Rename fetchSet to fetchWithPostFilter

Emyrk · Emyrk · commit 7ba34826d182 · 2023-02-03T08:25:41.000-06:00
diff --git a/coderd/authzquery/apikey.go b/coderd/authzquery/apikey.go
@@ -18,11 +18,11 @@ func (q *AuthzQuerier) GetAPIKeyByID(ctx context.Context, id string) (database.A
 }
 
 func (q *AuthzQuerier) GetAPIKeysByLoginType(ctx context.Context, loginType database.LoginType) ([]database.APIKey, error) {
-	return fetchSet(q.auth, q.db.GetAPIKeysByLoginType)(ctx, loginType)
+	return fetchWithPostFilter(q.auth, q.db.GetAPIKeysByLoginType)(ctx, loginType)
 }
 
 func (q *AuthzQuerier) GetAPIKeysLastUsedAfter(ctx context.Context, lastUsed time.Time) ([]database.APIKey, error) {
-	return fetchSet(q.auth, q.db.GetAPIKeysLastUsedAfter)(ctx, lastUsed)
+	return fetchWithPostFilter(q.auth, q.db.GetAPIKeysLastUsedAfter)(ctx, lastUsed)
 }
 
 func (q *AuthzQuerier) InsertAPIKey(ctx context.Context, arg database.InsertAPIKeyParams) (database.APIKey, error) {
diff --git a/coderd/authzquery/authz.go b/coderd/authzquery/authz.go
@@ -235,9 +235,9 @@ func authorizedQuery[ArgumentType any, ObjectType rbac.Objecter,
 	}
 }
 
-// fetchSet is like fetch, but works with lists of objects.
+// fetchWithPostFilter is like fetch, but works with lists of objects.
 // SQL filters are much more optimal.
-func fetchSet[ArgumentType any, ObjectType rbac.Objecter,
+func fetchWithPostFilter[ArgumentType any, ObjectType rbac.Objecter,
 	DatabaseFunc func(ctx context.Context, arg ArgumentType) ([]ObjectType, error)](
 	// Arguments
 	authorizer rbac.Authorizer,
diff --git a/coderd/authzquery/license.go b/coderd/authzquery/license.go
@@ -12,7 +12,7 @@ func (q *AuthzQuerier) GetLicenses(ctx context.Context) ([]database.License, err
 	fetch := func(ctx context.Context, _ interface{}) ([]database.License, error) {
 		return q.db.GetLicenses(ctx)
 	}
-	return fetchSet(q.auth, fetch)(ctx, nil)
+	return fetchWithPostFilter(q.auth, fetch)(ctx, nil)
 }
 
 func (q *AuthzQuerier) InsertLicense(ctx context.Context, arg database.InsertLicenseParams) (database.License, error) {
diff --git a/coderd/authzquery/methods.go b/coderd/authzquery/methods.go
@@ -13,7 +13,7 @@ func (q *AuthzQuerier) GetProvisionerDaemons(ctx context.Context) ([]database.Pr
 	fetch := func(ctx context.Context, _ interface{}) ([]database.ProvisionerDaemon, error) {
 		return q.db.GetProvisionerDaemons(ctx)
 	}
-	return fetchSet(q.auth, fetch)(ctx, nil)
+	return fetchWithPostFilter(q.auth, fetch)(ctx, nil)
 }
 
 func (q *AuthzQuerier) GetDeploymentDAUs(ctx context.Context) ([]database.GetDeploymentDAUsRow, error) {
diff --git a/coderd/authzquery/organization.go b/coderd/authzquery/organization.go
@@ -11,7 +11,7 @@ import (
 )
 
 func (q *AuthzQuerier) GetGroupsByOrganizationID(ctx context.Context, organizationID uuid.UUID) ([]database.Group, error) {
-	return fetchSet(q.auth, q.db.GetGroupsByOrganizationID)(ctx, organizationID)
+	return fetchWithPostFilter(q.auth, q.db.GetGroupsByOrganizationID)(ctx, organizationID)
 }
 
