synced/coder
1
0
Fork 0
mirror of https://github.com/coder/coder.git synced 2025-07-12 00:14:10 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
2f42b6418209f72488122661282e48488d9dfddc
coder/coderd
History
Thomas Kosiewski 3dcd2acf1d fix: return 404 instead of 401 for missing OAuth2 apps (#18755) 
## Problem

Users were being automatically logged out when deleting OAuth2
applications.

## Root Cause

1. User deletes OAuth2 app successfully
2. React Query automatically refetches the app data  
3. Management API incorrectly returned **401 Unauthorized** for the
missing app
4. Frontend axios interceptor sees 401 and calls `signOut()`
5. User gets logged out unexpectedly

## Solution

- Change management API to return **404 Not Found** for missing OAuth2
apps
- OAuth2 protocol endpoints continue returning 401 per RFC 6749
- Rename `writeInvalidClient` to `writeClientNotFound` for clarity

## Additional Changes

- Add conditional OAuth2 navigation when experiment is enabled or in dev
builds
- Add `isDevBuild()` utility and `buildInfo` to dashboard context
- Minor improvements to format script and warning dialogs

Signed-off-by: Thomas Kosiewski <tk@coder.com>
2025-07-07 19:57:32 +02:00
..
agentapi
fix(coderd/agentapi): make sub agent slugs more unique (#18581)
2025-06-25 17:36:23 +01:00
agentmetrics
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
apidoc
chore: fix some small groups and acl typos (#18732)
2025-07-07 11:01:17 -06:00
apikey
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
appearance
audit
feat: allow users to pause prebuilt workspace reconciliation (#18700)
2025-07-02 15:05:42 +00:00
autobuild
chore: increase fileCache hit rate in autobuilds lifecycle (#18507)
2025-06-24 07:36:39 -05:00
awsidentity
azureidentity
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
coderdtest
feat: use preview to compute workspace tags from terraform (#18720)
2025-07-03 14:35:44 -05:00
cryptokeys
chore: update to coder/quartz v0.2.0 (#18007)
2025-05-27 16:05:03 +04:00
database
fix: remove unique constraint on OAuth2 provider app names (#18669)
2025-07-03 19:13:13 +02:00
devtunnel
chore: disable devtunnel tests on windows (#18521)
2025-06-24 19:01:29 +10:00
dynamicparameters
feat: use preview to compute workspace tags from terraform (#18720)
2025-07-03 14:35:44 -05:00
entitlements
chore: update testutil chan helpers (#17408)
2025-04-16 10:37:09 -06:00
externalauth
chore: remove unnecessary redeclarations in for loops (part 2) (#18593)
2025-06-26 12:28:00 -06:00
files
chore: don't cache errors in file cache (#18555)
2025-07-01 13:50:37 -06:00
gitsshkey
healthcheck
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
httpapi
chore: create interface for pkgs to return codersdk errors (#18719)
2025-07-03 08:33:45 -05:00
httpmw
fix: return 404 instead of 401 for missing OAuth2 apps (#18755)
2025-07-07 19:57:32 +02:00
idpsync
chore: remove unnecessary redeclarations in for loops (part 2) (#18593)
2025-06-26 12:28:00 -06:00
jobreaper
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
jwtutils
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
mcp
feat: implement MCP HTTP server endpoint with authentication (#18670)
2025-07-03 19:27:41 +02:00
metricscache
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
notifications
chore: update gofumpt from v0.4.0 to v0.8.0 (#18652)
2025-07-03 11:28:00 -06:00
oauth2provider
refactor: organize OAuth2 provider tests into dedicated packages (#18747)
2025-07-03 20:41:47 +02:00
oauthpki
fix: stop extending API key access if OIDC refresh is available (#17878)
2025-05-19 12:05:35 +04:00
portsharing
prebuilds
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
prometheusmetrics
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
promoauth
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
provisionerdserver
feat: persist AI task state in template imports & workspace builds (#18449)
2025-06-24 10:36:37 +00:00
provisionerkey
proxyhealth
feat: add csp headers for embedded apps (#18374)
2025-06-17 09:00:32 -08:00
pubsub
feat(coderd): add inbox notifications endpoints (#16889)
2025-03-18 00:02:47 +01:00
rbac
chore: improve rbac and add benchmark tooling (#18584)
2025-06-27 12:05:34 +01:00
render
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
runtimeconfig
schedule
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
