coder
diff --git a/‎cli/cliui/agent.go
Lines changed: 19 additions & 0 deletions b/‎cli/cliui/agent.go
Lines changed: 19 additions & 0 deletions
diff --git a/‎cli/login.go
Lines changed: 13 additions & 0 deletions b/‎cli/login.go
Lines changed: 13 additions & 0 deletions
diff --git a/‎cli/login_test.go
Lines changed: 39 additions & 0 deletions b/‎cli/login_test.go
Lines changed: 39 additions & 0 deletions
diff --git a/‎coderd/httpmw/userparam.go
Lines changed: 0 additions & 8 deletions b/‎coderd/httpmw/userparam.go
Lines changed: 0 additions & 8 deletions
diff --git a/‎coderd/users.go
Lines changed: 4 additions & 19 deletions b/‎coderd/users.go
Lines changed: 4 additions & 19 deletions
diff --git a/‎coderd/users_test.go
Lines changed: 21 additions & 18 deletions b/‎coderd/users_test.go
Lines changed: 21 additions & 18 deletions
diff --git a/‎codersdk/users.go
Lines changed: 1 addition & 2 deletions b/‎codersdk/users.go
Lines changed: 1 addition & 2 deletions
diff --git a/‎docs/README.md
Lines changed: 5 additions & 3 deletions b/‎docs/README.md
Lines changed: 5 additions & 3 deletions
diff --git a/‎docs/screenshot.png
520 KB b/‎docs/screenshot.png
520 KB
diff --git a/‎examples/docker-local/main.tf
Lines changed: 1 addition & 1 deletion b/‎examples/docker-local/main.tf
Lines changed: 1 addition & 1 deletion
@@ -4,6 +4,8 @@ import (
 	"context"
 	"fmt"
 	"io"
+	"os"
+	"os/signal"
 	"sync"
 	"time"
 
@@ -46,6 +48,23 @@ func Agent(ctx context.Context, writer io.Writer, opts AgentOptions) error {
 	spin.Start()
 	defer spin.Stop()
 
+	ctx, cancelFunc := context.WithCancel(ctx)
+	defer cancelFunc()
+	stopSpin := make(chan os.Signal, 1)
+	signal.Notify(stopSpin, os.Interrupt)
+	defer signal.Stop(stopSpin)
+	go func() {
+		select {
+		case <-ctx.Done():
+			return
+		case <-stopSpin:
+		}
+		signal.Stop(stopSpin)
+		spin.Stop()
+		// nolint:revive
+		os.Exit(1)
+	}()
+
 	ticker := time.NewTicker(opts.FetchInterval)
 	defer ticker.Stop()
 	timer := time.NewTimer(opts.WarnInterval)
 
@@ -117,6 +117,19 @@ func login() *cobra.Command {
 				if err != nil {
 					return xerrors.Errorf("specify password prompt: %w", err)
 				}
+				_, err = cliui.Prompt(cmd, cliui.PromptOptions{
+					Text:   "Confirm " + cliui.Styles.Field.Render("password") + ":",
+					Secret: true,
+					Validate: func(s string) error {
+						if s != password {
+							return xerrors.Errorf("Passwords do not match")
+						}
+						return nil
+					},
+				})
+				if err != nil {
+					return xerrors.Errorf("confirm password prompt: %w", err)
+				}
 
 				_, err = client.CreateFirstUser(cmd.Context(), codersdk.CreateFirstUserRequest{
 					Email:            email,
 
@@ -43,6 +43,7 @@ func TestLogin(t *testing.T) {
 			"username", "testuser",
 			"email", "user@coder.com",
 			"password", "password",
+			"password", "password", // Confirm.
 		}
 		for i := 0; i < len(matches); i += 2 {
 			match := matches[i]
@@ -54,6 +55,44 @@ func TestLogin(t *testing.T) {
 		<-doneChan
 	})
 
