coder
diff --git a/‎Makefile
Lines changed: 8 additions & 1 deletion b/‎Makefile
Lines changed: 8 additions & 1 deletion
diff --git a/‎coderd/coderdtest/coderdtest.go
Lines changed: 4 additions & 2 deletions b/‎coderd/coderdtest/coderdtest.go
Lines changed: 4 additions & 2 deletions
diff --git a/‎coderd/users.go
Lines changed: 9 additions & 0 deletions b/‎coderd/users.go
Lines changed: 9 additions & 0 deletions
diff --git a/‎coderd/users_test.go
Lines changed: 2 additions & 2 deletions b/‎coderd/users_test.go
Lines changed: 2 additions & 2 deletions
diff --git a/‎codersdk/client.go
Lines changed: 14 additions & 22 deletions b/‎codersdk/client.go
Lines changed: 14 additions & 22 deletions
diff --git a/‎codersdk/users.go
Lines changed: 10 additions & 5 deletions b/‎codersdk/users.go
Lines changed: 10 additions & 5 deletions
diff --git a/‎database/databasefake/databasefake.go
Lines changed: 1 addition & 0 deletions b/‎database/databasefake/databasefake.go
Lines changed: 1 addition & 0 deletions
diff --git a/‎database/query.sql
Lines changed: 90 additions & 10 deletions b/‎database/query.sql
Lines changed: 90 additions & 10 deletions
@@ -27,7 +27,14 @@ else
 endif
 .PHONY: fmt/prettier
 
-fmt: fmt/prettier
+fmt/sql:
+	npx sql-formatter \
+		--language postgresql \
+		--lines-between-queries 2 \
+		./database/query.sql \
+		--output ./database/query.sql
+
+fmt: fmt/prettier fmt/sql
 .PHONY: fmt
 
 gen: database/generate peerbroker/proto provisionersdk/proto
 
@@ -36,19 +36,21 @@ func New(t *testing.T) Server {
 	require.NoError(t, err)
 	t.Cleanup(srv.Close)
 
-	client := codersdk.New(u, &codersdk.Options{})
+	client := codersdk.New(u)
 	_, err = client.CreateInitialUser(context.Background(), coderd.CreateUserRequest{
 		Email:    "testuser@coder.com",
 		Username: "testuser",
 		Password: "testpassword",
 	})
 	require.NoError(t, err)
 
-	err = client.LoginWithPassword(context.Background(), coderd.LoginWithPasswordRequest{
+	login, err := client.LoginWithPassword(context.Background(), coderd.LoginWithPasswordRequest{
 		Email:    "testuser@coder.com",
 		Password: "testpassword",
 	})
 	require.NoError(t, err)
+	err = client.SetSessionToken(login.SessionToken)
+	require.NoError(t, err)
 
 	return Server{
 		Client: client,
 
@@ -19,24 +19,28 @@ import (
 	"github.com/coder/coder/httpmw"
 )
 
+// User is the JSON representation of a Coder user.
 type User struct {
 	ID        string    `json:"id" validate:"required"`
 	Email     string    `json:"email" validate:"required"`
 	CreatedAt time.Time `json:"created_at" validate:"required"`
 	Username  string    `json:"username" validate:"required"`
 }
 
+// CreateUserRequest enables callers to create a new user.
 type CreateUserRequest struct {
 	Email    string `json:"email" validate:"required,email"`
 	Username string `json:"username" validate:"required,username"`
 	Password string `json:"password" validate:"required"`
 }
 
+// LoginWithPasswordRequest enables callers to authenticate with email and password.
 type LoginWithPasswordRequest struct {
 	Email    string `json:"email" validate:"required,email"`
 	Password string `json:"password" validate:"required"`
 }
 
+// LoginWithPasswordResponse contains a session token for the newly authenticated user.
 type LoginWithPasswordResponse struct {
 	SessionToken string `json:"session_token" validate:"required"`
 }
@@ -51,13 +55,15 @@ func (users *users) createInitialUser(rw http.ResponseWriter, r *http.Request) {
 	if !httpapi.Read(rw, r, &createUser) {
 		return
 	}
+	// This should only function for the first user.
 	userCount, err := users.Database.GetUserCount(r.Context())
 	if err != nil {
 		httpapi.Write(rw, http.StatusInternalServerError, httpapi.Response{
 			Message: fmt.Sprintf("get user count: %s", err.Error()),
 		})
 		return
 	}
+	// If a user already exists, the initial admin user no longer can be created.
 	if userCount != 0 {
 		httpapi.Write(rw, http.StatusConflict, httpapi.Response{
 			Message: "the initial user has already been created",
@@ -116,6 +122,7 @@ func (users *users) getAuthenticatedUser(rw http.ResponseWriter, r *http.Request
 	})
 }
 
