c61b64be61
feat: add hidden enterprise cmd command to list roles ( #13303 )
...
* feat: add hidden enterprise cmd command to list roles
This includes custom roles, and has a json ouput option for
more granular permissions
2024-05-21 13:14:00 -05:00
b8b80fe6d2
feat: store coder_workspace_tags in the database ( #13294 )
2024-05-20 13:30:19 +00:00
a63d427efd
chore: add unique org name constraint to db ( #13311 )
2024-05-17 12:40:38 -06:00
ad8c314130
chore: implement api for creating custom roles ( #13298 )
...
api endpoint (gated by experiment) to create custom_roles
2024-05-16 13:47:47 -05:00
85de0e966d
chore: fix TestMeasureLatency/MeasureLatencyRecvTimeout flake ( #13301 )
2024-05-16 13:42:42 -05:00
cf91eff7cf
chore: implement databased backend for custom roles ( #13295 )
...
Includes db schema and dbauthz layer for upserting custom roles. Unit test in `customroles_test.go` verify against escalating permissions through this feature.
2024-05-16 13:11:26 -05:00
194be12133
chore: verify validity of built in rbac roles ( #13296 )
...
Verifies our built in roles are valid according to our policy.go. Working on custom roles requires the dynamic roles to adhere to these rules. Feels fair the built in ones do too.
2024-05-16 12:07:44 -05:00
a0fce363cd
feat(coderd): add times_used to coder_apps in insights API ( #13292 )
...
For now, only applied to `coder_app`s, same logic can be implemented for
VS Code, SSH, etc.
Part of #13099
2024-05-16 16:53:01 +03:00
1f5788feff
chore: remove rbac psuedo resources, add custom verbs ( #13276 )
...
Removes our pseudo rbac resources like `WorkspaceApplicationConnect` in favor of additional verbs like `ssh`. This is to make more intuitive permissions for building custom roles.
The source of truth is now `policy.go`
2024-05-15 11:09:42 -05:00
cb6b5e8fbd
chore: push rbac actions to policy package ( #13274 )
...
Just moved `rbac.Action` -> `policy.Action`. This is for the stacked PR to not have circular dependencies when doing autogen. Without this, the autogen can produce broken golang code, which prevents the autogen from compiling.
So just avoiding circular dependencies. Doing this in it's own PR to reduce LoC diffs in the primary PR, since this has 0 functional changes.
2024-05-15 09:46:35 -05:00
721ab2a1b4
chore: add workspace activity linter ( #13273 )
2024-05-14 12:31:31 -04:00
9ced001570
chore: add multi-org experiment for UI view toggling ( #13260 )
...
* chore: Add multi-org experiment
UI will use to toggle different views
2024-05-13 13:46:01 -05:00
ebee9288ae
fix: properly convert max port share level for oss ( #13261 )
2024-05-13 14:37:51 -04:00
4671ebb330
feat: measure pubsub latencies and expose metrics ( #13126 )
2024-05-10 12:31:49 +00:00
d8e0be6ee6
feat: add support for multiple banners ( #13081 )
2024-05-08 15:40:43 -06:00
24448e79fe
fix: prevent extending if template disallows ( #13182 )
2024-05-08 12:58:14 -03:00
619ec927e9
test(coderd/database): fix DST issue in dbpurge test ( #13170 )
...
Fixes #13165
2024-05-06 14:14:38 +03:00
886a97b425
chore: fix build ci ( #13164 )
2024-05-06 05:01:47 +00:00
94a3e3a563
chore: allow terraform & echo built-in provisioners ( #13121 )
...
* chore: allow terraform & echo built-in provisioners
Built-in provisioners serve all specified types. This allows running terraform, echo, or both in built in.
The cli flag to control the types is hidden by default, to be used primarily for testing purposes.
2024-05-03 10:14:26 -05:00
c550d0641d
feat: move shared ports out of experiment ( #13120 )
2024-05-02 14:11:33 -04:00
845407fe7a
chore: cover deadline crossing autostart border on start ( #13115 )
...
When starting a workspace, if the deadline crosses an autostart boundary, the deadline is set to autostart + TTL.
This copies the behavior in `ActivityBumpWorkspace`, but does not require activity.
2024-05-01 10:43:04 -05:00
53f7e9e0a1
chore: dynamically determine gitlab external auth defaults ( #13102 )
...
* chore: dynamically determine gitlab external auth defaults
Static defaults work for github cloud, but not self hosted.
Self hosted setups will now have sane defaults if omitted.
2024-04-30 09:45:52 -05:00
fbb98b950a
chore: centralize build info for site ( #13104 )
...
The build info passed to the frontend via HTML was incorrect.
2024-04-29 20:50:49 -04:00
1bda8a0856
feat: add deployment_id to the ui and licenses ( #13096 )
...
* feat: expose `deployment_id` in the user dropdown
* feat: add license deployment_id verification
* Ignore wireguard.com from mlc config
2024-04-29 16:50:11 -04:00
1b3185c047
chore: lower azure expires soon ( #13097 )
...
They haven't provisioned new certificates yet.
2024-04-29 12:34:18 -04:00
8ba05a9052
feat: add switch http(s) button to error page ( #12942 )
2024-04-26 11:52:53 -04:00
74f27719b8
feat: specify a custom "terms of service" link ( #13068 )
2024-04-25 16:36:51 -06:00
a518047f10
chore(coderd): provisionerdserver: downgrade heartbeat failure log to Warn instead of Error ( #13061 )
2024-04-24 09:36:36 +01:00
4682355eed
chore: deprecate gauge metrics with _total suffix ( #12744 ) ( #12976 )
...
