Commit7918e65

johnstcn

and

kylecarbs

authored

feat(coderd): add dbcrypt package (#9522)

- Adds package enterprise/dbcrypt to implement database encryption/decryption- Adds table dbcrypt_keys and associated queries- Adds columns oauth_access_token_key_id and oauth_refresh_token_key_id to tables git_auth_links and user_linksCo-authored-by: Kyle Carberry <kyle@coder.com>

1 parent3bd0fd3 commit7918e65Copy full SHA for 7918e65

File tree

22 files changed

+1996

-72

lines changed

coderd/database
- dbauthz
  - dbauthz.go
- dbfake
  - dbfake.go
- dbgen
  - dbgen.go
- dbmetrics
  - dbmetrics.go
- dbmock
  - dbmock.go
- dump.sql
- migrations
- models.go
- querier.go
- queries
- queries.sql.go
- sqlc.yaml
- unique_constraint.go
enterprise/dbcrypt

22 files changed

+1996

-72

lines changed

`‎coderd/database/dbauthz/dbauthz.go`

Lines changed: 35 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -838,6 +838,13 @@ func (q *querier) GetAuthorizationUserRoles(ctx context.Context, userID uuid.UUI`
`838`	`838`	`returnq.db.GetAuthorizationUserRoles(ctx,userID)`
`839`	`839`	`}`
`840`	`840`
	`841`	`+func (q*querier)GetDBCryptKeys(ctx context.Context) ([]database.DBCryptKey,error) {`
	`842`	`+iferr:=q.authorizeContext(ctx,rbac.ActionRead,rbac.ResourceSystem);err!=nil {`
	`843`	`+returnnil,err`
	`844`	`+}`
	`845`	`+returnq.db.GetDBCryptKeys(ctx)`
	`846`	`+}`
	`847`	`+`
`841`	`848`	`func (q*querier)GetDERPMeshKey(ctx context.Context) (string,error) {`
`842`	`849`	`iferr:=q.authorizeContext(ctx,rbac.ActionRead,rbac.ResourceSystem);err!=nil {`
`843`	`850`	`return"",err`
`@@ -914,6 +921,13 @@ func (q *querier) GetGitAuthLink(ctx context.Context, arg database.GetGitAuthLin`
`914`	`921`	`returnfetch(q.log,q.auth,q.db.GetGitAuthLink)(ctx,arg)`
`915`	`922`	`}`
`916`	`923`
	`924`	`+func (q*querier)GetGitAuthLinksByUserID(ctx context.Context,userID uuid.UUID) ([]database.GitAuthLink,error) {`
	`925`	`+iferr:=q.authorizeContext(ctx,rbac.ActionRead,rbac.ResourceSystem);err!=nil {`
	`926`	`+returnnil,err`
	`927`	`+}`
	`928`	`+returnq.db.GetGitAuthLinksByUserID(ctx,userID)`
	`929`	`+}`
	`930`	`+`
`917`	`931`	`func (q*querier)GetGitSSHKey(ctx context.Context,userID uuid.UUID) (database.GitSSHKey,error) {`
`918`	`932`	`returnfetch(q.log,q.auth,q.db.GetGitSSHKey)(ctx,userID)`
