NotificationsYou must be signed in to change notification settings
Fork927
Star10.1k

Commitc567a9d

committed

Test updates

1 parentf212ad3 commitc567a9dCopy full SHA for c567a9d

File tree

3 files changed

-6

lines changed

coderd
- database/dbauthz
  - customroles_test.go
- rbac
  - roles.go
  - roles_test.go

3 files changed

-6

lines changed

`‎coderd/database/dbauthz/customroles_test.go`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -98,7 +98,7 @@ func TestInsertCustomRoles(t *testing.T) {`
`98`	`98`	`org:codersdk.CreatePermissions(map[codersdk.RBACResource][]codersdk.RBACAction{`
`99`	`99`	`codersdk.ResourceWorkspace: {codersdk.ActionRead},`
`100`	`100`	`}),`
`101`		`-errorContains:"cannot assign both org and site permissions",`
	`101`	`+errorContains:"organization roles specify site or user permissions",`
`102`	`102`	`},`
`103`	`103`	`{`
`104`	`104`	`name:"invalid-action",`

`‎coderd/rbac/roles.go`

Lines changed: 3 additions & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -340,10 +340,10 @@ func ReloadBuiltinRoles(opts *RoleOptions) {`
`340`	`340`	`Identifier:RoleUserAdmin(),`
`341`	`341`	`DisplayName:"User Admin",`
`342`	`342`	`Site:Permissions(map[string][]policy.Action{`
`343`		`-ResourceAssignRole.Type: {policy.ActionAssign,policy.ActionDelete,policy.ActionRead,policy.ActionUpdate},`
	`343`	`+ResourceAssignRole.Type: {policy.ActionAssign,policy.ActionDelete,policy.ActionRead},`
`344`	`344`	`// Need organization assign as well to create users. At present, creating a user`
`345`	`345`	`// will always assign them to some organization.`
`346`		`-ResourceAssignOrgRole.Type: {policy.ActionAssign,policy.ActionDelete,policy.ActionRead,policy.ActionUpdate},`
	`346`	`+ResourceAssignOrgRole.Type: {policy.ActionAssign,policy.ActionDelete,policy.ActionRead},`
`347`	`347`	`ResourceUser.Type: {`
`348`	`348`	`policy.ActionCreate,policy.ActionRead,policy.ActionUpdate,policy.ActionDelete,`
`349`	`349`	`policy.ActionUpdatePersonal,policy.ActionReadPersonal,`
`@@ -458,7 +458,7 @@ func ReloadBuiltinRoles(opts *RoleOptions) {`
`458`	`458`	`Org:map[string][]Permission{`
`459`	`459`	`organizationID.String():Permissions(map[string][]policy.Action{`
`460`	`460`	`// Assign, remove, and read roles in the organization.`
`461`		`-ResourceAssignOrgRole.Type: {policy.ActionAssign,policy.ActionDelete,policy.ActionRead,policy.ActionUpdate},`
	`461`	`+ResourceAssignOrgRole.Type: {policy.ActionAssign,policy.ActionDelete,policy.ActionRead},`
`462`	`462`	`ResourceOrganizationMember.Type: {policy.ActionCreate,policy.ActionRead,policy.ActionUpdate,policy.ActionDelete},`
`463`	`463`	`ResourceGroup.Type:ResourceGroup.AvailableActions(),`
`464`	`464`	`}),`

`‎coderd/rbac/roles_test.go`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -280,7 +280,7 @@ func TestRolePermissions(t *testing.T) {`
`280`	`280`	`},`
`281`	`281`	`{`
`282`	`282`	`Name:"CreateCustomRole",`
`283`		`-Actions: []policy.Action{policy.ActionCreate},`
	`283`	`+Actions: []policy.Action{policy.ActionCreate,policy.ActionUpdate},`
`284`	`284`	`Resource:rbac.ResourceAssignRole,`
`285`	`285`	`AuthorizeMap:map[bool][]hasAuthSubjects{`
`286`	`286`	`true: {owner},`
`@@ -316,7 +316,7 @@ func TestRolePermissions(t *testing.T) {`
`316`	`316`	`},`
`317`	`317`	`{`
`318`	`318`	`Name:"CreateOrgRoleAssignment",`
`319`		`-Actions: []policy.Action{policy.ActionCreate},`
	`319`	`+Actions: []policy.Action{policy.ActionCreate,policy.ActionUpdate},`
`320`	`320`	`Resource:rbac.ResourceAssignOrgRole.InOrg(orgID),`
`321`	`321`	`AuthorizeMap:map[bool][]hasAuthSubjects{`
`322`	`322`	`true: {owner,orgAdmin},`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitc567a9d

File tree

3 files changed

3 files changed

`‎coderd/database/dbauthz/customroles_test.go`

`‎coderd/rbac/roles.go`

`‎coderd/rbac/roles_test.go`

0 commit comments