8e9cbdd71b
docs: API users ( #5620 )
...
* docs: audit, deploymentconfig, files, parameters
* Swagger comments in workspacebuilds.go
* structs in workspacebuilds.go
* workspaceagents: instance identity
* workspaceagents.go in progress
* workspaceagents.go in progress
* Agents
* workspacebuilds.go
* /workspaces
* templates.go, templateversions.go
* templateversion.go in progress
* cancel
* templateversions
* wip
* Merge
* x-apidocgen
* NullTime hack not needed anymore
* Fix: x-apidocgen
* Members
* Fixes
* Fix
* WIP
* WIP
* Users
* Logout
* User profile
* Status suspend activate
* User roles
* User tokens
* Keys
* SSH key
* All
* Typo
* Fix
* Fix
* Fix: LoginWithPasswordRequest
2023-01-11 14:08:04 +01:00
04d45f3c1c
fix!: remove AUTO_IMPORT_TEMPLATE for Kubernetes installs ( #5401 )
...
* fix!: remove AUTO_IMPORT_TEMPLATE
* chore: remove template auto importing
Co-authored-by: Dean Sheather <dean@deansheather.com >
2023-01-05 04:04:32 +00:00
27386d49d0
fix: No org admins until organizations are in the UI ( #5414 )
...
* fix: No org admins until organizations are in the UI
Until organizations have management UI, we should not set any org
admins. This goes around the site wide perms transparently and
is confusing to users.
Default user is no longer an org admin, so the demotion test makes
no sense
2022-12-14 11:05:42 -06:00
fb9ca7b830
feat: Add the option to generate a trial license during setup ( #5110 )
...
This allows users to generate a 30 day free license during setup to
test out Enterprise features.
2022-11-16 17:09:49 -06:00
88f3691dcc
feat: add count to get users endpoint ( #5016 )
2022-11-14 17:22:57 -05:00
97dbd4dc5d
Implement Quotas v3 ( #5012 )
...
* provisioner/terraform: add cost to resource_metadata
* provisionerd/runner: use Options struct
* Complete provisionerd implementation
* Add quota_allowance to groups
* Combine Quota and RBAC licenses
* Add Opts to InTx
2022-11-14 17:57:33 +00:00
f496b149df
feat: add count endpoint for users, enabling better pagination ( #4848 )
...
* Start on backend
* Hook up frontend
* Add to frontend test
* Add go test, wip
* Fix some test bugs
* Fix test
* Format
* Add to authorize.go
* copy user array into local variable
* Authorize route
* Log count error
* Authorize better
* Tweaks to authorization
* More authorization tweaks
* Make gen
* Fix test
Co-authored-by: Garrett <garrett@coder.com >
2022-11-08 10:58:44 -05:00
7a5ae1e552
fix: delete all sessions on password change ( #4659 )
...
- Prevent users from reusing their old password
as their new password.
2022-10-19 21:12:03 -05:00
d898737d6d
feat: app sharing (now open source!) ( #4378 )
2022-10-15 02:46:38 +10:00
3120c94c22
feat: add template RBAC/groups ( #4235 )
2022-10-10 15:37:06 -05:00
f5df54831a
feat: tokens ( #4380 )
2022-10-06 19:02:27 +00:00
587017665a
feat: Also log out of apps if they are hosted on the same domain ( #4334 )
...
* feat: Also log out of apps if they are hosted on the same domain
* Update comment
2022-10-04 19:01:16 -04:00
48c0b59447
fix: Log out of legacy cookie ( #4202 )
2022-09-26 14:20:38 -04:00
ee4b934601
Add Users Last Seen At ( #4192 )
2022-09-26 15:31:03 +00:00
6deef06ad2
feat: secure and cross-domain subdomain-based proxying ( #4136 )
...
Co-authored-by: Kyle Carberry <kyle@carberry.com >
2022-09-22 22:30:32 +00:00
5de6f86959
feat: trace httpapi.{Read,Write} ( #4134 )
2022-09-21 17:07:00 -05:00
5e2efb68f1
feat: add SCIM provisioning via Okta ( #4132 )
...
Co-authored-by: Ben Potter <ben@coder.com >
2022-09-20 15:16:26 -05:00
db0ba8588e
chore: Refactor Enterprise code to layer on top of AGPL ( #4034 )
...
* chore: Refactor Enterprise code to layer on top of AGPL
This is an experiment to invert the import order of the Enterprise
code to layer on top of AGPL.
* Fix Garrett's comments
* Add pointer.Handle to atomically obtain references
This uses a context to ensure the same value persists through
multiple executions to `Load()`.
* Remove entitlements API from AGPL coderd
* Remove AGPL Coder entitlements endpoint test
* Fix warnings output
* Add command-line flag to toggle audit logging
* Fix hasLicense being set
* Remove features interface
* Fix audit logging default
* Add bash as a dependency
* Add comment
* Add tests for resync and pubsub, and add back previous exp backoff retry
* Separate authz code again
* Add pointer loading example from comment
* Fix duplicate test, remove pointer.Handle
* Fix expired license
* Add entitlements struct
* Fix context passing
2022-09-19 23:11:01 -05:00
29d804e692
feat: add API key scopes and application_connect scope ( #4067 )
2022-09-19 17:39:02 +00:00
9ab437d6e2
feat: Add serving applications on subdomains and port-based proxying ( #3753 )
...
Co-authored-by: Dean Sheather <dean@deansheather.com >
2022-09-14 03:31:33 +10:00
850a83097c
feat: Allow deleting users ( #4028 )
...
* Add deleted column to the users table
* Fix user indexes
* Add frontend
* Add test
2022-09-12 23:24:20 +00:00
4e26e325a6
feat: add auditing to user routes ( #3961 )
2022-09-08 21:16:16 -05:00
05e2806ff3
feat: Add profile pictures to OAuth users ( #3855 )
...
