NotificationsYou must be signed in to change notification settings
Fork1k
Star11.2k

Commit8102c71

committed

move core impl to coderd

1 parent9faa940 commit8102c71Copy full SHA for 8102c71

File tree

8 files changed

+91

-66

lines changed

cli
- server.go
coderd
- coderd.go
- coderdtest
  - coderdtest.go
- workspaces.go
- workspaceupdates.go
- workspaceupdates_test.go
tailnet
- service.go
- tunnel.go

8 files changed

+91

-66

lines changed

`‎cli/server.go‎`

Lines changed: 6 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -719,6 +719,12 @@ func (r RootCmd) Server(newAPI func(context.Context, coderd.Options) (*coderd.`
`719`	`719`	`options.Database=dbmetrics.New(options.Database,options.PrometheusRegistry)`
`720`	`720`	`}`
`721`	`721`
	`722`	`+wsUpdates,err:=coderd.NewUpdatesProvider(ctx,options.Database,options.Pubsub)`
	`723`	`+iferr!=nil {`
	`724`	`+returnxerrors.Errorf("create workspace updates provider: %w",err)`
	`725`	`+}`
	`726`	`+options.WorkspaceUpdatesProvider=wsUpdates`
	`727`	`+`
`722`	`728`	`vardeploymentIDstring`
`723`	`729`	`err=options.Database.InTx(func(tx database.Store)error {`
`724`	`730`	`// This will block until the lock is acquired, and will be`

`‎coderd/coderd.go‎`

Lines changed: 9 additions & 6 deletions

Original file line number	Diff line number	Diff line change
`@@ -228,6 +228,8 @@ type Options struct {`
`228`	`228`
`229`	`229`	`WorkspaceAppsStatsCollectorOptions workspaceapps.StatsCollectorOptions`
`230`	`230`
	`231`	`+WorkspaceUpdatesProvider tailnet.WorkspaceUpdatesProvider`
	`232`	`+`
`231`	`233`	`// This janky function is used in telemetry to parse fields out of the raw`
`232`	`234`	`// JWT. It needs to be passed through like this because license parsing is`
`233`	`235`	`// under the enterprise license, and can't be imported into AGPL.`
`@@ -591,12 +593,13 @@ func New(options Options) API {`
`591`	`593`	`panic("CoordinatorResumeTokenProvider is nil")`
`592`	`594`	`}`
`593`	`595`	`api.TailnetClientService,err=tailnet.NewClientService(tailnet.ClientServiceOptions{`
`594`		`-Logger:api.Logger.Named("tailnetclient"),`
`595`		`-CoordPtr:&api.TailnetCoordinator,`
`596`		`-DERPMapUpdateFrequency:api.Options.DERPMapUpdateFrequency,`
`597`		`-DERPMapFn:api.DERPMap,`
`598`		`-NetworkTelemetryHandler:api.NetworkTelemetryBatcher.Handler,`
`599`		`-ResumeTokenProvider:api.Options.CoordinatorResumeTokenProvider,`
	`596`	`+Logger:api.Logger.Named("tailnetclient"),`
	`597`	`+CoordPtr:&api.TailnetCoordinator,`
	`598`	`+DERPMapUpdateFrequency:api.Options.DERPMapUpdateFrequency,`
	`599`	`+DERPMapFn:api.DERPMap,`
	`600`	`+NetworkTelemetryHandler:api.NetworkTelemetryBatcher.Handler,`
	`601`	`+ResumeTokenProvider:api.Options.CoordinatorResumeTokenProvider,`
	`602`	`+WorkspaceUpdatesProvider:api.Options.WorkspaceUpdatesProvider,`
`600`	`603`	`})`
`601`	`604`	`iferr!=nil {`
`602`	`605`	`api.Logger.Fatal(api.ctx,"failed to initialize tailnet client service",slog.Error(err))`

