coder
diff --git a/‎coderd/audit/diff.go
Lines changed: 1 addition & 1 deletion b/‎coderd/audit/diff.go
Lines changed: 1 addition & 1 deletion
diff --git a/‎coderd/audit/request.go
Lines changed: 3 additions & 3 deletions b/‎coderd/audit/request.go
Lines changed: 3 additions & 3 deletions
diff --git a/‎coderd/database/dbauthz/dbauthz.go
Lines changed: 0 additions & 23 deletions b/‎coderd/database/dbauthz/dbauthz.go
Lines changed: 0 additions & 23 deletions
diff --git a/‎coderd/database/dbfake/dbfake.go
Lines changed: 0 additions & 55 deletions b/‎coderd/database/dbfake/dbfake.go
Lines changed: 0 additions & 55 deletions
diff --git a/‎coderd/database/dbmetrics/dbmetrics.go
Lines changed: 0 additions & 21 deletions b/‎coderd/database/dbmetrics/dbmetrics.go
Lines changed: 0 additions & 21 deletions
diff --git a/‎coderd/database/dbmock/dbmock.go
Lines changed: 0 additions & 44 deletions b/‎coderd/database/dbmock/dbmock.go
Lines changed: 0 additions & 44 deletions
diff --git a/‎coderd/database/dump.sql
Lines changed: 0 additions & 21 deletions b/‎coderd/database/dump.sql
Lines changed: 0 additions & 21 deletions
diff --git a/‎coderd/database/migrations/000131_merge_oidc_account.down.sql
Lines changed: 0 additions & 5 deletions b/‎coderd/database/migrations/000131_merge_oidc_account.down.sql
Lines changed: 0 additions & 5 deletions
diff --git a/‎coderd/database/migrations/000131_merge_oidc_account.up.sql
Lines changed: 0 additions & 25 deletions b/‎coderd/database/migrations/000131_merge_oidc_account.up.sql
Lines changed: 0 additions & 25 deletions
diff --git a/‎coderd/database/migrations/000131_oauth_convert_audit.down.sql
Lines changed: 1 addition & 0 deletions b/‎coderd/database/migrations/000131_oauth_convert_audit.down.sql
Lines changed: 1 addition & 0 deletions
diff --git a/‎coderd/database/migrations/000131_oauth_convert_audit.up.sql
Lines changed: 2 additions & 0 deletions b/‎coderd/database/migrations/000131_oauth_convert_audit.up.sql
Lines changed: 2 additions & 0 deletions
diff --git a/‎coderd/database/migrations/testdata/fixtures/000131_oauth_merge_state.up.sql
Lines changed: 0 additions & 15 deletions b/‎coderd/database/migrations/testdata/fixtures/000131_oauth_merge_state.up.sql
Lines changed: 0 additions & 15 deletions
diff --git a/‎coderd/database/models.go
Lines changed: 0 additions & 12 deletions b/‎coderd/database/models.go
Lines changed: 0 additions & 12 deletions
@@ -18,7 +18,7 @@ type Auditable interface {
 		database.AuditableGroup |
 		database.License |
 		database.WorkspaceProxy |
-		database.OauthMergeState
+		database.AuditOauthConvertState
 }
 
 // Map is a map of changed fields in an audited resource. It maps field names to
 
@@ -84,7 +84,7 @@ func ResourceTarget[T Auditable](tgt T) string {
 		return strconv.Itoa(int(typed.ID))
 	case database.WorkspaceProxy:
 		return typed.Name
-	case database.OauthMergeState:
+	case database.AuditOauthConvertState:
 		return string(typed.ToLoginType)
 	default:
 		panic(fmt.Sprintf("unknown resource %T", tgt))
@@ -113,7 +113,7 @@ func ResourceID[T Auditable](tgt T) uuid.UUID {
 		return typed.UUID
 	case database.WorkspaceProxy:
 		return typed.ID
-	case database.OauthMergeState:
+	case database.AuditOauthConvertState:
 		// The merge state is for the given user
 		return typed.UserID
 	default:
@@ -143,7 +143,7 @@ func ResourceType[T Auditable](tgt T) database.ResourceType {
 		return database.ResourceTypeLicense
 	case database.WorkspaceProxy:
 		return database.ResourceTypeWorkspaceProxy
-	case database.OauthMergeState:
+	case database.AuditOauthConvertState:
 		return database.ResourceTypeConvertLogin
 	default:
 		panic(fmt.Sprintf("unknown resource %T", typed))
 
