chore: Refactor Enterprise code to layer on top of AGPL (#4034)

* chore: Refactor Enterprise code to layer on top of AGPL This is an experiment to invert the import order of the Enterprise code to layer on top of AGPL. * Fix Garrett's comments * Add pointer.Handle to atomically obtain references This uses a context to ensure the same value persists through multiple executions to `Load()`. * Remove entitlements API from AGPL coderd * Remove AGPL Coder entitlements endpoint test * Fix warnings output * Add command-line flag to toggle audit logging * Fix hasLicense being set * Remove features interface * Fix audit logging default * Add bash as a dependency * Add comment * Add tests for resync and pubsub, and add back previous exp backoff retry * Separate authz code again * Add pointer loading example from comment * Fix duplicate test, remove pointer.Handle * Fix expired license * Add entitlements struct * Fix context passing
2025-07-06 15:41:45 +00:00 · 2022-09-19 23:11:01 -05:00
parent 714c366d16
commit db0ba8588e
39 changed files with 1402 additions and 2069 deletions
--- a/enterprise/coderd/coderdenttest/coderdenttest_test.go
+++ b/enterprise/coderd/coderdenttest/coderdenttest_test.go
@ -0,0 +1,51 @@
+package coderdenttest_test
+
+import (
+	"context"
+	"fmt"
+	"net/http"
+	"testing"
+
+	"github.com/coder/coder/coderd/coderdtest"
+	"github.com/coder/coder/coderd/rbac"
+	"github.com/coder/coder/enterprise/coderd/coderdenttest"
+)
+
+func TestNew(t *testing.T) {
+	t.Parallel()
+	_ = coderdenttest.New(t, nil)
+}
+
+func TestAuthorizeAllEndpoints(t *testing.T) {
+	t.Parallel()
+	client, _, api := coderdenttest.NewWithAPI(t, &coderdenttest.Options{
+		Options: &coderdtest.Options{
+			Authorizer:               &coderdtest.RecordingAuthorizer{},
+			IncludeProvisionerDaemon: true,
+		},
+	})
+	admin := coderdtest.CreateFirstUser(t, client)
+	license := coderdenttest.AddLicense(t, client, coderdenttest.LicenseOptions{})
+	a := coderdtest.NewAuthTester(context.Background(), t, client, api.AGPL, admin)
+	a.URLParams["licenses/{id}"] = fmt.Sprintf("licenses/%d", license.ID)
+
+	skipRoutes, assertRoute := coderdtest.AGPLRoutes(a)
+	assertRoute["GET:/api/v2/entitlements"] = coderdtest.RouteCheck{
+		NoAuthorize: true,
+	}
+	assertRoute["POST:/api/v2/licenses"] = coderdtest.RouteCheck{
+		AssertAction: rbac.ActionCreate,
+		AssertObject: rbac.ResourceLicense,
+	}
+	assertRoute["GET:/api/v2/licenses"] = coderdtest.RouteCheck{
+		StatusCode:   http.StatusOK,
+		AssertAction: rbac.ActionRead,
+		AssertObject: rbac.ResourceLicense,
+	}
+	assertRoute["DELETE:/api/v2/licenses/{id}"] = coderdtest.RouteCheck{
+		AssertAction: rbac.ActionDelete,
+		AssertObject: rbac.ResourceLicense,
+	}
+
+	a.Test(context.Background(), assertRoute, skipRoutes)
+}