Disable quiet hours endpoint if not entitled

deansheather · deansheather · commit 554e837f3c2f · 2023-07-13T17:47:16.000Z
diff --git a/enterprise/coderd/coderd.go b/enterprise/coderd/coderd.go
@@ -237,7 +237,7 @@ func New(ctx context.Context, options *Options) (_ *API, err error) {
 		})
 		r.Route("/users/{user}/quiet-hours", func(r chi.Router) {
 			r.Use(
-				// TODO: enabled MW?
+				api.restartRequirementEnabledMW,
 				apiKeyMiddleware,
 				httpmw.ExtractUserParam(options.Database, false),
 			)
@@ -494,6 +494,10 @@ func (api *API) updateEntitlements(ctx context.Context) error {
 				api.AGPL.UserQuietHoursScheduleStore.Store(&quietHoursStore)
 			}
 		} else {
+			if api.DefaultQuietHoursSchedule != "" {
+				api.Logger.Warn(ctx, "template restart requirements are not enabled (due to setting default quiet hours schedule) as your license is not entitled to this feature")
+			}
+
 			templateStore := *(api.AGPL.TemplateScheduleStore.Load())
 			enterpriseTemplateStore, ok := templateStore.(*schedule.EnterpriseTemplateScheduleStore)
 			if ok {
diff --git a/enterprise/coderd/users.go b/enterprise/coderd/users.go
@@ -11,6 +11,36 @@ import (
 	"github.com/coder/coder/codersdk"
 )
 
+func (api *API) restartRequirementEnabledMW(next http.Handler) http.Handler {
+	return http.HandlerFunc(func(rw http.ResponseWriter, r *http.Request) {
+		// The experiment must be enabled.
+		if !api.AGPL.Experiments.Enabled(codersdk.ExperimentTemplateRestartRequirement) {
+			httpapi.RouteNotFound(rw)
+			return
+		}
+
+		// Entitlement must be enabled.
+		api.entitlementsMu.RLock()
+		entitled := api.entitlements.Features[codersdk.FeatureTemplateRestartRequirement].Entitlement != codersdk.EntitlementNotEntitled
+		enabled := api.entitlements.Features[codersdk.FeatureTemplateRestartRequirement].Enabled
+		api.entitlementsMu.RUnlock()
+		if !entitled {
+			httpapi.Write(r.Context(), rw, http.StatusForbidden, codersdk.Response{
+				Message: "Template restart requirement is an Enterprise feature. Contact sales!",
+			})
+			return
+		}
+		if !enabled {
+			httpapi.Write(r.Context(), rw, http.StatusForbidden, codersdk.Response{
+				Message: "Template restart requirement feature is not enabled. Please specify a default user quiet hours schedule to use this feature.",
+			})
+			return
+		}
+
+		next.ServeHTTP(rw, r)
+	})
+}
+
 // @Summary Get user quiet hours schedule
 // @ID get-user-quiet-hours-schedule
 // @Security CoderSessionToken
diff --git a/enterprise/coderd/users_test.go b/enterprise/coderd/users_test.go
@@ -1,6 +1,7 @@
 package coderd_test
 
 import (
+	"net/http"
 	"testing"
 	"time"
 
@@ -17,112 +18,200 @@ import (
 func TestUserQuietHours(t *testing.T) {
 	t.Parallel()
 