+	t.Run("InitialUserTTYConfirmPasswordFailAndReprompt", func(t *testing.T) {
+		t.Parallel()
+		ctx, cancel := context.WithCancel(context.Background())
+		defer cancel()
+		client := coderdtest.New(t, nil)
+		// The --force-tty flag is required on Windows, because the `isatty` library does not
+		// accurately detect Windows ptys when they are not attached to a process:
+		// https://github.com/mattn/go-isatty/issues/59
+		doneChan := make(chan struct{})
+		root, _ := clitest.New(t, "login", "--force-tty", client.URL.String())
+		pty := ptytest.New(t)
+		root.SetIn(pty.Input())
+		root.SetOut(pty.Output())
+		go func() {
+			defer close(doneChan)
+			err := root.ExecuteContext(ctx)
+			require.ErrorIs(t, err, context.Canceled)
+		}()
+
+		matches := []string{
+			"first user?", "yes",
+			"username", "testuser",
+			"email", "user@coder.com",
+			"password", "mypass",
+			"password", "wrongpass", // Confirm.
+		}
+		for i := 0; i < len(matches); i += 2 {
+			match := matches[i]
+			value := matches[i+1]
+			pty.ExpectMatch(match)
+			pty.WriteLine(value)
+		}
+		pty.ExpectMatch("Passwords do not match")
+		pty.ExpectMatch("password") // Re-prompt password.
+		cancel()
+		<-doneChan
+	})
+
 	t.Run("ExistingUserValidTokenTTY", func(t *testing.T) {
 		t.Parallel()
 		client := coderdtest.New(t, nil)
 
@@ -76,14 +76,6 @@ func ExtractUserParam(db database.Store) func(http.Handler) http.Handler {
 				}
 			}
 
-			apiKey := APIKey(r)
-			if apiKey.UserID != user.ID {
-				httpapi.Write(rw, http.StatusBadRequest, httpapi.Response{
-					Message: "getting non-personal users isn't supported yet",
-				})
-				return
-			}
-
 			ctx := context.WithValue(r.Context(), userParamContextKey{}, user)
 			next.ServeHTTP(rw, r.WithContext(ctx))
 		})
 
@@ -361,29 +361,14 @@ func (api *api) putUserSuspend(rw http.ResponseWriter, r *http.Request) {
 }
 
 func (api *api) putUserPassword(rw http.ResponseWriter, r *http.Request) {
-	user := httpmw.UserParam(r)
-
-	var params codersdk.UpdateUserPasswordRequest
+	var (
+		user   = httpmw.UserParam(r)
+		params codersdk.UpdateUserPasswordRequest
+	)
 	if !httpapi.Read(rw, r, &params) {
 		return
 	}
 
-	// Check if the new password and the confirmation match
-	if params.Password != params.ConfirmPassword {
-		requestErrors := []httpapi.Error{
-			{
-				Field:  "confirm_new_password",
-				Detail: "The value does not match the new password",
-			},
-		}
-		httpapi.Write(rw, http.StatusBadRequest, httpapi.Response{
-			Message: fmt.Sprintf("The new password and the new password confirmation don't match"),
-			Errors:  requestErrors,
-		})
-		return
-	}
-
-	// Hash password and update it in the database
 	hashedPassword, err := userpassword.Hash(params.Password)
 	if err != nil {
 		httpapi.Write(rw, http.StatusInternalServerError, httpapi.Response{
 
@@ -290,35 +290,38 @@ func TestUpdateUserProfile(t *testing.T) {
 func TestUpdateUserPassword(t *testing.T) {
 	t.Parallel()
 
-	t.Run("DifferentPasswordConfirmation", func(t *testing.T) {
+	t.Run("MemberCantUpdateAdminPassword", func(t *testing.T) {
 		t.Parallel()
 		client := coderdtest.New(t, nil)
-		coderdtest.CreateFirstUser(t, client)
-		err := client.UpdateUserPassword(context.Background(), codersdk.Me, codersdk.UpdateUserPasswordRequest{
-			Password:        "newpassword",
-			ConfirmPassword: "wrongconfirmation",
+		admin := coderdtest.CreateFirstUser(t, client)
+		member := coderdtest.CreateAnotherUser(t, client, admin.OrganizationID)
+		err := member.UpdateUserPassword(context.Background(), admin.UserID, codersdk.UpdateUserPasswordRequest{
+			Password: "newpassword",
 		})
-		var apiErr *codersdk.Error
-		require.ErrorAs(t, err, &apiErr)
-		require.Equal(t, http.StatusBadRequest, apiErr.StatusCode())
+		require.Error(t, err, "member should not be able to update admin password")
 	})
 
