api.Auditor.Load()`
`285`		`-aReq,commitAudit=audit.InitRequest[database.Workspace](rw,&audit.RequestParams{`
`286`		`-Audit:*auditor,`
`287`		`-Log:api.Logger,`
`288`		`-Request:r,`
`289`		`-Action:database.AuditActionDelete,`
`290`		`-})`
`291`		`-)`
	`285`	`+aReq,commitAudit:=audit.InitRequest[database.Workspace](rw,&audit.RequestParams{`
	`286`	`+Audit:*auditor,`
	`287`	`+Log:api.Logger,`
	`288`	`+Request:r,`
	`289`	`+Action:database.AuditActionDelete,`
	`290`	`+})`
`292`	`291`
`293`	`292`	`defercommitAudit()`
`294`	`293`	`aReq.Old=workspace`
`295`	`294`	`}`
`296`	`295`
	`296`	`+latestBuild,latestBuildErr:=api.Database.GetLatestWorkspaceBuildByWorkspaceID(ctx,workspace.ID)`
	`297`	`+`
	`298`	`+// if a user starts/stops a workspace, audit the workspace build`
	`299`	`+ifaction==rbac.ActionUpdate {`
	`300`	`+varauditAction database.AuditAction`
	`301`	`+ifcreateBuild.Transition==codersdk.WorkspaceTransitionStart {`
	`302`	`+auditAction=database.AuditActionStart`
	`303`	`+}elseifcreateBuild.Transition==codersdk.WorkspaceTransitionStop {`
	`304`	`+auditAction=database.AuditActionStop`
	`305`	`+}else {`
	`306`	`+auditAction=database.AuditActionWrite`
	`307`	`+}`
	`308`	`+`
	`309`	`+// We pass the workspace name to the Auditor so that it`
	`310`	`+// can form a friendly string for the user.`
	`311`	`+workspaceResourceInfo:=map[string]string{`
	`312`	`+"workspaceName":workspace.Name,`
	`313`	`+}`
	`314`	`+`
	`315`	`+wriBytes,_:=json.Marshal(workspaceResourceInfo)`
	`316`	`+`
	`317`	`+aReq,commitAudit:=audit.InitRequest[database.WorkspaceBuild](rw,&audit.RequestParams{`
	`318`	`+Audit:*auditor,`
	`319`	`+Log:api.Logger,`
	`320`	`+Request:r,`
	`321`	`+Action:auditAction,`
	`322`	`+AdditionalFields:wriBytes,`
	`323`	`+})`
	`324`	`+`
	`325`	`+defercommitAudit()`
	`326`	`+aReq.Old=latestBuild`
	`327`	`+}`
	`328`	`+`
`297`	`329`	`ifcreateBuild.TemplateVersionID==uuid.Nil {`
`298`		`-latestBuild,err:=api.Database.GetLatestWorkspaceBuildByWorkspaceID(ctx,workspace.ID)`
`299`		`-iferr!=nil {`
	`330`	`+iflatestBuildErr!=nil {`
`300`	`331`	`httpapi.Write(ctx,rw,http.StatusInternalServerError, codersdk.Response{`
`301`	`332`	`Message:"Internal error fetching the latest workspace build.",`
`302`		`-Detail:err.Error(),`
	`333`	`+Detail:latestBuildErr.Error(),`
`303`	`334`	`})`
`304`	`335`	`return`
`305`	`336`	`}`

`‎coderd/workspacebuilds_test.go`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -579,6 +579,6 @@ func TestWorkspaceBuildStatus(t *testing.T) {`
`579`	`579`	`require.EqualValues(t,codersdk.WorkspaceStatusDeleted,workspace.LatestBuild.Status)`
`580`	`580`
`581`	`581`	`// assert an audit log has been created for deletion`
`582`		`-require.Len(t,auditor.AuditLogs,5)`
`583`		`-assert.Equal(t,database.AuditActionDelete,auditor.AuditLogs[4].Action)`
	`582`	`+require.Len(t,auditor.AuditLogs,7)`
	`583`	`+assert.Equal(t,database.AuditActionDelete,auditor.AuditLogs[6].Action)`
`584`	`584`	`}`

`‎codersdk/audit.go`

Lines changed: 9 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -19,6 +19,7 @@ const (`
`19`	`19`	`ResourceTypeTemplateVersionResourceType="template_version"`
`20`	`20`	`ResourceTypeUserResourceType="user"`
`21`	`21`	`ResourceTypeWorkspaceResourceType="workspace"`
	`22`	`+ResourceTypeWorkspaceBuildResourceType="workspace_build"`
`22`	`23`	`ResourceTypeGitSSHKeyResourceType="git_ssh_key"`
`23`	`24`	`ResourceTypeAPIKeyResourceType="api_key"`
`24`	`25`	`ResourceTypeGroupResourceType="group"`
`@@ -36,6 +37,8 @@ func (r ResourceType) FriendlyString() string {`
`36`	`37`	`return"user"`
`37`	`38`	`caseResourceTypeWorkspace:`
`38`	`39`	`return"workspace"`
	`40`	`+caseResourceTypeWorkspaceBuild:`
	`41`	`+return"workspace build"`
`39`	`42`	`caseResourceTypeGitSSHKey:`
`40`	`43`	`return"git ssh key"`
`41`	`44`	`caseResourceTypeAPIKey:`
`@@ -53,6 +56,8 @@ const (`
`53`	`56`	`AuditActionCreateAuditAction="create"`
`54`	`57`	`AuditActionWriteAuditAction="write"`
`55`	`58`	`AuditActionDeleteAuditAction="delete"`
	`59`	`+AuditActionStartAuditAction="start"`
	`60`	`+AuditActionStopAuditAction="stop"`
`56`	`61`	`)`
`57`	`62`
`58`	`63`	`func (aAuditAction)FriendlyString()string {`
`@@ -63,6 +68,10 @@ func (a AuditAction) FriendlyString() string {`
`63`	`68`	`return"updated"`
`64`	`69`	`caseAuditActionDelete:`
`65`	`70`	`return"deleted"`
	`71`	`+caseAuditActionStart:`
	`72`	`+return"started"`
	`73`	`+caseAuditActionStop:`
	`74`	`+return"stopped"`
`66`	`75`	`default:`
`67`	`76`	`return"unknown"`
`68`	`77`	`}`

