coder/coderPublic

NotificationsYou must be signed in to change notification settings
Fork1k
Star11.2k

Commit7670820

gcp-cherry-pick-bot[bot]

and

Emyrk

authored

test: add unit test to excercise bug when idp sync hits deleted orgs (cherry-pick#17405) (#17423)

Co-authored-by: Steven Masley <Emyrk@users.noreply.github.com>

1 parentb56ffe0 commit7670820Copy full SHA for 7670820

File tree

9 files changed

+242

-33

lines changed

coderd
- database
  - dbauthz
    - dbauthz_test.go
  - dbfake
    - builder.go
  - dbmem
    - dbmem.go
  - queries.sql.go
  - queries
    - organizations.sql
- idpsync
  - organization.go
  - organizations_test.go
- users.go
enterprise/coderd/enidpsync
- organizations_test.go

9 files changed

+242

-33

lines changed

`‎coderd/database/dbauthz/dbauthz_test.go‎`

Lines changed: 2 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -839,7 +839,7 @@ func (s *MethodTestSuite) TestOrganization() {`
`839`	`839`	`_=dbgen.OrganizationMember(s.T(),db, database.OrganizationMember{UserID:u.ID,OrganizationID:a.ID})`
`840`	`840`	`b:=dbgen.Organization(s.T(),db, database.Organization{})`
`841`	`841`	`_=dbgen.OrganizationMember(s.T(),db, database.OrganizationMember{UserID:u.ID,OrganizationID:b.ID})`
`842`		`-check.Args(database.GetOrganizationsByUserIDParams{UserID:u.ID,Deleted:false}).Asserts(a,policy.ActionRead,b,policy.ActionRead).Returns(slice.New(a,b))`
	`842`	`+check.Args(database.GetOrganizationsByUserIDParams{UserID:u.ID,Deleted:sql.NullBool{Valid:true,Bool:false}}).Asserts(a,policy.ActionRead,b,policy.ActionRead).Returns(slice.New(a,b))`
`843`	`843`	`}))`
`844`	`844`	`s.Run("InsertOrganization",s.Subtest(func(db database.Store,check*expects) {`
`845`	`845`	`check.Args(database.InsertOrganizationParams{`
`@@ -948,8 +948,7 @@ func (s *MethodTestSuite) TestOrganization() {`
`948`	`948`	`member,policy.ActionRead,`
`949`	`949`	`member,policy.ActionDelete).`
`950`	`950`	`WithNotAuthorized("no rows").`
`951`		`-WithCancelled(cancelledErr).`
`952`		`-ErrorsWithInMemDB(sql.ErrNoRows)`
	`951`	`+WithCancelled(cancelledErr)`
`953`	`952`	`}))`
`954`	`953`	`s.Run("UpdateOrganization",s.Subtest(func(db database.Store,check*expects) {`
`955`	`954`	`o:=dbgen.Organization(s.T(),db, database.Organization{`