`919`	`933`	`}`
`@@ -1482,6 +1496,13 @@ func (q *querier) GetUserLinkByUserIDLoginType(ctx context.Context, arg database`
`1482`	`1496`	`returnq.db.GetUserLinkByUserIDLoginType(ctx,arg)`
`1483`	`1497`	`}`
`1484`	`1498`
	`1499`	`+func (q*querier)GetUserLinksByUserID(ctx context.Context,userID uuid.UUID) ([]database.UserLink,error) {`
	`1500`	`+iferr:=q.authorizeContext(ctx,rbac.ActionRead,rbac.ResourceSystem);err!=nil {`
	`1501`	`+returnnil,err`
	`1502`	`+}`
	`1503`	`+returnq.db.GetUserLinksByUserID(ctx,userID)`
	`1504`	`+}`
	`1505`	`+`
`1485`	`1506`	`func (q*querier)GetUsers(ctx context.Context,arg database.GetUsersParams) ([]database.GetUsersRow,error) {`
`1486`	`1507`	`// This does the filtering in SQL.`
`1487`	`1508`	`prep,err:=prepareSQLFilter(ctx,q.auth,rbac.ActionRead,rbac.ResourceUser.Type)`
`@@ -1845,6 +1866,13 @@ func (q *querier) InsertAuditLog(ctx context.Context, arg database.InsertAuditLo`
`1845`	`1866`	`returninsert(q.log,q.auth,rbac.ResourceAuditLog,q.db.InsertAuditLog)(ctx,arg)`
`1846`	`1867`	`}`
`1847`	`1868`
	`1869`	`+func (q*querier)InsertDBCryptKey(ctx context.Context,arg database.InsertDBCryptKeyParams)error {`
	`1870`	`+iferr:=q.authorizeContext(ctx,rbac.ActionCreate,rbac.ResourceSystem);err!=nil {`
	`1871`	`+returnerr`
	`1872`	`+}`
	`1873`	`+returnq.db.InsertDBCryptKey(ctx,arg)`
	`1874`	`+}`
	`1875`	`+`
`1848`	`1876`	`func (q*querier)InsertDERPMeshKey(ctx context.Context,valuestring)error {`
`1849`	`1877`	`iferr:=q.authorizeContext(ctx,rbac.ActionCreate,rbac.ResourceSystem);err!=nil {`
`1850`	`1878`	`returnerr`
`@@ -2144,6 +2172,13 @@ func (q *querier) RegisterWorkspaceProxy(ctx context.Context, arg database.Regis`
`2144`	`2172`	`returnupdateWithReturn(q.log,q.auth,fetch,q.db.RegisterWorkspaceProxy)(ctx,arg)`
`2145`	`2173`	`}`
`2146`	`2174`
	`2175`	`+func (q*querier)RevokeDBCryptKey(ctx context.Context,activeKeyDigeststring)error {`
	`2176`	`+iferr:=q.authorizeContext(ctx,rbac.ActionUpdate,rbac.ResourceSystem);err!=nil {`
	`2177`	`+returnerr`
	`2178`	`+}`
	`2179`	`+returnq.db.RevokeDBCryptKey(ctx,activeKeyDigest)`
	`2180`	`+}`
	`2181`	`+`
`2147`	`2182`	`func (q*querier)TryAcquireLock(ctx context.Context,idint64) (bool,error) {`
`2148`	`2183`	`returnq.db.TryAcquireLock(ctx,id)`
`2149`	`2184`	`}`

