NotificationsYou must be signed in to change notification settings
Fork923
Star10.1k

Commit5d483a7

authored

fix: do not query user_link for deleted accounts (#12112)

1 parent06f3ab1 commit5d483a7Copy full SHA for 5d483a7

File tree

4 files changed

+39

-8

lines changed

coderd
- database
  - dbmem
    - dbmem.go
  - queries
    - user_links.sql
  - queries.sql.go
- userauth_test.go

4 files changed

+39

-8

lines changed

`‎coderd/database/dbmem/dbmem.go`

Lines changed: 4 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -3787,6 +3787,10 @@ func (q *FakeQuerier) GetUserLinkByLinkedID(_ context.Context, id string) (datab`
`3787`	`3787`	`deferq.mutex.RUnlock()`
`3788`	`3788`
`3789`	`3789`	`for_,link:=rangeq.userLinks {`
	`3790`	`+user,err:=q.getUserByIDNoLock(link.UserID)`
	`3791`	`+iferr==nil&&user.Deleted {`
	`3792`	`+continue`
	`3793`	`+}`
`3790`	`3794`	`iflink.LinkedID==id {`
`3791`	`3795`	`returnlink,nil`
`3792`	`3796`	`}`

`‎coderd/database/queries.sql.go`

Lines changed: 5 additions & 1 deletion

Some generated files are not rendered by default. Learn more aboutcustomizing how changed files appear on GitHub.

`‎coderd/database/queries/user_links.sql`

Lines changed: 6 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,10 +1,14 @@`
`1`	`1`	`-- name: GetUserLinkByLinkedID :one`
`2`	`2`	`SELECT`
`3`		`-*`
	`3`	`+user_links.*`
`4`	`4`	`FROM`
`5`	`5`	`user_links`
	`6`	`+INNER JOIN`
	`7`	`+usersONuser_links.user_id=users.id`
`6`	`8`	`WHERE`
`7`		`-linked_id= $1;`
	`9`	`+linked_id= $1`
	`10`	`+AND`
	`11`	`+deleted= false;`
`8`	`12`
`9`	`13`	`-- name: GetUserLinkByUserIDLoginType :one`
`10`	`14`	`SELECT`

`‎coderd/userauth_test.go`

Lines changed: 24 additions & 5 deletions

Original file line number	Diff line number	Diff line change
`@@ -603,6 +603,11 @@ func TestUserOAuth2Github(t *testing.T) {`
`603`	`603`
`604`	`604`	`require.Equal(t,http.StatusUnauthorized,resp.StatusCode)`
`605`	`605`	`})`
	`606`	`+`
	`607`	`+// The bug only is exercised when a deleted user with the same linked_id exists.`
	`608`	`+// Still related open issues:`
	`609`	`+// - https://github.com/coder/coder/issues/12116`
	`610`	`+// - https://github.com/coder/coder/issues/12115`
`606`	`611`	`t.Run("ChangedEmail",func(t*testing.T) {`
`607`	`612`	`t.Parallel()`
`608`	`613`
`@@ -627,7 +632,7 @@ func TestUserOAuth2Github(t *testing.T) {`
`627`	`632`	`coderEmail,`
`628`	`633`	`}`
`629`	`634`
`630`		`-client:=coderdtest.New(t,&coderdtest.Options{`
	`635`	`+owner:=coderdtest.New(t,&coderdtest.Options{`
`631`	`636`	`Auditor:auditor,`
`632`	`637`	`GithubOAuth2Config:&coderd.GithubOAuth2Config{`
`633`	`638`	`AllowSignups:true,`
`@@ -650,9 +655,21 @@ func TestUserOAuth2Github(t *testing.T) {`
`650`	`655`	`},`
`651`	`656`	`},`
`652`	`657`	`})`
	`658`	`+coderdtest.CreateFirstUser(t,owner)`
	`659`	`+`
	`660`	`+ctx:=testutil.Context(t,testutil.WaitLong)`
	`661`	`+// Create the user, then delete the user, then create again.`
	`662`	`+// This causes the email change to fail.`
	`663`	`+client:=codersdk.New(owner.URL)`
`653`	`664`
`654`		`-ctx:=testutil.Context(t,testutil.WaitMedium)`
`655`		`-// This should register the user`
	`665`	`+client,_=fake.Login(t,client, jwt.MapClaims{})`
	`666`	`+deleted,err:=client.User(ctx,"me")`
	`667`	`+require.NoError(t,err)`
	`668`	`+`
	`669`	`+err=owner.DeleteUser(ctx,deleted.ID)`
	`670`	`+require.NoError(t,err)`
	`671`	`+`
	`672`	`+// Create the user again.`
`656`	`673`	`client,_=fake.Login(t,client, jwt.MapClaims{})`
`657`	`674`	`user,err:=client.User(ctx,"me")`
`658`	`675`	`require.NoError(t,err)`
`@@ -666,7 +683,8 @@ func TestUserOAuth2Github(t *testing.T) {`
`666`	`683`	`client,_=fake.Login(t,client, jwt.MapClaims{})`
`667`	`684`	`user,err=client.User(ctx,"me")`
`668`	`685`	`require.NoError(t,err)`
`669`		`-require.Equal(t,user.ID,userID)`
	`686`	`+`
	`687`	`+require.Equal(t,user.ID,userID,"user_id is different, a new user was likely created")`
`670`	`688`	`require.Equal(t,user.Email,*gmailEmail.Email)`
`671`	`689`
`672`	`690`	`// Entirely change emails.`
`@@ -681,7 +699,8 @@ func TestUserOAuth2Github(t *testing.T) {`
`681`	`699`	`client,_=fake.Login(t,client, jwt.MapClaims{})`
`682`	`700`	`user,err=client.User(ctx,"me")`
`683`	`701`	`require.NoError(t,err)`
`684`		`-require.Equal(t,user.ID,userID)`
	`702`	`+`
	`703`	`+require.Equal(t,user.ID,userID,"user_id is different, a new user was likely created")`
`685`	`704`	`require.Equal(t,user.Email,newEmail)`
`686`	`705`	`})`
`687`	`706`	`}`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit5d483a7

File tree

4 files changed

4 files changed

`‎coderd/database/dbmem/dbmem.go`

`‎coderd/database/queries.sql.go`

`‎coderd/database/queries/user_links.sql`

`‎coderd/userauth_test.go`

0 commit comments