`‎coderd/database/dbfake/builder.go‎`

Lines changed: 18 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -17,6 +17,7 @@ type OrganizationBuilder struct {`
`17`	`17`	`t*testing.T`
`18`	`18`	`db database.Store`
`19`	`19`	`seed database.Organization`
	`20`	`+deletebool`
`20`	`21`	`allUsersAllowanceint32`
`21`	`22`	`members []uuid.UUID`
`22`	`23`	`groupsmap[database.Group][]uuid.UUID`
`@@ -44,6 +45,12 @@ func (b OrganizationBuilder) EveryoneAllowance(allowance int) OrganizationBuilde`
`44`	`45`	`returnb`
`45`	`46`	`}`
`46`	`47`
	`48`	`+func (bOrganizationBuilder)Deleted(deletedbool)OrganizationBuilder {`
	`49`	`+//nolint: revive // returns modified struct`
	`50`	`+b.delete=deleted`
	`51`	`+returnb`
	`52`	`+}`
	`53`	`+`
`47`	`54`	`func (bOrganizationBuilder)Seed(seed database.Organization)OrganizationBuilder {`
`48`	`55`	`//nolint: revive // returns modified struct`
`49`	`56`	`b.seed=seed`
`@@ -118,6 +125,17 @@ func (b OrganizationBuilder) Do() OrganizationResponse {`
`118`	`125`	`}`
`119`	`126`	`}`
`120`	`127`
	`128`	`+ifb.delete {`
	`129`	`+now:=dbtime.Now()`
	`130`	`+err=b.db.UpdateOrganizationDeletedByID(ctx, database.UpdateOrganizationDeletedByIDParams{`
	`131`	`+UpdatedAt:now,`
	`132`	`+ID:org.ID,`
	`133`	`+})`
	`134`	`+require.NoError(b.t,err)`
	`135`	`+org.Deleted=true`
	`136`	`+org.UpdatedAt=now`
	`137`	`+}`
	`138`	`+`
`121`	`139`	`returnOrganizationResponse{`
`122`	`140`	`Org:org,`
`123`	`141`	`AllUsersGroup:everyone,`

`‎coderd/database/dbmem/dbmem.go‎`

Lines changed: 14 additions & 4 deletions

Original file line number	Diff line number	Diff line change
`@@ -2167,10 +2167,13 @@ func (q *FakeQuerier) DeleteOrganizationMember(ctx context.Context, arg database`
`2167`	`2167`	`q.mutex.Lock()`
`2168`	`2168`	`deferq.mutex.Unlock()`
`2169`	`2169`
`2170`		`-deleted:=slices.DeleteFunc(q.data.organizationMembers,func(member database.OrganizationMember)bool {`
`2171`		`-returnmember.OrganizationID==arg.OrganizationID&&member.UserID==arg.UserID`
	`2170`	`+deleted:=false`
	`2171`	`+q.data.organizationMembers=slices.DeleteFunc(q.data.organizationMembers,func(member database.OrganizationMember)bool {`
	`2172`	`+match:=member.OrganizationID==arg.OrganizationID&&member.UserID==arg.UserID`
	`2173`	`+deleted=deleted\|\|match`
	`2174`	`+returnmatch`
`2172`	`2175`	`})`
`2173`		`-iflen(deleted)==0 {`
	`2176`	`+if!deleted {`
`2174`	`2177`	`returnsql.ErrNoRows`
`2175`	`2178`	`}`
`2176`	`2179`
`@@ -3758,6 +3761,9 @@ func (q *FakeQuerier) GetOrganizations(_ context.Context, args database.GetOrgan`
`3758`	`3761`	`ifargs.Name!=""&&!strings.EqualFold(org.Name,args.Name) {`
`3759`	`3762`	`continue`
`3760`	`3763`	`}`
	`3764`	`+ifargs.Deleted!=org.Deleted {`
	`3765`	`+continue`
	`3766`	`+}`
`3761`	`3767`	`tmp=append(tmp,org)`
`3762`	`3768`	`}`
`3763`	`3769`
`@@ -3774,7 +3780,11 @@ func (q *FakeQuerier) GetOrganizationsByUserID(_ context.Context, arg database.G`
`3774`	`3780`	`continue`
`3775`	`3781`	`}`
`3776`	`3782`	`for_,organization:=rangeq.organizations {`
`3777`		`-iforganization.ID!=organizationMember.OrganizationID\|\|organization.Deleted!=arg.Deleted {`
	`3783`	`+iforganization.ID!=organizationMember.OrganizationID {`
	`3784`	`+continue`
	`3785`	`+}`
	`3786`	`+`
	`3787`	`+ifarg.Deleted.Valid&&organization.Deleted!=arg.Deleted.Bool {`
`3778`	`3788`	`continue`
`3779`	`3789`	`}`
`3780`	`3790`	`organizations=append(organizations,organization)`

`‎coderd/database/queries.sql.go‎`

Lines changed: 9 additions & 4 deletions

Some generated files are not rendered by default. Learn more aboutcustomizing how changed files appear on GitHub.

