coder/coderPublic

NotificationsYou must be signed in to change notification settings
Fork928
Star10.1k

Commit15fadb1

BrunoQuaresma

authored and

kylecarbs

committed

refactor: Return the display_name and name in the roles endpoint (#1328)

1 parentc5d349f commit15fadb1Copy full SHA for 15fadb1

File tree

6 files changed

+71

-35

lines changed

coderd
codersdk
- roles.go

6 files changed

+71

-35

lines changed

`‎coderd/rbac/builtin.go`

Lines changed: 17 additions & 12 deletions

Original file line number	Diff line number	Diff line change
`@@ -51,7 +51,8 @@ var (`
`51`	`51`	`// admin grants all actions to all resources.`
`52`	`52`	`admin:func(_string)Role {`
`53`	`53`	`returnRole{`
`54`		`-Name:admin,`
	`54`	`+Name:admin,`
	`55`	`+DisplayName:"Admin",`
`55`	`56`	`Site:permissions(map[Object][]Action{`
`56`	`57`	`ResourceWildcard: {WildcardSymbol},`
`57`	`58`	`}),`
`@@ -61,7 +62,8 @@ var (`
`61`	`62`	`// member grants all actions to all resources owned by the user`
`62`	`63`	`member:func(_string)Role {`
`63`	`64`	`returnRole{`
`64`		`-Name:member,`
	`65`	`+Name:member,`
	`66`	`+DisplayName:"Member",`
`65`	`67`	`User:permissions(map[Object][]Action{`
`66`	`68`	`ResourceWildcard: {WildcardSymbol},`
`67`	`69`	`}),`
`@@ -73,7 +75,8 @@ var (`
`73`	`75`	`// TODO: Finish the auditor as we add resources.`
`74`	`76`	`auditor:func(_string)Role {`
`75`	`77`	`returnRole{`
`76`		`-Name:"auditor",`
	`78`	`+Name:"auditor",`
	`79`	`+DisplayName:"Auditor",`
`77`	`80`	`Site:permissions(map[Object][]Action{`
`78`	`81`	`// Should be able to read all template details, even in orgs they`
`79`	`82`	`// are not in.`
`@@ -86,7 +89,8 @@ var (`
`86`	`89`	`// organization scope.`
`87`	`90`	`orgAdmin:func(organizationIDstring)Role {`
`88`	`91`	`returnRole{`
`89`		`-Name:roleName(orgAdmin,organizationID),`
	`92`	`+Name:roleName(orgAdmin,organizationID),`
	`93`	`+DisplayName:"Organization Admin",`
`90`	`94`	`Org:map[string][]Permission{`
`91`	`95`	`organizationID: {`
`92`	`96`	`{`
`@@ -104,7 +108,8 @@ var (`
`104`	`108`	`// in an organization.`
`105`	`109`	`orgMember:func(organizationIDstring)Role {`
`106`	`110`	`returnRole{`
`107`		`-Name:roleName(orgMember,organizationID),`
	`111`	`+Name:roleName(orgMember,organizationID),`
	`112`	`+DisplayName:"Organization Member",`
`108`	`113`	`Org:map[string][]Permission{`
`109`	`114`	`organizationID: {},`
`110`	`115`	`},`
`@@ -151,11 +156,11 @@ func IsOrgRole(roleName string) (string, bool) {`
`151`	`156`	`//`
`152`	`157`	`// This should be a list in a database, but until then we build`
`153`	`158`	`// the list from the builtins.`
`154`		`-funcOrganizationRoles(organizationID uuid.UUID) []string {`
`155`		`-varroles []string`
	`159`	`+funcOrganizationRoles(organizationID uuid.UUID) []Role {`
	`160`	`+varroles []Role`
`156`	`161`	`for_,roleF:=rangebuiltInRoles {`
`157`		`-role:=roleF(organizationID.String()).Name`
`158`		`-_,scope,err:=roleSplit(role)`
	`162`	`+role:=roleF(organizationID.String())`
	`163`	`+_,scope,err:=roleSplit(role.Name)`
`159`	`164`	`iferr!=nil {`
`160`	`165`	`// This should never happen`
`161`	`166`	`continue`
`@@ -172,8 +177,8 @@ func OrganizationRoles(organizationID uuid.UUID) []string {`
`172`	`177`	`//`
`173`	`178`	`// This should be a list in a database, but until then we build`
`174`	`179`	`// the list from the builtins.`
`175`		`-funcSiteRoles() []string {`
`176`		`-varroles []string`
	`180`	`+funcSiteRoles() []Role {`
	`181`	`+varroles []Role`
`177`	`182`	`for_,roleF:=rangebuiltInRoles {`
`178`	`183`	`role:=roleF("random")`
`179`	`184`	`_,scope,err:=roleSplit(role.Name)`
`@@ -182,7 +187,7 @@ func SiteRoles() []string {`
`182`	`187`	`continue`
`183`	`188`	`}`
`184`	`189`	`ifscope=="" {`
`185`		`-roles=append(roles,role.Name)`
	`190`	`+roles=append(roles,role)`
`186`	`191`	`}`
`187`	`192`	`}`
`188`	`193`	`returnroles`

