coder/coder-jetbrains-toolboxPublic

NotificationsYou must be signed in to change notification settings
Fork1
Star11

Commit23cab56

authored

impl: support for certificate based authentication (#155)

We now skip token input screen if the user provided a public and aprivate key for mTLS authentication on both the usual welcome screen andin the URI handling.Attention: the official coder deployment supports only authenticationvia token, which is why I could not fully test an end to end scenario.

1 parent3a21b45 commit23cab56Copy full SHA for 23cab56

File tree

9 files changed

+57

-18

lines changed

CHANGELOG.md
gradle.properties
src
- main/kotlin/com/coder/toolbox
  - CoderRemoteProvider.kt
  - sdk
    - CoderRestClient.kt
  - util
    - CoderProtocolHandler.kt
  - views
- test/kotlin/com/coder/toolbox/sdk
  - CoderRestClientTest.kt

9 files changed

+57

-18

lines changed

`‎CHANGELOG.md‎`

Lines changed: 4 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -2,6 +2,10 @@`
`2`	`2`
`3`	`3`	`##Unreleased`
`4`	`4`
	`5`	`+###Added`
	`6`	`+`
	`7`	`+- support for certificate based authentication`
	`8`	`+`
`5`	`9`	`##0.5.0 - 2025-07-17`
`6`	`10`
`7`	`11`	`###Added`

`‎gradle.properties‎`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -1,3 +1,3 @@`
`1`		`-version=0.5.0`
	`1`	`+version=0.5.1`
`2`	`2`	`group=com.coder.toolbox`
`3`	`3`	`name=coder-toolbox`

`‎src/main/kotlin/com/coder/toolbox/CoderRemoteProvider.kt‎`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -245,7 +245,7 @@ class CoderRemoteProvider(`
`245`	`245`	`environments.value=LoadableState.Value(emptyList())`
`246`	`246`	`isInitialized.update {false }`
`247`	`247`	`client=null`
`248`		`-CoderCliSetupWizardState.resetSteps()`
	`248`	`+CoderCliSetupWizardState.goToFirstStep()`
`249`	`249`	`}`
`250`	`250`
`251`	`251`	`overrideval svgIcon:SvgIcon=`

`‎src/main/kotlin/com/coder/toolbox/sdk/CoderRestClient.kt‎`

Lines changed: 4 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -94,7 +94,10 @@ open class CoderRestClient(`
`94`	`94`	`.build()`
`95`	`95`	`}`
`96`	`96`
`97`		`-if (token!=null) {`
	`97`	`+if (context.settingsStore.requireTokenAuth) {`
	`98`	`+if (token.isNullOrBlank()) {`
	`99`	`+throwIllegalStateException("Token is required for$url deployment")`
	`100`	`+ }`
`98`	`101`	`builder= builder.addInterceptor {`
`99`	`102`	`it.proceed(`
`100`	`103`	`it.request().newBuilder().addHeader("Coder-Session-Token", token).build()`

`‎src/main/kotlin/com/coder/toolbox/util/CoderProtocolHandler.kt‎`

Lines changed: 4 additions & 4 deletions

Original file line number	Diff line number	Diff line change
`@@ -64,7 +64,7 @@ open class CoderProtocolHandler(`
`64`	`64`
`65`	`65`	`context.logger.info("Handling$uri...")`
`66`	`66`	`val deploymentURL= resolveDeploymentUrl(params)?:return`
`67`		`-val token= resolveToken(params)?:return`
	`67`	`+val token=if (!context.settingsStore.requireTokenAuth)nullelseresolveToken(params)?:return`
`68`	`68`	`val workspaceName= resolveWorkspaceName(params)?:return`
`69`	`69`	`val restClient= buildRestClient(deploymentURL, token)?:return`
`70`	`70`	`val workspace= restClient.workspaces().matchName(workspaceName, deploymentURL)?:return`
`@@ -128,7 +128,7 @@ open class CoderProtocolHandler(`
`128`	`128`	`return workspace`
`129`	`129`	`}`
`130`	`130`
`131`		`-privatesuspendfunbuildRestClient(deploymentURL:String,token:String):CoderRestClient? {`
	`131`	`+privatesuspendfunbuildRestClient(deploymentURL:String,token:String?):CoderRestClient? {`
`132`	`132`	`try {`
`133`	`133`	`return authenticate(deploymentURL, token)`
`134`	`134`	`}catch (ex:Exception) {`
`@@ -140,11 +140,11 @@ open class CoderProtocolHandler(`
`140`	`140`	`/**`
`141`	`141`	`* Returns an authenticated Coder CLI.`
`142`	`142`	`*/`
`143`		`-privatesuspendfunauthenticate(deploymentURL:String,token:String):CoderRestClient {`
	`143`	`+privatesuspendfunauthenticate(deploymentURL:String,token:String?):CoderRestClient {`
`144`	`144`	`val client=CoderRestClient(`
`145`	`145`	`context,`
`146`	`146`	`deploymentURL.toURL(),`
`147`		`-if (settings.requireTokenAuth)tokenelsenull,`
	`147`	`+ token,`
`148`	`148`	`PluginManager.pluginInfo.version`
`149`	`149`	`)`
`150`	`150`	`client.initializeSession()`

