Jon comments

kylecarbs · kylecarbs · commit b12765ce4a05 · 2022-10-24T23:26:16.000Z
diff --git a/cli/gitaskpass.go b/cli/gitaskpass.go
@@ -23,16 +23,11 @@ func gitAskpass() *cobra.Command {
 		Use:    "gitaskpass",
 		Hidden: true,
 		Args:   cobra.ExactArgs(1),
-		RunE: func(cmd *cobra.Command, args []string) (err error) {
+		RunE: func(cmd *cobra.Command, args []string) error {
 			ctx := cmd.Context()
 
 			ctx, stop := signal.NotifyContext(ctx, interruptSignals...)
 			defer stop()
-			defer func() {
-				if ctx.Err() != nil {
-					err = ctx.Err()
-				}
-			}()
 
 			user, host, err := gitauth.ParseAskpass(args[0])
 			if err != nil {
@@ -57,7 +52,7 @@ func gitAskpass() *cobra.Command {
 			}
 			if token.URL != "" {
 				if err := openURL(cmd, token.URL); err != nil {
-					cmd.Printf("Your browser has been opened to visit:\n\n\t%s\n\n", token.URL)
+					cmd.Printf("Your browser has been opened to authenticate with Git:\n\n\t%s\n\n", token.URL)
 				} else {
 					cmd.Printf("Open the following URL to authenticate with Git:\n\n\t%s\n\n", token.URL)
 				}
diff --git a/coderd/gitauth/askpass.go b/coderd/gitauth/askpass.go
@@ -32,7 +32,7 @@ func CheckCommand(args, env []string) bool {
 // For details on how the prompt is formatted, see `credential_ask_one`:
 // https://github.com/git/git/blob/bbe21b64a08f89475d8a3818e20c111378daa621/credential.c#L173-L191
 func ParseAskpass(prompt string) (user string, host string, err error) {
-	parts := strings.Split(prompt, " ")
+	parts := strings.Fields(prompt)
 	if len(parts) < 3 {
 		return "", "", xerrors.Errorf("askpass prompt must contain 3 words; got %d: %q", len(parts), prompt)
 	}
diff --git a/coderd/gitauth/config.go b/coderd/gitauth/config.go
@@ -47,8 +47,8 @@ func ConvertConfig(entries []codersdk.DeploymentConfigGitAuth, accessURL *url.UR
 			// Default to the type.
 			entry.ID = string(typ)
 		}
-		if valid, err := httpapi.UsernameValid(entry.ID); !valid {
-			return nil, xerrors.Errorf("git auth provider %q doesn't have a valid id: %w", entry.ID, err)
+		if valid := httpapi.UsernameValid(entry.ID); valid != nil {
+			return nil, xerrors.Errorf("git auth provider %q doesn't have a valid id: %w", entry.ID, valid)
 		}
 
 		_, exists := ids[entry.ID]
diff --git a/coderd/httpapi/httpapi.go b/coderd/httpapi/httpapi.go
@@ -40,8 +40,8 @@ func init() {
 		if !ok {
 			return false
 		}
-		valid, _ := UsernameValid(str)
-		return valid
+		valid := UsernameValid(str)
+		return valid == nil
 	}
 	for _, tag := range []string{"username", "template_name", "workspace_name"} {
 		err := validate.RegisterValidation(tag, nameValidator)
diff --git a/coderd/httpapi/username.go b/coderd/httpapi/username.go
@@ -14,18 +14,18 @@ var (
 )
 
 // UsernameValid returns whether the input string is a valid username.
-func UsernameValid(str string) (bool, error) {
+func UsernameValid(str string) error {
 	if len(str) > 32 {
-		return false, xerrors.New("must be <= 32 characters")
+		return xerrors.New("must be <= 32 characters")
 	}
 	if len(str) < 1 {
-		return false, xerrors.New("must be >= 1 character")
+		return xerrors.New("must be >= 1 character")
 	}
 	matched := UsernameValidRegex.MatchString(str)
 	if !matched {
-		return false, xerrors.New("must be alphanumeric with hyphens")
+		return xerrors.New("must be alphanumeric with hyphens")
 	}
-	return true, nil
+	return nil
 }
 