`‎coderd/database/dbfake/dbfake.go`

Lines changed: 133 additions & 13 deletions

Original file line number	Diff line number	Diff line change
`@@ -31,6 +31,11 @@ import (`
`31`	`31`
`32`	`32`	varvalidProxyByHostnameRegex=regexp.MustCompile(`^[a-zA-Z0-9._-]+$`)
`33`	`33`
	`34`	`+varerrForeignKeyConstraint=&pq.Error{`
	`35`	`+Code:"23503",`
	`36`	`+Message:"update or delete on table violates foreign key constraint",`
	`37`	`+}`
	`38`	`+`
`34`	`39`	`varerrDuplicateKey=&pq.Error{`
`35`	`40`	`Code:"23505",`
`36`	`41`	`Message:"duplicate key value violates unique constraint",`
`@@ -45,6 +50,7 @@ func New() database.Store {`
`45`	`50`	`organizationMembers:make([]database.OrganizationMember,0),`
`46`	`51`	`organizations:make([]database.Organization,0),`
`47`	`52`	`users:make([]database.User,0),`
	`53`	`+dbcryptKeys:make([]database.DBCryptKey,0),`
`48`	`54`	`gitAuthLinks:make([]database.GitAuthLink,0),`
`49`	`55`	`groups:make([]database.Group,0),`
`50`	`56`	`groupMembers:make([]database.GroupMember,0),`
`@@ -117,6 +123,7 @@ type data struct {`
`117`	`123`	`// New tables`
`118`	`124`	`workspaceAgentStats []database.WorkspaceAgentStat`
`119`	`125`	`auditLogs []database.AuditLog`
	`126`	`+dbcryptKeys []database.DBCryptKey`
`120`	`127`	`files []database.File`
`121`	`128`	`gitAuthLinks []database.GitAuthLink`
`122`	`129`	`gitSSHKey []database.GitSSHKey`
`@@ -665,6 +672,19 @@ func (q *FakeQuerier) isEveryoneGroup(id uuid.UUID) bool {`
`665`	`672`	`returnfalse`
`666`	`673`	`}`
`667`	`674`
	`675`	`+func (q*FakeQuerier)GetActiveDBCryptKeys(_ context.Context) ([]database.DBCryptKey,error) {`
	`676`	`+q.mutex.RLock()`
	`677`	`+deferq.mutex.RUnlock()`
	`678`	`+ks:=make([]database.DBCryptKey,0,len(q.dbcryptKeys))`
	`679`	`+for_,k:=rangeq.dbcryptKeys {`
	`680`	`+if!k.ActiveKeyDigest.Valid {`
	`681`	`+continue`
	`682`	`+}`
	`683`	`+ks=append([]database.DBCryptKey{},k)`
	`684`	`+}`
	`685`	`+returnks,nil`
	`686`	`+}`
	`687`	`+`
`668`	`688`	`func (*FakeQuerier)AcquireLock(_ context.Context,_int64)error {`
`669`	`689`	`returnxerrors.New("AcquireLock must only be called within a transaction")`
`670`	`690`	`}`
`@@ -1151,6 +1171,14 @@ func (q *FakeQuerier) GetAuthorizationUserRoles(_ context.Context, userID uuid.U`
`1151`	`1171`	`},nil`
`1152`	`1172`	`}`
`1153`	`1173`
	`1174`	`+func (q*FakeQuerier)GetDBCryptKeys(_ context.Context) ([]database.DBCryptKey,error) {`
	`1175`	`+q.mutex.RLock()`
	`1176`	`+deferq.mutex.RUnlock()`
	`1177`	`+ks:=make([]database.DBCryptKey,0)`
	`1178`	`+ks=append(ks,q.dbcryptKeys...)`
	`1179`	`+returnks,nil`
	`1180`	`+}`
	`1181`	`+`
