NotificationsYou must be signed in to change notification settings
Fork928
Star10.1k

Commit769ac83

committed

more fixups

1 parent7ee9294 commit769ac83Copy full SHA for 769ac83

File tree

7 files changed

+72

-73

lines changed

coderd
- database/dbauthz
  - dbauthz.go
- rbac
  - authz_internal_test.go
  - rolestore
    - rolestore_test.go
- roles_test.go
- searchquery
  - search_test.go
- workspacebuilds_test.go
- workspaces_test.go

7 files changed

+72

-73

lines changed

`‎coderd/database/dbauthz/dbauthz.go`

Lines changed: 35 additions & 35 deletions

Original file line number	Diff line number	Diff line change
`@@ -307,9 +307,9 @@ func As(ctx context.Context, actor rbac.Subject) context.Context {`
`307`	`307`	`// running the insertFunc. The insertFunc is expected to return the object that`
`308`	`308`	`// was inserted.`
`309`	`309`	`funcinsert[`
`310`		`-ObjectTypeany,`
`311`		`-ArgumentTypeany,`
`312`		`-Insertfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
	`310`	`+ObjectTypeany,`
	`311`	`+ArgumentTypeany,`
	`312`	`+Insertfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
`313`	`313`	`](`
`314`	`314`	`logger slog.Logger,`
`315`	`315`	`authorizer rbac.Authorizer,`
`@@ -320,9 +320,9 @@ Insert func(ctx context.Context, arg ArgumentType) (ObjectType, error),`
`320`	`320`	`}`
`321`	`321`
`322`	`322`	`funcinsertWithAction[`
`323`		`-ObjectTypeany,`
`324`		`-ArgumentTypeany,`
`325`		`-Insertfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
	`323`	`+ObjectTypeany,`
	`324`	`+ArgumentTypeany,`
	`325`	`+Insertfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
`326`	`326`	`](`
`327`	`327`	`logger slog.Logger,`
`328`	`328`	`authorizer rbac.Authorizer,`
`@@ -349,10 +349,10 @@ Insert func(ctx context.Context, arg ArgumentType) (ObjectType, error),`
`349`	`349`	`}`
`350`	`350`
`351`	`351`	`funcdeleteQ[`
`352`		`-ObjectType rbac.Objecter,`
`353`		`-ArgumentTypeany,`
`354`		`-Fetchfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
`355`		`-Deletefunc(ctx context.Context,argArgumentType)error,`
	`352`	`+ObjectType rbac.Objecter,`
	`353`	`+ArgumentTypeany,`
	`354`	`+Fetchfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
	`355`	`+Deletefunc(ctx context.Context,argArgumentType)error,`
`356`	`356`	`](`
`357`	`357`	`logger slog.Logger,`
`358`	`358`	`authorizer rbac.Authorizer,`
`@@ -364,10 +364,10 @@ Delete func(ctx context.Context, arg ArgumentType) error,`
`364`	`364`	`}`
`365`	`365`
`366`	`366`	`funcupdateWithReturn[`
`367`		`-ObjectType rbac.Objecter,`
`368`		`-ArgumentTypeany,`
`369`		`-Fetchfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
`370`		`-UpdateQueryfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
	`367`	`+ObjectType rbac.Objecter,`
	`368`	`+ArgumentTypeany,`
	`369`	`+Fetchfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
	`370`	`+UpdateQueryfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
`371`	`371`	`](`
`372`	`372`	`logger slog.Logger,`
`373`	`373`	`authorizer rbac.Authorizer,`
`@@ -378,10 +378,10 @@ UpdateQuery func(ctx context.Context, arg ArgumentType) (ObjectType, error),`
`378`	`378`	`}`
`379`	`379`
`380`	`380`	`funcupdate[`
`381`		`-ObjectType rbac.Objecter,`
`382`		`-ArgumentTypeany,`
`383`		`-Fetchfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
`384`		`-Execfunc(ctx context.Context,argArgumentType)error,`
	`381`	`+ObjectType rbac.Objecter,`
	`382`	`+ArgumentTypeany,`
	`383`	`+Fetchfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