-	t.Run("Success", func(t *testing.T) {
+	t.Run("AdminCanUpdateMemberPassword", func(t *testing.T) {
 		t.Parallel()
 		client := coderdtest.New(t, nil)
-		coderdtest.CreateFirstUser(t, client)
-		err := client.UpdateUserPassword(context.Background(), codersdk.Me, codersdk.UpdateUserPasswordRequest{
-			Password:        "newpassword",
-			ConfirmPassword: "newpassword",
+		admin := coderdtest.CreateFirstUser(t, client)
+		member, err := client.CreateUser(context.Background(), codersdk.CreateUserRequest{
+			Email:          "coder@coder.com",
+			Username:       "coder",
+			Password:       "password",
+			OrganizationID: admin.OrganizationID,
 		})
-		require.NoError(t, err, "update password request should be successful")
-
-		// Check if the user can login using the new password
+		require.NoError(t, err, "create member")
+		err = client.UpdateUserPassword(context.Background(), member.ID, codersdk.UpdateUserPasswordRequest{
+			Password: "newpassword",
+		})
+		require.NoError(t, err, "admin should be able to update member password")
+		// Check if the member can login using the new password
 		_, err = client.LoginWithPassword(context.Background(), codersdk.LoginWithPasswordRequest{
-			Email:    coderdtest.FirstUserParams.Email,
+			Email:    "coder@coder.com",
 			Password: "newpassword",
 		})
-		require.NoError(t, err, "login should be successful")
+		require.NoError(t, err, "member should login successfully with the new password")
 	})
 }
 
 
@@ -73,8 +73,7 @@ type UpdateUserProfileRequest struct {
 }
 
 type UpdateUserPasswordRequest struct {
-	Password        string `json:"password" validate:"required"`
-	ConfirmPassword string `json:"confirm_new_password" validate:"required"`
+	Password string `json:"password" validate:"required"`
 }
 
 type UpdateRoles struct {
 
@@ -10,6 +10,8 @@ Follow](https://img.shields.io/twitter/follow/CoderHQ?label=%40CoderHQ&style=soc
 
 Provision remote development environments with Terraform.
 
+![Kubernetes workspace in Coder v2](./screenshot.png)
+
 ## Highlights
 
 - Automate development environments for Linux, Windows, and macOS
@@ -100,6 +102,6 @@ Read the [contributing docs](./CONTRIBUTING.md).
 
 <!--- Add your row by date (mm/dd/yyyy), most recent date at end of list --->
 
-| Name          | Start Date | First PR Date |Organization|                GitHub User Link |
-| ------------- | :--------: | :-----------: |:----------:| ------------------------------: |
-| Mathias Fredriksson | 04/25/2022 | 04/25/2022 | [Coder](https://github.com/coder) | [mafredri](https://github.com/mafredri) |
+| Name                | Start Date | First PR Date |           Organization            |                        GitHub User Link |
+| ------------------- | :--------: | :-----------: | :-------------------------------: | --------------------------------------: |
+| Mathias Fredriksson | 04/25/2022 |  04/25/2022   | [Coder](https://github.com/coder) | [mafredri](https://github.com/mafredri) |
@@ -42,7 +42,7 @@ resource "docker_container" "workspace" {
   name    = "coder-${data.coder_workspace.me.owner}-${data.coder_workspace.me.name}-root"
   dns     = ["1.1.1.1"]
   command = ["sh", "-c", coder_agent.dev.init_script]
-  env     = ["CODER_TOKEN=${coder_agent.dev.token}"]
+  env     = ["CODER_AGENT_TOKEN=${coder_agent.dev.token}"]
   volumes {
     container_path = "/home/coder/"
     volume_name    = docker_volume.coder_volume.name
Original file line number	Diff line number	Diff line change
`@@ -76,14 +76,6 @@ func ExtractUserParam(db database.Store) func(http.Handler) http.Handler {`
`76`	`76`	`}`
`77`	`77`	`}`
`78`	`78`
`79`		`- apiKey := APIKey(r)`
`80`		`- if apiKey.UserID != user.ID {`
`81`		`- httpapi.Write(rw, http.StatusBadRequest, httpapi.Response{`
`82`		`- Message: "getting non-personal users isn't supported yet",`
`83`		`- })`
`84`		`- return`
`85`		`- }`
`86`		`-`
`87`	`79`	`ctx := context.WithValue(r.Context(), userParamContextKey{}, user)`
`88`	`80`	`next.ServeHTTP(rw, r.WithContext(ctx))`
`89`	`81`	`})`
Original file line number	Diff line number	Diff line change
`@@ -73,8 +73,7 @@ type UpdateUserProfileRequest struct {`
`73`	`73`	`}`
`74`	`74`
`75`	`75`	`type UpdateUserPasswordRequest struct {`
`76`		- Password string `json:"password" validate:"required"`
`77`		- ConfirmPassword string `json:"confirm_new_password" validate:"required"`
	`76`	+ Password string `json:"password" validate:"required"`
`78`	`77`	`}`
`79`	`78`
`80`	`79`	`type UpdateRoles struct {`