This supports GitHub and OIDC login for profile pictures!
2022-09-04 11:44:27 -05:00
aa9a1c3f56
fix: Prevent suspending owners ( #3757 )
2022-08-31 15:26:36 +00:00
14a9576b77
Auto import kubernetes template in Helm charts ( #3550 )
2022-08-26 05:32:35 +10:00
0b53b06fc6
chore: Make member role struct match site roles ( #3671 )
2022-08-24 15:58:57 -04:00
c9bce19d88
GET license endpoint ( #3651 )
...
* GET license endpoint
Signed-off-by: Spike Curtis <spike@coder.com >
* SDK GetLicenses -> Licenses
Signed-off-by: Spike Curtis <spike@coder.com >
Signed-off-by: Spike Curtis <spike@coder.com >
2022-08-24 18:44:22 +00:00
a7b49788f5
chore: deduplicate OAuth login code ( #3575 )
2022-08-22 18:13:46 -05:00
c3eea98db0
fix: use unique ID for linked accounts ( #3441 )
...
- move OAuth-related fields off of api_keys into a new user_links table
- restrict users to single form of login
- process updates to user email/usernames for OIDC
- added a login_type column to users
2022-08-17 18:00:53 -05:00
01dd35f1ba
chore: Rename 'admin' to 'owner' ( #3498 )
...
Co-authored-by: Colin Adler <colin1adler@gmail.com >
2022-08-15 14:40:19 -05:00
3ae42f4de9
chore: Update rego to be partial execution friendly ( #3449 )
...
- Improves performance of batch authorization calls
- Enables possibility to convert rego auth calls into SQL WHERE clauses
2022-08-11 22:07:48 +00:00
db665e7261
chore: Drop resource_id support in rbac system ( #3426 )
2022-08-09 18:16:53 +00:00
7e9819f2a8
ref: move httpapi.Reponse into codersdk ( #2954 )
2022-07-12 19:15:02 -05:00
576aef40f2
chore: Add linter rule to catch missing return after http writes ( #2702 )
2022-06-28 14:13:37 -05:00
a494489ffa
fix: use valid ip mask in api keys when remote address is ipv6 ( #2695 )
2022-06-27 20:31:18 +00:00
2353687610
feat: unexpose coderdtest.NewWithAPI ( #2613 )
...
* feat: unexpose coderdtest.NewWithAPI
2022-06-27 13:50:52 -05:00
4851d932c4
fix: Split host and port before storing IP ( #2594 )
...
The IP was always nil prior, and this fixes the test to
check for that as well!
2022-06-26 21:22:03 +00:00
90815e5119
feat: improve Users filter API ( #2645 )
2022-06-24 23:55:28 +00:00
d21ab2115d
feat: Backend api for filtering users using filter query string ( #2553 )
...
* User search query string
2022-06-24 10:02:23 -05:00
b7eeb436ad
feat: Add ip_address to API keys ( #2580 )
...
Fixes #2561 .
2022-06-22 17:32:21 +00:00
4cce969018
feat: Add anonymized telemetry to report product usage ( #2273 )
...
* feat: Add anonymized telemetry to report product usage
This adds a background service to report telemetry to a Coder
server for usage data. There will be realtime event data sent
in the future, but for now usage will report on a CRON.
* Fix flake and requested changes
* Add reporting options for setup
* Add reporting for workspaces
* Add resources as they are reported
* Track API key usage
* Ensure telemetry is tracked prior to exit
2022-06-17 00:26:40 -05:00
251316751e
feat: Return more 404s vs 403s ( #2194 )
...
* feat: Return more 404s vs 403s
* Return vague 404 in all cases
2022-06-14 10:14:05 -05:00
92bda0d2c1
fix: allow admins to reset their own pass without old_password ( #2222 )
2022-06-10 11:43:54 +10:00
74fe38eb3d
feat: Add initiator_username to workspace builds in apis ( #2174 )
...
* feat: Add initiator_username to workspace builds in apis
2022-06-08 20:23:35 -05:00
af401e3fe1
chore: Linter rule for properly formatted api errors ( #2123 )
...
* chore: Linter rule for properly formatted api errors
* Add omitempty to 'Detail' field
2022-06-07 14:33:06 +00:00
c9a4642a12
chore: Update BE http errors to be ui friendly ( #1994 )
...
* chore: More UI friendly errors
Mainly capitlization + messages prefix error
2022-06-03 21:48:09 +00:00
913c0f5e7f
feat: Longer lived api keys for cli ( #1935 )
...
* feat: Longer lived api keys for cli
* feat: Refresh tokens based on their lifetime set in the db
* test: Add unit test for refreshing
2022-06-01 14:58:55 -05:00
cc87a0cf6b
feat: Implied 'member' roles for site and organization ( #1917 )
...
* feat: Member roles are implied and never exlpicitly added
* Rename "GetAllUserRoles" to "GetAuthorizationRoles"
* feat: Add migration to remove implied roles
* rename user auth role middleware
2022-06-01 09:07:50 -05:00
7acb742218
feat: Prevent role changing on yourself. ( #1931 )
...
* feat: Prevent role changing on yourself.
Only allow changing roles on other users. Not much value in self changing
at the moment
2022-05-31 15:50:38 -05:00
26a2a169df
fix: Suspended users cannot authenticate ( #1849 )
...
* fix: Suspended users cannot authenticate
- Merge roles and apikey extract httpmw
- Add member account to make dev
- feat: UI Shows suspended error logging into suspended account
- change 'active' route to 'activate'
2022-05-31 08:06:42 -05:00
