NotificationsYou must be signed in to change notification settings
Fork928
Star10.1k

Commitb101a6f

authored

POST license API endpoint (#3570)

* POST license APISigned-off-by: Spike Curtis <spike@coder.com>* Support interface{} types in generated TypescriptSigned-off-by: Spike Curtis <spike@coder.com>* Disable linting on empty interface anySigned-off-by: Spike Curtis <spike@coder.com>* Code review updatesSigned-off-by: Spike Curtis <spike@coder.com>* Enforce unique licensesSigned-off-by: Spike Curtis <spike@coder.com>* Renames from code reviewSigned-off-by: Spike Curtis <spike@coder.com>* Code review renames and commentsSigned-off-by: Spike Curtis <spike@coder.com>Signed-off-by: Spike Curtis <spike@coder.com>

1 parent85acfdf commitb101a6fCopy full SHA for b101a6f

File tree

29 files changed

+666

-50

lines changed

cli
- clitest
  - clitest.go
- root.go
- server.go
cmd/coder
- main.go
coderd
- authorize.go
- coderd.go
- coderdtest
  - coderdtest.go
- database
  - databasefake
    - databasefake.go
  - dump.sql
  - migrations
    - 000037_jwt_licenses.down.sql
    - 000037_jwt_licenses.up.sql
  - models.go
  - querier.go
  - queries
    - licenses.sql
  - queries.sql.go
  - sqlc.yaml
- licenses.go
- rbac
  - object.go
codersdk
- licenses.go
enterprise
- cli
  - root.go
- cmd/coder
  - main.go
- coderd
go.mod
go.sum
scripts/apitypings
- main.go
site/src/api
- typesGenerated.ts

29 files changed

+666

-50

lines changed

`‎cli/clitest/clitest.go`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -21,7 +21,7 @@ import (`
`21`	`21`	`// New creates a CLI instance with a configuration pointed to a`
`22`	`22`	`// temporary testing directory.`
`23`	`23`	`funcNew(ttesting.T,args...string) (cobra.Command, config.Root) {`
`24`		`-cmd:=cli.Root()`
	`24`	`+cmd:=cli.Root(cli.AGPL())`
`25`	`25`	`dir:=t.TempDir()`
`26`	`26`	`root:=config.Root(dir)`
`27`	`27`	`cmd.SetArgs(append([]string{"--global-config",dir},args...))`

`‎cli/root.go`

Lines changed: 38 additions & 29 deletions

Original file line number	Diff line number	Diff line change
`@@ -20,6 +20,7 @@ import (`
`20`	`20`	`"github.com/coder/coder/cli/cliflag"`
`21`	`21`	`"github.com/coder/coder/cli/cliui"`
`22`	`22`	`"github.com/coder/coder/cli/config"`
	`23`	`+"github.com/coder/coder/coderd"`
`23`	`24`	`"github.com/coder/coder/codersdk"`
`24`	`25`	`)`
`25`	`26`
`@@ -58,7 +59,42 @@ func init() {`
`58`	`59`	`cobra.AddTemplateFuncs(templateFunctions)`
`59`	`60`	`}`
`60`	`61`
`61`		`-funcRoot()*cobra.Command {`
	`62`	`+funcCore() []*cobra.Command {`
	`63`	`+return []*cobra.Command{`
	`64`	`+configSSH(),`
	`65`	`+create(),`
	`66`	`+deleteWorkspace(),`
	`67`	`+dotfiles(),`
	`68`	`+gitssh(),`
	`69`	`+list(),`
	`70`	`+login(),`
	`71`	`+logout(),`
	`72`	`+parameters(),`
	`73`	`+portForward(),`
	`74`	`+publickey(),`
	`75`	`+resetPassword(),`
	`76`	`+schedules(),`
	`77`	`+show(),`
	`78`	`+ssh(),`
	`79`	`+start(),`
	`80`	`+state(),`
	`81`	`+stop(),`
	`82`	`+templates(),`
	`83`	`+update(),`
	`84`	`+users(),`
	`85`	`+versionCmd(),`
	`86`	`+wireguardPortForward(),`
	`87`	`+workspaceAgent(),`
	`88`	`+features(),`
	`89`	`+}`
	`90`	`+}`
	`91`	`+`
	`92`	`+funcAGPL() []*cobra.Command {`
	`93`	`+all:=append(Core(),Server(coderd.New))`
	`94`	`+returnall`
	`95`	`+}`
	`96`	`+`
	`97`	`+funcRoot(subcommands []cobra.Command)cobra.Command {`
`62`	`98`	`cmd:=&cobra.Command{`
`63`	`99`	`Use:"coder",`
`64`	`100`	`SilenceErrors:true,`
`@@ -109,34 +145,7 @@ func Root() *cobra.Command {`
`109`	`145`	`),`
`110`	`146`	`}`
`111`	`147`
`112`		`-cmd.AddCommand(`
`113`		`-configSSH(),`
`114`		`-create(),`
`115`		`-deleteWorkspace(),`
`116`		`-dotfiles(),`
`117`		`-gitssh(),`
`118`		`-list(),`
`119`		`-login(),`
`120`		`-logout(),`
`121`		`-parameters(),`
`122`		`-portForward(),`
`123`		`-publickey(),`
`124`		`-resetPassword(),`
`125`		`-schedules(),`
`126`		`-server(),`
`127`		`-show(),`
`128`		`-ssh(),`
`129`		`-start(),`
`130`		`-state(),`
`131`		`-stop(),`
`132`		`-templates(),`
`133`		`-update(),`
`134`		`-users(),`
`135`		`-versionCmd(),`
`136`		`-wireguardPortForward(),`
`137`		`-workspaceAgent(),`
`138`		`-features(),`
`139`		`-)`
	`148`	`+cmd.AddCommand(subcommands...)`
`140`	`149`
`141`	`150`	`cmd.SetUsageTemplate(usageTemplate())`
`142`	`151`

