NotificationsYou must be signed in to change notification settings
Fork928
Star10.1k

Commit85ddd38

committed

chore: remove old group sync code

1 parent9605f3c commit85ddd38Copy full SHA for 85ddd38

File tree

6 files changed

+36

-232

lines changed

coderd
- coderd.go
- idpsync
  - group.go
  - idpsync.go
- userauth.go
enterprise/coderd
- coderd.go
- userauth.go

6 files changed

+36

-232

lines changed

`‎coderd/coderd.go`

Lines changed: 0 additions & 11 deletions

Original file line number	Diff line number	Diff line change
`@@ -181,7 +181,6 @@ type Options struct {`
`181`	`181`	`NetworkTelemetryBatchFrequency time.Duration`
`182`	`182`	`NetworkTelemetryBatchMaxSizeint`
`183`	`183`	`SwaggerEndpointbool`
`184`		`-SetUserGroupsfunc(ctx context.Context,logger slog.Logger,tx database.Store,userID uuid.UUID,orgGroupNamesmap[uuid.UUID][]string,createMissingGroupsbool)error`
`185`	`184`	`SetUserSiteRolesfunc(ctx context.Context,logger slog.Logger,tx database.Store,userID uuid.UUID,roles []string)error`
`186`	`185`	`TemplateScheduleStore*atomic.Pointer[schedule.TemplateScheduleStore]`
`187`	`186`	`UserQuietHoursScheduleStore*atomic.Pointer[schedule.UserQuietHoursScheduleStore]`
`@@ -374,16 +373,6 @@ func New(options Options) API {`
`374`	`373`	`ifoptions.TracerProvider==nil {`
`375`	`374`	`options.TracerProvider=trace.NewNoopTracerProvider()`
`376`	`375`	`}`
`377`		`-ifoptions.SetUserGroups==nil {`
`378`		`-options.SetUserGroups=func(ctx context.Context,logger slog.Logger,_ database.Store,userID uuid.UUID,orgGroupNamesmap[uuid.UUID][]string,createMissingGroupsbool)error {`
`379`		`-logger.Warn(ctx,"attempted to assign OIDC groups without enterprise license",`
`380`		`-slog.F("user_id",userID),`
`381`		`-slog.F("groups",orgGroupNames),`
`382`		`-slog.F("create_missing_groups",createMissingGroups),`
`383`		`-)`
`384`		`-returnnil`
`385`		`-}`
`386`		`-}`
`387`	`376`	`ifoptions.SetUserSiteRoles==nil {`
`388`	`377`	`options.SetUserSiteRoles=func(ctx context.Context,logger slog.Logger,_ database.Store,userID uuid.UUID,roles []string)error {`
`389`	`378`	`logger.Warn(ctx,"attempted to assign OIDC user roles without enterprise license",`

`‎coderd/idpsync/group.go`

Lines changed: 7 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -14,6 +14,7 @@ import (`
`14`	`14`	`"github.com/coder/coder/v2/coderd/database"`
`15`	`15`	`"github.com/coder/coder/v2/coderd/database/db2sdk"`
`16`	`16`	`"github.com/coder/coder/v2/coderd/database/dbauthz"`
	`17`	`+"github.com/coder/coder/v2/coderd/runtimeconfig"`
`17`	`18`	`"github.com/coder/coder/v2/coderd/util/slice"`
`18`	`19`	`)`
`19`	`20`
`@@ -76,7 +77,12 @@ func (s AGPLIDPSync) SyncGroups(ctx context.Context, db database.Store, user dat`
`76`	`77`	`orgResolver:=s.Manager.OrganizationResolver(tx,orgID)`
`77`	`78`	`settings,err:=s.SyncSettings.Group.Resolve(ctx,orgResolver)`
`78`	`79`	`iferr!=nil {`
`79`		`-returnxerrors.Errorf("resolve group sync settings: %w",err)`
	`80`	`+ifxerrors.Is(err,runtimeconfig.EntryNotFound) {`
	`81`	`+// Default to not being configured`
	`82`	`+settings=&GroupSyncSettings{}`
	`83`	`+}else {`
	`84`	`+returnxerrors.Errorf("resolve group sync settings: %w",err)`
	`85`	`+}`
`80`	`86`	`}`
`81`	`87`
`82`	`88`	`// Legacy deployment settings will override empty settings.`