`‎coderd/rbac/builtin_test.go`

Lines changed: 14 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -65,19 +65,31 @@ func TestIsOrgRole(t *testing.T) {`
`65`	`65`	`funcTestListRoles(t*testing.T) {`
`66`	`66`	`t.Parallel()`
`67`	`67`
	`68`	`+siteRoles:=rbac.SiteRoles()`
	`69`	`+siteRoleNames:=make([]string,0,len(siteRoles))`
	`70`	`+for_,role:=rangesiteRoles {`
	`71`	`+siteRoleNames=append(siteRoleNames,role.Name)`
	`72`	`+}`
	`73`	`+`
`68`	`74`	`// If this test is ever failing, just update the list to the roles`
`69`	`75`	`// expected from the builtin set.`
`70`	`76`	`require.ElementsMatch(t, []string{`
`71`	`77`	`"admin",`
`72`	`78`	`"member",`
`73`	`79`	`"auditor",`
`74`	`80`	`},`
`75`		`-rbac.SiteRoles())`
	`81`	`+siteRoleNames)`
`76`	`82`
`77`	`83`	`orgID:=uuid.New()`
	`84`	`+orgRoles:=rbac.OrganizationRoles(orgID)`
	`85`	`+orgRoleNames:=make([]string,0,len(orgRoles))`
	`86`	`+for_,role:=rangeorgRoles {`
	`87`	`+orgRoleNames=append(orgRoleNames,role.Name)`
	`88`	`+}`
	`89`	`+`
`78`	`90`	`require.ElementsMatch(t, []string{`
`79`	`91`	`fmt.Sprintf("organization-admin:%s",orgID.String()),`
`80`	`92`	`fmt.Sprintf("organization-member:%s",orgID.String()),`
`81`	`93`	`},`
`82`		`-rbac.OrganizationRoles(orgID))`
	`94`	`+orgRoleNames)`
`83`	`95`	`}`

`‎coderd/rbac/role.go`

Lines changed: 3 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -17,8 +17,9 @@ type Permission struct {`
`17`	`17`	`// Users of this package should instead only use the role names, and`
`18`	`18`	`// this package will expand the role names into their json payloads.`
`19`	`19`	`typeRolestruct {`
`20`		-Namestring`json:"name"`
`21`		-Site []Permission`json:"site"`
	`20`	+Namestring`json:"name"`
	`21`	+DisplayNamestring`json:"display_name"`
	`22`	+Site []Permission`json:"site"`
`22`	`23`	`// Org is a map of orgid to permissions. We represent orgid as a string.`
`23`	`24`	`// We scope the organizations in the role so we can easily combine all the`
`24`	`25`	`// roles.`

`‎coderd/roles.go`

Lines changed: 3 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -4,6 +4,7 @@ import (`
`4`	`4`	`"net/http"`
`5`	`5`
`6`	`6`	`"github.com/coder/coder/coderd/httpmw"`
	`7`	`+"github.com/coder/coder/codersdk"`
`7`	`8`
`8`	`9`	`"github.com/coder/coder/coderd/httpapi"`
`9`	`10`	`"github.com/coder/coder/coderd/rbac"`
`@@ -14,7 +15,7 @@ func (api) assignableSiteRoles(rw http.ResponseWriter, _ http.Request) {`
`14`	`15`	`// TODO: @emyrk in the future, allow granular subsets of roles to be returned based on the`
`15`	`16`	`// role of the user.`
`16`	`17`	`roles:=rbac.SiteRoles()`
`17`		`-httpapi.Write(rw,http.StatusOK,roles)`
	`18`	`+httpapi.Write(rw,http.StatusOK,codersdk.ConvertRoles(roles))`
`18`	`19`	`}`
`19`	`20`
`20`	`21`	`// assignableSiteRoles returns all site wide roles that can be assigned.`
`@@ -23,5 +24,5 @@ func (api) assignableOrgRoles(rw http.ResponseWriter, r http.Request) {`
`23`	`24`	`// role of the user.`
`24`	`25`	`organization:=httpmw.OrganizationParam(r)`
`25`	`26`	`roles:=rbac.OrganizationRoles(organization.ID)`
`26`		`-httpapi.Write(rw,http.StatusOK,roles)`
	`27`	`+httpapi.Write(rw,http.StatusOK,codersdk.ConvertRoles(roles))`
`27`	`28`	`}`