-	defaultQuietHoursSchedule := "CRON_TZ=America/Chicago 0 0 * * *"
-	defaultScheduleParsed, err := schedule.Daily(defaultQuietHoursSchedule)
-	require.NoError(t, err)
-	nextTime := defaultScheduleParsed.Next(time.Now().In(defaultScheduleParsed.Location()))
-	if time.Until(nextTime) < time.Hour {
-		// Use a different default schedule instead, because we want to avoid
-		// the schedule "ticking over" during this test run.
-		defaultQuietHoursSchedule = "CRON_TZ=America/Chicago 0 12 * * *"
-		defaultScheduleParsed, err = schedule.Daily(defaultQuietHoursSchedule)
+	t.Run("OK", func(t *testing.T) {
+		t.Parallel()
+
+		defaultQuietHoursSchedule := "CRON_TZ=America/Chicago 0 0 * * *"
+		defaultScheduleParsed, err := schedule.Daily(defaultQuietHoursSchedule)
 		require.NoError(t, err)
-	}
-
-	dv := coderdtest.DeploymentValues(t)
-	dv.UserQuietHoursSchedule.DefaultSchedule.Set(defaultQuietHoursSchedule)
-	dv.UserQuietHoursSchedule.WindowDuration.Set("8h") // default is 4h
-
-	client, user := coderdenttest.New(t, &coderdenttest.Options{
-		Options: &coderdtest.Options{
-			DeploymentValues: dv,
-		},
-		LicenseOptions: &coderdenttest.LicenseOptions{
-			Features: license.Features{
-				codersdk.FeatureAdvancedTemplateScheduling: 1,
-				codersdk.FeatureTemplateRestartRequirement: 1,
+		nextTime := defaultScheduleParsed.Next(time.Now().In(defaultScheduleParsed.Location()))
+		if time.Until(nextTime) < time.Hour {
+			// Use a different default schedule instead, because we want to avoid
+			// the schedule "ticking over" during this test run.
+			defaultQuietHoursSchedule = "CRON_TZ=America/Chicago 0 12 * * *"
+			defaultScheduleParsed, err = schedule.Daily(defaultQuietHoursSchedule)
+			require.NoError(t, err)
+		}
+
+		dv := coderdtest.DeploymentValues(t)
+		dv.UserQuietHoursSchedule.DefaultSchedule.Set(defaultQuietHoursSchedule)
+		dv.UserQuietHoursSchedule.WindowDuration.Set("8h") // default is 4h
+		dv.Experiments.Set(string(codersdk.ExperimentTemplateRestartRequirement))
+
+		client, user := coderdenttest.New(t, &coderdenttest.Options{
+			Options: &coderdtest.Options{
+				DeploymentValues: dv,
 			},
-		},
-	})
+			LicenseOptions: &coderdenttest.LicenseOptions{
+				Features: license.Features{
+					codersdk.FeatureAdvancedTemplateScheduling: 1,
+					codersdk.FeatureTemplateRestartRequirement: 1,
+				},
+			},
+		})
 