`‎cli/server.go`

Lines changed: 7 additions & 7 deletions

Original file line number	Diff line number	Diff line change
`@@ -68,7 +68,7 @@ import (`
`68`	`68`	`)`
`69`	`69`
`70`	`70`	`// nolint:gocyclo`
`71`		`-funcserver()*cobra.Command {`
	`71`	`+funcServer(newAPIfunc(coderd.Options)coderd.API)*cobra.Command {`
`72`	`72`	`var (`
`73`	`73`	`accessURLstring`
`74`	`74`	`addressstring`
`@@ -434,7 +434,7 @@ func server() *cobra.Command {`
`434`	`434`	`),promAddress,"prometheus")()`
`435`	`435`	`}`
`436`	`436`
`437`		`-coderAPI:=coderd.New(options)`
	`437`	`+coderAPI:=newAPI(options)`
`438`	`438`	`defercoderAPI.Close()`
`439`	`439`
`440`	`440`	`client:=codersdk.New(localURL)`
`@@ -886,16 +886,16 @@ func newProvisionerDaemon(ctx context.Context, coderAPI *coderd.API,`
`886`	`886`	`// nolint: revive`
`887`	`887`	`funcprintLogo(cmd*cobra.Command,spookybool) {`
`888`	`888`	`ifspooky {`
`889`		-_,_=fmt.Fprintf(cmd.OutOrStdout(),`▄████▄ ▒█████ ▓█████▄ ▓█████ ██▀███
	`889`	+_,_=fmt.Fprintf(cmd.OutOrStdout(),`▄████▄ ▒█████ ▓█████▄ ▓█████ ██▀███
`890`	`890`	`▒██▀ ▀█ ▒██▒ ██▒▒██▀ ██▌▓█ ▀ ▓██ ▒ ██▒`
`891`	`891`	`▒▓█ ▄ ▒██░ ██▒░██ █▌▒███ ▓██ ░▄█ ▒`
`892`		`-▒▓▓▄ ▄██▒▒██ ██░░▓█▄ ▌▒▓█ ▄ ▒██▀▀█▄`
	`892`	`+▒▓▓▄ ▄██▒▒██ ██░░▓█▄ ▌▒▓█ ▄ ▒██▀▀█▄`
`893`	`893`	`▒ ▓███▀ ░░ ████▓▒░░▒████▓ ░▒████▒░██▓ ▒██▒`
`894`	`894`	`░ ░▒ ▒ ░░ ▒░▒░▒░ ▒▒▓ ▒ ░░ ▒░ ░░ ▒▓ ░▒▓░`
`895`	`895`	`░ ▒ ░ ▒ ▒░ ░ ▒ ▒ ░ ░ ░ ░▒ ░ ▒░`
`896`		`-░ ░ ░ ░ ▒ ░ ░ ░ ░ ░░ ░`
`897`		`-░ ░ ░ ░ ░ ░ ░ ░`
`898`		`-░ ░`
	`896`	`+░ ░ ░ ░ ▒ ░ ░ ░ ░ ░░ ░`
	`897`	`+░ ░ ░ ░ ░ ░ ░ ░`
	`898`	`+░ ░`
`899`	`899`	`)
`900`	`900`	`return`
`901`	`901`	`}`