* chore: deprecate gauge metrics with _total suffix (#12744 )
Deprecated metrics:
- coderd_oauth2_external_requests_rate_limit_total
- coderd_api_workspace_latest_build_total
* Apply suggestions from code review
add link to follow-up issue
Co-authored-by: Cian Johnston <public@cianjohnston.ie >
---------
Co-authored-by: Cian Johnston <public@cianjohnston.ie >
2024-04-24 11:23:24 +03:00
a69fc657f2
chore(coderd/database): reduce dbpurge load with smaller batches of agent stats ( #13049 )
2024-04-23 15:01:56 +03:00
e57ca3cdaa
feat(scripts): add script to check schema between migrations ( #13037 )
...
- migrations: allow passing in a custom migrate.FS
- gen/dump: extract some functions to dbtestutil
- scripts: write script to test migrations
2024-04-23 12:43:14 +01:00
fab5591cf6
chore: change site_configs.value to text ( #13036 )
...
* chore: change `site_configs.value` to `text`
* `make gen`
2024-04-22 17:25:36 -06:00
8d1220e0c8
chore: add generate script for azure instance identity ( #13028 )
...
* chore: add generate script for azure instance identity
This also adds new issuing certificates from:
https://learn.microsoft.com/en-us/azure/security/fundamentals/azure-ca-details?tabs=certificate-authority-chains
* Fix shell lint
* Fix shell fmt
* Fix RSA issuing certificate
2024-04-22 15:39:08 -04:00
3af317317a
ci: bump crate-ci/typos from 1.19.0 to 1.20.9 in the github-actions group ( #13027 )
...
* ci: bump crate-ci/typos in the github-actions group
Bumps the github-actions group with 1 update: [crate-ci/typos](https://github.com/crate-ci/typos ).
Updates `crate-ci/typos` from 1.19.0 to 1.20.9
- [Release notes](https://github.com/crate-ci/typos/releases )
- [Changelog](https://github.com/crate-ci/typos/blob/master/CHANGELOG.md )
- [Commits](https://github.com/crate-ci/typos/compare/v1.19.0...v1.20.9 )
---
updated-dependencies:
- dependency-name: crate-ci/typos
dependency-type: direct:production
update-type: version-update:semver-minor
dependency-group: github-actions
...
Signed-off-by: dependabot[bot] <support@github.com >
* Add `pn` exclusion
---------
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Kyle Carberry <kyle@carberry.com >
2024-04-22 10:25:23 -04:00
3adcccb618
fix(coderd/database): reduce db load via dbpurge advisory locking ( #13021 )
2024-04-22 11:10:32 +00:00
e17e8aa3c9
feat(coderd/database): keep only 1 day of workspace_agent_stats after rollup ( #12674 )
2024-04-22 13:11:50 +03:00
3aa0d73811
chore: fix down migration 196 ( #13006 )
...
It didn't account for null values.
2024-04-18 18:47:02 -05:00
92190443ff
fix(coderd/metricscache): avoid logging error for no rows ( #12988 )
...
Fixes #12938
2024-04-17 20:43:13 +03:00
777dfbe965
feat(enterprise): add ready for handshake support to pgcoord ( #12935 )
2024-04-16 15:01:10 -05:00
942e90270e
fix: disable azureidentity test on darwin ( #12979 )
...
See https://github.com/coder/coder/issues/12978
2024-04-16 19:33:04 +00:00
231fc26c92
fix(coderd): properly calculate query latency for tailnet queries ( #12944 )
...
The defer used seems correct, but the `time.Since` will always resolve
immediately since it's a param to the deferred function.
2024-04-16 19:03:27 +00:00
ba52a4fbe2
chore: fix linting issue ( #12945 )
...
The error wasn't used.
2024-04-16 13:50:46 -05:00
8e1e0f04a4
feat(cli): support bundle: show links to docs/admin/healthcheck ( #12974 )
2024-04-16 16:21:09 +01:00
407e61ecd4
feat(cli): support bundle: dump healthcheck summary ( #12963 )
...
* refactor(codersdk): extract common fields from HealthReport and friends
* feat(codersdk/healthsdk): add Summarize() method
* feat(cli): support bundle: dump healthcheck summary
2024-04-16 13:31:56 +01:00
41ca6e4f7f
chore: add created_at to workspace resource telemetry ( #12969 )
2024-04-15 20:06:59 +00:00
9a4703a311
feat(coderd/healthcheck): improve detection of STUN issues ( #12951 )
...
Adds checks to coderd/healthcheck/derphealth for STUN issues:
- Alerts if there is not least one healthy STUN server,
- Alerts if we see variable port mapping.
2024-04-15 17:10:49 +01:00
2ad7fcc0b7
fix: show template autostop setting when it overrides the workspace setting ( #12910 )
2024-04-11 13:08:51 -06:00
a231b5aef5
feat: add src_id and dst_id indexes to tailnet_tunnels ( #12911 )
...
Fixes #12780
Adds indexes to the `tailnet_tunnels` table to speed up `GetTailnetTunnelPeerIDs` and `GetTailnetTunnelPeerBindings` queries, which match on `src_id` and `dst_id`.
2024-04-11 10:05:53 +04:00
566f8f231d
chore: add unit test for pass through external auth query params ( #12928 )
...
* chore: verify pass through external auth query params
Unit test added to verify behavior of query params set in the
auth url for external apps. This behavior is intended to specifically
support Auth0 audience query param.
2024-04-10 13:58:29 -05:00
838e8df5be
chore: merge apikey/token session config values ( #12817 )
...
* chore: merge apikey/token session config values
There is a confusing difference between an apikey and a token. This
difference leaks into our configs. This change does not resolve the
difference. It only groups the config values to try and manage any
bloat that occurs from adding more similar config values
2024-04-10 10:34:49 -05:00