searchquery
chore(coderd/database): optimize AuditLogs queries (#18600)
2025-07-01 07:31:14 +02:00
telemetry
feat: graduate prebuilds to general availability (#18607)
2025-06-26 15:54:52 +02:00
testdata
feat: implement dynamic parameter validation (#18482)
2025-06-23 12:35:15 -05:00
tracing
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
updatecheck
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
userpassword
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
util
feat: implement dynamic parameter validation (#18482)
2025-06-23 12:35:15 -05:00
webpush
chore: remove unnecessary redeclarations in for loops (part 2) (#18593)
2025-06-26 12:28:00 -06:00
workspaceapps
fix!: stop workspace before update (#18425)
2025-06-23 09:12:37 +01:00
workspacestats
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
wsbuilder
feat: use preview to compute workspace tags from terraform (#18720)
2025-07-03 14:35:44 -05:00
wspubsub
feat: add app status tracking to the backend (#17163)
2025-03-31 10:55:44 -04:00
activitybump_test.go
aitasks_test.go
feat: add the /aitasks/prompts endpoint (#18464)
2025-06-24 13:06:02 +02:00
aitasks.go
feat: add the /aitasks/prompts endpoint (#18464)
2025-06-24 13:06:02 +02:00
apikey_test.go
feat: add separate max token lifetime for administrators (#18267)
2025-06-06 17:36:30 +02:00
apikey.go
feat: add separate max token lifetime for administrators (#18267)
2025-06-06 17:36:30 +02:00
apiroot.go
audit_internal_test.go
audit_test.go
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
audit.go
chore(coderd/database): optimize AuditLogs queries (#18600)
2025-07-01 07:31:14 +02:00
authorize_test.go
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
authorize.go
chore: ensure proper rbac permissions on 'Acquire' file in the cache (#18348)
2025-06-16 13:40:45 +00:00
client_test.go
coderd_internal_test.go
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
coderd_test.go
coderd.go
refactor: move OAuth2 provider code to dedicated package (#18746)
2025-07-03 20:24:45 +02:00
csp.go
debug_test.go
chore(cli): increase healthcheck timeout in TestSupportbundle (#17291)
2025-04-09 09:21:17 +01:00
debug.go
chore(cli): increase healthcheck timeout in TestSupportbundle (#17291)
2025-04-09 09:21:17 +01:00
deployment_test.go
deployment.go
chore: remove chats experiment (#18535)
2025-06-25 13:03:32 +00:00
deprecated.go
experiments_test.go
chore: revert dynamic params as a safe experiment (#17510)
2025-04-22 16:21:15 +00:00
experiments.go
fix: do not warn on valid known experiments (#18514)
2025-06-24 09:14:41 +01:00
externalauth_test.go
feat: add API key scope to restrict access to user data (#17692)
2025-05-15 15:32:52 +01:00
externalauth.go
files_test.go
files.go
gitsshkey_test.go
feat: add API key scope to restrict access to user data (#17692)
2025-05-15 15:32:52 +01:00
gitsshkey.go
feat: add API key scope to restrict access to user data (#17692)
2025-05-15 15:32:52 +01:00
inboxnotifications_internal_test.go
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
inboxnotifications_test.go
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
inboxnotifications.go
fix(coderd): fix panics by always checking for non-nil request logger (#18228)
2025-06-12 13:50:50 +03:00
insights_internal_test.go
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
insights_test.go
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
insights.go
chore: update golang to 1.24.1 (#17035)
2025-03-26 01:56:39 -05:00
latencycheck.go
mcp_http.go
feat: implement MCP HTTP server endpoint with authentication (#18670)
2025-07-03 19:27:41 +02:00
members_test.go
chore: update error message for duplicate organization members (#17594)
2025-04-28 14:51:33 -06:00
members.go
chore: update error message for duplicate organization members (#17594)
2025-04-28 14:51:33 -06:00
notifications_test.go
feat(coderd): add new dispatch logic for coder inbox (#16764)
2025-03-05 22:43:18 +01:00
notifications.go
feat(coderd): add new dispatch logic for coder inbox (#16764)
2025-03-05 22:43:18 +01:00
oauth2_error_compliance_test.go
feat: implement OAuth2 dynamic client registration (RFC 7591/7592) (#18645)
2025-07-03 18:33:47 +02:00
oauth2_metadata_test.go
feat: implement RFC 6750 Bearer token authentication (#18644)
2025-07-02 19:14:54 +02:00
oauth2_metadata_validation_test.go