+// Authenticates the user with an email and password.
 func (users *users) loginWithPassword(rw http.ResponseWriter, r *http.Request) {
 	var loginWithPassword LoginWithPasswordRequest
 	if !httpapi.Read(rw, r, &loginWithPassword) {
@@ -170,6 +177,7 @@ func (users *users) loginWithPassword(rw http.ResponseWriter, r *http.Request) {
 		return
 	}
 
+	// This format is consumed by the APIKey middleware.
 	sessionToken := fmt.Sprintf("%s-%s", id, secret)
 	http.SetCookie(rw, &http.Cookie{
 		Name:     httpmw.AuthCookie,
@@ -185,6 +193,7 @@ func (users *users) loginWithPassword(rw http.ResponseWriter, r *http.Request) {
 	})
 }
 
+// Generates a new ID and secret for an API key.
 func generateAPIKeyIDSecret() (string, string, error) {
 	// Length of an API Key ID.
 	id, err := cryptorand.String(10)
 
@@ -33,7 +33,7 @@ func TestUsers(t *testing.T) {
 	t.Run("LoginNoEmail", func(t *testing.T) {
 		t.Parallel()
 		server := coderdtest.New(t)
-		err := server.Client.LoginWithPassword(context.Background(), coderd.LoginWithPasswordRequest{
+		_, err := server.Client.LoginWithPassword(context.Background(), coderd.LoginWithPasswordRequest{
 			Email:    "hello@io.io",
 			Password: "wowie",
 		})
@@ -46,7 +46,7 @@ func TestUsers(t *testing.T) {
 		user, err := server.Client.User(context.Background(), "")
 		require.NoError(t, err)
 
-		err = server.Client.LoginWithPassword(context.Background(), coderd.LoginWithPasswordRequest{
+		_, err = server.Client.LoginWithPassword(context.Background(), coderd.LoginWithPasswordRequest{
 			Email:    user.Email,
 			Password: "bananas",
 		})
 
@@ -17,34 +17,22 @@ import (
 	"github.com/coder/coder/httpmw"
 )
 
-type Options struct {
-	SessionToken string
-	HTTPClient   *http.Client
-}
-
-func New(url *url.URL, options *Options) *Client {
-	if options == nil {
-		options = &Options{}
-	}
-	if options.HTTPClient == nil {
-		// Don't use http.DefaultClient because we override
-		// all the cookies!
-		options.HTTPClient = &http.Client{}
-	}
+// New creates a Coder client for the provided URL.
+func New(url *url.URL) *Client {
 	return &Client{
-		url:          url,
-		sessionToken: options.SessionToken,
-		httpClient:   options.HTTPClient,
+		url:        url,
+		httpClient: &http.Client{},
 	}
 }
 
+// Client is an HTTP caller for methods to the Coder API.
 type Client struct {
-	url          *url.URL
-	sessionToken string
-	httpClient   *http.Client
+	url        *url.URL
+	httpClient *http.Client
 }
 
-func (c *Client) setSessionToken(token string) error {
+// SetSessionToken applies the provided token to the current client.
+func (c *Client) SetSessionToken(token string) error {
 	if c.httpClient.Jar == nil {
 		var err error
 		c.httpClient.Jar, err = cookiejar.New(nil)
@@ -56,10 +44,11 @@ func (c *Client) setSessionToken(token string) error {
 		Name:  httpmw.AuthCookie,
 		Value: token,
 	}})
-	c.sessionToken = token
 	return nil
 }
 
+// request performs an HTTP request with the body provided.
+// The caller is responsible for closing the response body.
 func (c *Client) request(ctx context.Context, method, path string, body interface{}) (*http.Response, error) {
 	url, err := c.url.Parse(path)
 	if err != nil {
@@ -91,6 +80,8 @@ func (c *Client) request(ctx context.Context, method, path string, body interfac
 	return resp, err
 }
 
+// readBodyAsError reads the response as an httpapi.Message, and
+// wraps it in a codersdk.Error type for easy marshalling.
 func readBodyAsError(res *http.Response) error {
 	var m httpapi.Response
 	err := json.NewDecoder(res.Body).Decode(&m)
@@ -109,6 +100,7 @@ func readBodyAsError(res *http.Response) error {
 	}
 }
 
+// Error represents an unaccepted or invalid request to the API.
 type Error struct {
 	httpapi.Response
 
 
@@ -9,6 +9,9 @@ import (
 	"github.com/coder/coder/coderd"
 )
 
+// CreateInitialUser attempts to create the first user on a Coder deployment.
+// This initial user has superadmin privileges. If >0 users exist, this request
+// will fail.
 func (c *Client) CreateInitialUser(ctx context.Context, req coderd.CreateUserRequest) (coderd.User, error) {
 	res, err := c.request(ctx, http.MethodPost, "/api/v2/user", req)
 	if err != nil {
@@ -37,20 +40,22 @@ func (c *Client) User(ctx context.Context, id string) (coderd.User, error) {
 	return user, json.NewDecoder(res.Body).Decode(&user)
 }
 