-	// Get quiet hours for a user that doesn't have them set.
-	ctx := testutil.Context(t, testutil.WaitLong)
-	sched1, err := client.UserQuietHoursSchedule(ctx, codersdk.Me)
-	require.NoError(t, err)
-	require.Equal(t, defaultScheduleParsed.String(), sched1.RawSchedule)
-	require.False(t, sched1.UserSet)
-	require.Equal(t, defaultScheduleParsed.Time(), sched1.Time)
-	require.Equal(t, defaultScheduleParsed.Location().String(), sched1.Timezone)
-	require.Equal(t, dv.UserQuietHoursSchedule.WindowDuration.Value(), sched1.Duration)
-	require.WithinDuration(t, defaultScheduleParsed.Next(time.Now()), sched1.Next, 15*time.Second)
-
-	// Set their quiet hours.
-	customQuietHoursSchedule := "CRON_TZ=Australia/Sydney 0 0 * * *"
-	customScheduleParsed, err := schedule.Daily(customQuietHoursSchedule)
-	require.NoError(t, err)
-	nextTime = customScheduleParsed.Next(time.Now().In(customScheduleParsed.Location()))
-	if time.Until(nextTime) < time.Hour {
-		// Use a different default schedule instead, because we want to avoid
-		// the schedule "ticking over" during this test run.
-		customQuietHoursSchedule = "CRON_TZ=Australia/Sydney 0 12 * * *"
-		customScheduleParsed, err = schedule.Daily(customQuietHoursSchedule)
+		// Get quiet hours for a user that doesn't have them set.
+		ctx := testutil.Context(t, testutil.WaitLong)
+		sched1, err := client.UserQuietHoursSchedule(ctx, codersdk.Me)
 		require.NoError(t, err)
-	}
-
-	sched2, err := client.UpdateUserQuietHoursSchedule(ctx, user.UserID.String(), codersdk.UpdateUserQuietHoursScheduleRequest{
-		Schedule: customQuietHoursSchedule,
-	})
-	require.NoError(t, err)
-	require.Equal(t, customScheduleParsed.String(), sched2.RawSchedule)
-	require.True(t, sched2.UserSet)
-	require.Equal(t, customScheduleParsed.Time(), sched2.Time)
-	require.Equal(t, customScheduleParsed.Location().String(), sched2.Timezone)
-	require.Equal(t, dv.UserQuietHoursSchedule.WindowDuration.Value(), sched2.Duration)
-	require.WithinDuration(t, customScheduleParsed.Next(time.Now()), sched2.Next, 15*time.Second)
-
-	// Get quiet hours for a user that has them set.
-	sched3, err := client.UserQuietHoursSchedule(ctx, user.UserID.String())
-	require.NoError(t, err)
-	require.Equal(t, customScheduleParsed.String(), sched3.RawSchedule)
-	require.True(t, sched3.UserSet)
-	require.Equal(t, customScheduleParsed.Time(), sched3.Time)
-	require.Equal(t, customScheduleParsed.Location().String(), sched3.Timezone)
-	require.Equal(t, dv.UserQuietHoursSchedule.WindowDuration.Value(), sched3.Duration)
-	require.WithinDuration(t, customScheduleParsed.Next(time.Now()), sched3.Next, 15*time.Second)
-
-	// Try setting a garbage schedule.
-	_, err = client.UpdateUserQuietHoursSchedule(ctx, user.UserID.String(), codersdk.UpdateUserQuietHoursScheduleRequest{
-		Schedule: "garbage",
+		require.Equal(t, defaultScheduleParsed.String(), sched1.RawSchedule)
+		require.False(t, sched1.UserSet)
+		require.Equal(t, defaultScheduleParsed.Time(), sched1.Time)
+		require.Equal(t, defaultScheduleParsed.Location().String(), sched1.Timezone)
+		require.Equal(t, dv.UserQuietHoursSchedule.WindowDuration.Value(), sched1.Duration)
+		require.WithinDuration(t, defaultScheduleParsed.Next(time.Now()), sched1.Next, 15*time.Second)
+
+		// Set their quiet hours.
+		customQuietHoursSchedule := "CRON_TZ=Australia/Sydney 0 0 * * *"
+		customScheduleParsed, err := schedule.Daily(customQuietHoursSchedule)