`1154`	`1182`	`func (q*FakeQuerier)GetDERPMeshKey(_ context.Context) (string,error) {`
`1155`	`1183`	`q.mutex.RLock()`
`1156`	`1184`	`deferq.mutex.RUnlock()`
`@@ -1393,6 +1421,18 @@ func (q *FakeQuerier) GetGitAuthLink(_ context.Context, arg database.GetGitAuthL`
`1393`	`1421`	`return database.GitAuthLink{},sql.ErrNoRows`
`1394`	`1422`	`}`
`1395`	`1423`
	`1424`	`+func (q*FakeQuerier)GetGitAuthLinksByUserID(_ context.Context,userID uuid.UUID) ([]database.GitAuthLink,error) {`
	`1425`	`+q.mutex.RLock()`
	`1426`	`+deferq.mutex.RUnlock()`
	`1427`	`+gals:=make([]database.GitAuthLink,0)`
	`1428`	`+for_,gal:=rangeq.gitAuthLinks {`
	`1429`	`+ifgal.UserID==userID {`
	`1430`	`+gals=append(gals,gal)`
	`1431`	`+}`
	`1432`	`+}`
	`1433`	`+returngals,nil`
	`1434`	`+}`
	`1435`	`+`
`1396`	`1436`	`func (q*FakeQuerier)GetGitSSHKey(_ context.Context,userID uuid.UUID) (database.GitSSHKey,error) {`
`1397`	`1437`	`q.mutex.RLock()`
`1398`	`1438`	`deferq.mutex.RUnlock()`
`@@ -2833,6 +2873,18 @@ func (q *FakeQuerier) GetUserLinkByUserIDLoginType(_ context.Context, params dat`
`2833`	`2873`	`return database.UserLink{},sql.ErrNoRows`
`2834`	`2874`	`}`
`2835`	`2875`
	`2876`	`+func (q*FakeQuerier)GetUserLinksByUserID(_ context.Context,userID uuid.UUID) ([]database.UserLink,error) {`
	`2877`	`+q.mutex.RLock()`
	`2878`	`+deferq.mutex.RUnlock()`
	`2879`	`+uls:=make([]database.UserLink,0)`
	`2880`	`+for_,ul:=rangeq.userLinks {`
	`2881`	`+iful.UserID==userID {`
	`2882`	`+uls=append(uls,ul)`
	`2883`	`+}`
	`2884`	`+}`
	`2885`	`+returnuls,nil`
	`2886`	`+}`
	`2887`	`+`
`2836`	`2888`	`func (q*FakeQuerier)GetUsers(_ context.Context,params database.GetUsersParams) ([]database.GetUsersRow,error) {`
`2837`	`2889`	`iferr:=validateDatabaseType(params);err!=nil {`
`2838`	`2890`	`returnnil,err`
`@@ -3846,6 +3898,26 @@ func (q *FakeQuerier) InsertAuditLog(_ context.Context, arg database.InsertAudit`
`3846`	`3898`	`returnalog,nil`
`3847`	`3899`	`}`
`3848`	`3900`
	`3901`	`+func (q*FakeQuerier)InsertDBCryptKey(_ context.Context,arg database.InsertDBCryptKeyParams)error {`
	`3902`	`+err:=validateDatabaseType(arg)`
	`3903`	`+iferr!=nil {`
	`3904`	`+returnerr`
	`3905`	`+}`
	`3906`	`+`
	`3907`	`+for_,key:=rangeq.dbcryptKeys {`
	`3908`	`+ifkey.Number==arg.Number {`
	`3909`	`+returnerrDuplicateKey`
	`3910`	`+}`
	`3911`	`+}`
	`3912`	`+`
	`3913`	`+q.dbcryptKeys=append(q.dbcryptKeys, database.DBCryptKey{`
	`3914`	`+Number:arg.Number,`
	`3915`	`+ActiveKeyDigest: sql.NullString{String:arg.ActiveKeyDigest,Valid:true},`
	`3916`	`+Test:arg.Test,`
	`3917`	`+})`
	`3918`	`+returnnil`
	`3919`	`+}`
	`3920`	`+`