`‎coderd/idpsync/idpsync.go`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -27,15 +27,15 @@ type IDPSync interface {`
`27`	`27`	`OrganizationSyncEnabled()bool`
`28`	`28`	`// ParseOrganizationClaims takes claims from an OIDC provider, and returns the`
`29`	`29`	`// organization sync params for assigning users into organizations.`
`30`		`-ParseOrganizationClaims(ctx context.Context,_ jwt.MapClaims) (OrganizationParams,*HTTPError)`
	`30`	`+ParseOrganizationClaims(ctx context.Context,mergedClaims jwt.MapClaims) (OrganizationParams,*HTTPError)`
`31`	`31`	`// SyncOrganizations assigns and removed users from organizations based on the`
`32`	`32`	`// provided params.`
`33`	`33`	`SyncOrganizations(ctx context.Context,tx database.Store,user database.User,paramsOrganizationParams)error`
`34`	`34`
`35`	`35`	`GroupSyncEnabled()bool`
`36`	`36`	`// ParseGroupClaims takes claims from an OIDC provider, and returns the params`
`37`	`37`	`// for group syncing. Most of the logic happens in SyncGroups.`
`38`		`-ParseGroupClaims(ctx context.Context,_ jwt.MapClaims) (GroupParams,*HTTPError)`
	`38`	`+ParseGroupClaims(ctx context.Context,mergedClaims jwt.MapClaims) (GroupParams,*HTTPError)`
`39`	`39`
`40`	`40`	`// SyncGroups assigns and removes users from groups based on the provided params.`
`41`	`41`	`SyncGroups(ctx context.Context,db database.Store,user database.User,paramsGroupParams)error`