`‎cmd/coder/main.go`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -15,7 +15,7 @@ import (`
`15`	`15`	`funcmain() {`
`16`	`16`	`rand.Seed(time.Now().UnixMicro())`
`17`	`17`
`18`		`-cmd,err:=cli.Root().ExecuteC()`
	`18`	`+cmd,err:=cli.Root(cli.AGPL()).ExecuteC()`
`19`	`19`	`iferr!=nil {`
`20`	`20`	`iferrors.Is(err,cliui.Canceled) {`
`21`	`21`	`os.Exit(1)`

`‎coderd/authorize.go`

Lines changed: 20 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -27,6 +27,11 @@ func AuthorizeFilter[O rbac.Objecter](api API, r http.Request, action rbac.Act`
`27`	`27`	`returnobjects,nil`
`28`	`28`	`}`
`29`	`29`
	`30`	`+typeHTTPAuthorizerstruct {`
	`31`	`+Authorizer rbac.Authorizer`
	`32`	`+Logger slog.Logger`
	`33`	`+}`
	`34`	`+`
`30`	`35`	`// Authorize will return false if the user is not authorized to do the action.`
`31`	`36`	`// This function will log appropriately, but the caller must return an`
`32`	`37`	`// error to the api client.`
`@@ -37,14 +42,26 @@ func AuthorizeFilter[O rbac.Objecter](api API, r http.Request, action rbac.Act`
`37`	`42`	`//return`
`38`	`43`	`//}`
`39`	`44`	`func (apiAPI)Authorize(rhttp.Request,action rbac.Action,object rbac.Objecter)bool {`
	`45`	`+returnapi.httpAuth.Authorize(r,action,object)`
	`46`	`+}`
	`47`	`+`
	`48`	`+// Authorize will return false if the user is not authorized to do the action.`
	`49`	`+// This function will log appropriately, but the caller must return an`
	`50`	`+// error to the api client.`
	`51`	`+// Eg:`
	`52`	`+//if !h.Authorize(...) {`
	`53`	`+//httpapi.Forbidden(rw)`
	`54`	`+//return`
	`55`	`+//}`
	`56`	`+func (hHTTPAuthorizer)Authorize(rhttp.Request,action rbac.Action,object rbac.Objecter)bool {`
`40`	`57`	`roles:=httpmw.AuthorizationUserRoles(r)`
`41`		`-err:=api.Authorizer.ByRoleName(r.Context(),roles.ID.String(),roles.Roles,action,object.RBACObject())`
	`58`	`+err:=h.Authorizer.ByRoleName(r.Context(),roles.ID.String(),roles.Roles,action,object.RBACObject())`
`42`	`59`	`iferr!=nil {`
`43`	`60`	`// Log the errors for debugging`
`44`	`61`	`internalError:=new(rbac.UnauthorizedError)`
`45`		`-logger:=api.Logger`
	`62`	`+logger:=h.Logger`
`46`	`63`	`ifxerrors.As(err,internalError) {`
`47`		`-logger=api.Logger.With(slog.F("internal",internalError.Internal()))`
	`64`	`+logger=h.Logger.With(slog.F("internal",internalError.Internal()))`
`48`	`65`	`}`
`49`	`66`	`// Log information for debugging. This will be very helpful`
`50`	`67`	`// in the early days`

