fix: addressed type issue

feat: added support for personal secrets creation via CLI
Merge pull request #1883 from Infisical/misc/improve-rbac-integration-creation-and-update-1
2025-03-23 03:03:05 +00:00 · 2024-05-29 21:11:03 +08:00 · 2024-05-28 21:13:59 +08:00 · 2024-05-28 19:49:27 +08:00 · 2024-05-28 05:40:32 -04:00 · 2024-05-27 22:32:54 -07:00
8 changed files with 73 additions and 21 deletions
--- a/backend/src/server/routes/v1/project-router.ts
+++ b/backend/src/server/routes/v1/project-router.ts
@ -8,6 +8,7 @@ import {
  UsersSchema
 } from "@app/db/schemas";
 import { PROJECTS } from "@app/lib/api-docs";
+import { BadRequestError } from "@app/lib/errors";
 import { readLimit, writeLimit } from "@app/server/config/rateLimiter";
 import { verifyAuth } from "@app/server/plugins/auth/verify-auth";
 import { AuthMode } from "@app/services/auth/auth-type";
@ -192,18 +193,19 @@ export const registerProjectRouter = async (server: FastifyZodProvider) => {
      }
    },
    onRequest: verifyAuth([AuthMode.JWT, AuthMode.IDENTITY_ACCESS_TOKEN]),
-    handler: async (req) => {
-      const workspace = await server.services.project.deleteProject({
-        filter: {
-          type: ProjectFilterType.ID,
-          projectId: req.params.workspaceId
-        },
-        actorId: req.permission.id,
-        actorAuthMethod: req.permission.authMethod,
-        actor: req.permission.type,
-        actorOrgId: req.permission.orgId
-      });
-      return { workspace };
+    handler: async () => {
+      // const workspace = await server.services.project.deleteProject({
+      //   filter: {
+      //     type: ProjectFilterType.ID,
+      //     projectId: req.params.workspaceId
+      //   },
+      //   actorId: req.permission.id,
+      //   actorAuthMethod: req.permission.authMethod,
+      //   actor: req.permission.type,
+      //   actorOrgId: req.permission.orgId
+      // });
+      // return { workspace };
+      throw new BadRequestError({ message: "Project delete has been paused temporarily, please try again later" });
    }
  });

--- a/cli/packages/cmd/secrets.go
+++ b/cli/packages/cmd/secrets.go
@ -170,6 +170,11 @@ var secretsSetCmd = &cobra.Command{
 			util.HandleError(err, "Unable to get your local config details")
 		}

+		secretType, err := cmd.Flags().GetString("type")
+		if err != nil || (secretType != util.SECRET_TYPE_SHARED && secretType != util.SECRET_TYPE_PERSONAL) {
+			util.HandleError(err, "Unable to parse secret type")
+		}
+
 		loggedInUserDetails, err := util.GetCurrentLoggedInUserDetails()
 		if err != nil {
 			util.HandleError(err, "Unable to authenticate")
@ -179,6 +184,7 @@ var secretsSetCmd = &cobra.Command{
 			util.PrintErrorMessageAndExit("Your login session has expired, please run [infisical login] and try again")
 		}

+
 		httpClient := resty.New().
 			SetAuthToken(loggedInUserDetails.UserCredentials.JTWToken).
 			SetHeader("Accept", "application/json")
@ -223,7 +229,16 @@ var secretsSetCmd = &cobra.Command{
 		secretsToModify := []api.Secret{}
 		secretOperations := []SecretSetOperation{}

-		secretByKey := getSecretsByKeys(secrets)
+		sharedSecretMapByName := make(map[string]models.SingleEnvironmentVariable, len(secrets))
+		personalSecretMapByName := make(map[string]models.SingleEnvironmentVariable, len(secrets))
+	
+		for _, secret := range secrets {
+			if secret.Type == util.SECRET_TYPE_PERSONAL {
+				personalSecretMapByName[secret.Key] = secret
+			} else {
+				sharedSecretMapByName[secret.Key] = secret
+			}
+		}

 		for _, arg := range args {
 			splitKeyValueFromArg := strings.SplitN(arg, "=", 2)
@ -251,7 +266,16 @@ var secretsSetCmd = &cobra.Command{
 				util.HandleError(err, "unable to encrypt your secrets")
 			}

-			if existingSecret, ok := secretByKey[key]; ok {
+			var existingSecret models.SingleEnvironmentVariable
+			var doesSecretExist bool
+
+			if secretType == util.SECRET_TYPE_SHARED {
+				existingSecret, doesSecretExist = sharedSecretMapByName[key]
+			} else {
+				existingSecret, doesSecretExist = personalSecretMapByName[key]
+			}
+
+			if doesSecretExist {
 				// case: secret exists in project so it needs to be modified
 				encryptedSecretDetails := api.Secret{
 					ID:                    existingSecret.ID,
@ -291,7 +315,7 @@ var secretsSetCmd = &cobra.Command{
 					SecretValueIV:         base64.StdEncoding.EncodeToString(encryptedValue.Nonce),
 					SecretValueTag:        base64.StdEncoding.EncodeToString(encryptedValue.AuthTag),
 					SecretValueHash:       hashedValue,
-					Type:                  util.SECRET_TYPE_SHARED,
+					Type:                  secretType,
 					PlainTextKey:          key,
 				}
 				secretsToCreate = append(secretsToCreate, encryptedSecretDetails)
@ -781,6 +805,7 @@ func init() {
 	secretsCmd.Flags().Bool("secret-overriding", true, "Prioritizes personal secrets, if any, with the same name over shared secrets")
 	secretsCmd.AddCommand(secretsSetCmd)
 	secretsSetCmd.Flags().String("path", "/", "set secrets within a folder path")
+	secretsSetCmd.Flags().String("type", util.SECRET_TYPE_SHARED, "the type of secret to create: personal or shared")