`‎coderd/coderdtest/coderdtest.go‎`

Lines changed: 11 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -159,6 +159,8 @@ type Options struct {`
`159`	`159`	`WorkspaceUsageTrackerFlushchanint`
`160`	`160`	`WorkspaceUsageTrackerTickchan time.Time`
`161`	`161`
	`162`	`+WorkspaceUpdatesProvider tailnet.WorkspaceUpdatesProvider`
	`163`	`+`
`162`	`164`	`NotificationsEnqueuer notifications.Enqueuer`
`163`	`165`	`}`
`164`	`166`
`@@ -251,6 +253,14 @@ func NewOptions(t testing.TB, options *Options) (func(http.Handler), context.Can`
`251`	`253`	`options.NotificationsEnqueuer=new(testutil.FakeNotificationsEnqueuer)`
`252`	`254`	`}`
`253`	`255`
	`256`	`+ifoptions.WorkspaceUpdatesProvider==nil {`
	`257`	`+varerrerror`
	`258`	`+ctx,cancel:=context.WithCancel(context.Background())`
	`259`	`+options.WorkspaceUpdatesProvider,err=coderd.NewUpdatesProvider(ctx,options.Database,options.Pubsub)`
	`260`	`+require.NoError(t,err)`
	`261`	`+t.Cleanup(cancel)`
	`262`	`+}`
	`263`	`+`
`254`	`264`	`accessControlStore:=&atomic.Pointer[dbauthz.AccessControlStore]{}`
`255`	`265`	`varacs dbauthz.AccessControlStore= dbauthz.AGPLTemplateAccessControlStore{}`
`256`	`266`	`accessControlStore.Store(&acs)`
`@@ -524,6 +534,7 @@ func NewOptions(t testing.TB, options *Options) (func(http.Handler), context.Can`
`524`	`534`	`HealthcheckTimeout:options.HealthcheckTimeout,`
`525`	`535`	`HealthcheckRefresh:options.HealthcheckRefresh,`
`526`	`536`	`StatsBatcher:options.StatsBatcher,`
	`537`	`+WorkspaceUpdatesProvider:options.WorkspaceUpdatesProvider,`
`527`	`538`	`WorkspaceAppsStatsCollectorOptions:options.WorkspaceAppsStatsCollectorOptions,`
`528`	`539`	`AllowWorkspaceRenames:options.AllowWorkspaceRenames,`
`529`	`540`	`NewTicker:options.NewTicker,`

`‎coderd/workspaces.go‎`

Lines changed: 19 additions & 5 deletions

Original file line number	Diff line number	Diff line change
`@@ -2146,14 +2146,28 @@ func (api API) tailnet(rw http.ResponseWriter, r http.Request) {`
`2146`	`2146`
`2147`	`2147`	`gohttpapi.Heartbeat(ctx,conn)`
`2148`	`2148`	`err=api.TailnetClientService.ServeUserClient(ctx,version,wsNetConn, tailnet.ServeUserClientOptions{`
`2149`		`-PeerID:peerID,`
`2150`		`-UserID:owner.ID,`
`2151`		`-Subject:&ownerRoles,`
`2152`		`-Authz:api.Authorizer,`
`2153`		`-Database:api.Database,`
	`2149`	`+PeerID:peerID,`
	`2150`	`+UserID:owner.ID,`
	`2151`	`+AuthFn:api.authAgentFn(&ownerRoles),`
`2154`	`2152`	`})`
`2155`	`2153`	`iferr!=nil&&!xerrors.Is(err,io.EOF)&&!xerrors.Is(err,context.Canceled) {`
`2156`	`2154`	`_=conn.Close(websocket.StatusInternalError,err.Error())`
`2157`	`2155`	`return`
`2158`	`2156`	`}`
`2159`	`2157`	`}`
	`2158`	`+`
	`2159`	`+// authAgentFn accepts a subject, and returns a function that authorizes against`
	`2160`	`+// passed agent IDs.`
	`2161`	`+func (apiAPI)authAgentFn(ownerrbac.Subject)func(context.Context, uuid.UUID)error {`
	`2162`	`+returnfunc(ctx context.Context,agentID uuid.UUID)error {`
	`2163`	`+ws,err:=api.Database.GetWorkspaceByAgentID(ctx,agentID)`
	`2164`	`+iferr!=nil {`
	`2165`	`+returnxerrors.Errorf("get workspace by agent id: %w",err)`
	`2166`	`+}`
	`2167`	`+err=api.Authorizer.Authorize(ctx,*owner,policy.ActionSSH,ws.RBACObject())`
	`2168`	`+iferr!=nil {`
	`2169`	`+returnxerrors.Errorf("workspace agent not found or you do not have permission: %w",sql.ErrNoRows)`
	`2170`	`+}`
	`2171`	`+returnnil`
	`2172`	`+}`
	`2173`	`+}`