-func (c *Client) LoginWithPassword(ctx context.Context, req coderd.LoginWithPasswordRequest) error {
+// LoginWithPassword creates a session token authenticating with an email and password.
+// Call `SetSessionToken()` to apply the newly acquired token to the client.
+func (c *Client) LoginWithPassword(ctx context.Context, req coderd.LoginWithPasswordRequest) (coderd.LoginWithPasswordResponse, error) {
 	res, err := c.request(ctx, http.MethodPost, "/api/v2/login", req)
 	if err != nil {
-		return err
+		return coderd.LoginWithPasswordResponse{}, err
 	}
 	defer res.Body.Close()
 	if res.StatusCode != http.StatusCreated {
 		fmt.Printf("Are we reading here?\n")
-		return readBodyAsError(res)
+		return coderd.LoginWithPasswordResponse{}, readBodyAsError(res)
 	}
 	var resp coderd.LoginWithPasswordResponse
 	err = json.NewDecoder(res.Body).Decode(&resp)
 	if err != nil {
-		return err
+		return coderd.LoginWithPasswordResponse{}, err
 	}
-	return c.setSessionToken(resp.SessionToken)
+	return coderd.LoginWithPasswordResponse{}, nil
 }
@@ -15,6 +15,7 @@ func New() database.Store {
 	}
 }
 
+// fakeQuerier replicates database functionality to enable quick testing.
 type fakeQuerier struct {
 	apiKeys []database.APIKey
 	users   []database.User
 
@@ -1,26 +1,106 @@
+-- Database queries are generated using sqlc. See:
+-- https://docs.sqlc.dev/en/latest/tutorials/getting-started-postgresql.html
+-- 
+-- Run "make gen" to generate models and query functions.
+
 -- name: GetAPIKeyByID :one
 SELECT
-    *
+  *
 FROM
-    api_keys
+  api_keys
 WHERE
-    id = $1
-LIMIT 1;
+  id = $1
+LIMIT
+  1;
 
 -- name: GetUserByID :one
-SELECT * FROM users WHERE id = $1 LIMIT 1;
+SELECT
+  *
+FROM
+  users
+WHERE
+  id = $1
+LIMIT
+  1;
 
 -- name: GetUserByEmailOrUsername :one
-SELECT * FROM users WHERE username = $1 OR email = $2 LIMIT 1;
+SELECT
+  *
+FROM
+  users
+WHERE
+  username = $1
+  OR email = $2
+LIMIT
+  1;
 
 -- name: GetUserCount :one
-SELECT COUNT(*) FROM users;
+SELECT
+  COUNT(*)
+FROM
+  users;
 
 -- name: InsertAPIKey :one
-INSERT INTO api_keys (id, hashed_secret, user_id, application, name, last_used, expires_at, created_at, updated_at, login_type, oidc_access_token, oidc_refresh_token, oidc_id_token, oidc_expiry, devurl_token) VALUES ($1, $2, $3, $4, $5, $6, $7, $8, $9, $10, $11, $12, $13, $14, $15) RETURNING *;
+INSERT INTO
+  api_keys (
+    id,
+    hashed_secret,
+    user_id,
+    application,
+    name,
+    last_used,
+    expires_at,
+    created_at,
+    updated_at,
+    login_type,
+    oidc_access_token,
+    oidc_refresh_token,
+    oidc_id_token,
+    oidc_expiry,
+    devurl_token
+  )
+VALUES
+  (
+    $1,
+    $2,
+    $3,
+    $4,
+    $5,
+    $6,
+    $7,
+    $8,
+    $9,
+    $10,
+    $11,
+    $12,
+    $13,
+    $14,
+    $15
+  ) RETURNING *;
 
 -- name: InsertUser :one
-INSERT INTO users (id, email, name, login_type, hashed_password, created_at, updated_at, username) VALUES ($1, $2, $3, $4, $5, $6, $7, $8) RETURNING *;
+INSERT INTO
+  users (
+    id,
+    email,
+    name,
+    login_type,
+    hashed_password,
+    created_at,
+    updated_at,
+    username
+  )
+VALUES
+  ($1, $2, $3, $4, $5, $6, $7, $8) RETURNING *;
 
 -- name: UpdateAPIKeyByID :exec
-UPDATE api_keys SET last_used = $2, expires_at = $3, oidc_access_token = $4, oidc_refresh_token = $5, oidc_expiry = $6 WHERE id = $1;
+UPDATE
+  api_keys
+SET
+  last_used = $2,
+  expires_at = $3,
+  oidc_access_token = $4,
+  oidc_refresh_token = $5,
+  oidc_expiry = $6
+WHERE
+  id = $1;
Original file line number	Diff line number	Diff line change
`@@ -15,6 +15,7 @@ func New() database.Store {`
`15`	`15`	`}`
`16`	`16`	`}`
`17`	`17`
	`18`	`+// fakeQuerier replicates database functionality to enable quick testing.`
`18`	`19`	`type fakeQuerier struct {`
`19`	`20`	`apiKeys []database.APIKey`
`20`	`21`	`users []database.User`