	`384`	`+Execfunc(ctx context.Context,argArgumentType)error,`
`385`	`385`	`](`
`386`	`386`	`logger slog.Logger,`
`387`	`387`	`authorizer rbac.Authorizer,`
`@@ -399,9 +399,9 @@ Exec func(ctx context.Context, arg ArgumentType) error,`
`399`	`399`	`// user cannot read the resource. This is because the resource details are`
`400`	`400`	`// required to run a proper authorization check.`
`401`	`401`	`funcfetchWithAction[`
`402`		`-ArgumentTypeany,`
`403`		`-ObjectType rbac.Objecter,`
`404`		`-DatabaseFuncfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
	`402`	`+ArgumentTypeany,`
	`403`	`+ObjectType rbac.Objecter,`
	`404`	`+DatabaseFuncfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
`405`	`405`	`](`
`406`	`406`	`logger slog.Logger,`
`407`	`407`	`authorizer rbac.Authorizer,`
`@@ -432,9 +432,9 @@ DatabaseFunc func(ctx context.Context, arg ArgumentType) (ObjectType, error),`
`432`	`432`	`}`
`433`	`433`
`434`	`434`	`funcfetch[`
`435`		`-ArgumentTypeany,`
`436`		`-ObjectType rbac.Objecter,`
`437`		`-DatabaseFuncfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
	`435`	`+ArgumentTypeany,`
	`436`	`+ObjectType rbac.Objecter,`
	`437`	`+DatabaseFuncfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
`438`	`438`	`](`
`439`	`439`	`logger slog.Logger,`
`440`	`440`	`authorizer rbac.Authorizer,`
`@@ -447,10 +447,10 @@ DatabaseFunc func(ctx context.Context, arg ArgumentType) (ObjectType, error),`
`447`	`447`	`// from SQL 'exec' functions which only return an error.`
`448`	`448`	`// See fetchAndQuery for more information.`
`449`	`449`	`funcfetchAndExec[`
`450`		`-ObjectType rbac.Objecter,`
`451`		`-ArgumentTypeany,`
`452`		`-Fetchfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
`453`		`-Execfunc(ctx context.Context,argArgumentType)error,`
	`450`	`+ObjectType rbac.Objecter,`
	`451`	`+ArgumentTypeany,`
	`452`	`+Fetchfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
	`453`	`+Execfunc(ctx context.Context,argArgumentType)error,`
`454`	`454`	`](`
`455`	`455`	`logger slog.Logger,`
`456`	`456`	`authorizer rbac.Authorizer,`
`@@ -473,10 +473,10 @@ Exec func(ctx context.Context, arg ArgumentType) error,`
`473`	`473`	`// before the query runs. The returns from the fetch are only used to`
`474`	`474`	`// assert rbac. The final return of this function comes from the Query function.`
`475`	`475`	`funcfetchAndQuery[`
`476`		`-ObjectType rbac.Objecter,`
`477`		`-ArgumentTypeany,`
`478`		`-Fetchfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
`479`		`-Queryfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
	`476`	`+ObjectType rbac.Objecter,`
	`477`	`+ArgumentTypeany,`
	`478`	`+Fetchfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
	`479`	`+Queryfunc(ctx context.Context,argArgumentType) (ObjectType,error),`
`480`	`480`	`](`
`481`	`481`	`logger slog.Logger,`
`482`	`482`	`authorizer rbac.Authorizer,`
`@@ -510,9 +510,9 @@ Query func(ctx context.Context, arg ArgumentType) (ObjectType, error),`
`510`	`510`	`// fetchWithPostFilter is like fetch, but works with lists of objects.`
`511`	`511`	`// SQL filters are much more optimal.`
`512`	`512`	`funcfetchWithPostFilter[`
`513`		`-ArgumentTypeany,`
`514`		`-ObjectType rbac.Objecter,`
`515`		`-DatabaseFuncfunc(ctx context.Context,argArgumentType) ([]ObjectType,error),`
	`513`	`+ArgumentTypeany,`
	`514`	`+ObjectType rbac.Objecter,`
	`515`	`+DatabaseFuncfunc(ctx context.Context,argArgumentType) ([]ObjectType,error),`
`516`	`516`	`](`
`517`	`517`	`authorizer rbac.Authorizer,`
`518`	`518`	`action policy.Action,`

