coder
diff --git a/‎cli/server_test.go
Lines changed: 1 addition & 1 deletion b/‎cli/server_test.go
Lines changed: 1 addition & 1 deletion
diff --git a/‎coderd/activitybump.go
Lines changed: 79 additions & 0 deletions b/‎coderd/activitybump.go
Lines changed: 79 additions & 0 deletions
diff --git a/‎coderd/activitybump_test.go
Lines changed: 100 additions & 0 deletions b/‎coderd/activitybump_test.go
Lines changed: 100 additions & 0 deletions
diff --git a/‎coderd/audit.go
Lines changed: 6 additions & 6 deletions b/‎coderd/audit.go
Lines changed: 6 additions & 6 deletions
diff --git a/‎coderd/coderd.go
Lines changed: 5 additions & 9 deletions b/‎coderd/coderd.go
Lines changed: 5 additions & 9 deletions
diff --git a/‎coderd/csp.go
Lines changed: 2 additions & 2 deletions b/‎coderd/csp.go
Lines changed: 2 additions & 2 deletions
diff --git a/‎coderd/files.go
Lines changed: 12 additions & 10 deletions b/‎coderd/files.go
Lines changed: 12 additions & 10 deletions
@@ -24,7 +24,7 @@ import (
 	"testing"
 	"time"
 
-	"github.com/go-chi/chi"
+	"github.com/go-chi/chi/v5"
 	"github.com/stretchr/testify/assert"
 	"github.com/stretchr/testify/require"
 	"go.uber.org/goleak"
 
