NotificationsYou must be signed in to change notification settings
Fork1.1k
Star11.6k

Commit913c547

committed

Include app security key

1 parent203a723 commit913c547Copy full SHA for 913c547

File tree

1 file changed

+27

-9

lines changed

enterprise/cli
- workspaceproxy.go

1 file changed

+27

-9

lines changed

`‎enterprise/cli/workspaceproxy.go‎`

Lines changed: 27 additions & 9 deletions

Original file line number	Diff line number	Diff line change
`@@ -107,6 +107,7 @@ func (r RootCmd) proxyServer() clibase.Cmd {`
`107`	`107`	`}`
`108`	`108`	`proxySessionToken clibase.String`
`109`	`109`	`primaryAccessURL clibase.URL`
	`110`	`+appSecuritYKey clibase.String`
`110`	`111`	`)`
`111`	`112`	`opts.Add(`
`112`	`113`	`// Options only for external workspace proxies`
`@@ -134,6 +135,20 @@ func (r RootCmd) proxyServer() clibase.Cmd {`
`134`	`135`	`Group:&externalProxyOptionGroup,`
`135`	`136`	`Hidden:false,`
`136`	`137`	`},`
	`138`	`+`
	`139`	`+// TODO: Make sure this is kept secret. Idk if a flag is the best option`
	`140`	`+clibase.Option{`
	`141`	`+Name:"App Security Key",`
	`142`	`+Description:"App security key used for decrypting/verifying app tokens sent from coderd.",`
	`143`	`+Flag:"app-security-key",`
	`144`	`+Env:"CODER_APP_SECURITY_KEY",`
	`145`	`+YAML:"appSecurityKey",`
	`146`	`+Default:"",`
	`147`	`+Value:&appSecuritYKey,`
	`148`	`+Group:&externalProxyOptionGroup,`
	`149`	`+Hidden:false,`
	`150`	`+Annotations: clibase.Annotations{}.Mark("secret","true"),`
	`151`	`+},`
`137`	`152`	`)`
`138`	`153`
`139`	`154`	`client:=new(codersdk.Client)`
`@@ -153,6 +168,11 @@ func (r RootCmd) proxyServer() clibase.Cmd {`
`153`	`168`	`returnxerrors.Errorf("primary access URL must be http or https: url=%s",primaryAccessURL)`
`154`	`169`	`}`
`155`	`170`
	`171`	`+secKey,err:=workspaceapps.KeyFromString(appSecuritYKey.Value())`
	`172`	`+iferr!=nil {`
	`173`	`+returnxerrors.Errorf("app security key: %w",err)`
	`174`	`+}`
	`175`	`+`
`156`	`176`	`varclosersclosers`
`157`	`177`	`// Main command context for managing cancellation of running`
`158`	`178`	`// services.`
`@@ -272,15 +292,13 @@ func (r RootCmd) proxyServer() clibase.Cmd {`
`272`	`292`	`}`
`273`	`293`
`274`	`294`	`proxy,err:=wsproxy.New(&wsproxy.Options{`
`275`		`-Logger:logger,`
`276`		`-// TODO: PrimaryAccessURL`
`277`		`-PrimaryAccessURL:primaryAccessURL.Value(),`
`278`		`-AccessURL:cfg.AccessURL.Value(),`
`279`		`-AppHostname:appHostname,`
`280`		`-AppHostnameRegex:appHostnameRegex,`
`281`		`-RealIPConfig:realIPConfig,`
`282`		`-// TODO: AppSecurityKey`
`283`		`-AppSecurityKey: workspaceapps.SecurityKey{},`
	`295`	`+Logger:logger,`
	`296`	`+PrimaryAccessURL:primaryAccessURL.Value(),`
	`297`	`+AccessURL:cfg.AccessURL.Value(),`
	`298`	`+AppHostname:appHostname,`
	`299`	`+AppHostnameRegex:appHostnameRegex,`
	`300`	`+RealIPConfig:realIPConfig,`
	`301`	`+AppSecurityKey:secKey,`
`284`	`302`	`Tracing:tracer,`
`285`	`303`	`PrometheusRegistry:prometheusRegistry,`
`286`	`304`	`APIRateLimit:int(cfg.RateLimit.API.Value()),`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit913c547

File tree

1 file changed

1 file changed

`‎enterprise/cli/workspaceproxy.go‎`

0 commit comments