feat: implement OAuth2 dynamic client registration (RFC 7591/7592) (#18645)
2025-07-03 18:33:47 +02:00
oauth2_security_test.go
feat: implement OAuth2 dynamic client registration (RFC 7591/7592) (#18645)
2025-07-03 18:33:47 +02:00
oauth2_test.go
refactor: organize OAuth2 provider tests into dedicated packages (#18747)
2025-07-03 20:41:47 +02:00
oauth2.go
refactor: move OAuth2 provider code to dedicated package (#18746)
2025-07-03 20:24:45 +02:00
organizations_test.go
organizations.go
pagination_internal_test.go
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
pagination.go
parameters_test.go
feat: use preview to compute workspace tags from terraform (#18720)
2025-07-03 14:35:44 -05:00
parameters.go
chore: refactor dynamic parameters into dedicated package (#18420)
2025-06-20 13:00:39 -05:00
presets_test.go
feat: allow for default presets (#18445)
2025-06-24 12:19:19 +02:00
presets.go
feat: allow for default presets (#18445)
2025-06-24 12:19:19 +02:00
provisionerdaemons_test.go
fix: return provisioners in desc order and add limit to cli (#16720)
2025-02-26 21:06:51 +02:00
provisionerdaemons.go
provisionerjobs_internal_test.go
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
provisionerjobs_test.go
feat: add provisioner daemon name to provisioner jobs responses (#17877)
2025-05-19 16:05:39 +01:00
provisionerjobs.go
fix(coderd): fix panics by always checking for non-nil request logger (#18228)
2025-06-12 13:50:50 +03:00
roles_test.go
roles.go
chore: ensure proper rbac permissions on 'Acquire' file in the cache (#18348)
2025-06-16 13:40:45 +00:00
tailnet_test.go
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
tailnet.go
fix: reduce excessive logging when database is unreachable (#17363)
2025-04-15 10:55:30 +02:00
templates_test.go
feat: support dynamic parameters on create template request (#18636)
2025-07-02 09:44:01 -05:00
templates.go
feat: support dynamic parameters on create template request (#18636)
2025-07-02 09:44:01 -05:00
templateversions_test.go
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
templateversions.go
feat: use preview to compute workspace tags from terraform (#18720)
2025-07-03 14:35:44 -05:00
updatecheck_test.go
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
updatecheck.go
userauth_test.go
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
userauth.go
chore: add custom samesite options to auth cookies (#16885)
2025-04-08 14:15:14 -05:00
users_test.go
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
users.go
chore: ensure proper rbac permissions on 'Acquire' file in the cache (#18348)
2025-06-16 13:40:45 +00:00
webpush_test.go
feat(coderd): add webpush package (#17091)
2025-03-27 10:03:53 +00:00
webpush.go
feat(coderd): add webpush package (#17091)
2025-03-27 10:03:53 +00:00
workspaceagentportshare_test.go
workspaceagentportshare.go
docs: fix swagger documentation for DELETE port share endpoint (#18426)
2025-06-18 14:07:53 +00:00
workspaceagents_test.go
fix!: use devcontainer ID when rebuilding a devcontainer (#18604)
2025-06-26 11:41:57 +01:00
workspaceagents.go
fix!: use devcontainer ID when rebuilding a devcontainer (#18604)
2025-06-26 11:41:57 +01:00
workspaceagentsrpc_internal_test.go
chore: update testutil chan helpers (#17408)
2025-04-16 10:37:09 -06:00
workspaceagentsrpc_test.go
fix: remove unnecessary user lookup in agent API calls (#17934)
2025-05-20 17:07:50 +02:00
workspaceagentsrpc.go
feat(coderd/agentapi): implement sub agent api (#17823)
2025-05-29 12:15:47 +01:00
workspaceapps_test.go
chore: remove unnecessary redeclarations in for loops (#18440)
2025-06-20 13:16:55 -06:00
workspaceapps.go
workspacebuilds_test.go
fix: complete job and mark workspace as deleted when no provisioners are available (#18465)
2025-06-23 14:07:42 +01:00
workspacebuilds.go
chore: reorder prebuilt workspace authorization logic (#18506)
2025-06-24 16:33:21 +01:00
workspaceproxies_test.go
workspaceproxies.go
workspaceresourceauth_test.go
workspaceresourceauth.go
workspaces_test.go
feat: persist AI task state in template imports & workspace builds (#18449)
2025-06-24 10:36:37 +00:00
workspaces.go
chore: improve dynamic parameter validation errors (#18501)
2025-06-23 15:08:18 -05:00
workspaceupdates_test.go
chore: update testutil chan helpers (#17408)
2025-04-16 10:37:09 -06:00
workspaceupdates.go
chore: update golang to 1.24.1 (#17035)
2025-03-26 01:56:39 -05:00