synced/coder
1
0
Fork 0
mirror of https://github.com/coder/coder.git synced 2025-07-03 16:13:58 +00:00
Code Issues Packages Projects Releases Wiki Activity
3,533 Commits 363 Branches 234 Tags
665b84de0d82e55cc72be603a68fda10663944eb
Commit Graph

23 Commits

Author SHA1 Message Date
Dean Sheather
665b84de0d feat: use app tickets for web terminal (#6628) 2023-03-30 23:24:51 +10:00
Steven Masley
7fa5afa268 fix: Users that can update a template can also read the file (#6776) 
* fix: Users that can update a template can also read the file

This currently has a strange RBAC story. An issue will be filed
to streamline this.
This is a hotfix to resolve current functionality

* Only showsource code tab if the user has permission to edit the template


---------

Co-authored-by: Bruno Quaresma <bruno_nonato_quaresma@hotmail.com>
 2023-03-27 09:21:41 -05:00
Steven Masley
65945aef16 chore: Return copied templates to prevent reference issues (#6679) 2023-03-20 13:13:21 -05:00
Kyle Carberry
7eb2c2ff6d Revert "chore: Implement joins with golang templates (#6429)" (#6560) 
This reverts commit 8b125d6c5d.
 2023-03-10 10:39:02 -06:00
Steven Masley
8b125d6c5d chore: Implement joins with golang templates (#6429) 
* feat: Implement view for workspace builds to include rbac info

* Removes the need to fetch the workspace to run an rbac check.
* chore: Use workspace build as RBAC object
* chore: Use golang templates instead of sqlc files
 2023-03-10 09:44:38 -06:00
Steven Masley
8cf292f50a feat: Guard search queries against common mistakes (#6404) 
* feat: Error on excessive invalid search keys
* feat: Guard search queries against common mistakes
* Raise errors in FE on workspaces table
* All errors should be on newlines
 2023-03-01 23:28:56 -06:00
Steven Masley
6fb8aff6d0 feat: Add initial AuthzQuerier implementation (#5919) 
feat: Add initial AuthzQuerier implementation
- Adds package database/dbauthz that adds a database.Store implementation where each method goes through AuthZ checks
- Implements all database.Store methods on AuthzQuerier
- Updates and fixes unit tests where required
- Updates coderd initialization to use AuthzQuerier if codersdk.ExperimentAuthzQuerier is enabled
 2023-02-14 14:27:06 +00:00
Steven Masley
08cce81ac8 feat: Implement allow_list for scopes for resource specific permissions (#5769) 
* feat: Implement allow_list for scopes for resource specific permissions

Feature that adds an allow_list for scopes to specify particular resources.
This enables workspace agent tokens to use the same RBAC system as users.

- Add ID to compileSQL matchers
* Plumb through WithID on rbac objects
* Rename Scope -> ScopeName
* Update input.json with scope allow_list

Co-authored-by: Cian Johnston <cian@coder.com>
 2023-01-19 13:41:36 -06:00
Kira Pilot
6b68fbbf18 feat: Auditing group members as part of group resource (#5730) 
* added AuditableGroup type

* added json tags

* Anonymizing gGroup struct

* adding support on the FE for nested group diffs

* added type for GroupMember

* Update coderd/database/modelmethods.go

Co-authored-by: Steven Masley <Emyrk@users.noreply.github.com>

* Update coderd/database/modelmethods.go

Co-authored-by: Steven Masley <Emyrk@users.noreply.github.com>

* fetching group members in group.delete

* passing through right error

* broke out into util function and added tests

Co-authored-by: Steven Masley <Emyrk@users.noreply.github.com>
 2023-01-18 15:13:39 -05:00
Presley Pizzo
e6ead7d915 chore: refactor workspaces query to use window function (#5079) 
* Use window function in query

* Convert workspace rows and unpack count

* Update types

* Fix Scan bug

* Remove getCountError
 2022-11-16 10:16:37 -05:00
Garrett Delfosse
88f3691dcc feat: add count to get users endpoint (#5016) 2022-11-14 17:22:57 -05:00
Jon Ayers
0d1096da6c feat: add auditing for groups (#4527) 
- Clean up `database.TemplateACL` implementation.
 2022-10-19 02:00:45 -05:00
Jon Ayers
3120c94c22 feat: add template RBAC/groups (#4235) 2022-10-10 15:37:06 -05:00
Dean Sheather
29d804e692 feat: add API key scopes and application_connect scope (#4067) 2022-09-19 17:39:02 +00:00
Spike Curtis
c9bce19d88 GET license endpoint (#3651) 
* GET license endpoint

Signed-off-by: Spike Curtis <spike@coder.com>

* SDK GetLicenses -> Licenses

Signed-off-by: Spike Curtis <spike@coder.com>

Signed-off-by: Spike Curtis <spike@coder.com>
 2022-08-24 18:44:22 +00:00
Steven Masley
40e68cb80b feat: Add template-admin + user-admin role for managing templates + users (#3490) 
Co-authored-by: Mathias Fredriksson <mafredri@gmail.com>
 2022-08-12 17:27:48 -05:00
Steven Masley
db665e7261 chore: Drop resource_id support in rbac system (#3426) 2022-08-09 18:16:53 +00:00
Kyle Carberry
7bdb8ff9cf feat: Add workspace metrics export to Prometheus (#3421) 
This adds workspace totals indexed by status. It could be any
codersdk.ProvisionerJobStatus.
 2022-08-09 01:08:42 +00:00
Steven Masley
d21ab2115d feat: Backend api for filtering users using filter query string (#2553) 
* User search query string
 2022-06-24 10:02:23 -05:00
Steven Masley
ec1fe46138 feat: Move create organizations route (#1831) 
* feat: last rbac routes
- move create organization to /organizations.
 2022-05-27 11:19:13 -05:00
Steven Masley
c04d045279 feat: RBAC provisionerdaemons and parameters (#1755) 
* chore: Remove org_id from provisionerdaemons
 2022-05-26 11:20:54 -05:00
Steven Masley
eea8dc6c16 feat: Add rbac to templateversion+orgmember endpoints (#1713) 2022-05-25 11:00:59 -05:00
Steven Masley
c7ca86d374 feat: Implement RBAC checks on /templates endpoints (#1678) 
* feat: Generic Filter method for rbac objects
 2022-05-24 08:43:34 -05:00