`‎tailnet/workspaceupdates.go‎renamed to ‎coderd/workspaceupdates.go‎`

Lines changed: 18 additions & 25 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-packagetailnet`
	`1`	`+packagecoderd`
`2`	`2`
`3`	`3`	`import (`
`4`	`4`	`"context"`
`@@ -12,6 +12,7 @@ import (`
`12`	`12`	`"github.com/coder/coder/v2/coderd/database/pubsub"`
`13`	`13`	`"github.com/coder/coder/v2/coderd/util/slice"`
`14`	`14`	`"github.com/coder/coder/v2/codersdk"`
	`15`	`+"github.com/coder/coder/v2/tailnet"`
`15`	`16`	`"github.com/coder/coder/v2/tailnet/proto"`
`16`	`17`	`)`
`17`	`18`
`@@ -54,7 +55,7 @@ func convertRows(v []database.GetWorkspacesAndAgentsRow) workspacesByOwner {`
`54`	`55`
`55`	`56`	`funcconvertStatus(status database.ProvisionerJobStatus,trans database.WorkspaceTransition) proto.Workspace_Status {`
`56`	`57`	`wsStatus:=codersdk.ConvertWorkspaceStatus(codersdk.ProvisionerJobStatus(status),codersdk.WorkspaceTransition(trans))`
`57`		`-returnWorkspaceStatusToProto(wsStatus)`
	`58`	`+returntailnet.WorkspaceStatusToProto(wsStatus)`
`58`	`59`	`}`
`59`	`60`
`60`	`61`	`typesubstruct {`
`@@ -75,30 +76,23 @@ func (s *sub) send(all workspacesByOwner) {`
`75`	`76`	`s.tx<-update`
`76`	`77`	`}`
`77`	`78`
`78`		`-typeWorkspaceUpdatesProviderinterface {`
`79`		`-Subscribe(peerID uuid.UUID,userID uuid.UUID) (<-chan*proto.WorkspaceUpdate,error)`
`80`		`-Unsubscribe(peerID uuid.UUID)`
`81`		`-Stop()`
`82`		`-}`
`83`		`-`
`84`		`-typeWorkspaceStoreinterface {`
`85`		`-GetWorkspaceByAgentID(ctx context.Context,agentID uuid.UUID) (database.GetWorkspaceByAgentIDRow,error)`
	`79`	`+typeUpdateQuerierinterface {`
`86`	`80`	`GetWorkspacesAndAgents(ctx context.Context) ([]database.GetWorkspacesAndAgentsRow,error)`
`87`	`81`	`}`
`88`	`82`
`89`	`83`	`typeupdatesProviderstruct {`
`90`	`84`	`mu sync.RWMutex`
`91`		`-dbWorkspaceStore`
	`85`	`+dbUpdateQuerier`
`92`	`86`	`ps pubsub.Pubsub`
`93`	`87`	`// Peer ID -> subscription`
`94`	`88`	`subsmap[uuid.UUID]*sub`
`95`	`89`	`latestworkspacesByOwner`
`96`	`90`	`cancelFnfunc()`
`97`	`91`	`}`
`98`	`92`
`99`		`-var_WorkspaceUpdatesProvider= (*updatesProvider)(nil)`
	`93`	`+var_tailnet.WorkspaceUpdatesProvider= (*updatesProvider)(nil)`
`100`	`94`
`101`		`-funcNewUpdatesProvider(ctx context.Context,dbWorkspaceStore,ps pubsub.Pubsub) (WorkspaceUpdatesProvider,error) {`
	`95`	`+funcNewUpdatesProvider(ctx context.Context,dbUpdateQuerier,ps pubsub.Pubsub) (tailnet.WorkspaceUpdatesProvider,error) {`
`102`	`96`	`rows,err:=db.GetWorkspacesAndAgents(ctx)`
`103`	`97`	`iferr!=nil&&!xerrors.Is(err,sql.ErrNoRows) {`
`104`	`98`	`returnnil,err`
`@@ -176,7 +170,6 @@ func (u *updatesProvider) Unsubscribe(peerID uuid.UUID) {`
`176`	`170`	`}`
`177`	`171`	`close(sub.tx)`
`178`	`172`	`delete(u.subs,peerID)`
`179`		`-return`
`180`	`173`	`}`
`181`	`174`
`182`	`175`	`funcproduceUpdate(old,newworkspacesByID)*proto.WorkspaceUpdate {`
`@@ -192,23 +185,23 @@ func produceUpdate(old, new workspacesByID) *proto.WorkspaceUpdate {`
`192`	`185`	`// Upsert both workspace and agents if the workspace is new`