`‎coderd/database/queries/organizations.sql‎`

Lines changed: 7 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -55,8 +55,13 @@ SELECT`
`55`	`55`	`FROM`
`56`	`56`	`organizations`
`57`	`57`	`WHERE`
`58`		`--- Optionally include deleted organizations`
`59`		`- deleted= @deletedAND`
	`58`	`+-- Optionally provide a filter for deleted organizations.`
	`59`	`+ CASE WHEN`
	`60`	`+sqlc.narg('deleted') ::boolean ISNULL THEN`
	`61`	`+true`
	`62`	`+ELSE`
	`63`	`+deleted=sqlc.narg('deleted')`
	`64`	`+ENDAND`
`60`	`65`	`id= ANY(`
`61`	`66`	`SELECT`
`62`	`67`	`organization_id`

`‎coderd/idpsync/organization.go‎`

Lines changed: 53 additions & 4 deletions

Original file line number	Diff line number	Diff line change
`@@ -92,14 +92,16 @@ func (s AGPLIDPSync) SyncOrganizations(ctx context.Context, tx database.Store, u`
`92`	`92`	`returnnil// No sync configured, nothing to do`
`93`	`93`	`}`
`94`	`94`
`95`		`-expectedOrgs,err:=orgSettings.ParseClaims(ctx,tx,params.MergedClaims)`
	`95`	`+expectedOrgIDs,err:=orgSettings.ParseClaims(ctx,tx,params.MergedClaims)`
`96`	`96`	`iferr!=nil {`
`97`	`97`	`returnxerrors.Errorf("organization claims: %w",err)`
`98`	`98`	`}`
`99`	`99`
	`100`	`+// Fetch all organizations, even deleted ones. This is to remove a user`
	`101`	`+// from any deleted organizations they may be in.`
`100`	`102`	`existingOrgs,err:=tx.GetOrganizationsByUserID(ctx, database.GetOrganizationsByUserIDParams{`
`101`	`103`	`UserID:user.ID,`
`102`		`-Deleted:false,`
	`104`	`+Deleted:sql.NullBool{},`
`103`	`105`	`})`
`104`	`106`	`iferr!=nil {`
`105`	`107`	`returnxerrors.Errorf("failed to get user organizations: %w",err)`
`@@ -109,10 +111,35 @@ func (s AGPLIDPSync) SyncOrganizations(ctx context.Context, tx database.Store, u`
`109`	`111`	`returnorg.ID`
`110`	`112`	`})`
`111`	`113`
	`114`	`+// finalExpected is the final set of org ids the user is expected to be in.`
	`115`	`+// Deleted orgs are omitted from this set.`
	`116`	`+finalExpected:=expectedOrgIDs`
	`117`	`+iflen(expectedOrgIDs)>0 {`
	`118`	`+// If you pass in an empty slice to the db arg, you get all orgs. So the slice`
	`119`	`+// has to be non-empty to get the expected set. Logically it also does not make`
	`120`	`+// sense to fetch an empty set from the db.`
	`121`	`+expectedOrganizations,err:=tx.GetOrganizations(ctx, database.GetOrganizationsParams{`
	`122`	`+IDs:expectedOrgIDs,`
	`123`	`+// Do not include deleted organizations. Omitting deleted orgs will remove the`
	`124`	`+// user from any deleted organizations they are a member of.`
	`125`	`+Deleted:false,`
	`126`	`+})`
	`127`	`+iferr!=nil {`
	`128`	`+returnxerrors.Errorf("failed to get expected organizations: %w",err)`
	`129`	`+}`
	`130`	`+finalExpected=db2sdk.List(expectedOrganizations,func(org database.Organization) uuid.UUID {`
	`131`	`+returnorg.ID`