`‎coderd/rbac/authz_internal_test.go`

Lines changed: 8 additions & 8 deletions

Original file line number	Diff line number	Diff line change
`@@ -394,7 +394,7 @@ func TestAuthorizeDomain(t *testing.T) {`
`394`	`394`	`ID:"me",`
`395`	`395`	`Scope:must(ExpandScope(ScopeAll)),`
`396`	`396`	`Roles:Roles{{`
`397`		`-Name:"deny-all",`
	`397`	`+Name:RoleIdentifier{Name:"deny-all"},`
`398`	`398`	`// List out deny permissions explicitly`
`399`	`399`	`Site: []Permission{`
`400`	`400`	`{`
`@@ -607,7 +607,7 @@ func TestAuthorizeDomain(t *testing.T) {`
`607`	`607`	`Scope:must(ExpandScope(ScopeAll)),`
`608`	`608`	`Roles:Roles{`
`609`	`609`	`{`
`610`		`-Name:"ReadOnlyOrgAndUser",`
	`610`	`+Name:RoleIdentifier{Name:"ReadOnlyOrgAndUser"},`
`611`	`611`	`Site: []Permission{},`
`612`	`612`	`Org:map[string][]Permission{`
`613`	`613`	`defOrg.String(): {{`
`@@ -701,7 +701,7 @@ func TestAuthorizeLevels(t *testing.T) {`
`701`	`701`	`Roles:Roles{`
`702`	`702`	`must(RoleByName(RoleOwner())),`
`703`	`703`	`{`
`704`		`-Name:"org-deny:"+defOrg.String(),`
	`704`	`+Name:RoleIdentifier{Name:"org-deny:",OrganizationID:defOrg},`
`705`	`705`	`Org:map[string][]Permission{`
`706`	`706`	`defOrg.String(): {`
`707`	`707`	`{`
`@@ -713,7 +713,7 @@ func TestAuthorizeLevels(t *testing.T) {`
`713`	`713`	`},`
`714`	`714`	`},`
`715`	`715`	`{`
`716`		`-Name:"user-deny-all",`
	`716`	`+Name:RoleIdentifier{Name:"user-deny-all"},`
`717`	`717`	`// List out deny permissions explicitly`
`718`	`718`	`User: []Permission{`
`719`	`719`	`{`
`@@ -761,7 +761,7 @@ func TestAuthorizeLevels(t *testing.T) {`
`761`	`761`	`Scope:must(ExpandScope(ScopeAll)),`
`762`	`762`	`Roles:Roles{`
`763`	`763`	`{`
`764`		`-Name:"site-noise",`
	`764`	`+Name:RoleIdentifier{Name:"site-noise"},`
`765`	`765`	`Site: []Permission{`
`766`	`766`	`{`
`767`	`767`	`Negate:true,`
`@@ -772,7 +772,7 @@ func TestAuthorizeLevels(t *testing.T) {`
`772`	`772`	`},`
`773`	`773`	`must(RoleByName(ScopedRoleOrgAdmin(defOrg))),`
`774`	`774`	`{`
`775`		`-Name:"user-deny-all",`
	`775`	`+Name:RoleIdentifier{Name:"user-deny-all"},`
`776`	`776`	`// List out deny permissions explicitly`
`777`	`777`	`User: []Permission{`
`778`	`778`	`{`
`@@ -896,7 +896,7 @@ func TestAuthorizeScope(t *testing.T) {`
`896`	`896`	`},`
`897`	`897`	`Scope:Scope{`
`898`	`898`	`Role:Role{`
`899`		`-Name:"workspace_agent",`
	`899`	`+Name:RoleIdentifier{Name:"workspace_agent"},`
`900`	`900`	`DisplayName:"Workspace Agent",`
`901`	`901`	`Site:Permissions(map[string][]policy.Action{`
`902`	`902`	`// Only read access for workspaces.`
`@@ -985,7 +985,7 @@ func TestAuthorizeScope(t *testing.T) {`
`985`	`985`	`},`
`986`	`986`	`Scope:Scope{`
`987`	`987`	`Role:Role{`
`988`		`-Name:"create_workspace",`
	`988`	`+Name:RoleIdentifier{Name:"create_workspace"},`
`989`	`989`	`DisplayName:"Create Workspace",`
`990`	`990`	`Site:Permissions(map[string][]policy.Action{`
`991`	`991`	`// Only read access for workspaces.`

