NotificationsYou must be signed in to change notification settings
Fork1.1k
Star11.6k

Commitf70ff35

committed

feat(provisioner): add support for workspace_owner_rbac_roles

1 parent6a67e2e commitf70ff35Copy full SHA for f70ff35

File tree

7 files changed

+515

-337

lines changed

coderd/provisionerdserver
- provisionerdserver.go
- provisionerdserver_test.go
provisionersdk/proto
- provisioner.pb.go
- provisioner.proto
provisioner/terraform
- provision.go
- provision_test.go
site/e2e
- provisionerGenerated.ts

7 files changed

+515

-337

lines changed

`‎coderd/provisionerdserver/provisionerdserver.go‎`

Lines changed: 10 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -594,6 +594,15 @@ func (s *server) acquireProtoJob(ctx context.Context, job database.ProvisionerJo`
`594`	`594`	`})`
`595`	`595`	`}`
`596`	`596`
	`597`	`+roles,err:=s.Database.GetAuthorizationUserRoles(dbauthz.AsSystemRestricted(ctx),owner.ID)`
	`598`	`+iferr!=nil {`
	`599`	`+returnnil,failJob(fmt.Sprintf("get owner authorization roles: %s",err))`
	`600`	`+}`
	`601`	`+ownerRbacRoles:= []*sdkproto.OwnerRbacRoles{}`
	`602`	`+for_,role:=rangeroles.Roles {`
	`603`	`+ownerRbacRoles=append(ownerRbacRoles,&sdkproto.OwnerRbacRoles{Name:role,OrgId:s.OrganizationID.String()})`
	`604`	`+}`
	`605`	`+`
`597`	`606`	`protoJob.Type=&proto.AcquiredJob_WorkspaceBuild_{`
`598`	`607`	`WorkspaceBuild:&proto.AcquiredJob_WorkspaceBuild{`
`599`	`608`	`WorkspaceBuildId:workspaceBuild.ID.String(),`
`@@ -621,6 +630,7 @@ func (s *server) acquireProtoJob(ctx context.Context, job database.ProvisionerJo`
`621`	`630`	`WorkspaceOwnerSshPrivateKey:ownerSSHPrivateKey,`
`622`	`631`	`WorkspaceBuildId:workspaceBuild.ID.String(),`
`623`	`632`	`WorkspaceOwnerLoginType:string(owner.LoginType),`
	`633`	`+WorkspaceOwnerRbacRoles:ownerRbacRoles,`
`624`	`634`	`},`
`625`	`635`	`LogLevel:input.LogLevel,`
`626`	`636`	`},`

`‎coderd/provisionerdserver/provisionerdserver_test.go‎`

Lines changed: 1 addition & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -376,6 +376,7 @@ func TestAcquireJob(t *testing.T) {`
`376`	`376`	`WorkspaceOwnerSshPrivateKey:sshKey.PrivateKey,`
`377`	`377`	`WorkspaceBuildId:build.ID.String(),`
`378`	`378`	`WorkspaceOwnerLoginType:string(user.LoginType),`
	`379`	`+WorkspaceOwnerRbacRoles: []*sdkproto.OwnerRbacRoles{{Name:"member",OrgId:pd.OrganizationID.String()}},`
`379`	`380`	`},`
`380`	`381`	`},`
`381`	`382`	`})`