@@ -818,13 +818,6 @@ func (q *querier) DeleteTailnetClient(ctx context.Context, arg database.DeleteTa
 	return q.db.DeleteTailnetClient(ctx, arg)
 }
 
-func (q *querier) DeleteUserOauthMergeStates(ctx context.Context, userID uuid.UUID) error {
-	if err := q.authorizeContext(ctx, rbac.ActionDelete, rbac.ResourceSystem); err != nil {
-		return err
-	}
-	return q.db.DeleteUserOauthMergeStates(ctx, userID)
-}
-
 func (q *querier) GetAPIKeyByID(ctx context.Context, id string) (database.APIKey, error) {
 	return fetch(q.log, q.auth, q.db.GetAPIKeyByID)(ctx, id)
 }
@@ -1430,13 +1423,6 @@ func (q *querier) GetUserLinkByUserIDLoginType(ctx context.Context, arg database
 	return q.db.GetUserLinkByUserIDLoginType(ctx, arg)
 }
 
-func (q *querier) GetUserOauthMergeState(ctx context.Context, arg database.GetUserOauthMergeStateParams) (database.OauthMergeState, error) {
-	if err := q.authorizeContext(ctx, rbac.ActionRead, rbac.ResourceSystem); err != nil {
-		return database.OauthMergeState{}, err
-	}
-	return q.db.GetUserOauthMergeState(ctx, arg)
-}
-
 func (q *querier) GetUsers(ctx context.Context, arg database.GetUsersParams) ([]database.GetUsersRow, error) {
 	// TODO: We should use GetUsersWithCount with a better method signature.
 	return fetchWithPostFilter(q.auth, q.db.GetUsers)(ctx, arg)
@@ -1959,15 +1945,6 @@ func (q *querier) InsertUserLink(ctx context.Context, arg database.InsertUserLin
 	return q.db.InsertUserLink(ctx, arg)
 }
 
-func (q *querier) InsertUserOauthMergeState(ctx context.Context, arg database.InsertUserOauthMergeStateParams) (database.OauthMergeState, error) {
-	// TODO: @emyrk this permission feels right?
-	if err := q.authorizeContext(ctx, rbac.ActionCreate, rbac.ResourceAPIKey.WithOwner(arg.UserID.String())); err != nil {
-		return database.OauthMergeState{}, err
-	}
-
-	return q.db.InsertUserOauthMergeState(ctx, arg)
-}
-
 func (q *querier) InsertWorkspace(ctx context.Context, arg database.InsertWorkspaceParams) (database.Workspace, error) {
 	obj := rbac.ResourceWorkspace.WithOwner(arg.OwnerID.String()).InOrg(arg.OrganizationID)
 	return insert(q.log, q.auth, obj, q.db.InsertWorkspace)(ctx, arg)
 
@@ -139,8 +139,6 @@ type data struct {
 	workspaceResources        []database.WorkspaceResource
 	workspaces                []database.Workspace
 	workspaceProxies          []database.WorkspaceProxy
-	oauthMergeStates          []database.OauthMergeState
-
 	// Locks is a map of lock names. Any keys within the map are currently
 	// locked.
 	locks                   map[int64]struct{}
@@ -1202,27 +1200,6 @@ func (*fakeQuerier) DeleteTailnetClient(context.Context, database.DeleteTailnetC
 	return database.DeleteTailnetClientRow{}, ErrUnimplemented
 }
 