`193`	`186`	`if!exists {`
`194`	`187`	`out.UpsertedWorkspaces=append(out.UpsertedWorkspaces,&proto.Workspace{`
`195`		`-Id:UUIDToByteSlice(wsID),`
	`188`	`+Id:tailnet.UUIDToByteSlice(wsID),`
`196`	`189`	`Name:newWorkspace.WorkspaceName,`
`197`	`190`	`Status:convertStatus(newWorkspace.JobStatus,newWorkspace.Transition),`
`198`	`191`	`})`
`199`	`192`	`for_,agent:=rangenewWorkspace.Agents {`
`200`	`193`	`out.UpsertedAgents=append(out.UpsertedAgents,&proto.Agent{`
`201`		`-Id:UUIDToByteSlice(agent.ID),`
	`194`	`+Id:tailnet.UUIDToByteSlice(agent.ID),`
`202`	`195`	`Name:agent.Name,`
`203`		`-WorkspaceId:UUIDToByteSlice(wsID),`
	`196`	`+WorkspaceId:tailnet.UUIDToByteSlice(wsID),`
`204`	`197`	`})`
`205`	`198`	`}`
`206`	`199`	`continue`
`207`	`200`	`}`
`208`	`201`	`// Upsert workspace if the workspace is updated`
`209`	`202`	`if!newWorkspace.Equal(oldWorkspace) {`
`210`	`203`	`out.UpsertedWorkspaces=append(out.UpsertedWorkspaces,&proto.Workspace{`
`211`		`-Id:UUIDToByteSlice(wsID),`
	`204`	`+Id:tailnet.UUIDToByteSlice(wsID),`
`212`	`205`	`Name:newWorkspace.WorkspaceName,`
`213`	`206`	`Status:convertStatus(newWorkspace.JobStatus,newWorkspace.Transition),`
`214`	`207`	`})`
`@@ -217,16 +210,16 @@ func produceUpdate(old, new workspacesByID) *proto.WorkspaceUpdate {`
`217`	`210`	`add,remove:=slice.SymmetricDifference(oldWorkspace.Agents,newWorkspace.Agents)`
`218`	`211`	`for_,agent:=rangeadd {`
`219`	`212`	`out.UpsertedAgents=append(out.UpsertedAgents,&proto.Agent{`
`220`		`-Id:UUIDToByteSlice(agent.ID),`
	`213`	`+Id:tailnet.UUIDToByteSlice(agent.ID),`
`221`	`214`	`Name:agent.Name,`
`222`		`-WorkspaceId:UUIDToByteSlice(wsID),`
	`215`	`+WorkspaceId:tailnet.UUIDToByteSlice(wsID),`
`223`	`216`	`})`
`224`	`217`	`}`
`225`	`218`	`for_,agent:=rangeremove {`
`226`	`219`	`out.DeletedAgents=append(out.DeletedAgents,&proto.Agent{`
`227`		`-Id:UUIDToByteSlice(agent.ID),`
	`220`	`+Id:tailnet.UUIDToByteSlice(agent.ID),`
`228`	`221`	`Name:agent.Name,`
`229`		`-WorkspaceId:UUIDToByteSlice(wsID),`
	`222`	`+WorkspaceId:tailnet.UUIDToByteSlice(wsID),`
`230`	`223`	`})`
`231`	`224`	`}`
`232`	`225`	`}`
`@@ -235,15 +228,15 @@ func produceUpdate(old, new workspacesByID) *proto.WorkspaceUpdate {`
`235`	`228`	`forwsID,oldWorkspace:=rangeold {`
`236`	`229`	`if_,exists:=new[wsID];!exists {`
`237`	`230`	`out.DeletedWorkspaces=append(out.DeletedWorkspaces,&proto.Workspace{`
`238`		`-Id:UUIDToByteSlice(wsID),`
	`231`	`+Id:tailnet.UUIDToByteSlice(wsID),`
`239`	`232`	`Name:oldWorkspace.WorkspaceName,`
`240`	`233`	`Status:convertStatus(oldWorkspace.JobStatus,oldWorkspace.Transition),`
`241`	`234`	`})`
`242`	`235`	`for_,agent:=rangeoldWorkspace.Agents {`
`243`	`236`	`out.DeletedAgents=append(out.DeletedAgents,&proto.Agent{`
`244`		`-Id:UUIDToByteSlice(agent.ID),`
	`237`	`+Id:tailnet.UUIDToByteSlice(agent.ID),`
`245`	`238`	`Name:agent.Name,`
`246`		`-WorkspaceId:UUIDToByteSlice(wsID),`
	`239`	`+WorkspaceId:tailnet.UUIDToByteSlice(wsID),`
`247`	`240`	`})`
`248`	`241`	`}`
`249`	`242`	`}`