`‎coderd/rbac/rolestore/rolestore_test.go`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -35,7 +35,7 @@ func TestExpandCustomRoleRoles(t *testing.T) {`
`35`	`35`	`})`
`36`	`36`
`37`	`37`	`ctx:=testutil.Context(t,testutil.WaitShort)`
`38`		`-roles,err:=rolestore.Expand(ctx,db, []string{rbac.RoleIdentifier(roleName,org.ID.String())})`
	`38`	`+roles,err:=rolestore.Expand(ctx,db, []rbac.RoleIdentifier{{Name:roleName,OrganizationID:org.ID}})`
`39`	`39`	`require.NoError(t,err)`
`40`	`40`	`require.Len(t,roles,1,"role found")`
`41`	`41`	`}`

`‎coderd/roles_test.go`

Lines changed: 23 additions & 23 deletions

Original file line number	Diff line number	Diff line change
`@@ -51,20 +51,20 @@ func TestListRoles(t *testing.T) {`
`51`	`51`	`x,err:=member.ListSiteRoles(ctx)`
`52`	`52`	`returnx,err`
`53`	`53`	`},`
`54`		`-ExpectedRoles:convertRoles(map[string]bool{`
`55`		`-"owner":false,`
`56`		`-"auditor":false,`
`57`		`-"template-admin":false,`
`58`		`-"user-admin":false,`
	`54`	`+ExpectedRoles:convertRoles(map[rbac.RoleIdentifier]bool{`
	`55`	`+rbac.RoleIdentifier{Name:codersdk.RoleOwner}:false,`
	`56`	`+rbac.RoleIdentifier{Name:codersdk.RoleAuditor}:false,`
	`57`	`+rbac.RoleIdentifier{Name:codersdk.RoleTemplateAdmin}:false,`
	`58`	`+rbac.RoleIdentifier{Name:codersdk.RoleUserAdmin}:false,`
`59`	`59`	`}),`
`60`	`60`	`},`
`61`	`61`	`{`
`62`	`62`	`Name:"OrgMemberListOrg",`
`63`	`63`	`APICall:func(ctx context.Context) ([]codersdk.AssignableRoles,error) {`
`64`	`64`	`returnmember.ListOrganizationRoles(ctx,owner.OrganizationID)`
`65`	`65`	`},`
`66`		`-ExpectedRoles:convertRoles(map[string]bool{`
`67`		`-rbac.ScopedRoleOrgAdmin(owner.OrganizationID):false,`
	`66`	`+ExpectedRoles:convertRoles(map[rbac.RoleIdentifier]bool{`
	`67`	`+rbac.RoleIdentifier{Name:codersdk.RoleOrganizationAdmin,OrganizationID:owner.OrganizationID}:false,`
`68`	`68`	`}),`
`69`	`69`	`},`
`70`	`70`	`{`
`@@ -80,20 +80,20 @@ func TestListRoles(t *testing.T) {`
`80`	`80`	`APICall:func(ctx context.Context) ([]codersdk.AssignableRoles,error) {`
`81`	`81`	`returnorgAdmin.ListSiteRoles(ctx)`
`82`	`82`	`},`
`83`		`-ExpectedRoles:convertRoles(map[string]bool{`
`84`		`-"owner":false,`
`85`		`-"auditor":false,`
`86`		`-"template-admin":false,`
`87`		`-"user-admin":false,`
	`83`	`+ExpectedRoles:convertRoles(map[rbac.RoleIdentifier]bool{`
	`84`	`+rbac.RoleIdentifier{Name:codersdk.RoleOwner}:false,`
	`85`	`+rbac.RoleIdentifier{Name:codersdk.RoleAuditor}:false,`
	`86`	`+rbac.RoleIdentifier{Name:codersdk.RoleTemplateAdmin}:false,`
	`87`	`+rbac.RoleIdentifier{Name:codersdk.RoleUserAdmin}:false,`
`88`	`88`	`}),`