 // UsernameFrom returns a best-effort username from the provided string.
@@ -35,15 +35,15 @@ func UsernameValid(str string) (bool, error) {
 // the username from an email address. If no success happens during
 // these steps, a random username will be returned.
 func UsernameFrom(str string) string {
-	if valid, _ := UsernameValid(str); valid {
+	if valid := UsernameValid(str); valid == nil {
 		return str
 	}
 	emailAt := strings.LastIndex(str, "@")
 	if emailAt >= 0 {
 		str = str[:emailAt]
 	}
 	str = usernameReplace.ReplaceAllString(str, "")
-	if valid, _ := UsernameValid(str); valid {
+	if valid := UsernameValid(str); valid == nil {
 		return str
 	}
 	return strings.ReplaceAll(namesgenerator.GetRandomName(1), "_", "-")
diff --git a/coderd/httpapi/username_test.go b/coderd/httpapi/username_test.go
@@ -59,8 +59,8 @@ func TestValid(t *testing.T) {
 		testCase := testCase
 		t.Run(testCase.Username, func(t *testing.T) {
 			t.Parallel()
-			valid, _ := httpapi.UsernameValid(testCase.Username)
-			require.Equal(t, testCase.Valid, valid)
+			valid := httpapi.UsernameValid(testCase.Username)
+			require.Equal(t, testCase.Valid, valid == nil)
 		})
 	}
 }
@@ -92,8 +92,8 @@ func TestFrom(t *testing.T) {
 			t.Parallel()
 			converted := httpapi.UsernameFrom(testCase.From)
 			t.Log(converted)
-			valid, _ := httpapi.UsernameValid(converted)
-			require.True(t, valid)
+			valid := httpapi.UsernameValid(converted)
+			require.True(t, valid == nil)
 			if testCase.Match == "" {
 				require.NotEqual(t, testCase.From, converted)
 			} else {
diff --git a/coderd/userauth.go b/coderd/userauth.go
@@ -261,8 +261,8 @@ func (api *API) userOIDC(rw http.ResponseWriter, r *http.Request) {
 	// The username is a required property in Coder. We make a best-effort
 	// attempt at using what the claims provide, but if that fails we will
 	// generate a random username.
-	usernameValid, _ := httpapi.UsernameValid(username)
-	if !usernameValid {
+	usernameValid := httpapi.UsernameValid(username)
+	if usernameValid != nil {
 		// If no username is provided, we can default to use the email address.
 		// This will be converted in the from function below, so it's safe
 		// to keep the domain.
diff --git a/coderd/workspaceagents.go b/coderd/workspaceagents.go
@@ -936,7 +936,7 @@ func (api *API) workspaceAgentsGitAuth(rw http.ResponseWriter, r *http.Request)
 	gitURL := r.URL.Query().Get("url")
 	if gitURL == "" {
 		httpapi.Write(ctx, rw, http.StatusBadRequest, codersdk.Response{
-			Message: "Missing url query parameter!",
+			Message: "Missing 'url' query parameter!",
 		})
 		return
 	}
@@ -962,23 +962,23 @@ func (api *API) workspaceAgentsGitAuth(rw http.ResponseWriter, r *http.Request)
 	// We must get the workspace to get the owner ID!
 	resource, err := api.Database.GetWorkspaceResourceByID(ctx, workspaceAgent.ResourceID)
 	if err != nil {
-		httpapi.Write(ctx, rw, http.StatusBadRequest, codersdk.Response{
+		httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
 			Message: "Failed to get workspace resource.",
 			Detail:  err.Error(),
 		})
 		return
 	}
 	build, err := api.Database.GetWorkspaceBuildByJobID(ctx, resource.JobID)
 	if err != nil {
-		httpapi.Write(ctx, rw, http.StatusBadRequest, codersdk.Response{
+		httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
 			Message: "Failed to get build.",
 			Detail:  err.Error(),
 		})
 		return
 	}
 	workspace, err := api.Database.GetWorkspaceByID(ctx, build.WorkspaceID)
 	if err != nil {
-		httpapi.Write(ctx, rw, http.StatusBadRequest, codersdk.Response{
+		httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
 			Message: "Failed to get workspace.",
 			Detail:  err.Error(),
 		})
@@ -1013,6 +1013,7 @@ func (api *API) workspaceAgentsGitAuth(rw http.ResponseWriter, r *http.Request)
 		}
 		defer cancelFunc()
 		ticker := time.NewTicker(time.Second)
+		defer ticker.Stop()
 		for {
 			select {
 			case <-r.Context().Done():
@@ -1025,7 +1026,7 @@ func (api *API) workspaceAgentsGitAuth(rw http.ResponseWriter, r *http.Request)
 				UserID:     workspace.OwnerID,
 			})
 			if err != nil {
-				httpapi.Write(ctx, rw, http.StatusBadRequest, codersdk.Response{
+				httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
 					Message: "Failed to get git auth link.",
 					Detail:  err.Error(),
 				})
@@ -1042,7 +1043,7 @@ func (api *API) workspaceAgentsGitAuth(rw http.ResponseWriter, r *http.Request)
 	// This is the URL that will redirect the user with a state token.
 	redirectURL, err := api.AccessURL.Parse(fmt.Sprintf("/gitauth/%s", gitAuthConfig.ID))
 	if err != nil {
-		httpapi.Write(ctx, rw, http.StatusBadRequest, codersdk.Response{
+		httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
 			Message: "Failed to parse access URL.",
 			Detail:  err.Error(),
 		})
@@ -1055,7 +1056,7 @@ func (api *API) workspaceAgentsGitAuth(rw http.ResponseWriter, r *http.Request)
 	})
 	if err != nil {
 		if !errors.Is(err, sql.ErrNoRows) {
-			httpapi.Write(ctx, rw, http.StatusBadRequest, codersdk.Response{
+			httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
 				Message: "Failed to get git auth link.",
 				Detail:  err.Error(),
 			})
@@ -1091,7 +1092,7 @@ func (api *API) workspaceAgentsGitAuth(rw http.ResponseWriter, r *http.Request)
 			OAuthExpiry:       token.Expiry,
 		})
 		if err != nil {
-			httpapi.Write(ctx, rw, http.StatusBadRequest, codersdk.Response{
+			httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
 				Message: "Failed to update git auth link.",
 				Detail:  err.Error(),
 			})