+		require.NoError(t, err)
+		nextTime = customScheduleParsed.Next(time.Now().In(customScheduleParsed.Location()))
+		if time.Until(nextTime) < time.Hour {
+			// Use a different default schedule instead, because we want to avoid
+			// the schedule "ticking over" during this test run.
+			customQuietHoursSchedule = "CRON_TZ=Australia/Sydney 0 12 * * *"
+			customScheduleParsed, err = schedule.Daily(customQuietHoursSchedule)
+			require.NoError(t, err)
+		}
+
+		sched2, err := client.UpdateUserQuietHoursSchedule(ctx, user.UserID.String(), codersdk.UpdateUserQuietHoursScheduleRequest{
+			Schedule: customQuietHoursSchedule,
+		})
+		require.NoError(t, err)
+		require.Equal(t, customScheduleParsed.String(), sched2.RawSchedule)
+		require.True(t, sched2.UserSet)
+		require.Equal(t, customScheduleParsed.Time(), sched2.Time)
+		require.Equal(t, customScheduleParsed.Location().String(), sched2.Timezone)
+		require.Equal(t, dv.UserQuietHoursSchedule.WindowDuration.Value(), sched2.Duration)
+		require.WithinDuration(t, customScheduleParsed.Next(time.Now()), sched2.Next, 15*time.Second)
+
+		// Get quiet hours for a user that has them set.
+		sched3, err := client.UserQuietHoursSchedule(ctx, user.UserID.String())
+		require.NoError(t, err)
+		require.Equal(t, customScheduleParsed.String(), sched3.RawSchedule)
+		require.True(t, sched3.UserSet)
+		require.Equal(t, customScheduleParsed.Time(), sched3.Time)
+		require.Equal(t, customScheduleParsed.Location().String(), sched3.Timezone)
+		require.Equal(t, dv.UserQuietHoursSchedule.WindowDuration.Value(), sched3.Duration)
+		require.WithinDuration(t, customScheduleParsed.Next(time.Now()), sched3.Next, 15*time.Second)
+
+		// Try setting a garbage schedule.
+		_, err = client.UpdateUserQuietHoursSchedule(ctx, user.UserID.String(), codersdk.UpdateUserQuietHoursScheduleRequest{
+			Schedule: "garbage",
+		})
+		require.Error(t, err)
+		require.ErrorContains(t, err, "parse daily schedule")
+
+		// Try setting a non-daily schedule.
+		_, err = client.UpdateUserQuietHoursSchedule(ctx, user.UserID.String(), codersdk.UpdateUserQuietHoursScheduleRequest{
+			Schedule: "CRON_TZ=America/Chicago 0 0 * * 1",
+		})
+		require.Error(t, err)
+		require.ErrorContains(t, err, "parse daily schedule")
+
+		// Try setting a schedule with a timezone that doesn't exist.
+		_, err = client.UpdateUserQuietHoursSchedule(ctx, user.UserID.String(), codersdk.UpdateUserQuietHoursScheduleRequest{
+			Schedule: "CRON_TZ=Deans/House 0 0 * * *",
+		})
+		require.Error(t, err)
+		require.ErrorContains(t, err, "parse daily schedule")
+
+		// Try setting a schedule with more than one time.
+		_, err = client.UpdateUserQuietHoursSchedule(ctx, user.UserID.String(), codersdk.UpdateUserQuietHoursScheduleRequest{
+			Schedule: "CRON_TZ=America/Chicago 0 0,12 * * *",
+		})
+		require.Error(t, err)
+		require.ErrorContains(t, err, "more than one time")
+		_, err = client.UpdateUserQuietHoursSchedule(ctx, user.UserID.String(), codersdk.UpdateUserQuietHoursScheduleRequest{
+			Schedule: "CRON_TZ=America/Chicago 0-30 0 * * *",
+		})
+		require.Error(t, err)
+		require.ErrorContains(t, err, "more than one time")
+
+		// We don't allow unsetting the custom schedule so we don't need to worry
+		// about it in this test.
 	})
-	require.Error(t, err)
-	require.ErrorContains(t, err, "parse daily schedule")
 