	`132`	`+})`
	`133`	`+}`
	`134`	`+`
`112`	`135`	`// Find the difference in the expected and the existing orgs, and`
`113`	`136`	`// correct the set of orgs the user is a member of.`
`114`		`-add,remove:=slice.SymmetricDifference(existingOrgIDs,expectedOrgs)`
`115`		`-notExists:=make([]uuid.UUID,0)`
	`137`	`+add,remove:=slice.SymmetricDifference(existingOrgIDs,finalExpected)`
	`138`	`+// notExists is purely for debugging. It logs when the settings want`
	`139`	`+// a user in an organization, but the organization does not exist.`
	`140`	`+notExists:=slice.DifferenceFunc(expectedOrgIDs,finalExpected,func(a,b uuid.UUID)bool {`
	`141`	`+returna==b`
	`142`	`+})`
`116`	`143`	`for_,orgID:=rangeadd {`
`117`	`144`	`_,err:=tx.InsertOrganizationMember(ctx, database.InsertOrganizationMemberParams{`
`118`	`145`	`OrganizationID:orgID,`
`@@ -123,9 +150,30 @@ func (s AGPLIDPSync) SyncOrganizations(ctx context.Context, tx database.Store, u`
`123`	`150`	`})`
`124`	`151`	`iferr!=nil {`
`125`	`152`	`ifxerrors.Is(err,sql.ErrNoRows) {`
	`153`	`+// This should not happen because we check the org existence`
	`154`	`+// beforehand.`
`126`	`155`	`notExists=append(notExists,orgID)`
`127`	`156`	`continue`
`128`	`157`	`}`
	`158`	`+`
	`159`	`+ifdatabase.IsUniqueViolation(err,database.UniqueOrganizationMembersPkey) {`
	`160`	`+// If we hit this error we have a bug. The user already exists in the`
	`161`	`+// organization, but was not detected to be at the start of this function.`
	`162`	`+// Instead of failing the function, an error will be logged. This is to not bring`
	`163`	`+// down the entire syncing behavior from a single failed org. Failing this can`
	`164`	`+// prevent user logins, so only fatal non-recoverable errors should be returned.`
	`165`	`+//`
	`166`	`+// Inserting a user is privilege escalation. So skipping this instead of failing`
	`167`	`+// leaves the user with fewer permissions. So this is safe from a security`
	`168`	`+// perspective to continue.`
	`169`	`+s.Logger.Error(ctx,"syncing user to organization failed as they are already a member, please report this failure to Coder",`
	`170`	`+slog.F("user_id",user.ID),`
	`171`	`+slog.F("username",user.Username),`
	`172`	`+slog.F("organization_id",orgID),`
	`173`	`+slog.Error(err),`
	`174`	`+)`
	`175`	`+continue`
	`176`	`+}`
`129`	`177`	`returnxerrors.Errorf("add user to organization: %w",err)`
`130`	`178`	`}`
`131`	`179`	`}`
`@@ -141,6 +189,7 @@ func (s AGPLIDPSync) SyncOrganizations(ctx context.Context, tx database.Store, u`
`141`	`189`	`}`
`142`	`190`
`143`	`191`	`iflen(notExists)>0 {`
	`192`	`+notExists=slice.Unique(notExists)// Remove duplicates`
`144`	`193`	`s.Logger.Debug(ctx,"organizations do not exist but attempted to use in org sync",`
`145`	`194`	`slog.F("not_found",notExists),`
`146`	`195`	`slog.F("user_id",user.ID),`