Original file line number	Diff line number	Diff line change
`@@ -32,7 +32,7 @@ func CheckCommand(args, env []string) bool {`
`32`	`32`	// For details on how the prompt is formatted, see `credential_ask_one`:
`33`	`33`	`// https://github.com/git/git/blob/bbe21b64a08f89475d8a3818e20c111378daa621/credential.c#L173-L191`
`34`	`34`	`func ParseAskpass(prompt string) (user string, host string, err error) {`
`35`		`- parts := strings.Split(prompt, " ")`
	`35`	`+ parts := strings.Fields(prompt)`
`36`	`36`	`if len(parts) < 3 {`
`37`	`37`	`return "", "", xerrors.Errorf("askpass prompt must contain 3 words; got %d: %q", len(parts), prompt)`
`38`	`38`	`}`
Original file line number	Diff line number	Diff line change
`@@ -47,8 +47,8 @@ func ConvertConfig(entries []codersdk.DeploymentConfigGitAuth, accessURL *url.UR`
`47`	`47`	`// Default to the type.`
`48`	`48`	`entry.ID = string(typ)`
`49`	`49`	`}`
`50`		`- if valid, err := httpapi.UsernameValid(entry.ID); !valid {`
`51`		`- return nil, xerrors.Errorf("git auth provider %q doesn't have a valid id: %w", entry.ID, err)`
	`50`	`+ if valid := httpapi.UsernameValid(entry.ID); valid != nil {`
	`51`	`+ return nil, xerrors.Errorf("git auth provider %q doesn't have a valid id: %w", entry.ID, valid)`
`52`	`52`	`}`
`53`	`53`
`54`	`54`	`_, exists := ids[entry.ID]`
Original file line number	Diff line number	Diff line change
`@@ -40,8 +40,8 @@ func init() {`
`40`	`40`	`if !ok {`
`41`	`41`	`return false`
`42`	`42`	`}`
`43`		`- valid, _ := UsernameValid(str)`
`44`		`- return valid`
	`43`	`+ valid := UsernameValid(str)`
	`44`	`+ return valid == nil`
`45`	`45`	`}`
`46`	`46`	`for _, tag := range []string{"username", "template_name", "workspace_name"} {`
`47`	`47`	`err := validate.RegisterValidation(tag, nameValidator)`
Original file line number	Diff line number	Diff line change
`@@ -14,18 +14,18 @@ var (`
`14`	`14`	`)`
`15`	`15`
`16`	`16`	`// UsernameValid returns whether the input string is a valid username.`
`17`		`-func UsernameValid(str string) (bool, error) {`
	`17`	`+func UsernameValid(str string) error {`
`18`	`18`	`if len(str) > 32 {`
`19`		`- return false, xerrors.New("must be <= 32 characters")`
	`19`	`+ return xerrors.New("must be <= 32 characters")`
`20`	`20`	`}`
`21`	`21`	`if len(str) < 1 {`
`22`		`- return false, xerrors.New("must be >= 1 character")`
	`22`	`+ return xerrors.New("must be >= 1 character")`
`23`	`23`	`}`
`24`	`24`	`matched := UsernameValidRegex.MatchString(str)`
`25`	`25`	`if !matched {`
`26`		`- return false, xerrors.New("must be alphanumeric with hyphens")`
	`26`	`+ return xerrors.New("must be alphanumeric with hyphens")`
`27`	`27`	`}`
`28`		`- return true, nil`
	`28`	`+ return nil`
`29`	`29`	`}`
`30`	`30`
`31`	`31`	`// UsernameFrom returns a best-effort username from the provided string.`
`@@ -35,15 +35,15 @@ func UsernameValid(str string) (bool, error) {`
`35`	`35`	`// the username from an email address. If no success happens during`
`36`	`36`	`// these steps, a random username will be returned.`
`37`	`37`	`func UsernameFrom(str string) string {`
`38`		`- if valid, _ := UsernameValid(str); valid {`
	`38`	`+ if valid := UsernameValid(str); valid == nil {`
`39`	`39`	`return str`
`40`	`40`	`}`
`41`	`41`	`emailAt := strings.LastIndex(str, "@")`
`42`	`42`	`if emailAt >= 0 {`
`43`	`43`	`str = str[:emailAt]`
`44`	`44`	`}`
`45`	`45`	`str = usernameReplace.ReplaceAllString(str, "")`
`46`		`- if valid, _ := UsernameValid(str); valid {`
	`46`	`+ if valid := UsernameValid(str); valid == nil {`
`47`	`47`	`return str`
`48`	`48`	`}`
`49`	`49`	`return strings.ReplaceAll(namesgenerator.GetRandomName(1), "_", "-")`