`‎tailnet/workspaceupdates_test.go‎renamed to ‎coderd/workspaceupdates_test.go‎`

Lines changed: 14 additions & 9 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-packagetailnet_test`
	`1`	`+packagecoderd_test`
`2`	`2`
`3`	`3`	`import (`
`4`	`4`	`"context"`
`@@ -9,8 +9,10 @@ import (`
`9`	`9`	`"github.com/google/uuid"`
`10`	`10`	`"github.com/stretchr/testify/require"`
`11`	`11`
	`12`	`+"github.com/coder/coder/v2/coderd"`
`12`	`13`	`"github.com/coder/coder/v2/coderd/database"`
`13`	`14`	`"github.com/coder/coder/v2/coderd/database/pubsub"`
	`15`	`+"github.com/coder/coder/v2/coderd/rbac"`
`14`	`16`	`"github.com/coder/coder/v2/codersdk"`
`15`	`17`	`"github.com/coder/coder/v2/tailnet"`
`16`	`18`	`"github.com/coder/coder/v2/tailnet/proto"`
`@@ -78,7 +80,7 @@ func TestWorkspaceUpdates(t *testing.T) {`
`78`	`80`	`cbs:map[string]pubsub.Listener{},`
`79`	`81`	`}`
`80`	`82`
`81`		`-updateProvider,err:=tailnet.NewUpdatesProvider(ctx,db,ps)`
	`83`	`+updateProvider,err:=coderd.NewUpdatesProvider(ctx,db,ps)`
`82`	`84`	`require.NoError(t,err)`
`83`	`85`
`84`	`86`	`ch,err:=updateProvider.Subscribe(peerID,ownerid)`
`@@ -217,7 +219,7 @@ func TestWorkspaceUpdates(t *testing.T) {`
`217`	`219`	`cbs:map[string]pubsub.Listener{},`
`218`	`220`	`}`
`219`	`221`
`220`		`-updateProvider,err:=tailnet.NewUpdatesProvider(ctx,db,ps)`
	`222`	`+updateProvider,err:=coderd.NewUpdatesProvider(ctx,db,ps)`
`221`	`223`	`require.NoError(t,err)`
`222`	`224`
`223`	`225`	`ch,err:=updateProvider.Subscribe(peerID,ownerid)`
`@@ -257,15 +259,18 @@ type mockWorkspaceStore struct {`
`257`	`259`	`orderedRows []database.GetWorkspacesAndAgentsRow`
`258`	`260`	`}`
`259`	`261`
`260`		`-var_ tailnet.WorkspaceStore= (*mockWorkspaceStore)(nil)`
`261`		`-`
`262`		`-func (*mockWorkspaceStore)GetWorkspaceByAgentID(context.Context, uuid.UUID) (database.GetWorkspaceByAgentIDRow,error) {`
`263`		`-return database.GetWorkspaceByAgentIDRow{},nil`
	`262`	`+// GetWorkspaceRBACByAgentID implements tailnet.UpdateQuerier.`
	`263`	`+func (*mockWorkspaceStore)GetWorkspaceRBACByAgentID(context.Context, uuid.UUID) (rbac.Objecter,error) {`
	`264`	`+panic("unimplemented")`
`264`	`265`	`}`
`265`		`-func (db*mockWorkspaceStore)GetWorkspacesAndAgents(context.Context) ([]database.GetWorkspacesAndAgentsRow,error) {`
`266`		`-returndb.orderedRows,nil`
	`266`	`+`
	`267`	`+// GetWorkspacesAndAgents implements tailnet.UpdateQuerier.`
