feat: convert to oidc out of experimental (#8742)

coderd/apidoc/docs.go

@@ -7078,9 +7078,6 @@ const docTemplate = `{
         "codersdk.AuthMethods": {
             "type": "object",
             "properties": {
-                "convert_to_oidc_enabled": {
-                    "type": "boolean"
-                },
                 "github": {
                     "$ref": "#/definitions/codersdk.AuthMethod"
                 },
@@ -8022,7 +8019,6 @@ const docTemplate = `{
                 "moons",
                 "workspace_actions",
                 "tailnet_pg_coordinator",
-                "convert-to-oidc",
                 "single_tailnet",
                 "template_restart_requirement",
                 "template_insights_page"
@@ -8031,7 +8027,6 @@ const docTemplate = `{
                 "ExperimentMoons",
                 "ExperimentWorkspaceActions",
                 "ExperimentTailnetPGCoordinator",
-                "ExperimentConvertToOIDC",
                 "ExperimentSingleTailnet",
                 "ExperimentTemplateRestartRequirement",
                 "ExperimentTemplateInsightsPage"

coderd/apidoc/swagger.json

@@ -6302,9 +6302,6 @@
     "codersdk.AuthMethods": {
       "type": "object",
       "properties": {
-        "convert_to_oidc_enabled": {
-          "type": "boolean"
-        },
         "github": {
           "$ref": "#/definitions/codersdk.AuthMethod"
         },
@@ -7183,7 +7180,6 @@
         "moons",
         "workspace_actions",
         "tailnet_pg_coordinator",
-        "convert-to-oidc",
         "single_tailnet",
         "template_restart_requirement",
         "template_insights_page"
@@ -7192,7 +7188,6 @@
         "ExperimentMoons",
         "ExperimentWorkspaceActions",
         "ExperimentTailnetPGCoordinator",
-        "ExperimentConvertToOIDC",
         "ExperimentSingleTailnet",
         "ExperimentTemplateRestartRequirement",
         "ExperimentTemplateInsightsPage"

coderd/userauth.go

@@ -64,13 +64,6 @@ type OAuthConvertStateClaims struct {
 // @Success 201 {object} codersdk.OAuthConversionResponse
 // @Router /users/{user}/convert-login [post]
 func (api *API) postConvertLoginType(rw http.ResponseWriter, r *http.Request) {
-	if !api.Experiments.Enabled(codersdk.ExperimentConvertToOIDC) {
-		httpapi.Write(r.Context(), rw, http.StatusForbidden, codersdk.Response{
-			Message: "Oauth conversion is not allowed, contact an administrator to turn on this feature.",
-		})
-		return
-	}
-
 	var (
 		user              = httpmw.UserParam(r)
 		ctx               = r.Context()
@@ -455,7 +448,6 @@ func (api *API) userAuthMethods(rw http.ResponseWriter, r *http.Request) {
 	}
 
 	httpapi.Write(r.Context(), rw, http.StatusOK, codersdk.AuthMethods{
-		ConvertToOIDCEnabled: api.Experiments.Enabled(codersdk.ExperimentConvertToOIDC),
 		Password: codersdk.AuthMethod{
 			Enabled: !api.DeploymentValues.DisablePasswordAuth.Value(),
 		},
@@ -1499,11 +1491,6 @@ func (api *API) convertUserToOauth(ctx context.Context, r *http.Request, db data
 	oauthConvertAudit.UserID = claims.UserID
 	oauthConvertAudit.Old = user
 
-	// If we do not allow converting to oauth, return an error.
-	if !api.Experiments.Enabled(codersdk.ExperimentConvertToOIDC) {
-		return database.User{}, wrongLoginTypeHTTPError(user.LoginType, params.LoginType)
-	}
-
 	if claims.RegisteredClaims.Issuer != api.DeploymentID {
 		return database.User{}, httpError{
 			code: http.StatusForbidden,

coderd/userauth_test.go

@@ -20,7 +20,6 @@ import (
 	"golang.org/x/xerrors"
 
 	"cdr.dev/slog/sloggers/slogtest"
-	"github.com/coder/coder/cli/clibase"
 	"github.com/coder/coder/coderd"
 	"github.com/coder/coder/coderd/audit"
 	"github.com/coder/coder/coderd/coderdtest"
@@ -796,7 +795,6 @@ func TestUserOIDC(t *testing.T) {
 		config.AllowSignups = true
 
 		cfg := coderdtest.DeploymentValues(t)
-		cfg.Experiments = clibase.StringArray{string(codersdk.ExperimentConvertToOIDC)}
 		client := coderdtest.New(t, &coderdtest.Options{
 			Auditor:          auditor,
 			OIDCConfig:       config,