`‎coderd/idpsync/organizations_test.go‎`

Lines changed: 111 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,13 +1,19 @@`
`1`	`1`	`package idpsync_test`
`2`	`2`
`3`	`3`	`import (`
	`4`	`+"database/sql"`
`4`	`5`	`"testing"`
`5`	`6`
`6`	`7`	`"github.com/golang-jwt/jwt/v4"`
`7`	`8`	`"github.com/google/uuid"`
`8`	`9`	`"github.com/stretchr/testify/require"`
`9`	`10`
`10`	`11`	`"cdr.dev/slog/sloggers/slogtest"`
	`12`	`+"github.com/coder/coder/v2/coderd/database"`
	`13`	`+"github.com/coder/coder/v2/coderd/database/db2sdk"`
	`14`	`+"github.com/coder/coder/v2/coderd/database/dbfake"`
	`15`	`+"github.com/coder/coder/v2/coderd/database/dbgen"`
	`16`	`+"github.com/coder/coder/v2/coderd/database/dbtestutil"`
`11`	`17`	`"github.com/coder/coder/v2/coderd/idpsync"`
`12`	`18`	`"github.com/coder/coder/v2/coderd/runtimeconfig"`
`13`	`19`	`"github.com/coder/coder/v2/testutil"`
`@@ -38,3 +44,108 @@ func TestParseOrganizationClaims(t *testing.T) {`
`38`	`44`	`require.False(t,params.SyncEntitled)`
`39`	`45`	`})`
`40`	`46`	`}`
	`47`	`+`
	`48`	`+funcTestSyncOrganizations(t*testing.T) {`
	`49`	`+t.Parallel()`
	`50`	`+`
	`51`	`+// This test creates some deleted organizations and checks the behavior is`
	`52`	`+// correct.`
	`53`	`+t.Run("SyncUserToDeletedOrg",func(t*testing.T) {`
	`54`	`+t.Parallel()`
	`55`	`+`
	`56`	`+ctx:=testutil.Context(t,testutil.WaitMedium)`
	`57`	`+db,_:=dbtestutil.NewDB(t)`
	`58`	`+user:=dbgen.User(t,db, database.User{})`
	`59`	`+`
	`60`	`+// Create orgs for:`
	`61`	`+// - stays = User is a member, and stays`
	`62`	`+// - leaves = User is a member, and leaves`
	`63`	`+// - joins = User is not a member, and joins`
	`64`	`+// For deleted orgs, the user should not be a member of afterwards.`
	`65`	`+// - deletedStays = User is a member of deleted org, and wants to stay`
	`66`	`+// - deletedLeaves = User is a member of deleted org, and wants to leave`
	`67`	`+// - deletedJoins = User is not a member of deleted org, and wants to join`
	`68`	`+stays:=dbfake.Organization(t,db).Members(user).Do()`
	`69`	`+leaves:=dbfake.Organization(t,db).Members(user).Do()`
	`70`	`+joins:=dbfake.Organization(t,db).Do()`
	`71`	`+`
	`72`	`+deletedStays:=dbfake.Organization(t,db).Members(user).Deleted(true).Do()`
	`73`	`+deletedLeaves:=dbfake.Organization(t,db).Members(user).Deleted(true).Do()`
	`74`	`+deletedJoins:=dbfake.Organization(t,db).Deleted(true).Do()`
	`75`	`+`
	`76`	`+// Now sync the user to the deleted organization`
	`77`	`+s:=idpsync.NewAGPLSync(`
	`78`	`+slogtest.Make(t,&slogtest.Options{}),`
	`79`	`+runtimeconfig.NewManager(),`
	`80`	`+idpsync.DeploymentSyncSettings{`
	`81`	`+OrganizationField:"orgs",`
	`82`	`+OrganizationMapping:map[string][]uuid.UUID{`
	`83`	`+"stay": {stays.Org.ID,deletedStays.Org.ID},`
	`84`	`+"leave": {leaves.Org.ID,deletedLeaves.Org.ID},`
	`85`	`+"join": {joins.Org.ID,deletedJoins.Org.ID},`
	`86`	`+},`
	`87`	`+OrganizationAssignDefault:false,`
	`88`	`+},`
	`89`	`+)`
	`90`	`+`
	`91`	`+err:=s.SyncOrganizations(ctx,db,user, idpsync.OrganizationParams{`