`‎coderd/roles_test.go`

Lines changed: 13 additions & 13 deletions

Original file line number	Diff line number	Diff line change
`@@ -45,68 +45,68 @@ func TestListRoles(t *testing.T) {`
`45`	`45`	`testCases:= []struct {`
`46`	`46`	`Namestring`
`47`	`47`	`Client*codersdk.Client`
`48`		`-APICallfunc() ([]string,error)`
`49`		`-ExpectedRoles []string`
	`48`	`+APICallfunc() ([]codersdk.Role,error)`
	`49`	`+ExpectedRoles []codersdk.Role`
`50`	`50`	`AuthorizedErrorstring`
`51`	`51`	`}{`
`52`	`52`	`{`
`53`	`53`	`Name:"MemberListSite",`
`54`		`-APICall:func() ([]string,error) {`
	`54`	`+APICall:func() ([]codersdk.Role,error) {`
`55`	`55`	`x,err:=member.ListSiteRoles(ctx)`
`56`	`56`	`returnx,err`
`57`	`57`	`},`
`58`	`58`	`AuthorizedError:unauth,`
`59`	`59`	`},`
`60`	`60`	`{`
`61`	`61`	`Name:"OrgMemberListOrg",`
`62`		`-APICall:func() ([]string,error) {`
	`62`	`+APICall:func() ([]codersdk.Role,error) {`
`63`	`63`	`returnmember.ListOrganizationRoles(ctx,admin.OrganizationID)`
`64`	`64`	`},`
`65`	`65`	`AuthorizedError:unauth,`
`66`	`66`	`},`
`67`	`67`	`{`
`68`	`68`	`Name:"NonOrgMemberListOrg",`
`69`		`-APICall:func() ([]string,error) {`
	`69`	`+APICall:func() ([]codersdk.Role,error) {`
`70`	`70`	`returnmember.ListOrganizationRoles(ctx,otherOrg.ID)`
`71`	`71`	`},`
`72`	`72`	`AuthorizedError:notMember,`
`73`	`73`	`},`
`74`	`74`	`// Org admin`
`75`	`75`	`{`
`76`	`76`	`Name:"OrgAdminListSite",`
`77`		`-APICall:func() ([]string,error) {`
	`77`	`+APICall:func() ([]codersdk.Role,error) {`
`78`	`78`	`returnorgAdmin.ListSiteRoles(ctx)`
`79`	`79`	`},`
`80`	`80`	`AuthorizedError:unauth,`
`81`	`81`	`},`
`82`	`82`	`{`
`83`	`83`	`Name:"OrgAdminListOrg",`
`84`		`-APICall:func() ([]string,error) {`
	`84`	`+APICall:func() ([]codersdk.Role,error) {`
`85`	`85`	`returnorgAdmin.ListOrganizationRoles(ctx,admin.OrganizationID)`
`86`	`86`	`},`
`87`		`-ExpectedRoles:rbac.OrganizationRoles(admin.OrganizationID),`
	`87`	`+ExpectedRoles:codersdk.ConvertRoles(rbac.OrganizationRoles(admin.OrganizationID)),`
`88`	`88`	`},`
`89`	`89`	`{`
`90`	`90`	`Name:"OrgAdminListOtherOrg",`
`91`		`-APICall:func() ([]string,error) {`
	`91`	`+APICall:func() ([]codersdk.Role,error) {`
`92`	`92`	`returnorgAdmin.ListOrganizationRoles(ctx,otherOrg.ID)`
`93`	`93`	`},`
`94`	`94`	`AuthorizedError:notMember,`
`95`	`95`	`},`
`96`	`96`	`// Admin`
`97`	`97`	`{`
`98`	`98`	`Name:"AdminListSite",`
`99`		`-APICall:func() ([]string,error) {`
	`99`	`+APICall:func() ([]codersdk.Role,error) {`
`100`	`100`	`returnclient.ListSiteRoles(ctx)`
`101`	`101`	`},`
`102`		`-ExpectedRoles:rbac.SiteRoles(),`
	`102`	`+ExpectedRoles:codersdk.ConvertRoles(rbac.SiteRoles()),`
`103`	`103`	`},`
`104`	`104`	`{`
`105`	`105`	`Name:"AdminListOrg",`
`106`		`-APICall:func() ([]string,error) {`
	`106`	`+APICall:func() ([]codersdk.Role,error) {`
`107`	`107`	`returnclient.ListOrganizationRoles(ctx,admin.OrganizationID)`
`108`	`108`	`},`
`109`		`-ExpectedRoles:rbac.OrganizationRoles(admin.OrganizationID),`
	`109`	`+ExpectedRoles:codersdk.ConvertRoles(rbac.OrganizationRoles(admin.OrganizationID)),`
`110`	`110`	`},`
`111`	`111`	`}`
`112`	`112`