`‎enterprise/audit/table.go`

Lines changed: 15 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -103,6 +103,21 @@ var AuditableResources = auditMap(map[any]map[string]Action{`
`103`	`103`	`"ttl":ActionTrack,`
`104`	`104`	`"last_used_at":ActionIgnore,`
`105`	`105`	`},`
	`106`	`+// We don't show any diff for the WorkspaceBuild resource`
	`107`	`+&database.WorkspaceBuild{}: {`
	`108`	`+"id":ActionIgnore,`
	`109`	`+"created_at":ActionIgnore,`
	`110`	`+"updated_at":ActionIgnore,`
	`111`	`+"workspace_id":ActionIgnore,`
	`112`	`+"template_version_id":ActionIgnore,`
	`113`	`+"build_number":ActionIgnore,`
	`114`	`+"transition":ActionIgnore,`
	`115`	`+"initiator_id":ActionIgnore,`
	`116`	`+"provisioner_state":ActionIgnore,`
	`117`	`+"job_id":ActionIgnore,`
	`118`	`+"deadline":ActionIgnore,`
	`119`	`+"reason":ActionIgnore,`
	`120`	`+},`
`106`	`121`	`&database.Group{}: {`
`107`	`122`	`"id":ActionTrack,`
`108`	`123`	`"name":ActionTrack,`

`‎site/src/api/typesGenerated.ts`

Lines changed: 2 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -915,7 +915,7 @@ export interface WorkspacesRequest extends Pagination {`
`915`	`915`	`exporttypeAPIKeyScope="all"\|"application_connect"`
`916`	`916`
`917`	`917`	`// From codersdk/audit.go`
`918`		`-exporttypeAuditAction="create"\|"delete"\|"write"`
	`918`	`+exporttypeAuditAction="create"\|"delete"\|"start"\|"stop"\|"write"`
`919`	`919`
`920`	`920`	`// From codersdk/workspacebuilds.go`
`921`	`921`	`exporttypeBuildReason="autostart"\|"autostop"\|"initiator"`
`@@ -975,6 +975,7 @@ export type ResourceType =`
`975`	`975`	`\|"template_version"`
`976`	`976`	`\|"user"`
`977`	`977`	`\|"workspace"`
	`978`	`+\|"workspace_build"`
`978`	`979`
`979`	`980`	`// From codersdk/sse.go`
`980`	`981`	`exporttypeServerSentEventType="data"\|"error"\|"ping"`

`‎site/src/components/AuditLogRow/AuditLogRow.tsx`

Lines changed: 8 additions & 10 deletions

Original file line number	Diff line number	Diff line change
`@@ -130,13 +130,11 @@ export const AuditLogRow: React.FC<AuditLogRowProps> = ({`
`130`	`130`	`</Stack>`
`131`	`131`	`</Stack>`
`132`	`132`
`133`		`-<div`
`134`		`-className={`
`135`		`-shouldDisplayDiff ?undefined :styles.disabledDropdownIcon`
`136`		`-}`
`137`		`->`
`138`		`-{isDiffOpen ?<CloseDropdown/> :<OpenDropdown/>}`
`139`		`-</div>`
	`133`	`+{shouldDisplayDiff ?(`
	`134`	`+<div>{isDiffOpen ?<CloseDropdown/> :<OpenDropdown/>}</div>`
	`135`	`+) :(`
	`136`	`+<divclassName={styles.columnWithoutDiff}></div>`
	`137`	`+)}`
`140`	`138`	`</Stack>`
`141`	`139`
`142`	`140`	`{shouldDisplayDiff&&(`
`@@ -190,8 +188,8 @@ const useStyles = makeStyles((theme) => ({`
`190`	`188`	`color:theme.palette.text.secondary,`
`191`	`189`	`whiteSpace:"nowrap",`
`192`	`190`	`},`
`193`		`-`
`194`		`-disabledDropdownIcon:{`
`195`		`-opacity:0.5,`
	`191`	`+// offset the absence of the arrow icon on diff-less logs`
	`192`	`+columnWithoutDiff:{`
	`193`	`+marginLeft:"24px",`
`196`	`194`	`},`
`197`	`195`	`}))`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit145faf4

File tree

13 files changed

13 files changed

`‎coderd/audit.go`

`‎coderd/audit/diff.go`

`‎coderd/audit/request.go`

`‎coderd/database/dump.sql`

`‎coderd/database/migrations/000064_add_audit_enums.down.sql`

`‎coderd/database/migrations/000064_add_audit_enums.up.sql`

`‎coderd/database/models.go`

`‎coderd/workspacebuilds.go`

`‎coderd/workspacebuilds_test.go`

`‎codersdk/audit.go`

`‎enterprise/audit/table.go`

`‎site/src/api/typesGenerated.ts`

`‎site/src/components/AuditLogRow/AuditLogRow.tsx`

0 commit comments