NotificationsYou must be signed in to change notification settings
Fork928
Star10.1k

Commitce18015

committed

Merge branch 'main' into githubteams

2 parents7d72da3 +bacfd63 commitce18015Copy full SHA for ce18015

File tree

6 files changed

+31

-17

lines changed

Makefile
cli
- server.go
coderd
- database
  - db_test.go
- userauth.go
- userauth_test.go
- workspaces_test.go

6 files changed

+31

-17

lines changed

`‎Makefile`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -175,7 +175,7 @@ test-postgres: test-clean test-postgres-docker`
`175`	`175`	`DB=ci DB_FROM=$(shell go run scripts/migrate-ci/main.go) gotestsum --junitfile="gotests.xml" --packages="./..." --\`
`176`	`176`	`-covermode=atomic -coverprofile="gotests.coverage" -timeout=30m\`
`177`	`177`	`-coverpkg=./...,github.com/coder/coder/codersdk\`
`178`		`--count=2 -race -failfast`
	`178`	`+-count=1 -race -failfast`
`179`	`179`	`.PHONY: test-postgres`
`180`	`180`
`181`	`181`	`test-postgres-docker:`

`‎cli/server.go`

Lines changed: 12 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -722,11 +722,22 @@ func configureTLS(listener net.Listener, tlsMinVersion, tlsClientAuth, tlsCertFi`
`722`	`722`	`returntls.NewListener(listener,tlsConfig),nil`
`723`	`723`	`}`
`724`	`724`
`725`		`-funcconfigureGithubOAuth2(accessURLurl.URL,clientID,clientSecretstring,allowSignupsbool,allowOrgs []string,allowTeams []string) (coderd.GithubOAuth2Config,error) {`
	`725`	`+funcconfigureGithubOAuth2(accessURLurl.URL,clientID,clientSecretstring,allowSignupsbool,allowOrgs []string,rawTeams []string) (coderd.GithubOAuth2Config,error) {`
`726`	`726`	`redirectURL,err:=accessURL.Parse("/api/v2/users/oauth2/github/callback")`
`727`	`727`	`iferr!=nil {`
`728`	`728`	`returnnil,xerrors.Errorf("parse github oauth callback url: %w",err)`
`729`	`729`	`}`
	`730`	`+allowTeams:=make([]coderd.GithubOAuth2Team,0,len(rawTeams))`
	`731`	`+for_,rawTeam:=rangerawTeams {`
	`732`	`+parts:=strings.SplitN(rawTeam,"/",2)`
	`733`	`+iflen(parts)!=2 {`
	`734`	`+returnnil,xerrors.Errorf("github team allowlist is formatted incorrectly. got %s; wanted <organization>/<team>",rawTeam)`
	`735`	`+}`
	`736`	`+allowTeams=append(allowTeams, coderd.GithubOAuth2Team{`
	`737`	`+Organization:parts[0],`
	`738`	`+Slug:parts[1],`
	`739`	`+})`
	`740`	`+}`
`730`	`741`	`return&coderd.GithubOAuth2Config{`
`731`	`742`	`OAuth2Config:&oauth2.Config{`
`732`	`743`	`ClientID:clientID,`

`‎coderd/database/db_test.go`

Lines changed: 3 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -14,6 +14,9 @@ import (`
`14`	`14`
`15`	`15`	`funcTestNestedInTx(t*testing.T) {`
`16`	`16`	`t.Parallel()`
	`17`	`+iftesting.Short() {`
	`18`	`+t.SkipNow()`
	`19`	`+}`
`17`	`20`
`18`	`21`	`uid:=uuid.New()`
`19`	`22`	`sqlDB:=testSQLDB(t)`