@@ -0,0 +1,79 @@
+package coderd
+
+import (
+	"context"
+	"database/sql"
+	"errors"
+	"time"
+
+	"golang.org/x/xerrors"
+
+	"cdr.dev/slog"
+	"github.com/coder/coder/coderd/database"
+)
+
+// activityBumpWorkspace automatically bumps the workspace's auto-off timer
+// if it is set to expire soon.
+func activityBumpWorkspace(log slog.Logger, db database.Store, workspace database.Workspace) {
+	// We set a short timeout so if the app is under load, these
+	// low priority operations fail first.
+	ctx, cancel := context.WithTimeout(context.Background(), time.Second*15)
+	defer cancel()
+
+	err := db.InTx(func(s database.Store) error {
+		build, err := s.GetLatestWorkspaceBuildByWorkspaceID(ctx, workspace.ID)
+		if errors.Is(err, sql.ErrNoRows) {
+			return nil
+		} else if err != nil {
+			return xerrors.Errorf("get latest workspace build: %w", err)
+		}
+
+		job, err := s.GetProvisionerJobByID(ctx, build.JobID)
+		if err != nil {
+			return xerrors.Errorf("get provisioner job: %w", err)
+		}
+
+		if build.Transition != database.WorkspaceTransitionStart || !job.CompletedAt.Valid {
+			return nil
+		}
+
+		if build.Deadline.IsZero() {
+			// Workspace shutdown is manual
+			return nil
+		}
+
+		// We sent bumpThreshold slightly under bumpAmount to minimize DB writes.
+		const (
+			bumpAmount    = time.Hour
+			bumpThreshold = time.Hour - (time.Minute * 10)
+		)
+
+		if !build.Deadline.Before(time.Now().Add(bumpThreshold)) {
+			return nil
+		}
+
+		newDeadline := database.Now().Add(bumpAmount)
+
+		if err := s.UpdateWorkspaceBuildByID(ctx, database.UpdateWorkspaceBuildByIDParams{
+			ID:               build.ID,
+			UpdatedAt:        database.Now(),
+			ProvisionerState: build.ProvisionerState,
+			Deadline:         newDeadline,
+		}); err != nil {
+			return xerrors.Errorf("update workspace build: %w", err)
+		}
+		return nil
+	})
+	if err != nil {
+		log.Error(
+			ctx, "bump failed",
+			slog.Error(err),
+			slog.F("workspace_id", workspace.ID),
+		)
+	} else {
+		log.Debug(
+			ctx, "bumped deadline from activity",
+			slog.F("workspace_id", workspace.ID),
+		)
+	}
+}
@@ -0,0 +1,100 @@
+package coderd_test
+
+import (
+	"context"
+	"testing"
+	"time"
+
+	"github.com/stretchr/testify/require"
+
+	"cdr.dev/slog/sloggers/slogtest"
+
+	"github.com/coder/coder/coderd/coderdtest"
+	"github.com/coder/coder/coderd/database"
+	"github.com/coder/coder/codersdk"
+	"github.com/coder/coder/testutil"
+)
+
+func TestWorkspaceActivityBump(t *testing.T) {
+	t.Parallel()
+
+	ctx := context.Background()
+
+	setupActivityTest := func(t *testing.T) (client *codersdk.Client, workspace codersdk.Workspace, assertBumped func(want bool)) {
+		var ttlMillis int64 = 60 * 1000
+
+		client, _, workspace, _ = setupProxyTest(t, func(cwr *codersdk.CreateWorkspaceRequest) {
+			cwr.TTLMillis = &ttlMillis
+		})
+
+		// Sanity-check that deadline is near.
+		workspace, err := client.Workspace(ctx, workspace.ID)
+		require.NoError(t, err)
+		require.WithinDuration(t,
+			time.Now().Add(time.Duration(ttlMillis)*time.Millisecond),
+			workspace.LatestBuild.Deadline.Time, testutil.WaitShort,
+		)
+		firstDeadline := workspace.LatestBuild.Deadline.Time
+
+		_ = coderdtest.AwaitWorkspaceAgents(t, client, workspace.LatestBuild.ID)
+
+		return client, workspace, func(want bool) {
+			if !want {
+				// It is difficult to test the absence of a call in a non-racey
+				// way. In general, it is difficult for the API to generate
+				// false positive activity since Agent networking event
+				// is required. The Activity Bump behavior is also coupled with
+				// Last Used, so it would be obvious to the user if we
+				// are falsely recognizing activity.
+				time.Sleep(testutil.IntervalMedium)
+				workspace, err = client.Workspace(ctx, workspace.ID)
+				require.NoError(t, err)
+				require.Equal(t, workspace.LatestBuild.Deadline.Time, firstDeadline)
+				return
+			}
+
+			// The Deadline bump occurs asynchronously.
+			require.Eventuallyf(t,
+				func() bool {
+					workspace, err = client.Workspace(ctx, workspace.ID)
+					require.NoError(t, err)
+					return workspace.LatestBuild.Deadline.Time != firstDeadline
+				},
+				testutil.WaitShort, testutil.IntervalFast,
+				"deadline %v never updated", firstDeadline,
+			)
+
+			require.WithinDuration(t, database.Now().Add(time.Hour), workspace.LatestBuild.Deadline.Time, time.Second)
+		}
+	}
+
+	t.Run("Dial", func(t *testing.T) {
+		t.Parallel()
+
+		client, workspace, assertBumped := setupActivityTest(t)
+
+		resources := coderdtest.AwaitWorkspaceAgents(t, client, workspace.LatestBuild.ID)
+		conn, err := client.DialWorkspaceAgentTailnet(ctx, slogtest.Make(t, nil), resources[0].Agents[0].ID)
+		require.NoError(t, err)
+		defer conn.Close()
+
+		sshConn, err := conn.SSHClient()
+		require.NoError(t, err)
+		_ = sshConn.Close()
+
+		assertBumped(true)
+	})
+
+	t.Run("NoBump", func(t *testing.T) {
+		t.Parallel()
+
+		client, workspace, assertBumped := setupActivityTest(t)
+
+		// Benign operations like retrieving resources must not
+		// bump the deadline.
+		_, err := client.WorkspaceResourcesByBuild(ctx, workspace.LatestBuild.ID)
+		require.NoError(t, err)
+
+		assertBumped(false)
+	})
+}
@@ -21,12 +21,12 @@ import (
 )
 
 func (api *API) auditLogs(rw http.ResponseWriter, r *http.Request) {
+	ctx := r.Context()
 	if !api.Authorize(r, rbac.ActionRead, rbac.ResourceAuditLog) {
 		httpapi.Forbidden(rw)
 		return
 	}
 