`3849`	`3921`	`func (q*FakeQuerier)InsertDERPMeshKey(_ context.Context,idstring)error {`
`3850`	`3922`	`q.mutex.Lock()`
`3851`	`3923`	`deferq.mutex.Unlock()`
`@@ -3892,13 +3964,15 @@ func (q *FakeQuerier) InsertGitAuthLink(_ context.Context, arg database.InsertGi`
`3892`	`3964`	`deferq.mutex.Unlock()`
`3893`	`3965`	`// nolint:gosimple`
`3894`	`3966`	`gitAuthLink:= database.GitAuthLink{`
`3895`		`-ProviderID:arg.ProviderID,`
`3896`		`-UserID:arg.UserID,`
`3897`		`-CreatedAt:arg.CreatedAt,`
`3898`		`-UpdatedAt:arg.UpdatedAt,`
`3899`		`-OAuthAccessToken:arg.OAuthAccessToken,`
`3900`		`-OAuthRefreshToken:arg.OAuthRefreshToken,`
`3901`		`-OAuthExpiry:arg.OAuthExpiry,`
	`3967`	`+ProviderID:arg.ProviderID,`
	`3968`	`+UserID:arg.UserID,`
	`3969`	`+CreatedAt:arg.CreatedAt,`
	`3970`	`+UpdatedAt:arg.UpdatedAt,`
	`3971`	`+OAuthAccessToken:arg.OAuthAccessToken,`
	`3972`	`+OAuthAccessTokenKeyID:arg.OAuthAccessTokenKeyID,`
	`3973`	`+OAuthRefreshToken:arg.OAuthRefreshToken,`
	`3974`	`+OAuthRefreshTokenKeyID:arg.OAuthRefreshTokenKeyID,`
	`3975`	`+OAuthExpiry:arg.OAuthExpiry,`
`3902`	`3976`	`}`
`3903`	`3977`	`q.gitAuthLinks=append(q.gitAuthLinks,gitAuthLink)`
`3904`	`3978`	`returngitAuthLink,nil`
`@@ -4362,12 +4436,14 @@ func (q *FakeQuerier) InsertUserLink(_ context.Context, args database.InsertUser`
`4362`	`4436`
`4363`	`4437`	`//nolint:gosimple`
`4364`	`4438`	`link:= database.UserLink{`
`4365`		`-UserID:args.UserID,`
`4366`		`-LoginType:args.LoginType,`
`4367`		`-LinkedID:args.LinkedID,`
`4368`		`-OAuthAccessToken:args.OAuthAccessToken,`
`4369`		`-OAuthRefreshToken:args.OAuthRefreshToken,`
`4370`		`-OAuthExpiry:args.OAuthExpiry,`
	`4439`	`+UserID:args.UserID,`
	`4440`	`+LoginType:args.LoginType,`
	`4441`	`+LinkedID:args.LinkedID,`
	`4442`	`+OAuthAccessToken:args.OAuthAccessToken,`
	`4443`	`+OAuthAccessTokenKeyID:args.OAuthAccessTokenKeyID,`
	`4444`	`+OAuthRefreshToken:args.OAuthRefreshToken,`
	`4445`	`+OAuthRefreshTokenKeyID:args.OAuthRefreshTokenKeyID,`
	`4446`	`+OAuthExpiry:args.OAuthExpiry,`
`4371`	`4447`	`}`
`4372`	`4448`
`4373`	`4449`	`q.userLinks=append(q.userLinks,link)`
`@@ -4793,6 +4869,46 @@ func (q *FakeQuerier) RegisterWorkspaceProxy(_ context.Context, arg database.Reg`
`4793`	`4869`	`return database.WorkspaceProxy{},sql.ErrNoRows`
`4794`	`4870`	`}`
`4795`	`4871`
	`4872`	`+func (q*FakeQuerier)RevokeDBCryptKey(_ context.Context,activeKeyDigeststring)error {`
	`4873`	`+q.mutex.Lock()`
	`4874`	`+deferq.mutex.Unlock()`
	`4875`	`+`
	`4876`	`+fori:=rangeq.dbcryptKeys {`
	`4877`	`+key:=q.dbcryptKeys[i]`
	`4878`	`+`
	`4879`	`+// Is the key already revoked?`
	`4880`	`+if!key.ActiveKeyDigest.Valid {`