 	// Only supports logged in users (JWT auth)
 	secretsSetCmd.PersistentPreRun = func(cmd *cobra.Command, args []string) {
--- a/company/handbook/onboarding.mdx
+++ b/company/handbook/onboarding.mdx
@ -1,7 +1,7 @@
 ---
 title: "Onboarding"
 sidebarTitle: "Onboarding"
-description: "This handbook explains how we work at Infisical."
+description: "This guide explains the onboarding process for new joiners at Infisical."
 ---

 Welcome to Infisical! 
--- a/company/handbook/time-off.mdx
+++ b/company/handbook/time-off.mdx
@ -0,0 +1,13 @@
+---
+title: "Time Off"
+sidebarTitle: "Time Off"
+description: "The guide to taking time off at Infisical."
+---
+
+We offer eveyone at Infisical unlimited time off. We care about your results, not how long you work.
+
+To request time off, just submit a request in Rippling and let Maidul know at least a week in advance. 
+
+## National holidays
+
+Since Infisical's team is globally distributed, it is hard for us to keep track of all the various national holidays across many different countries. Whether you'd like to celebrate Christmas or National Brisket Day (which, by the way, is on May 28th), you are welcome to take PTO on those days – just let Maidul know at least a week ahead so that we can adjust our planning. 
--- a/company/mint.json
+++ b/company/mint.json
@ -57,7 +57,8 @@
      "group": "How we work",
      "pages": [
        "handbook/onboarding", 
-        "handbook/spending-money"
+        "handbook/spending-money",
+        "handbook/time-off"
      ]
    }
  ],
--- a/company/style.css
+++ b/company/style.css
@ -1,7 +1,7 @@
 #navbar .max-w-8xl {
  max-width: 100%;
  border-bottom: 1px solid #ebebeb;
-  background-color: #fcfcfc;
+  background-color: #F4F3EF;
 }

 .max-w-8xl {
@ -14,7 +14,7 @@
  padding-right: 30px;
  border-right: 1px;
  border-color: #cdd64b;
-  background-color: #fcfcfc;
+  background-color: #F4F3EF;
  border-right: 1px solid #ebebeb;
 }

--- a/docs/cli/commands/secrets.mdx
+++ b/docs/cli/commands/secrets.mdx
@ -153,6 +153,16 @@ $ infisical secrets set STRIPE_API_KEY=sjdgwkeudyjwe DOMAIN=example.com HASH=jeb
    ```

  </Accordion>
+
+  <Accordion title="--type">
+    Used to select the type of secret to create. This could be either personal or shared (defaults to shared)
+
+    ```bash
+    # Example
+    infisical secrets set DOMAIN=example.com --type=personal
+    ```
+
+  </Accordion>
 </Accordion>

 <Accordion title="infisical secrets delete">
--- a/docs/style.css
+++ b/docs/style.css
@ -1,7 +1,7 @@
 #navbar .max-w-8xl {
  max-width: 100%;
  border-bottom: 1px solid #ebebeb;
-  background-color: #fcfcfc;
+  background-color: #F4F3EF;
 }

 .max-w-8xl {
@ -14,7 +14,7 @@
  padding-right: 30px;
  border-right: 1px;
  border-color: #cdd64b;
-  background-color: #fcfcfc;
+  background-color: #F4F3EF;
  border-right: 1px solid #ebebeb;
 }

@ -67,6 +67,7 @@
 #content-area .mt-8 .block{
  border-radius: 0;
  border-width: 1px;
+  background-color: #FCFBFA;
  border-color: #ebebeb;
 }
Author	SHA1	Message	Date
Sheen Capadngan	df38e79590	fix: addressed type issue	2024-05-29 21:11:03 +08:00
Sheen Capadngan	1a4f8b23ff	feat: added support for personal secrets creation via CLI	2024-05-28 21:13:59 +08:00
Sheen Capadngan	51f4047207	Merge pull request #1883 from Infisical/misc/improve-rbac-integration-creation-and-update-1 misc: improved integration rbac control	2024-05-28 19:49:27 +08:00
Maidul Islam	4567e505ec	pause project delete	2024-05-28 05:40:32 -04:00
Vladyslav Matsiiako	c638caede5	changed sidebar color	2024-05-27 22:32:54 -07:00
Vladyslav Matsiiako	300deb5607	added time off page to company wiki	2024-05-27 22:26:21 -07:00