`‎coderd/userauth.go`

Lines changed: 27 additions & 151 deletions

Original file line number	Diff line number	Diff line change
`@@ -20,7 +20,6 @@ import (`
`20`	`20`	`"github.com/google/go-github/v43/github"`
`21`	`21`	`"github.com/google/uuid"`
`22`	`22`	`"github.com/moby/moby/pkg/namesgenerator"`
`23`		`-"golang.org/x/exp/slices"`
`24`	`23`	`"golang.org/x/oauth2"`
`25`	`24`	`"golang.org/x/xerrors"`
`26`	`25`
`@@ -659,6 +658,9 @@ func (api API) userOAuth2Github(rw http.ResponseWriter, r http.Request) {`
`659`	`658`	`AvatarURL:ghUser.GetAvatarURL(),`
`660`	`659`	`Name:normName,`
`661`	`660`	`DebugContext:OauthDebugContext{},`
	`661`	`+GroupSync: idpsync.GroupParams{`
	`662`	`+SyncEnabled:false,`
	`663`	`+},`
`662`	`664`	`OrganizationSync: idpsync.OrganizationParams{`
`663`	`665`	`SyncEnabled:false,`
`664`	`666`	`IncludeDefault:true,`
`@@ -1004,11 +1006,6 @@ func (api API) userOIDC(rw http.ResponseWriter, r http.Request) {`
`1004`	`1006`	`}`
`1005`	`1007`
`1006`	`1008`	`ctx=slog.With(ctx,slog.F("email",email),slog.F("username",username),slog.F("name",name))`
`1007`		`-usingGroups,groups,groupErr:=api.oidcGroups(ctx,mergedClaims)`
`1008`		`-ifgroupErr!=nil {`
`1009`		`-groupErr.Write(rw,r)`
`1010`		`-return`
`1011`		`-}`
`1012`	`1009`
`1013`	`1010`	`roles,roleErr:=api.oidcRoles(ctx,mergedClaims)`
`1014`	`1011`	`ifroleErr!=nil {`
`@@ -1032,30 +1029,33 @@ func (api API) userOIDC(rw http.ResponseWriter, r http.Request) {`
`1032`	`1029`	`return`
`1033`	`1030`	`}`
`1034`	`1031`
	`1032`	`+groupSync,groupSyncErr:=api.IDPSync.ParseGroupClaims(ctx,mergedClaims)`
	`1033`	`+ifgroupSyncErr!=nil {`
	`1034`	`+groupSyncErr.Write(rw,r)`
	`1035`	`+return`
	`1036`	`+}`
	`1037`	`+`
`1035`	`1038`	`// If a new user is authenticating for the first time`
`1036`	`1039`	`// the audit action is 'register', not 'login'`
`1037`	`1040`	`ifuser.ID==uuid.Nil {`
`1038`	`1041`	`aReq.Action=database.AuditActionRegister`
`1039`	`1042`	`}`
`1040`	`1043`
`1041`	`1044`	`params:= (&oauthLoginParams{`
`1042`		`-User:user,`
`1043`		`-Link:link,`
`1044`		`-State:state,`
`1045`		`-LinkedID:oidcLinkedID(idToken),`
`1046`		`-LoginType:database.LoginTypeOIDC,`
`1047`		`-AllowSignups:api.OIDCConfig.AllowSignups,`
`1048`		`-Email:email,`
`1049`		`-Username:username,`
`1050`		`-Name:name,`
`1051`		`-AvatarURL:picture,`
`1052`		`-UsingRoles:api.OIDCConfig.RoleSyncEnabled(),`
`1053`		`-Roles:roles,`
`1054`		`-UsingGroups:usingGroups,`
`1055`		`-Groups:groups,`
`1056`		`-OrganizationSync:orgSync,`
`1057`		`-CreateMissingGroups:api.OIDCConfig.CreateMissingGroups,`
`1058`		`-GroupFilter:api.OIDCConfig.GroupFilter,`
	`1045`	`+User:user,`
	`1046`	`+Link:link,`
	`1047`	`+State:state,`
	`1048`	`+LinkedID:oidcLinkedID(idToken),`
	`1049`	`+LoginType:database.LoginTypeOIDC,`
	`1050`	`+AllowSignups:api.OIDCConfig.AllowSignups,`
	`1051`	`+Email:email,`
	`1052`	`+Username:username,`
	`1053`	`+Name:name,`
	`1054`	`+AvatarURL:picture,`
	`1055`	`+UsingRoles:api.OIDCConfig.RoleSyncEnabled(),`
	`1056`	`+Roles:roles,`
	`1057`	`+OrganizationSync:orgSync,`
	`1058`	`+GroupSync:groupSync,`
`1059`	`1059`	`DebugContext:OauthDebugContext{`
`1060`	`1060`	`IDTokenClaims:idtokenClaims,`
`1061`	`1061`	`UserInfoClaims:userInfoClaims,`
`@@ -1091,79 +1091,6 @@ func (api API) userOIDC(rw http.ResponseWriter, r http.Request) {`
`1091`	`1091`	`http.Redirect(rw,r,redirect,http.StatusTemporaryRedirect)`
`1092`	`1092`	`}`
`1093`	`1093`