 func (q *AuthzQuerier) GetOrganizationByID(ctx context.Context, id uuid.UUID) (database.Organization, error) {
@@ -25,26 +25,26 @@ func (q *AuthzQuerier) GetOrganizationByName(ctx context.Context, name string) (
 func (q *AuthzQuerier) GetOrganizationIDsByMemberIDs(ctx context.Context, ids []uuid.UUID) ([]database.GetOrganizationIDsByMemberIDsRow, error) {
 	// TODO: This should be rewritten to return a list of database.OrganizationMember for consistent RBAC objects.
 	// Currently this row returns a list of org ids per user, which is challenging to check against the RBAC system.
-	return fetchSet(q.auth, q.db.GetOrganizationIDsByMemberIDs)(ctx, ids)
+	return fetchWithPostFilter(q.auth, q.db.GetOrganizationIDsByMemberIDs)(ctx, ids)
 }
 
 func (q *AuthzQuerier) GetOrganizationMemberByUserID(ctx context.Context, arg database.GetOrganizationMemberByUserIDParams) (database.OrganizationMember, error) {
 	return fetch(q.log, q.auth, q.db.GetOrganizationMemberByUserID)(ctx, arg)
 }
 
 func (q *AuthzQuerier) GetOrganizationMembershipsByUserID(ctx context.Context, userID uuid.UUID) ([]database.OrganizationMember, error) {
-	return fetchSet(q.auth, q.db.GetOrganizationMembershipsByUserID)(ctx, userID)
+	return fetchWithPostFilter(q.auth, q.db.GetOrganizationMembershipsByUserID)(ctx, userID)
 }
 
 func (q *AuthzQuerier) GetOrganizations(ctx context.Context) ([]database.Organization, error) {
 	fetch := func(ctx context.Context, _ interface{}) ([]database.Organization, error) {
 		return q.db.GetOrganizations(ctx)
 	}
-	return fetchSet(q.auth, fetch)(ctx, nil)
+	return fetchWithPostFilter(q.auth, fetch)(ctx, nil)
 }
 
 func (q *AuthzQuerier) GetOrganizationsByUserID(ctx context.Context, userID uuid.UUID) ([]database.Organization, error) {
-	return fetchSet(q.auth, q.db.GetOrganizationsByUserID)(ctx, userID)
+	return fetchWithPostFilter(q.auth, q.db.GetOrganizationsByUserID)(ctx, userID)
 }
 
 func (q *AuthzQuerier) InsertOrganization(ctx context.Context, arg database.InsertOrganizationParams) (database.Organization, error) {
diff --git a/coderd/authzquery/user.go b/coderd/authzquery/user.go
@@ -63,7 +63,7 @@ func (q *AuthzQuerier) GetFilteredUserCount(ctx context.Context, arg database.Ge
 
 func (q *AuthzQuerier) GetUsers(ctx context.Context, arg database.GetUsersParams) ([]database.GetUsersRow, error) {
 	// TODO: We should use GetUsersWithCount with a better method signature.
-	return fetchSet(q.auth, q.db.GetUsers)(ctx, arg)
+	return fetchWithPostFilter(q.auth, q.db.GetUsers)(ctx, arg)
 }
 
 func (q *AuthzQuerier) GetUsersWithCount(ctx context.Context, arg database.GetUsersParams) ([]database.User, int64, error) {
@@ -93,7 +93,7 @@ func (q *AuthzQuerier) GetUsersWithCount(ctx context.Context, arg database.GetUs
 }
 
 func (q *AuthzQuerier) GetUsersByIDs(ctx context.Context, ids []uuid.UUID) ([]database.User, error) {
-	return fetchSet(q.auth, q.db.GetUsersByIDs)(ctx, ids)
+	return fetchWithPostFilter(q.auth, q.db.GetUsersByIDs)(ctx, ids)
 }
 