`‎src/main/kotlin/com/coder/toolbox/views/ConnectStep.kt‎`

Lines changed: 12 additions & 8 deletions

Original file line number	Diff line number	Diff line change
`@@ -47,7 +47,7 @@ class ConnectStep(`
`47`	`47`	`context.i18n.pnotr("")`
`48`	`48`	`}`
`49`	`49`
`50`		`-if (CoderCliSetupContext.isNotReadyForAuth()) {`
	`50`	`+if (context.settingsStore.requireTokenAuth&&CoderCliSetupContext.isNotReadyForAuth()) {`
`51`	`51`	`errorField.textState.update {`
`52`	`52`	`context.i18n.pnotr("URL and token were not properly configured. Please go back and provide a proper URL and token!")`
`53`	`53`	`}`
`@@ -67,7 +67,7 @@ class ConnectStep(`
`67`	`67`	`return`
`68`	`68`	`}`
`69`	`69`
`70`		`-if (!CoderCliSetupContext.hasToken()) {`
	`70`	`+if (context.settingsStore.requireTokenAuth&&!CoderCliSetupContext.hasToken()) {`
`71`	`71`	`errorField.textState.update { context.i18n.ptrl("Token is required") }`
`72`	`72`	`return`
`73`	`73`	`}`
`@@ -77,7 +77,7 @@ class ConnectStep(`
`77`	`77`	`val client=CoderRestClient(`
`78`	`78`	`context,`
`79`	`79`	`CoderCliSetupContext.url!!,`
`80`		`-CoderCliSetupContext.token!!,`
	`80`	`+if (context.settingsStore.requireTokenAuth)CoderCliSetupContext.tokenelsenull,`
`81`	`81`	`PluginManager.pluginInfo.version,`
`82`	`82`	`)`
`83`	`83`	`// allows interleaving with the back/cancel action`
`@@ -91,17 +91,17 @@ class ConnectStep(`
`91`	`91`	`statusField.textState.update { (context.i18n.pnotr(progress)) }`
`92`	`92`	`}`
`93`	`93`	`// We only need to log in if we are using token-based auth.`
`94`		`-if (client.token!=null) {`
	`94`	`+if (context.settingsStore.requireTokenAuth) {`
`95`	`95`	`statusField.textState.update { (context.i18n.ptrl("Configuring Coder CLI...")) }`
`96`	`96`	`// allows interleaving with the back/cancel action`
`97`	`97`	`yield()`
`98`		`- cli.login(client.token)`
	`98`	`+ cli.login(client.token!!)`
`99`	`99`	`}`
`100`	`100`	`statusField.textState.update { (context.i18n.ptrl("Successfully configured${CoderCliSetupContext.url!!.host}...")) }`
`101`	`101`	`// allows interleaving with the back/cancel action`
`102`	`102`	`yield()`
`103`	`103`	`CoderCliSetupContext.reset()`
`104`		`-CoderCliSetupWizardState.resetSteps()`
	`104`	`+CoderCliSetupWizardState.goToFirstStep()`
`105`	`105`	`onConnect(client, cli)`
`106`	`106`	`}catch (ex:CancellationException) {`
`107`	`107`	`if (ex.message!=USER_HIT_THE_BACK_BUTTON) {`
`@@ -127,10 +127,14 @@ class ConnectStep(`
`127`	`127`	`}finally {`
`128`	`128`	`if (shouldAutoLogin.value) {`
`129`	`129`	`CoderCliSetupContext.reset()`
`130`		`-CoderCliSetupWizardState.resetSteps()`
	`130`	`+CoderCliSetupWizardState.goToFirstStep()`
`131`	`131`	`context.secrets.rememberMe=false`
`132`	`132`	`}else {`
`133`		`-CoderCliSetupWizardState.goToPreviousStep()`
	`133`	`+if (context.settingsStore.requireTokenAuth) {`
	`134`	`+CoderCliSetupWizardState.goToPreviousStep()`
	`135`	`+ }else {`
	`136`	`+CoderCliSetupWizardState.goToFirstStep()`
	`137`	`+ }`
`134`	`138`	`}`
`135`	`139`	`}`
`136`	`140`	`}`