`‎coderd/coderd.go`

Lines changed: 13 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -66,6 +66,7 @@ type Options struct {`
`66`	`66`	`Telemetry telemetry.Reporter`
`67`	`67`	`TURNServer*turnconn.Server`
`68`	`68`	`TracerProvider*sdktrace.TracerProvider`
	`69`	`+LicenseHandler http.Handler`
`69`	`70`	`}`
`70`	`71`
`71`	`72`	`// New constructs a Coder API handler.`
`@@ -92,6 +93,9 @@ func New(options Options) API {`
`92`	`93`	`ifoptions.PrometheusRegistry==nil {`
`93`	`94`	`options.PrometheusRegistry=prometheus.NewRegistry()`
`94`	`95`	`}`
	`96`	`+ifoptions.LicenseHandler==nil {`
	`97`	`+options.LicenseHandler=licenses()`
	`98`	`+}`
`95`	`99`
`96`	`100`	`siteCacheDir:=options.CacheDir`
`97`	`101`	`ifsiteCacheDir!="" {`
`@@ -107,6 +111,10 @@ func New(options Options) API {`
`107`	`111`	`Options:options,`
`108`	`112`	`Handler:r,`
`109`	`113`	`siteHandler:site.Handler(site.FS(),binFS),`
	`114`	`+httpAuth:&HTTPAuthorizer{`
	`115`	`+Authorizer:options.Authorizer,`
	`116`	`+Logger:options.Logger,`
	`117`	`+},`
`110`	`118`	`}`
`111`	`119`	`api.workspaceAgentCache=wsconncache.New(api.dialWorkspaceAgent,0)`
`112`	`120`	`oauthConfigs:=&httpmw.OAuth2Configs{`
`@@ -395,6 +403,10 @@ func New(options Options) API {`
`395`	`403`	`r.Use(apiKeyMiddleware)`
`396`	`404`	`r.Get("/",entitlements)`
`397`	`405`	`})`
	`406`	`+r.Route("/licenses",func(r chi.Router) {`
	`407`	`+r.Use(apiKeyMiddleware)`
	`408`	`+r.Mount("/",options.LicenseHandler)`
	`409`	`+})`
`398`	`410`	`})`
`399`	`411`
`400`	`412`	`r.NotFound(compressHandler(http.HandlerFunc(api.siteHandler.ServeHTTP)).ServeHTTP)`
`@@ -409,6 +421,7 @@ type API struct {`
`409`	`421`	`websocketWaitMutex sync.Mutex`
`410`	`422`	`websocketWaitGroup sync.WaitGroup`
`411`	`423`	`workspaceAgentCache*wsconncache.Cache`
	`424`	`+httpAuth*HTTPAuthorizer`
`412`	`425`	`}`
`413`	`426`
`414`	`427`	`// Close waits for all WebSocket connections to drain before returning.`

`‎coderd/coderdtest/coderdtest.go`

Lines changed: 5 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -73,6 +73,7 @@ type Options struct {`
`73`	`73`
`74`	`74`	`// IncludeProvisionerD when true means to start an in-memory provisionerD`
`75`	`75`	`IncludeProvisionerDbool`
	`76`	`+APIBuilderfunc(coderd.Options)coderd.API`
`76`	`77`	`}`
`77`	`78`
`78`	`79`	`// New constructs a codersdk client connected to an in-memory API instance.`
`@@ -122,6 +123,9 @@ func newWithCloser(t testing.T, options Options) (*codersdk.Client, io.Closer)`
`122`	`123`	`close(options.AutobuildStats)`
`123`	`124`	`})`
`124`	`125`	`}`
	`126`	`+ifoptions.APIBuilder==nil {`
	`127`	`+options.APIBuilder=coderd.New`
	`128`	`+}`
`125`	`129`
`126`	`130`	`// This can be hotswapped for a live database instance.`
`127`	`131`	`db:=databasefake.New()`
`@@ -177,7 +181,7 @@ func newWithCloser(t testing.T, options Options) (*codersdk.Client, io.Closer)`
`177`	`181`	`})`
`178`	`182`
`179`	`183`	`// We set the handler after server creation for the access URL.`
`180`		`-coderAPI:=coderd.New(&coderd.Options{`
	`184`	`+coderAPI:=options.APIBuilder(&coderd.Options{`
`181`	`185`	`AgentConnectionUpdateFrequency:150*time.Millisecond,`
`182`	`186`	`// Force a long disconnection timeout to ensure`
`183`	`187`	`// agents are not marked as disconnected during slow tests.`