`‎codersdk/roles.go`

Lines changed: 21 additions & 4 deletions

Original file line number	Diff line number	Diff line change
`@@ -6,12 +6,18 @@ import (`
`6`	`6`	`"fmt"`
`7`	`7`	`"net/http"`
`8`	`8`
	`9`	`+"github.com/coder/coder/coderd/rbac"`
`9`	`10`	`"github.com/google/uuid"`
`10`	`11`	`)`
`11`	`12`
	`13`	`+typeRolestruct {`
	`14`	+Namestring`json:"name"`
	`15`	+DisplayNamestring`json:"display_name"`
	`16`	`+}`
	`17`	`+`
`12`	`18`	`// ListSiteRoles lists all available site wide roles.`
`13`	`19`	`// This is not user specific.`
`14`		`-func (c*Client)ListSiteRoles(ctx context.Context) ([]string,error) {`
	`20`	`+func (c*Client)ListSiteRoles(ctx context.Context) ([]Role,error) {`
`15`	`21`	`res,err:=c.request(ctx,http.MethodGet,"/api/v2/users/roles",nil)`
`16`	`22`	`iferr!=nil {`
`17`	`23`	`returnnil,err`
`@@ -20,13 +26,13 @@ func (c *Client) ListSiteRoles(ctx context.Context) ([]string, error) {`
`20`	`26`	`ifres.StatusCode!=http.StatusOK {`
`21`	`27`	`returnnil,readBodyAsError(res)`
`22`	`28`	`}`
`23`		`-varroles []string`
	`29`	`+varroles []Role`
`24`	`30`	`returnroles,json.NewDecoder(res.Body).Decode(&roles)`
`25`	`31`	`}`
`26`	`32`
`27`	`33`	`// ListOrganizationRoles lists all available roles for a given organization.`
`28`	`34`	`// This is not user specific.`
`29`		`-func (c*Client)ListOrganizationRoles(ctx context.Context,org uuid.UUID) ([]string,error) {`
	`35`	`+func (c*Client)ListOrganizationRoles(ctx context.Context,org uuid.UUID) ([]Role,error) {`
`30`	`36`	`res,err:=c.request(ctx,http.MethodGet,fmt.Sprintf("/api/v2/organizations/%s/members/roles/",org.String()),nil)`
`31`	`37`	`iferr!=nil {`
`32`	`38`	`returnnil,err`
`@@ -35,6 +41,17 @@ func (c *Client) ListOrganizationRoles(ctx context.Context, org uuid.UUID) ([]st`
`35`	`41`	`ifres.StatusCode!=http.StatusOK {`
`36`	`42`	`returnnil,readBodyAsError(res)`
`37`	`43`	`}`
`38`		`-varroles []string`
	`44`	`+varroles []Role`
`39`	`45`	`returnroles,json.NewDecoder(res.Body).Decode(&roles)`
`40`	`46`	`}`
	`47`	`+`
	`48`	`+funcConvertRoles(roles []rbac.Role) []Role {`
	`49`	`+converted:=make([]Role,0,len(roles))`
	`50`	`+for_,role:=rangeroles {`
	`51`	`+converted=append(converted,Role{`
	`52`	`+DisplayName:role.DisplayName,`
	`53`	`+Name:role.Name,`
	`54`	`+})`
	`55`	`+}`
	`56`	`+returnconverted`
	`57`	`+}`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit15fadb1

File tree

6 files changed

6 files changed

`‎coderd/rbac/builtin.go`

`‎coderd/rbac/builtin_test.go`

`‎coderd/rbac/role.go`

`‎coderd/roles.go`

`‎coderd/roles_test.go`

`‎codersdk/roles.go`

0 commit comments