-	// Try setting a non-daily schedule.
-	_, err = client.UpdateUserQuietHoursSchedule(ctx, user.UserID.String(), codersdk.UpdateUserQuietHoursScheduleRequest{
-		Schedule: "CRON_TZ=America/Chicago 0 0 * * 1",
-	})
-	require.Error(t, err)
-	require.ErrorContains(t, err, "parse daily schedule")
+	t.Run("NotEntitled", func(t *testing.T) {
+		t.Parallel()
 
-	// Try setting a schedule with a timezone that doesn't exist.
-	_, err = client.UpdateUserQuietHoursSchedule(ctx, user.UserID.String(), codersdk.UpdateUserQuietHoursScheduleRequest{
-		Schedule: "CRON_TZ=Deans/House 0 0 * * *",
-	})
-	require.Error(t, err)
-	require.ErrorContains(t, err, "parse daily schedule")
+		dv := coderdtest.DeploymentValues(t)
+		dv.UserQuietHoursSchedule.DefaultSchedule.Set("CRON_TZ=America/Chicago 0 0 * * *")
+		dv.Experiments.Set(string(codersdk.ExperimentTemplateRestartRequirement))
 
-	// Try setting a schedule with more than one time.
-	_, err = client.UpdateUserQuietHoursSchedule(ctx, user.UserID.String(), codersdk.UpdateUserQuietHoursScheduleRequest{
-		Schedule: "CRON_TZ=America/Chicago 0 0,12 * * *",
+		client, user := coderdenttest.New(t, &coderdenttest.Options{
+			Options: &coderdtest.Options{
+				DeploymentValues: dv,
+			},
+			LicenseOptions: &coderdenttest.LicenseOptions{
+				Features: license.Features{
+					codersdk.FeatureAdvancedTemplateScheduling: 1,
+					// Not entitled.
+					// codersdk.FeatureTemplateRestartRequirement: 1,
+				},
+			},
+		})
+
+		ctx := testutil.Context(t, testutil.WaitLong)
+		_, err := client.UserQuietHoursSchedule(ctx, user.UserID.String())
+		require.Error(t, err)
+		var sdkErr *codersdk.Error
+		require.ErrorAs(t, err, &sdkErr)
+		require.Equal(t, http.StatusForbidden, sdkErr.StatusCode())
 	})
-	require.Error(t, err)
-	require.ErrorContains(t, err, "more than one time")
-	_, err = client.UpdateUserQuietHoursSchedule(ctx, user.UserID.String(), codersdk.UpdateUserQuietHoursScheduleRequest{
-		Schedule: "CRON_TZ=America/Chicago 0-30 0 * * *",
+
+	t.Run("NotEnabled", func(t *testing.T) {
+		t.Parallel()
+
+		dv := coderdtest.DeploymentValues(t)
+		dv.UserQuietHoursSchedule.DefaultSchedule.Set("")
+		dv.Experiments.Set(string(codersdk.ExperimentTemplateRestartRequirement))
+
+		client, user := coderdenttest.New(t, &coderdenttest.Options{
+			NoDefaultQuietHoursSchedule: true,
+			Options: &coderdtest.Options{
+				DeploymentValues: dv,
+			},
+			LicenseOptions: &coderdenttest.LicenseOptions{
+				Features: license.Features{
+					codersdk.FeatureAdvancedTemplateScheduling: 1,
+					codersdk.FeatureTemplateRestartRequirement: 1,
+				},
+			},
+		})
+
+		ctx := testutil.Context(t, testutil.WaitLong)
+		_, err := client.UserQuietHoursSchedule(ctx, user.UserID.String())
+		require.Error(t, err)
+		var sdkErr *codersdk.Error
+		require.ErrorAs(t, err, &sdkErr)
+		require.Equal(t, http.StatusForbidden, sdkErr.StatusCode())
 	})
-	require.Error(t, err)
-	require.ErrorContains(t, err, "more than one time")
 
-	// We don't allow unsetting the custom schedule so we don't need to worry
-	// about it in this test.
+	t.Run("NoFeatureFlag", func(t *testing.T) {
+		t.Parallel()
+
+		dv := coderdtest.DeploymentValues(t)
+		dv.UserQuietHoursSchedule.DefaultSchedule.Set("CRON_TZ=America/Chicago 0 0 * * *")
+		dv.UserQuietHoursSchedule.DefaultSchedule.Set("")
+
+		client, user := coderdenttest.New(t, &coderdenttest.Options{
+			Options: &coderdtest.Options{
+				DeploymentValues: dv,
+			},
+			LicenseOptions: &coderdenttest.LicenseOptions{
+				Features: license.Features{
+					codersdk.FeatureAdvancedTemplateScheduling: 1,
+					codersdk.FeatureTemplateRestartRequirement: 1,
+				},
+			},
+		})
+
+		ctx := testutil.Context(t, testutil.WaitLong)
+		_, err := client.UserQuietHoursSchedule(ctx, user.UserID.String())
+		require.Error(t, err)
+		var sdkErr *codersdk.Error
+		require.ErrorAs(t, err, &sdkErr)
+		require.Equal(t, http.StatusNotFound, sdkErr.StatusCode())
+	})
 }