`‎coderd/database/databasefake/databasefake.go`

Lines changed: 20 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -42,6 +42,7 @@ func New() database.Store {`
`42`	`42`	`workspaceBuilds:make([]database.WorkspaceBuild,0),`
`43`	`43`	`workspaceApps:make([]database.WorkspaceApp,0),`
`44`	`44`	`workspaces:make([]database.Workspace,0),`
	`45`	`+licenses:make([]database.License,0),`
`45`	`46`	`},`
`46`	`47`	`}`
`47`	`48`	`}`
`@@ -92,8 +93,10 @@ type data struct {`
`92`	`93`	`workspaceBuilds []database.WorkspaceBuild`
`93`	`94`	`workspaceApps []database.WorkspaceApp`
`94`	`95`	`workspaces []database.Workspace`
	`96`	`+licenses []database.License`
`95`	`97`
`96`		`-deploymentIDstring`
	`98`	`+deploymentIDstring`
	`99`	`+lastLicenseIDint32`
`97`	`100`	`}`
`98`	`101`
`99`	`102`	`// InTx doesn't rollback data properly for in-memory yet.`
`@@ -2277,6 +2280,22 @@ func (q *fakeQuerier) GetDeploymentID(_ context.Context) (string, error) {`
`2277`	`2280`	`returnq.deploymentID,nil`
`2278`	`2281`	`}`
`2279`	`2282`
	`2283`	`+func (q*fakeQuerier)InsertLicense(`
	`2284`	`+_ context.Context,arg database.InsertLicenseParams) (database.License,error) {`
	`2285`	`+q.mutex.RLock()`
	`2286`	`+deferq.mutex.RUnlock()`
	`2287`	`+`
	`2288`	`+l:= database.License{`
	`2289`	`+ID:q.lastLicenseID+1,`
	`2290`	`+UploadedAt:arg.UploadedAt,`
	`2291`	`+JWT:arg.JWT,`
	`2292`	`+Exp:arg.Exp,`
	`2293`	`+}`
	`2294`	`+q.lastLicenseID=l.ID`
	`2295`	`+q.licenses=append(q.licenses,l)`
	`2296`	`+returnl,nil`
	`2297`	`+}`
	`2298`	`+`
`2280`	`2299`	`func (q*fakeQuerier)GetUserLinkByLinkedID(_ context.Context,idstring) (database.UserLink,error) {`
`2281`	`2300`	`q.mutex.RLock()`
`2282`	`2301`	`deferq.mutex.RUnlock()`

`‎coderd/database/dump.sql`

Lines changed: 6 additions & 2 deletions

Some generated files are not rendered by default. Learn more aboutcustomizing how changed files appear on GitHub.

`‎coderd/database/migrations/000037_jwt_licenses.down.sql`

Lines changed: 7 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,7 @@`
	`1`	`+-- Valid licenses don't fit into old format, so delete all data`
	`2`	`+DELETEFROM licenses;`
	`3`	`+ALTERTABLE licenses DROP COLUMN jwt;`
	`4`	`+ALTERTABLE licenses RENAME COLUMN uploaded_at to created_at;`
	`5`	`+ALTERTABLE licenses ADD COLUMN license jsonbNOT NULL;`
	`6`	`+ALTERTABLE licenses DROP COLUMN exp;`
	`7`	`+`

`‎coderd/database/migrations/000037_jwt_licenses.up.sql`

Lines changed: 10 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,10 @@`
	`1`	`+-- No valid licenses should exist, but to be sure, drop all rows`
	`2`	`+DELETEFROM licenses;`
	`3`	`+ALTERTABLE licenses DROP COLUMN license;`
	`4`	`+ALTERTABLE licenses RENAME COLUMN created_at to uploaded_at;`
	`5`	`+ALTERTABLE licenses ADD COLUMN jwttextNOT NULL;`
	`6`	`+-- prevent adding the same license more than once`
	`7`	`+ALTERTABLE licenses ADDCONSTRAINT licenses_jwt_key UNIQUE (jwt);`
	`8`	`+ALTERTABLE licenses ADD COLUMN exptimestamp with time zoneNOT NULL;`
	`9`	`+COMMENT ON COLUMN licenses.exp IS'exp tracks the claim of the same name in the JWT, and we include it here so that we can easily query for licenses that have not yet expired.';`
	`10`	`+`

`‎coderd/database/models.go`

Lines changed: 4 additions & 3 deletions

Some generated files are not rendered by default. Learn more aboutcustomizing how changed files appear on GitHub.

`‎coderd/database/querier.go`

Lines changed: 1 addition & 0 deletions

Some generated files are not rendered by default. Learn more aboutcustomizing how changed files appear on GitHub.

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitb101a6f

File tree

29 files changed

29 files changed

`‎cli/clitest/clitest.go`

`‎cli/root.go`

`‎cli/server.go`

`‎cmd/coder/main.go`

`‎coderd/authorize.go`

`‎coderd/coderd.go`

`‎coderd/coderdtest/coderdtest.go`

`‎coderd/database/databasefake/databasefake.go`

`‎coderd/database/dump.sql`

`‎coderd/database/migrations/000037_jwt_licenses.down.sql`

`‎coderd/database/migrations/000037_jwt_licenses.up.sql`

`‎coderd/database/models.go`

`‎coderd/database/querier.go`

0 commit comments