 func (q *AuthzQuerier) InsertUser(ctx context.Context, arg database.InsertUserParams) (database.User, error) {
@@ -189,7 +189,10 @@ func (q *AuthzQuerier) InsertGitSSHKey(ctx context.Context, arg database.InsertG
 }
 
 func (q *AuthzQuerier) UpdateGitSSHKey(ctx context.Context, arg database.UpdateGitSSHKeyParams) (database.GitSSHKey, error) {
-	return insertWithReturn(q.log, q.auth, rbac.ActionUpdate, rbac.ResourceUserData.WithOwner(arg.UserID.String()).WithID(arg.UserID), q.db.UpdateGitSSHKey)(ctx, arg)
+	fetch := func(ctx context.Context, arg database.UpdateGitSSHKeyParams) (database.GitSSHKey, error) {
+		return q.db.GetGitSSHKey(ctx, arg.UserID)
+	}
+	return updateWithReturn(q.log, q.auth, fetch, q.db.UpdateGitSSHKey)(ctx, arg)
 }
 
 func (q *AuthzQuerier) GetGitAuthLink(ctx context.Context, arg database.GetGitAuthLinkParams) (database.GitAuthLink, error) {

Original file line number	Diff line number	Diff line change
`@@ -18,11 +18,11 @@ func (q *AuthzQuerier) GetAPIKeyByID(ctx context.Context, id string) (database.A`
`18`	`18`	`}`
`19`	`19`
`20`	`20`	`func (q *AuthzQuerier) GetAPIKeysByLoginType(ctx context.Context, loginType database.LoginType) ([]database.APIKey, error) {`
`21`		`- return fetchSet(q.auth, q.db.GetAPIKeysByLoginType)(ctx, loginType)`
	`21`	`+ return fetchWithPostFilter(q.auth, q.db.GetAPIKeysByLoginType)(ctx, loginType)`
`22`	`22`	`}`
`23`	`23`
`24`	`24`	`func (q *AuthzQuerier) GetAPIKeysLastUsedAfter(ctx context.Context, lastUsed time.Time) ([]database.APIKey, error) {`
`25`		`- return fetchSet(q.auth, q.db.GetAPIKeysLastUsedAfter)(ctx, lastUsed)`
	`25`	`+ return fetchWithPostFilter(q.auth, q.db.GetAPIKeysLastUsedAfter)(ctx, lastUsed)`
`26`	`26`	`}`
`27`	`27`
`28`	`28`	`func (q *AuthzQuerier) InsertAPIKey(ctx context.Context, arg database.InsertAPIKeyParams) (database.APIKey, error) {`
Original file line number	Diff line number	Diff line change
`@@ -235,9 +235,9 @@ func authorizedQuery[ArgumentType any, ObjectType rbac.Objecter,`
`235`	`235`	`}`
`236`	`236`	`}`
`237`	`237`
`238`		`-// fetchSet is like fetch, but works with lists of objects.`
	`238`	`+// fetchWithPostFilter is like fetch, but works with lists of objects.`
`239`	`239`	`// SQL filters are much more optimal.`
`240`		`-func fetchSet[ArgumentType any, ObjectType rbac.Objecter,`
	`240`	`+func fetchWithPostFilter[ArgumentType any, ObjectType rbac.Objecter,`
`241`	`241`	`DatabaseFunc func(ctx context.Context, arg ArgumentType) ([]ObjectType, error)](`
`242`	`242`	`// Arguments`
`243`	`243`	`authorizer rbac.Authorizer,`
Original file line number	Diff line number	Diff line change
`@@ -12,7 +12,7 @@ func (q *AuthzQuerier) GetLicenses(ctx context.Context) ([]database.License, err`
`12`	`12`	`fetch := func(ctx context.Context, _ interface{}) ([]database.License, error) {`
`13`	`13`	`return q.db.GetLicenses(ctx)`
`14`	`14`	`}`