	`4881`	`+continue`
	`4882`	`+}`
	`4883`	`+`
	`4884`	`+ifkey.ActiveKeyDigest.String!=activeKeyDigest {`
	`4885`	`+continue`
	`4886`	`+}`
	`4887`	`+`
	`4888`	`+// Check for foreign key constraints.`
	`4889`	`+for_,ul:=rangeq.userLinks {`
	`4890`	`+if (ul.OAuthAccessTokenKeyID.Valid&&ul.OAuthAccessTokenKeyID.String==activeKeyDigest)\|\|`
	`4891`	`+(ul.OAuthRefreshTokenKeyID.Valid&&ul.OAuthRefreshTokenKeyID.String==activeKeyDigest) {`
	`4892`	`+returnerrForeignKeyConstraint`
	`4893`	`+}`
	`4894`	`+}`
	`4895`	`+for_,gal:=rangeq.gitAuthLinks {`
	`4896`	`+if (gal.OAuthAccessTokenKeyID.Valid&&gal.OAuthAccessTokenKeyID.String==activeKeyDigest)\|\|`
	`4897`	`+(gal.OAuthRefreshTokenKeyID.Valid&&gal.OAuthRefreshTokenKeyID.String==activeKeyDigest) {`
	`4898`	`+returnerrForeignKeyConstraint`
	`4899`	`+}`
	`4900`	`+}`
	`4901`	`+`
	`4902`	`+// Revoke the key.`
	`4903`	`+q.dbcryptKeys[i].RevokedAt= sql.NullTime{Time:dbtime.Now(),Valid:true}`
	`4904`	`+q.dbcryptKeys[i].RevokedKeyDigest= sql.NullString{String:key.ActiveKeyDigest.String,Valid:true}`
	`4905`	`+q.dbcryptKeys[i].ActiveKeyDigest= sql.NullString{}`
	`4906`	`+returnnil`
	`4907`	`+}`
	`4908`	`+`
	`4909`	`+returnsql.ErrNoRows`
	`4910`	`+}`
	`4911`	`+`
`4796`	`4912`	`func (*FakeQuerier)TryAcquireLock(_ context.Context,_int64) (bool,error) {`
`4797`	`4913`	`returnfalse,xerrors.New("TryAcquireLock must only be called within a transaction")`
`4798`	`4914`	`}`
`@@ -4834,7 +4950,9 @@ func (q *FakeQuerier) UpdateGitAuthLink(_ context.Context, arg database.UpdateGi`
`4834`	`4950`	`}`
`4835`	`4951`	`gitAuthLink.UpdatedAt=arg.UpdatedAt`
`4836`	`4952`	`gitAuthLink.OAuthAccessToken=arg.OAuthAccessToken`
	`4953`	`+gitAuthLink.OAuthAccessTokenKeyID=arg.OAuthAccessTokenKeyID`
`4837`	`4954`	`gitAuthLink.OAuthRefreshToken=arg.OAuthRefreshToken`
	`4955`	`+gitAuthLink.OAuthRefreshTokenKeyID=arg.OAuthRefreshTokenKeyID`
`4838`	`4956`	`gitAuthLink.OAuthExpiry=arg.OAuthExpiry`
`4839`	`4957`	`q.gitAuthLinks[index]=gitAuthLink`
`4840`	`4958`
`@@ -5306,7 +5424,9 @@ func (q *FakeQuerier) UpdateUserLink(_ context.Context, params database.UpdateUs`
`5306`	`5424`	`fori,link:=rangeq.userLinks {`
`5307`	`5425`	`iflink.UserID==params.UserID&&link.LoginType==params.LoginType {`
`5308`	`5426`	`link.OAuthAccessToken=params.OAuthAccessToken`
	`5427`	`+link.OAuthAccessTokenKeyID=params.OAuthAccessTokenKeyID`
`5309`	`5428`	`link.OAuthRefreshToken=params.OAuthRefreshToken`
	`5429`	`+link.OAuthRefreshTokenKeyID=params.OAuthRefreshTokenKeyID`
`5310`	`5430`	`link.OAuthExpiry=params.OAuthExpiry`
`5311`	`5431`
`5312`	`5432`	`q.userLinks[i]=link`