	`268`	`+func (m*mockWorkspaceStore)GetWorkspacesAndAgents(context.Context) ([]database.GetWorkspacesAndAgentsRow,error) {`
	`269`	`+returnm.orderedRows,nil`
`267`	`270`	`}`
`268`	`271`
	`272`	`+var_ coderd.UpdateQuerier= (*mockWorkspaceStore)(nil)`
	`273`	`+`
`269`	`274`	`typemockPubsubstruct {`
`270`	`275`	`cbsmap[string]pubsub.Listener`
`271`	`276`	`}`

`‎tailnet/service.go‎`

Lines changed: 11 additions & 10 deletions

Original file line number	Diff line number	Diff line change
`@@ -17,7 +17,6 @@ import (`
`17`	`17`
`18`	`18`	`"cdr.dev/slog"`
`19`	`19`	`"github.com/coder/coder/v2/apiversion"`
`20`		`-"github.com/coder/coder/v2/coderd/rbac"`
`21`	`20`	`"github.com/coder/coder/v2/tailnet/proto"`
`22`	`21`	`"github.com/coder/quartz"`
`23`	`22`	`)`
`@@ -40,6 +39,12 @@ func WithStreamID(ctx context.Context, streamID StreamID) context.Context {`
`40`	`39`	`returncontext.WithValue(ctx,streamIDContextKey{},streamID)`
`41`	`40`	`}`
`42`	`41`
	`42`	`+typeWorkspaceUpdatesProviderinterface {`
	`43`	`+Subscribe(peerID uuid.UUID,userID uuid.UUID) (<-chan*proto.WorkspaceUpdate,error)`
	`44`	`+Unsubscribe(peerID uuid.UUID)`
	`45`	`+Stop()`
	`46`	`+}`
	`47`	`+`
`43`	`48`	`typeClientServiceOptionsstruct {`
`44`	`49`	`Logger slog.Logger`
`45`	`50`	`CoordPtr*atomic.Pointer[Coordinator]`
`@@ -114,11 +119,9 @@ func (s *ClientService) ServeClient(ctx context.Context, version string, conn ne`
`114`	`119`	`}`
`115`	`120`
`116`	`121`	`typeServeUserClientOptionsstruct {`
`117`		`-PeerID uuid.UUID`
`118`		`-UserID uuid.UUID`
`119`		`-Subject*rbac.Subject`
`120`		`-Authz rbac.Authorizer`
`121`		`-DatabaseWorkspaceStore`
	`122`	`+PeerID uuid.UUID`
	`123`	`+UserID uuid.UUID`
	`124`	`+AuthFnfunc(context.Context, uuid.UUID)error`
`122`	`125`	`}`
`123`	`126`
`124`	`127`	`func (s*ClientService)ServeUserClient(ctx context.Context,versionstring,conn net.Conn,optsServeUserClientOptions)error {`
`@@ -130,10 +133,8 @@ func (s *ClientService) ServeUserClient(ctx context.Context, version string, con`
`130`	`133`	`switchmajor {`
`131`	`134`	`case2:`
`132`	`135`	`auth:=ClientUserCoordinateeAuth{`
`133`		`-UserID:opts.UserID,`
`134`		`-RBACSubject:opts.Subject,`
`135`		`-Authz:opts.Authz,`
`136`		`-Database:opts.Database,`
	`136`	`+UserID:opts.UserID,`
	`137`	`+AuthFn:opts.AuthFn,`
`137`	`138`	`}`
`138`	`139`	`streamID:=StreamID{`
`139`	`140`	`Name:"client",`