`1094`		`-// oidcGroups returns the groups for the user from the OIDC claims.`
`1095`		`-func (apiAPI)oidcGroups(ctx context.Context,mergedClaimsmap[string]interface{}) (bool, []string,idpsync.HTTPError) {`
`1096`		`-logger:=api.Logger.Named(userAuthLoggerName)`
`1097`		`-usingGroups:=false`
`1098`		`-vargroups []string`
`1099`		`-`
`1100`		`-// If the GroupField is the empty string, then groups from OIDC are not used.`
`1101`		`-// This is so we can support manual group assignment.`
`1102`		`-ifapi.OIDCConfig.GroupField!="" {`
`1103`		`-// If the allow list is empty, then the user is allowed to log in.`
`1104`		`-// Otherwise, they must belong to at least 1 group in the allow list.`
`1105`		`-inAllowList:=len(api.OIDCConfig.GroupAllowList)==0`
`1106`		`-`
`1107`		`-usingGroups=true`
`1108`		`-groupsRaw,ok:=mergedClaims[api.OIDCConfig.GroupField]`
`1109`		`-ifok {`
`1110`		`-parsedGroups,err:=idpsync.ParseStringSliceClaim(groupsRaw)`
`1111`		`-iferr!=nil {`
`1112`		`-api.Logger.Debug(ctx,"groups field was an unknown type in oidc claims",`
`1113`		`-slog.F("type",fmt.Sprintf("%T",groupsRaw)),`
`1114`		`-slog.Error(err),`
`1115`		`-)`
`1116`		`-returnfalse,nil,&idpsync.HTTPError{`
`1117`		`-Code:http.StatusBadRequest,`
`1118`		`-Msg:"Failed to sync groups from OIDC claims",`
`1119`		`-Detail:err.Error(),`
`1120`		`-RenderStaticPage:false,`
`1121`		`-}`
`1122`		`-}`
`1123`		`-`
`1124`		`-api.Logger.Debug(ctx,"groups returned in oidc claims",`
`1125`		`-slog.F("len",len(parsedGroups)),`
`1126`		`-slog.F("groups",parsedGroups),`
`1127`		`-)`
`1128`		`-`
`1129`		`-for_,group:=rangeparsedGroups {`
`1130`		`-ifmappedGroup,ok:=api.OIDCConfig.GroupMapping[group];ok {`
`1131`		`-group=mappedGroup`
`1132`		`-}`
`1133`		`-if_,ok:=api.OIDCConfig.GroupAllowList[group];ok {`
`1134`		`-inAllowList=true`
`1135`		`-}`
`1136`		`-groups=append(groups,group)`
`1137`		`-}`
`1138`		`-}`
`1139`		`-`
`1140`		`-if!inAllowList {`
`1141`		`-logger.Debug(ctx,"oidc group claim not in allow list, rejecting login",`
`1142`		`-slog.F("allow_list_count",len(api.OIDCConfig.GroupAllowList)),`
`1143`		`-slog.F("user_group_count",len(groups)),`
`1144`		`-)`
`1145`		`-detail:="Ask an administrator to add one of your groups to the allow list"`
`1146`		`-iflen(groups)==0 {`
`1147`		`-detail="You are currently not a member of any groups! Ask an administrator to add you to an authorized group to login."`
`1148`		`-}`
`1149`		`-returnusingGroups,groups,&idpsync.HTTPError{`
`1150`		`-Code:http.StatusForbidden,`
`1151`		`-Msg:"Not a member of an allowed group",`
`1152`		`-Detail:detail,`
`1153`		`-RenderStaticPage:true,`
`1154`		`-}`
`1155`		`-}`
`1156`		`-}`
`1157`		`-`
`1158`		`-// This conditional is purely to warn the user they might have misconfigured their OIDC`
`1159`		`-// configuration.`
`1160`		`-if_,groupClaimExists:=mergedClaims["groups"];!usingGroups&&groupClaimExists {`
`1161`		`-logger.Debug(ctx,"claim 'groups' was returned, but 'oidc-group-field' is not set, check your coder oidc settings")`
`1162`		`-}`
`1163`		`-`
`1164`		`-returnusingGroups,groups,nil`
`1165`		`-}`
`1166`		`-`
`1167`	`1094`	`// oidcRoles returns the roles for the user from the OIDC claims.`
`1168`	`1095`	`// If the function returns false, then the caller should return early.`
`1169`	`1096`	`// All writes to the response writer are handled by this function.`
`@@ -1278,14 +1205,7 @@ type oauthLoginParams struct {`