`‎provisioner/terraform/provision.go‎`

Lines changed: 6 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -242,6 +242,11 @@ func provisionEnv(`
`242`	`242`	`returnnil,xerrors.Errorf("marshal owner groups: %w",err)`
`243`	`243`	`}`
`244`	`244`
	`245`	`+ownerRbacRoles,err:=json.Marshal(metadata.GetWorkspaceOwnerRbacRoles())`
	`246`	`+iferr!=nil {`
	`247`	`+returnnil,xerrors.Errorf("marshal owner rbac roles: %w",err)`
	`248`	`+}`
	`249`	`+`
`245`	`250`	`env=append(env,`
`246`	`251`	`"CODER_AGENT_URL="+metadata.GetCoderUrl(),`
`247`	`252`	`"CODER_WORKSPACE_TRANSITION="+strings.ToLower(metadata.GetWorkspaceTransition().String()),`
`@@ -254,6 +259,7 @@ func provisionEnv(`
`254`	`259`	`"CODER_WORKSPACE_OWNER_SSH_PUBLIC_KEY="+metadata.GetWorkspaceOwnerSshPublicKey(),`
`255`	`260`	`"CODER_WORKSPACE_OWNER_SSH_PRIVATE_KEY="+metadata.GetWorkspaceOwnerSshPrivateKey(),`
`256`	`261`	`"CODER_WORKSPACE_OWNER_LOGIN_TYPE="+metadata.GetWorkspaceOwnerLoginType(),`
	`262`	`+"CODER_WORKSPACE_OWNER_RBAC_ROLES="+string(ownerRbacRoles),`
`257`	`263`	`"CODER_WORKSPACE_ID="+metadata.GetWorkspaceId(),`
`258`	`264`	`"CODER_WORKSPACE_OWNER_ID="+metadata.GetWorkspaceOwnerId(),`
`259`	`265`	`"CODER_WORKSPACE_OWNER_SESSION_TOKEN="+metadata.GetWorkspaceOwnerSessionToken(),`

`‎provisioner/terraform/provision_test.go‎`

Lines changed: 47 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -764,6 +764,53 @@ func TestProvision(t *testing.T) {`
`764`	`764`	`}},`
`765`	`765`	`},`
`766`	`766`	`},`
	`767`	`+{`
	`768`	`+Name:"workspace-owner-rbac-roles",`
	`769`	`+SkipReason:"field will be added in provider version 2.2.0",`
	`770`	`+Files:map[string]string{`
	`771`	+"main.tf":`terraform {
	`772`	`+required_providers {`
	`773`	`+ coder = {`
	`774`	`+source = "coder/coder"`
	`775`	`+version = "2.2.0"`
	`776`	`+ }`
	`777`	`+}`
	`778`	`+}`
	`779`	`+`
	`780`	`+resource "null_resource" "example" {}`
	`781`	`+data "coder_workspace_owner" "me" {}`
	`782`	`+resource "coder_metadata" "example" {`
	`783`	`+resource_id = null_resource.example.id`
	`784`	`+item {`
	`785`	`+key = "rbac_roles_name"`
	`786`	`+value = data.coder_workspace_owner.me.rbac_roles[0].name`
	`787`	`+}`
	`788`	`+item {`
	`789`	`+key = "rbac_roles_org_id"`
	`790`	`+value = data.coder_workspace_owner.me.rbac_roles[0].org_id`
	`791`	`+}`
	`792`	`+}`
	`793`	+`,
	`794`	`+},`
	`795`	`+Request:&proto.PlanRequest{`
	`796`	`+Metadata:&proto.Metadata{`
	`797`	`+WorkspaceOwnerRbacRoles: []*proto.OwnerRbacRoles{{Name:"member",OrgId:"00000000-0000-0000-0000-000000000000"}},`
	`798`	`+},`
	`799`	`+},`
	`800`	`+Response:&proto.PlanComplete{`
	`801`	`+Resources: []*proto.Resource{{`
	`802`	`+Name:"example",`
	`803`	`+Type:"null_resource",`
	`804`	`+Metadata: []*proto.Resource_Metadata{{`
	`805`	`+Key:"rbac_roles_name",`
	`806`	`+Value:"member",`
	`807`	`+}, {`
	`808`	`+Key:"rbac_roles_org_id",`
	`809`	`+Value:"00000000-0000-0000-0000-000000000000",`
	`810`	`+}},`
	`811`	`+}},`
	`812`	`+},`
	`813`	`+},`
`767`	`814`	`}`
`768`	`815`
`769`	`816`	`for_,testCase:=rangetestCases {`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commitf70ff35

File tree

7 files changed

7 files changed

`‎coderd/provisionerdserver/provisionerdserver.go‎`

`‎coderd/provisionerdserver/provisionerdserver_test.go‎`

`‎provisioner/terraform/provision.go‎`

`‎provisioner/terraform/provision_test.go‎`

0 commit comments