`15`		`- return fetchSet(q.auth, fetch)(ctx, nil)`
	`15`	`+ return fetchWithPostFilter(q.auth, fetch)(ctx, nil)`
`16`	`16`	`}`
`17`	`17`
`18`	`18`	`func (q *AuthzQuerier) InsertLicense(ctx context.Context, arg database.InsertLicenseParams) (database.License, error) {`
Original file line number	Diff line number	Diff line change
`@@ -13,7 +13,7 @@ func (q *AuthzQuerier) GetProvisionerDaemons(ctx context.Context) ([]database.Pr`
`13`	`13`	`fetch := func(ctx context.Context, _ interface{}) ([]database.ProvisionerDaemon, error) {`
`14`	`14`	`return q.db.GetProvisionerDaemons(ctx)`
`15`	`15`	`}`
`16`		`- return fetchSet(q.auth, fetch)(ctx, nil)`
	`16`	`+ return fetchWithPostFilter(q.auth, fetch)(ctx, nil)`
`17`	`17`	`}`
`18`	`18`
`19`	`19`	`func (q *AuthzQuerier) GetDeploymentDAUs(ctx context.Context) ([]database.GetDeploymentDAUsRow, error) {`
Original file line number	Diff line number	Diff line change
`@@ -11,7 +11,7 @@ import (`
`11`	`11`	`)`
`12`	`12`
`13`	`13`	`func (q *AuthzQuerier) GetGroupsByOrganizationID(ctx context.Context, organizationID uuid.UUID) ([]database.Group, error) {`
`14`		`- return fetchSet(q.auth, q.db.GetGroupsByOrganizationID)(ctx, organizationID)`
	`14`	`+ return fetchWithPostFilter(q.auth, q.db.GetGroupsByOrganizationID)(ctx, organizationID)`
`15`	`15`	`}`
`16`	`16`
`17`	`17`	`func (q *AuthzQuerier) GetOrganizationByID(ctx context.Context, id uuid.UUID) (database.Organization, error) {`
`@@ -25,26 +25,26 @@ func (q *AuthzQuerier) GetOrganizationByName(ctx context.Context, name string) (`
`25`	`25`	`func (q *AuthzQuerier) GetOrganizationIDsByMemberIDs(ctx context.Context, ids []uuid.UUID) ([]database.GetOrganizationIDsByMemberIDsRow, error) {`
`26`	`26`	`// TODO: This should be rewritten to return a list of database.OrganizationMember for consistent RBAC objects.`
`27`	`27`	`// Currently this row returns a list of org ids per user, which is challenging to check against the RBAC system.`
`28`		`- return fetchSet(q.auth, q.db.GetOrganizationIDsByMemberIDs)(ctx, ids)`
	`28`	`+ return fetchWithPostFilter(q.auth, q.db.GetOrganizationIDsByMemberIDs)(ctx, ids)`
`29`	`29`	`}`
`30`	`30`
`31`	`31`	`func (q *AuthzQuerier) GetOrganizationMemberByUserID(ctx context.Context, arg database.GetOrganizationMemberByUserIDParams) (database.OrganizationMember, error) {`
`32`	`32`	`return fetch(q.log, q.auth, q.db.GetOrganizationMemberByUserID)(ctx, arg)`
`33`	`33`	`}`
`34`	`34`
`35`	`35`	`func (q *AuthzQuerier) GetOrganizationMembershipsByUserID(ctx context.Context, userID uuid.UUID) ([]database.OrganizationMember, error) {`
`36`		`- return fetchSet(q.auth, q.db.GetOrganizationMembershipsByUserID)(ctx, userID)`
	`36`	`+ return fetchWithPostFilter(q.auth, q.db.GetOrganizationMembershipsByUserID)(ctx, userID)`
`37`	`37`	`}`
`38`	`38`
`39`	`39`	`func (q *AuthzQuerier) GetOrganizations(ctx context.Context) ([]database.Organization, error) {`