`‎src/main/kotlin/com/coder/toolbox/views/DeploymentUrlStep.kt‎`

Lines changed: 5 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -85,7 +85,11 @@ class DeploymentUrlStep(`
`85`	`85`	`notify("URL is invalid", e)`
`86`	`86`	`returnfalse`
`87`	`87`	`}`
`88`		`-CoderCliSetupWizardState.goToNextStep()`
	`88`	`+if (context.settingsStore.requireTokenAuth) {`
	`89`	`+CoderCliSetupWizardState.goToNextStep()`
	`90`	`+ }else {`
	`91`	`+CoderCliSetupWizardState.goToLastStep()`
	`92`	`+ }`
`89`	`93`	`returntrue`
`90`	`94`	`}`
`91`	`95`

`‎src/main/kotlin/com/coder/toolbox/views/state/CoderCliSetupWizardState.kt‎`

Lines changed: 5 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -25,7 +25,11 @@ object CoderCliSetupWizardState {`
`25`	`25`	`currentStep=WizardStep.entries.toTypedArray()[(currentStep.ordinal-1)%WizardStep.entries.size]`
`26`	`26`	`}`
`27`	`27`
`28`		`-funresetSteps() {`
	`28`	`+fungoToLastStep() {`
	`29`	`+ currentStep=WizardStep.CONNECT`
	`30`	`+ }`
	`31`	`+`
	`32`	`+fungoToFirstStep() {`
`29`	`33`	`currentStep=WizardStep.URL_REQUEST`
`30`	`34`	`}`
`31`	`35`	`}`

`‎src/test/kotlin/com/coder/toolbox/sdk/CoderRestClientTest.kt‎`

Lines changed: 21 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -225,7 +225,7 @@ class CoderRestClientTest {`
`225`	`225`	`val client=CoderRestClient(context,URL(url),"token")`
`226`	`226`	`assertEquals(user.username, runBlocking { client.me() }.username)`
`227`	`227`
`228`		`-val tests=listOf("invalid",null)`
	`228`	`+val tests=listOf("invalid")`
`229`	`229`	`tests.forEach { token->`
`230`	`230`	`val ex=`
`231`	`231`	`assertFailsWith(`
`@@ -238,6 +238,26 @@ class CoderRestClientTest {`
`238`	`238`	`srv.stop(0)`
`239`	`239`	`}`
`240`	`240`
	`241`	`+ @Test`
	`242`	+fun`exception is raised when token is required for authentication and token value is null or empty`() {
	`243`	`+listOf("",null).forEach { token->`
	`244`	`+val ex=`
	`245`	`+ assertFailsWith(`
	`246`	`+ exceptionClass=IllegalStateException::class,`
	`247`	`+ block= {`
	`248`	`+ runBlocking {`
	`249`	`+CoderRestClient(`
	`250`	`+ context,`
	`251`	`+URI.create("https://coder.com").toURL(),`
	`252`	`+ token`
	`253`	`+ ).me()`
	`254`	`+ }`
	`255`	`+ },`
	`256`	`+ )`
	`257`	`+ assertEquals(ex.message,"Token is required for https://coder.com deployment")`
	`258`	`+ }`
	`259`	`+ }`
	`260`	`+`
`241`	`261`	`@Test`
`242`	`262`	`funtestGetsWorkspaces() {`
`243`	`263`	`val tests=`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit23cab56

File tree

9 files changed

9 files changed

`‎CHANGELOG.md‎`

`‎gradle.properties‎`

`‎src/main/kotlin/com/coder/toolbox/CoderRemoteProvider.kt‎`

`‎src/main/kotlin/com/coder/toolbox/sdk/CoderRestClient.kt‎`

`‎src/main/kotlin/com/coder/toolbox/util/CoderProtocolHandler.kt‎`

`‎src/main/kotlin/com/coder/toolbox/views/ConnectStep.kt‎`

`‎src/main/kotlin/com/coder/toolbox/views/DeploymentUrlStep.kt‎`

`‎src/main/kotlin/com/coder/toolbox/views/state/CoderCliSetupWizardState.kt‎`

`‎src/test/kotlin/com/coder/toolbox/sdk/CoderRestClientTest.kt‎`

0 commit comments