	`92`	`+SyncEntitled:true,`
	`93`	`+MergedClaims:map[string]interface{}{`
	`94`	`+"orgs": []string{"stay","join"},`
	`95`	`+},`
	`96`	`+})`
	`97`	`+require.NoError(t,err)`
	`98`	`+`
	`99`	`+orgs,err:=db.GetOrganizationsByUserID(ctx, database.GetOrganizationsByUserIDParams{`
	`100`	`+UserID:user.ID,`
	`101`	`+Deleted: sql.NullBool{},`
	`102`	`+})`
	`103`	`+require.NoError(t,err)`
	`104`	`+require.Len(t,orgs,2)`
	`105`	`+`
	`106`	`+// Verify the user only exists in 2 orgs. The one they stayed, and the one they`
	`107`	`+// joined.`
	`108`	`+inIDs:=db2sdk.List(orgs,func(org database.Organization) uuid.UUID {`
	`109`	`+returnorg.ID`
	`110`	`+})`
	`111`	`+require.ElementsMatch(t, []uuid.UUID{stays.Org.ID,joins.Org.ID},inIDs)`
	`112`	`+})`
	`113`	`+`
	`114`	`+t.Run("UserToZeroOrgs",func(t*testing.T) {`
	`115`	`+t.Parallel()`
	`116`	`+`
	`117`	`+ctx:=testutil.Context(t,testutil.WaitMedium)`
	`118`	`+db,_:=dbtestutil.NewDB(t)`
	`119`	`+user:=dbgen.User(t,db, database.User{})`
	`120`	`+`
	`121`	`+deletedLeaves:=dbfake.Organization(t,db).Members(user).Deleted(true).Do()`
	`122`	`+`
	`123`	`+// Now sync the user to the deleted organization`
	`124`	`+s:=idpsync.NewAGPLSync(`
	`125`	`+slogtest.Make(t,&slogtest.Options{}),`
	`126`	`+runtimeconfig.NewManager(),`
	`127`	`+idpsync.DeploymentSyncSettings{`
	`128`	`+OrganizationField:"orgs",`
	`129`	`+OrganizationMapping:map[string][]uuid.UUID{`
	`130`	`+"leave": {deletedLeaves.Org.ID},`
	`131`	`+},`
	`132`	`+OrganizationAssignDefault:false,`
	`133`	`+},`
	`134`	`+)`
	`135`	`+`
	`136`	`+err:=s.SyncOrganizations(ctx,db,user, idpsync.OrganizationParams{`
	`137`	`+SyncEntitled:true,`
	`138`	`+MergedClaims:map[string]interface{}{`
	`139`	`+"orgs": []string{},`
	`140`	`+},`
	`141`	`+})`
	`142`	`+require.NoError(t,err)`
	`143`	`+`
	`144`	`+orgs,err:=db.GetOrganizationsByUserID(ctx, database.GetOrganizationsByUserIDParams{`
	`145`	`+UserID:user.ID,`
	`146`	`+Deleted: sql.NullBool{},`
	`147`	`+})`
	`148`	`+require.NoError(t,err)`
	`149`	`+require.Len(t,orgs,0)`
	`150`	`+})`
	`151`	`+}`

`‎coderd/users.go‎`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -1274,7 +1274,7 @@ func (api API) organizationsByUser(rw http.ResponseWriter, r http.Request) {`
`1274`	`1274`
`1275`	`1275`	`organizations,err:=api.Database.GetOrganizationsByUserID(ctx, database.GetOrganizationsByUserIDParams{`
`1276`	`1276`	`UserID:user.ID,`
`1277`		`-Deleted:false,`
	`1277`	`+Deleted:sql.NullBool{Bool:false,Valid:true},`
`1278`	`1278`	`})`
`1279`	`1279`	`iferrors.Is(err,sql.ErrNoRows) {`
`1280`	`1280`	`err=nil`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit7670820

File tree

9 files changed

9 files changed

`‎coderd/database/dbauthz/dbauthz_test.go‎`

`‎coderd/database/dbfake/builder.go‎`

`‎coderd/database/dbmem/dbmem.go‎`

`‎coderd/database/queries.sql.go‎`

`‎coderd/database/queries/organizations.sql‎`

`‎coderd/idpsync/organization.go‎`

`‎coderd/idpsync/organizations_test.go‎`

`‎coderd/users.go‎`

0 commit comments