`1278`	`1205`	`AvatarURLstring`
`1279`	`1206`	`// OrganizationSync has the organizations that the user will be assigned to.`
`1280`	`1207`	`OrganizationSync idpsync.OrganizationParams`
`1281`		`-// Is UsingGroups is true, then the user will be assigned`
`1282`		`-// to the Groups provided.`
`1283`		`-UsingGroupsbool`
`1284`		`-CreateMissingGroupsbool`
`1285`		`-// These are the group names from the IDP. Internally, they will map to`
`1286`		`-// some organization groups.`
`1287`		`-Groups []string`
`1288`		`-GroupFilter*regexp.Regexp`
	`1208`	`+GroupSync idpsync.GroupParams`
`1289`	`1209`	`// Is UsingRoles is true, then the user will be assigned`
`1290`	`1210`	`// the roles provided.`
`1291`	`1211`	`UsingRolesbool`
`@@ -1491,53 +1411,9 @@ func (api API) oauthLogin(r http.Request, params oauthLoginParams) ([]http.C`
`1491`	`1411`	`returnxerrors.Errorf("sync organizations: %w",err)`
`1492`	`1412`	`}`
`1493`	`1413`
`1494`		`-// Ensure groups are correct.`
`1495`		`-// This places all groups into the default organization.`
`1496`		`-// To go multi-org, we need to add a mapping feature here to know which`
`1497`		`-// groups go to which orgs.`
`1498`		`-ifparams.UsingGroups {`
`1499`		`-filtered:=params.Groups`
`1500`		`-ifparams.GroupFilter!=nil {`
`1501`		`-filtered=make([]string,0,len(params.Groups))`
`1502`		`-for_,group:=rangeparams.Groups {`
`1503`		`-ifparams.GroupFilter.MatchString(group) {`
`1504`		`-filtered=append(filtered,group)`
`1505`		`-}`
`1506`		`-}`
`1507`		`-}`
`1508`		`-`
`1509`		`-//nolint:gocritic // No user present in the context.`
`1510`		`-defaultOrganization,err:=tx.GetDefaultOrganization(dbauthz.AsSystemRestricted(ctx))`
`1511`		`-iferr!=nil {`
`1512`		`-// If there is no default org, then we can't assign groups.`
`1513`		`-// By default, we assume all groups belong to the default org.`
`1514`		`-returnxerrors.Errorf("get default organization: %w",err)`
`1515`		`-}`
`1516`		`-`
`1517`		`-//nolint:gocritic // No user present in the context.`
`1518`		`-memberships,err:=tx.OrganizationMembers(dbauthz.AsSystemRestricted(ctx), database.OrganizationMembersParams{`
`1519`		`-UserID:user.ID,`
`1520`		`-OrganizationID:uuid.Nil,`
`1521`		`-})`
`1522`		`-iferr!=nil {`
`1523`		`-returnxerrors.Errorf("get organization memberships: %w",err)`
`1524`		`-}`
`1525`		`-`
`1526`		`-// If the user is not in the default organization, then we can't assign groups.`
`1527`		`-// A user cannot be in groups to an org they are not a member of.`
`1528`		`-if!slices.ContainsFunc(memberships,func(member database.OrganizationMembersRow)bool {`
`1529`		`-returnmember.OrganizationMember.OrganizationID==defaultOrganization.ID`
`1530`		`-}) {`
`1531`		`-returnxerrors.Errorf("user %s is not a member of the default organization, cannot assign to groups in the org",user.ID)`
`1532`		`-}`
`1533`		`-`
`1534`		`-//nolint:gocritic`
`1535`		`-err=api.Options.SetUserGroups(dbauthz.AsSystemRestricted(ctx),logger,tx,user.ID,map[uuid.UUID][]string{`
`1536`		`-defaultOrganization.ID:filtered,`
`1537`		`-},params.CreateMissingGroups)`
`1538`		`-iferr!=nil {`
`1539`		`-returnxerrors.Errorf("set user groups: %w",err)`
`1540`		`-}`
	`1414`	`+err=api.IDPSync.SyncGroups(ctx,tx,user,params.GroupSync)`
	`1415`	`+iferr!=nil {`
	`1416`	`+returnxerrors.Errorf("sync groups: %w",err)`
`1541`	`1417`	`}`
`1542`	`1418`
`1543`	`1419`	`// Ensure roles are correct.`