`‎coderd/userauth.go`

Lines changed: 10 additions & 13 deletions

Original file line number	Diff line number	Diff line change
`@@ -6,7 +6,6 @@ import (`
`6`	`6`	`"errors"`
`7`	`7`	`"fmt"`
`8`	`8`	`"net/http"`
`9`		`-"strings"`
`10`	`9`
`11`	`10`	`"github.com/google/go-github/v43/github"`
`12`	`11`	`"github.com/google/uuid"`
`@@ -18,6 +17,12 @@ import (`
`18`	`17`	`"github.com/coder/coder/codersdk"`
`19`	`18`	`)`
`20`	`19`
	`20`	`+// GithubOAuth2Team represents a team scoped to an organization.`
	`21`	`+typeGithubOAuth2Teamstruct {`
	`22`	`+Organizationstring`
	`23`	`+Slugstring`
	`24`	`+}`
	`25`	`+`
`21`	`26`	`// GithubOAuth2Provider exposes required functions for the Github authentication flow.`
`22`	`27`	`typeGithubOAuth2Configstruct {`
`23`	`28`	`httpmw.OAuth2Config`
`@@ -28,7 +33,7 @@ type GithubOAuth2Config struct {`
`28`	`33`
`29`	`34`	`AllowSignupsbool`
`30`	`35`	`AllowOrganizations []string`
`31`		`-AllowTeams []string`
	`36`	`+AllowTeams []GithubOAuth2Team`
`32`	`37`	`}`
`33`	`38`
`34`	`39`	`func (apiAPI)userAuthMethods(rw http.ResponseWriter,_http.Request) {`
`@@ -80,21 +85,13 @@ func (api API) userOAuth2Github(rw http.ResponseWriter, r http.Request) {`
`80`	`85`
`81`	`86`	`varallowedTeam*github.Team`
`82`	`87`	`for_,team:=rangeteams {`
`83`		`-for_,organizationAndTeam:=rangeapi.GithubOAuth2Config.AllowTeams {`
`84`		`-parts:=strings.SplitN(organizationAndTeam,"/",2)`
`85`		`-iflen(parts)!=2 {`
`86`		`-httpapi.Write(rw,http.StatusInternalServerError, httpapi.Response{`
`87`		`-Message:"Team allowlist isn't formatted correctly.",`
`88`		`-Detail:fmt.Sprintf("Got %s, wanted <organization>/<team>",organizationAndTeam),`
`89`		`-})`
`90`		`-return`
`91`		`-}`
`92`		`-ifparts[0]!=*selectedMembership.Organization.Login {`
	`88`	`+for_,allowTeam:=rangeapi.GithubOAuth2Config.AllowTeams {`
	`89`	`+ifallowTeam.Organization!=*selectedMembership.Organization.Login {`
`93`	`90`	`// This needs to continue because multiple organizations`
`94`	`91`	`// could exist in the allow/team listings.`
`95`	`92`	`continue`
`96`	`93`	`}`
`97`		`-ifparts[1]!=*team.Slug {`
	`94`	`+ifallowTeam.Slug!=*team.Slug {`
`98`	`95`	`continue`
`99`	`96`	`}`
`100`	`97`	`allowedTeam=team`

`‎coderd/userauth_test.go`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -78,7 +78,7 @@ func TestUserOAuth2Github(t *testing.T) {`
`78`	`78`	`client:=coderdtest.New(t,&coderdtest.Options{`
`79`	`79`	`GithubOAuth2Config:&coderd.GithubOAuth2Config{`
`80`	`80`	`AllowOrganizations: []string{"coder"},`
`81`		`-AllowTeams: []string{"another/something","coder/frontend"},`
	`81`	`+AllowTeams: []coderd.GithubOAuth2Team{{"another","something"}, {"coder","frontend"}},`
`82`	`82`	`OAuth2Config:&oauth2Config{},`
`83`	`83`	`ListOrganizationMemberships:func(ctx context.Context,clienthttp.Client) ([]github.Membership,error) {`
`84`	`84`	`return []*github.Membership{{`
`@@ -214,7 +214,7 @@ func TestUserOAuth2Github(t *testing.T) {`
`214`	`214`	`GithubOAuth2Config:&coderd.GithubOAuth2Config{`
`215`	`215`	`AllowSignups:true,`
`216`	`216`	`AllowOrganizations: []string{"coder"},`
`217`		`-AllowTeams: []string{"coder/frontend"},`
	`217`	`+AllowTeams: []coderd.GithubOAuth2Team{{"coder","frontend"}},`
`218`	`218`	`OAuth2Config:&oauth2Config{},`
`219`	`219`	`ListOrganizationMemberships:func(ctx context.Context,clienthttp.Client) ([]github.Membership,error) {`
`220`	`220`	`return []*github.Membership{{`

`‎coderd/workspaces_test.go`

Lines changed: 3 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -343,6 +343,9 @@ func TestWorkspaceByOwnerAndName(t *testing.T) {`
`343`	`343`	`// to run various filters against for testing.`
`344`	`344`	`funcTestWorkspaceFilter(t*testing.T) {`
`345`	`345`	`t.Parallel()`
	`346`	`+// Manual tests still occur below, so this is safe to disable.`
	`347`	`+t.Skip("This test is slow and flaky. See: https://github.com/coder/coder/issues/2854")`
	`348`	`+// nolint:unused`
`346`	`349`	`typecoderUserstruct {`
`347`	`350`	`*codersdk.Client`
`348`	`351`	`User codersdk.User`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitce18015

File tree

6 files changed

6 files changed

`‎Makefile`

`‎cli/server.go`

`‎coderd/database/db_test.go`

`‎coderd/userauth.go`

`‎coderd/userauth_test.go`

`‎coderd/workspaces_test.go`

0 commit comments