-func (q *fakeQuerier) DeleteUserOauthMergeStates(_ context.Context, userID uuid.UUID) error {
-	q.mutex.Lock()
-	defer q.mutex.Unlock()
-
-	i := 0
-	for {
-		if i >= len(q.oauthMergeStates) {
-			break
-		}
-		k := q.oauthMergeStates[i]
-		if k.UserID == userID {
-			q.oauthMergeStates[i] = q.oauthMergeStates[len(q.oauthMergeStates)-1]
-			q.oauthMergeStates = q.oauthMergeStates[:len(q.oauthMergeStates)-1]
-			// We removed an element, so decrement
-			i--
-		}
-		i++
-	}
-	return nil
-}
-
 func (q *fakeQuerier) GetAPIKeyByID(_ context.Context, id string) (database.APIKey, error) {
 	q.mutex.RLock()
 	defer q.mutex.RUnlock()
@@ -2658,18 +2635,6 @@ func (q *fakeQuerier) GetUserLinkByUserIDLoginType(_ context.Context, params dat
 	return database.UserLink{}, sql.ErrNoRows
 }
 
-func (q *fakeQuerier) GetUserOauthMergeState(_ context.Context, arg database.GetUserOauthMergeStateParams) (database.OauthMergeState, error) {
-	q.mutex.RLock()
-	defer q.mutex.RUnlock()
-
-	for _, s := range q.oauthMergeStates {
-		if s.State == arg.StateString && s.UserID == arg.UserID {
-			return s, nil
-		}
-	}
-	return database.OauthMergeState{}, sql.ErrNoRows
-}
-
 func (q *fakeQuerier) GetUsers(_ context.Context, params database.GetUsersParams) ([]database.GetUsersRow, error) {
 	if err := validateDatabaseType(params); err != nil {
 		return nil, err
@@ -4091,26 +4056,6 @@ func (q *fakeQuerier) InsertUserLink(_ context.Context, args database.InsertUser
 	return link, nil
 }
 
-func (q *fakeQuerier) InsertUserOauthMergeState(_ context.Context, arg database.InsertUserOauthMergeStateParams) (database.OauthMergeState, error) {
-	q.mutex.Lock()
-	defer q.mutex.Unlock()
-
-	if err := validateDatabaseType(arg); err != nil {
-		return database.OauthMergeState{}, err
-	}
-
-	s := database.OauthMergeState{
-		State:         arg.State,
-		CreatedAt:     arg.CreatedAt,
-		ExpiresAt:     arg.ExpiresAt,
-		FromLoginType: arg.FromLoginType,
-		ToLoginType:   arg.ToLoginType,
-		UserID:        arg.UserID,
-	}
-	q.oauthMergeStates = append(q.oauthMergeStates, s)
-	return s, nil
-}
-
 func (q *fakeQuerier) InsertWorkspace(_ context.Context, arg database.InsertWorkspaceParams) (database.Workspace, error) {
 	if err := validateDatabaseType(arg); err != nil {
 		return database.Workspace{}, err
 
@@ -0,0 +1 @@
+-- Nothing to do
@@ -0,0 +1,2 @@
+-- This has to be outside a transaction
+ALTER TYPE resource_type ADD VALUE IF NOT EXISTS 'convert_login';
Original file line number	Diff line number	Diff line change
`@@ -18,7 +18,7 @@ type Auditable interface {`
`18`	`18`	`database.AuditableGroup \|`
`19`	`19`	`database.License \|`
`20`	`20`	`database.WorkspaceProxy \|`
`21`		`- database.OauthMergeState`
	`21`	`+ database.AuditOauthConvertState`
`22`	`22`	`}`
`23`	`23`
`24`	`24`	`// Map is a map of changed fields in an audited resource. It maps field names to`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+-- This has to be outside a transaction`
	`2`	`+ALTER TYPE resource_type ADD VALUE IF NOT EXISTS 'convert_login';`