`89`	`89`	`},`
`90`	`90`	`{`
`91`	`91`	`Name:"OrgAdminListOrg",`
`92`	`92`	`APICall:func(ctx context.Context) ([]codersdk.AssignableRoles,error) {`
`93`	`93`	`returnorgAdmin.ListOrganizationRoles(ctx,owner.OrganizationID)`
`94`	`94`	`},`
`95`		`-ExpectedRoles:convertRoles(map[string]bool{`
`96`		`-rbac.ScopedRoleOrgAdmin(owner.OrganizationID):true,`
	`95`	`+ExpectedRoles:convertRoles(map[rbac.RoleIdentifier]bool{`
	`96`	`+rbac.RoleIdentifier{Name:codersdk.RoleOrganizationAdmin,OrganizationID:owner.OrganizationID}:true,`
`97`	`97`	`}),`
`98`	`98`	`},`
`99`	`99`	`{`
`@@ -109,20 +109,20 @@ func TestListRoles(t *testing.T) {`
`109`	`109`	`APICall:func(ctx context.Context) ([]codersdk.AssignableRoles,error) {`
`110`	`110`	`returnclient.ListSiteRoles(ctx)`
`111`	`111`	`},`
`112`		`-ExpectedRoles:convertRoles(map[string]bool{`
`113`		`-"owner":true,`
`114`		`-"auditor":true,`
`115`		`-"template-admin":true,`
`116`		`-"user-admin":true,`
	`112`	`+ExpectedRoles:convertRoles(map[rbac.RoleIdentifier]bool{`
	`113`	`+rbac.RoleIdentifier{Name:codersdk.RoleOwner}:true,`
	`114`	`+rbac.RoleIdentifier{Name:codersdk.RoleAuditor}:true,`
	`115`	`+rbac.RoleIdentifier{Name:codersdk.RoleTemplateAdmin}:true,`
	`116`	`+rbac.RoleIdentifier{Name:codersdk.RoleUserAdmin}:true,`
`117`	`117`	`}),`
`118`	`118`	`},`
`119`	`119`	`{`
`120`	`120`	`Name:"AdminListOrg",`
`121`	`121`	`APICall:func(ctx context.Context) ([]codersdk.AssignableRoles,error) {`
`122`	`122`	`returnclient.ListOrganizationRoles(ctx,owner.OrganizationID)`
`123`	`123`	`},`
`124`		`-ExpectedRoles:convertRoles(map[string]bool{`
`125`		`-rbac.ScopedRoleOrgAdmin(owner.OrganizationID):true,`
	`124`	`+ExpectedRoles:convertRoles(map[rbac.RoleIdentifier]bool{`
	`125`	`+rbac.RoleIdentifier{Name:codersdk.RoleOrganizationAdmin,OrganizationID:owner.OrganizationID}:true,`
`126`	`126`	`}),`
`127`	`127`	`},`
`128`	`128`	`}`
`@@ -200,12 +200,12 @@ func TestListCustomRoles(t *testing.T) {`
`200`	`200`	`})`
`201`	`201`	`}`
`202`	`202`
`203`		`-funcconvertRole(roleNamestring) codersdk.Role {`
	`203`	`+funcconvertRole(roleNamerbac.RoleIdentifier) codersdk.Role {`
`204`	`204`	`role,_:=rbac.RoleByName(roleName)`
`205`	`205`	`returndb2sdk.RBACRole(role)`
`206`	`206`	`}`
`207`	`207`
`208`		`-funcconvertRoles(assignableRolesmap[string]bool) []codersdk.AssignableRoles {`
	`208`	`+funcconvertRoles(assignableRolesmap[rbac.RoleIdentifier]bool) []codersdk.AssignableRoles {`
`209`	`209`	`converted:=make([]codersdk.AssignableRoles,0,len(assignableRoles))`
`210`	`210`	`forroleName,assignable:=rangeassignableRoles {`
`211`	`211`	`role:=convertRole(roleName)`