`‎enterprise/coderd/coderd.go`

Lines changed: 0 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -145,7 +145,6 @@ func New(ctx context.Context, options Options) (_ API, err error) {`
`145`	`145`	`}`
`146`	`146`	`returnc.Subject,c.Trial,nil`
`147`	`147`	`}`
`148`		`-api.AGPL.Options.SetUserGroups=api.setUserGroups`
`149`	`148`	`api.AGPL.Options.SetUserSiteRoles=api.setUserSiteRoles`
`150`	`149`	`api.AGPL.SiteHandler.RegionsFetcher=func(ctx context.Context) (any,error) {`
`151`	`150`	`// If the user can read the workspace proxy resource, return that.`

`‎enterprise/coderd/userauth.go`

Lines changed: 0 additions & 66 deletions

Original file line number	Diff line number	Diff line change
`@@ -8,75 +8,9 @@ import (`
`8`	`8`
`9`	`9`	`"cdr.dev/slog"`
`10`	`10`	`"github.com/coder/coder/v2/coderd/database"`
`11`		`-"github.com/coder/coder/v2/coderd/database/dbauthz"`
`12`	`11`	`"github.com/coder/coder/v2/codersdk"`
`13`	`12`	`)`
`14`	`13`
`15`		`-// nolint: revive`
`16`		`-func (api*API)setUserGroups(ctx context.Context,logger slog.Logger,db database.Store,userID uuid.UUID,orgGroupNamesmap[uuid.UUID][]string,createMissingGroupsbool)error {`
`17`		`-if!api.Entitlements.Enabled(codersdk.FeatureTemplateRBAC) {`
`18`		`-returnnil`
`19`		`-}`
`20`		`-`
`21`		`-returndb.InTx(func(tx database.Store)error {`
`22`		`-// When setting the user's groups, it's easier to just clear their groups and re-add them.`
`23`		`-// This ensures that the user's groups are always in sync with the auth provider.`
`24`		`-orgs,err:=tx.GetOrganizationsByUserID(ctx,userID)`
`25`		`-iferr!=nil {`
`26`		`-returnxerrors.Errorf("get user orgs: %w",err)`
`27`		`-}`
`28`		`-iflen(orgs)!=1 {`
`29`		`-returnxerrors.Errorf("expected 1 org, got %d",len(orgs))`
`30`		`-}`
`31`		`-`
`32`		`-// Delete all groups the user belongs to.`
`33`		`-// nolint:gocritic // Requires system context to remove user from all groups.`
`34`		`-err=tx.RemoveUserFromAllGroups(dbauthz.AsSystemRestricted(ctx),userID)`
`35`		`-iferr!=nil {`
`36`		`-returnxerrors.Errorf("delete user groups: %w",err)`
`37`		`-}`
`38`		`-`
`39`		`-// TODO: This could likely be improved by making these single queries.`
`40`		`-// Either by batching or some other means. This for loop could be really`
`41`		`-//inefficient if there are a lot of organizations. There was deployments`
`42`		`-//on v1 with >100 orgs.`
`43`		`-fororgID,groupNames:=rangeorgGroupNames {`
`44`		`-// Create the missing groups for each organization.`
`45`		`-ifcreateMissingGroups {`
`46`		`-// This is the system creating these additional groups, so we use the system restricted context.`
`47`		`-// nolint:gocritic`
`48`		`-created,err:=tx.InsertMissingGroups(dbauthz.AsSystemRestricted(ctx), database.InsertMissingGroupsParams{`
`49`		`-OrganizationID:orgID,`
`50`		`-GroupNames:groupNames,`
`51`		`-Source:database.GroupSourceOidc,`
`52`		`-})`
`53`		`-iferr!=nil {`
`54`		`-returnxerrors.Errorf("insert missing groups: %w",err)`
`55`		`-}`
`56`		`-iflen(created)>0 {`
`57`		`-logger.Debug(ctx,"auto created missing groups",`
`58`		`-slog.F("org_id",orgID.ID),`
`59`		`-slog.F("created",created),`
`60`		`-slog.F("num",len(created)),`
`61`		`-)`
`62`		`-}`
`63`		`-}`
`64`		`-`
`65`		`-// Re-add the user to all groups returned by the auth provider.`
`66`		`-err=tx.InsertUserGroupsByName(ctx, database.InsertUserGroupsByNameParams{`
`67`		`-UserID:userID,`
`68`		`-OrganizationID:orgID,`
`69`		`-GroupNames:groupNames,`
`70`		`-})`
`71`		`-iferr!=nil {`
`72`		`-returnxerrors.Errorf("insert user groups: %w",err)`
`73`		`-}`
`74`		`-}`
`75`		`-`
`76`		`-returnnil`
`77`		`-},nil)`
`78`		`-}`
`79`		`-`
`80`	`14`	`func (api*API)setUserSiteRoles(ctx context.Context,logger slog.Logger,db database.Store,userID uuid.UUID,roles []string)error {`
`81`	`15`	`if!api.Entitlements.Enabled(codersdk.FeatureUserRoleManagement) {`
`82`	`16`	`logger.Warn(ctx,"attempted to assign OIDC user roles without enterprise entitlement, roles left unchanged",`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit85ddd38

File tree

6 files changed

6 files changed

`‎coderd/coderd.go`

`‎coderd/idpsync/group.go`

`‎coderd/idpsync/idpsync.go`

`‎coderd/userauth.go`

`‎enterprise/coderd/coderd.go`

`‎enterprise/coderd/userauth.go`

0 commit comments