`40`	`40`	`fetch := func(ctx context.Context, _ interface{}) ([]database.Organization, error) {`
`41`	`41`	`return q.db.GetOrganizations(ctx)`
`42`	`42`	`}`
`43`		`- return fetchSet(q.auth, fetch)(ctx, nil)`
	`43`	`+ return fetchWithPostFilter(q.auth, fetch)(ctx, nil)`
`44`	`44`	`}`
`45`	`45`
`46`	`46`	`func (q *AuthzQuerier) GetOrganizationsByUserID(ctx context.Context, userID uuid.UUID) ([]database.Organization, error) {`
`47`		`- return fetchSet(q.auth, q.db.GetOrganizationsByUserID)(ctx, userID)`
	`47`	`+ return fetchWithPostFilter(q.auth, q.db.GetOrganizationsByUserID)(ctx, userID)`
`48`	`48`	`}`
`49`	`49`
`50`	`50`	`func (q *AuthzQuerier) InsertOrganization(ctx context.Context, arg database.InsertOrganizationParams) (database.Organization, error) {`
Original file line number	Diff line number	Diff line change
`@@ -63,7 +63,7 @@ func (q *AuthzQuerier) GetFilteredUserCount(ctx context.Context, arg database.Ge`
`63`	`63`
`64`	`64`	`func (q *AuthzQuerier) GetUsers(ctx context.Context, arg database.GetUsersParams) ([]database.GetUsersRow, error) {`
`65`	`65`	`// TODO: We should use GetUsersWithCount with a better method signature.`
`66`		`- return fetchSet(q.auth, q.db.GetUsers)(ctx, arg)`
	`66`	`+ return fetchWithPostFilter(q.auth, q.db.GetUsers)(ctx, arg)`
`67`	`67`	`}`
`68`	`68`
`69`	`69`	`func (q *AuthzQuerier) GetUsersWithCount(ctx context.Context, arg database.GetUsersParams) ([]database.User, int64, error) {`
`@@ -93,7 +93,7 @@ func (q *AuthzQuerier) GetUsersWithCount(ctx context.Context, arg database.GetUs`
`93`	`93`	`}`
`94`	`94`
`95`	`95`	`func (q *AuthzQuerier) GetUsersByIDs(ctx context.Context, ids []uuid.UUID) ([]database.User, error) {`
`96`		`- return fetchSet(q.auth, q.db.GetUsersByIDs)(ctx, ids)`
	`96`	`+ return fetchWithPostFilter(q.auth, q.db.GetUsersByIDs)(ctx, ids)`
`97`	`97`	`}`
`98`	`98`
`99`	`99`	`func (q *AuthzQuerier) InsertUser(ctx context.Context, arg database.InsertUserParams) (database.User, error) {`
`@@ -189,7 +189,10 @@ func (q *AuthzQuerier) InsertGitSSHKey(ctx context.Context, arg database.InsertG`
`189`	`189`	`}`
`190`	`190`
`191`	`191`	`func (q *AuthzQuerier) UpdateGitSSHKey(ctx context.Context, arg database.UpdateGitSSHKeyParams) (database.GitSSHKey, error) {`
`192`		`- return insertWithReturn(q.log, q.auth, rbac.ActionUpdate, rbac.ResourceUserData.WithOwner(arg.UserID.String()).WithID(arg.UserID), q.db.UpdateGitSSHKey)(ctx, arg)`
	`192`	`+ fetch := func(ctx context.Context, arg database.UpdateGitSSHKeyParams) (database.GitSSHKey, error) {`
	`193`	`+ return q.db.GetGitSSHKey(ctx, arg.UserID)`
	`194`	`+ }`
	`195`	`+ return updateWithReturn(q.log, q.auth, fetch, q.db.UpdateGitSSHKey)(ctx, arg)`
`193`	`196`	`}`
`194`	`197`
`195`	`198`	`func (q *AuthzQuerier) GetGitAuthLink(ctx context.Context, arg database.GetGitAuthLinkParams) (database.GitAuthLink, error) {`