`‎coderd/searchquery/search_test.go`

Lines changed: 3 additions & 4 deletions

Original file line number	Diff line number	Diff line change
`@@ -11,7 +11,6 @@ import (`
`11`	`11`	`"github.com/stretchr/testify/require"`
`12`	`12`
`13`	`13`	`"github.com/coder/coder/v2/coderd/database"`
`14`		`-"github.com/coder/coder/v2/coderd/rbac"`
`15`	`14`	`"github.com/coder/coder/v2/coderd/searchquery"`
`16`	`15`	`"github.com/coder/coder/v2/codersdk"`
`17`	`16`	`)`
`@@ -381,7 +380,7 @@ func TestSearchUsers(t *testing.T) {`
`381`	`380`	`Expected: database.GetUsersParams{`
`382`	`381`	`Search:"user-name",`
`383`	`382`	`Status: []database.UserStatus{database.UserStatusActive},`
`384`		`-RbacRole: []string{rbac.RoleOwner()},`
	`383`	`+RbacRole: []string{codersdk.RoleOwner},`
`385`	`384`	`},`
`386`	`385`	`},`
`387`	`386`	`{`
`@@ -390,7 +389,7 @@ func TestSearchUsers(t *testing.T) {`
`390`	`389`	`Expected: database.GetUsersParams{`
`391`	`390`	`Search:"user name",`
`392`	`391`	`Status: []database.UserStatus{database.UserStatusSuspended},`
`393`		`-RbacRole: []string{rbac.RoleMember()},`
	`392`	`+RbacRole: []string{codersdk.RoleMember},`
`394`	`393`	`},`
`395`	`394`	`},`
`396`	`395`	`{`
`@@ -399,7 +398,7 @@ func TestSearchUsers(t *testing.T) {`
`399`	`398`	`Expected: database.GetUsersParams{`
`400`	`399`	`Search:"user-name",`
`401`	`400`	`Status: []database.UserStatus{database.UserStatusActive},`
`402`		`-RbacRole: []string{rbac.RoleOwner()},`
	`401`	`+RbacRole: []string{codersdk.RoleOwner},`
`403`	`402`	`},`
`404`	`403`	`},`
`405`	`404`	`{`

`‎coderd/workspacebuilds_test.go`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -224,7 +224,7 @@ func TestWorkspaceBuilds(t *testing.T) {`
`224`	`224`	`t.Parallel()`
`225`	`225`	`client:=coderdtest.New(t,&coderdtest.Options{IncludeProvisionerDaemon:true})`
`226`	`226`	`first:=coderdtest.CreateFirstUser(t,client)`
`227`		`-second,secondUser:=coderdtest.CreateAnotherUser(t,client,first.OrganizationID,"owner")`
	`227`	`+second,secondUser:=coderdtest.CreateAnotherUser(t,client,first.OrganizationID,rbac.RoleOwner())`
`228`	`228`
`229`	`229`	`ctx,cancel:=context.WithTimeout(context.Background(),testutil.WaitLong)`
`230`	`230`	`defercancel()`

`‎coderd/workspaces_test.go`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -484,7 +484,7 @@ func TestWorkspacesSortOrder(t *testing.T) {`
`484`	`484`
`485`	`485`	`client,db:=coderdtest.NewWithDatabase(t,nil)`
`486`	`486`	`firstUser:=coderdtest.CreateFirstUser(t,client)`
`487`		`-secondUserClient,secondUser:=coderdtest.CreateAnotherUserMutators(t,client,firstUser.OrganizationID, []string{"owner"},func(r*codersdk.CreateUserRequest) {`
	`487`	`+secondUserClient,secondUser:=coderdtest.CreateAnotherUserMutators(t,client,firstUser.OrganizationID, []rbac.RoleIdentifier{rbac.RoleOwner()},func(r*codersdk.CreateUserRequest) {`
`488`	`488`	`r.Username="zzz"`
`489`	`489`	`})`
`490`	`490`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit769ac83

File tree

7 files changed

7 files changed

`‎coderd/database/dbauthz/dbauthz.go`

`‎coderd/rbac/authz_internal_test.go`

`‎coderd/rbac/rolestore/rolestore_test.go`

`‎coderd/roles_test.go`

`‎coderd/searchquery/search_test.go`

`‎coderd/workspacebuilds_test.go`

`‎coderd/workspaces_test.go`

0 commit comments