`‎tailnet/tunnel.go‎`

Lines changed: 3 additions & 11 deletions

Original file line number	Diff line number	Diff line change
`@@ -8,8 +8,6 @@ import (`
`8`	`8`	`"github.com/google/uuid"`
`9`	`9`	`"golang.org/x/xerrors"`
`10`	`10`
`11`		`-"github.com/coder/coder/v2/coderd/rbac"`
`12`		`-"github.com/coder/coder/v2/coderd/rbac/policy"`
`13`	`11`	`"github.com/coder/coder/v2/tailnet/proto"`
`14`	`12`	`)`
`15`	`13`
`@@ -95,10 +93,8 @@ func (a AgentCoordinateeAuth) Authorize(_ context.Context, req *proto.Coordinate`
`95`	`93`	`}`
`96`	`94`
`97`	`95`	`typeClientUserCoordinateeAuthstruct {`
`98`		`-UserID uuid.UUID`
`99`		`-RBACSubject*rbac.Subject`
`100`		`-Authz rbac.Authorizer`
`101`		`-DatabaseWorkspaceStore`
	`96`	`+UserID uuid.UUID`
	`97`	`+AuthFnfunc(context.Context, uuid.UUID)error`
`102`	`98`	`}`
`103`	`99`
`104`	`100`	`func (aClientUserCoordinateeAuth)Authorize(ctx context.Context,req*proto.CoordinateRequest)error {`
`@@ -107,11 +103,7 @@ func (a ClientUserCoordinateeAuth) Authorize(ctx context.Context, req *proto.Coo`
`107`	`103`	`iferr!=nil {`
`108`	`104`	`returnxerrors.Errorf("parse add tunnel id: %w",err)`
`109`	`105`	`}`
`110`		`-row,err:=a.Database.GetWorkspaceByAgentID(ctx,uid)`
`111`		`-iferr!=nil {`
`112`		`-returnxerrors.Errorf("get workspace by agent id: %w",err)`
`113`		`-}`
`114`		`-err=a.Authz.Authorize(ctx,*a.RBACSubject,policy.ActionSSH,row.Workspace.RBACObject())`
	`106`	`+err=a.AuthFn(ctx,uid)`
`115`	`107`	`iferr!=nil {`
`116`	`108`	`returnxerrors.Errorf("workspace agent not found or you do not have permission: %w",sql.ErrNoRows)`
`117`	`109`	`}`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit8102c71

File tree

8 files changed

8 files changed

`‎cli/server.go‎`

`‎coderd/coderd.go‎`

`‎coderd/coderdtest/coderdtest.go‎`

`‎coderd/workspaces.go‎`

`‎tailnet/workspaceupdates.go‎renamed to ‎coderd/workspaceupdates.go‎`

`‎tailnet/workspaceupdates_test.go‎renamed to ‎coderd/workspaceupdates_test.go‎`

`‎tailnet/service.go‎`

`‎tailnet/tunnel.go‎`

0 commit comments