`‎coderd/database/dbgen/dbgen.go`

Lines changed: 17 additions & 13 deletions

Original file line number	Diff line number	Diff line change
`@@ -470,12 +470,14 @@ func File(t testing.TB, db database.Store, orig database.File) database.File {`
`470`	`470`
`471`	`471`	`funcUserLink(t testing.TB,db database.Store,orig database.UserLink) database.UserLink {`
`472`	`472`	`link,err:=db.InsertUserLink(genCtx, database.InsertUserLinkParams{`
`473`		`-UserID:takeFirst(orig.UserID,uuid.New()),`
`474`		`-LoginType:takeFirst(orig.LoginType,database.LoginTypeGithub),`
`475`		`-LinkedID:takeFirst(orig.LinkedID),`
`476`		`-OAuthAccessToken:takeFirst(orig.OAuthAccessToken,uuid.NewString()),`
`477`		`-OAuthRefreshToken:takeFirst(orig.OAuthAccessToken,uuid.NewString()),`
`478`		`-OAuthExpiry:takeFirst(orig.OAuthExpiry,dbtime.Now().Add(time.Hour*24)),`
	`473`	`+UserID:takeFirst(orig.UserID,uuid.New()),`
	`474`	`+LoginType:takeFirst(orig.LoginType,database.LoginTypeGithub),`
	`475`	`+LinkedID:takeFirst(orig.LinkedID),`
	`476`	`+OAuthAccessToken:takeFirst(orig.OAuthAccessToken,uuid.NewString()),`
	`477`	`+OAuthAccessTokenKeyID:takeFirst(orig.OAuthAccessTokenKeyID, sql.NullString{}),`
	`478`	`+OAuthRefreshToken:takeFirst(orig.OAuthRefreshToken,uuid.NewString()),`
	`479`	`+OAuthRefreshTokenKeyID:takeFirst(orig.OAuthRefreshTokenKeyID, sql.NullString{}),`
	`480`	`+OAuthExpiry:takeFirst(orig.OAuthExpiry,dbtime.Now().Add(time.Hour*24)),`
`479`	`481`	`})`
`480`	`482`
`481`	`483`	`require.NoError(t,err,"insert link")`
`@@ -484,13 +486,15 @@ func UserLink(t testing.TB, db database.Store, orig database.UserLink) database.`
`484`	`486`
`485`	`487`	`funcGitAuthLink(t testing.TB,db database.Store,orig database.GitAuthLink) database.GitAuthLink {`
`486`	`488`	`link,err:=db.InsertGitAuthLink(genCtx, database.InsertGitAuthLinkParams{`
`487`		`-ProviderID:takeFirst(orig.ProviderID,uuid.New().String()),`
`488`		`-UserID:takeFirst(orig.UserID,uuid.New()),`
`489`		`-OAuthAccessToken:takeFirst(orig.OAuthAccessToken,uuid.NewString()),`
`490`		`-OAuthRefreshToken:takeFirst(orig.OAuthAccessToken,uuid.NewString()),`
`491`		`-OAuthExpiry:takeFirst(orig.OAuthExpiry,dbtime.Now().Add(time.Hour*24)),`
`492`		`-CreatedAt:takeFirst(orig.CreatedAt,dbtime.Now()),`
`493`		`-UpdatedAt:takeFirst(orig.UpdatedAt,dbtime.Now()),`
	`489`	`+ProviderID:takeFirst(orig.ProviderID,uuid.New().String()),`
	`490`	`+UserID:takeFirst(orig.UserID,uuid.New()),`
	`491`	`+OAuthAccessToken:takeFirst(orig.OAuthAccessToken,uuid.NewString()),`
	`492`	`+OAuthAccessTokenKeyID:takeFirst(orig.OAuthAccessTokenKeyID, sql.NullString{}),`
	`493`	`+OAuthRefreshToken:takeFirst(orig.OAuthRefreshToken,uuid.NewString()),`
	`494`	`+OAuthRefreshTokenKeyID:takeFirst(orig.OAuthRefreshTokenKeyID, sql.NullString{}),`
	`495`	`+OAuthExpiry:takeFirst(orig.OAuthExpiry,dbtime.Now().Add(time.Hour*24)),`
	`496`	`+CreatedAt:takeFirst(orig.CreatedAt,dbtime.Now()),`
	`497`	`+UpdatedAt:takeFirst(orig.UpdatedAt,dbtime.Now()),`
`494`	`498`	`})`
`495`	`499`
`496`	`500`	`require.NoError(t,err,"insert git auth link")`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit7918e65

File tree

22 files changed

22 files changed

`‎coderd/database/dbauthz/dbauthz.go`

`‎coderd/database/dbfake/dbfake.go`

`‎coderd/database/dbgen/dbgen.go`

0 commit comments