-	ctx := r.Context()
 	page, ok := parsePagination(rw, r)
 	if !ok {
 		return
@@ -35,7 +35,7 @@ func (api *API) auditLogs(rw http.ResponseWriter, r *http.Request) {
 	queryStr := r.URL.Query().Get("q")
 	filter, errs := auditSearchQuery(queryStr)
 	if len(errs) > 0 {
-		httpapi.Write(rw, http.StatusBadRequest, codersdk.Response{
+		httpapi.Write(ctx, rw, http.StatusBadRequest, codersdk.Response{
 			Message:     "Invalid audit search query.",
 			Validations: errs,
 		})
@@ -56,7 +56,7 @@ func (api *API) auditLogs(rw http.ResponseWriter, r *http.Request) {
 		return
 	}
 
-	httpapi.Write(rw, http.StatusOK, codersdk.AuditLogResponse{
+	httpapi.Write(ctx, rw, http.StatusOK, codersdk.AuditLogResponse{
 		AuditLogs: convertAuditLogs(dblogs),
 	})
 }
@@ -71,7 +71,7 @@ func (api *API) auditLogCount(rw http.ResponseWriter, r *http.Request) {
 	queryStr := r.URL.Query().Get("q")
 	filter, errs := auditSearchQuery(queryStr)
 	if len(errs) > 0 {
-		httpapi.Write(rw, http.StatusBadRequest, codersdk.Response{
+		httpapi.Write(ctx, rw, http.StatusBadRequest, codersdk.Response{
 			Message:     "Invalid audit search query.",
 			Validations: errs,
 		})
@@ -90,7 +90,7 @@ func (api *API) auditLogCount(rw http.ResponseWriter, r *http.Request) {
 		return
 	}
 
-	httpapi.Write(rw, http.StatusOK, codersdk.AuditLogCountResponse{
+	httpapi.Write(ctx, rw, http.StatusOK, codersdk.AuditLogCountResponse{
 		Count: count,
 	})
 }
@@ -131,7 +131,7 @@ func (api *API) generateFakeAuditLog(rw http.ResponseWriter, r *http.Request) {
 	}
 
 	var params codersdk.CreateTestAuditLogRequest
-	if !httpapi.Read(rw, r, &params) {
+	if !httpapi.Read(ctx, rw, r, &params) {
 		return
 	}
 	if params.Action == "" {
 
@@ -188,7 +188,7 @@ func New(options *Options) *API {
 		// Build-Version is helpful for debugging.
 		func(next http.Handler) http.Handler {
 			return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-				w.Header().Add("Build-Version", buildinfo.Version())
+				w.Header().Add("X-Coder-Build-Version", buildinfo.Version())
 				next.ServeHTTP(w, r)
 			})
 		},
@@ -222,18 +222,14 @@ func New(options *Options) *API {
 	r.Route("/api/v2", func(r chi.Router) {
 		api.APIHandler = r
 
-		r.NotFound(func(rw http.ResponseWriter, r *http.Request) {
-			httpapi.Write(rw, http.StatusNotFound, codersdk.Response{
-				Message: "Route not found.",
-			})
-		})
+		r.NotFound(func(rw http.ResponseWriter, r *http.Request) { httpapi.RouteNotFound(rw) })
 		r.Use(
 			tracing.Middleware(api.TracerProvider),
 			// Specific routes can specify smaller limits.
 			httpmw.RateLimitPerMinute(options.APIRateLimit),
 		)
 		r.Get("/", func(w http.ResponseWriter, r *http.Request) {
-			httpapi.Write(w, http.StatusOK, codersdk.Response{
+			httpapi.Write(r.Context(), w, http.StatusOK, codersdk.Response{
 				//nolint:gocritic
 				Message: "👋",
 			})
@@ -243,7 +239,7 @@ func New(options *Options) *API {
 
 		r.Route("/buildinfo", func(r chi.Router) {
 			r.Get("/", func(rw http.ResponseWriter, r *http.Request) {
-				httpapi.Write(rw, http.StatusOK, codersdk.BuildInfoResponse{
+				httpapi.Write(r.Context(), rw, http.StatusOK, codersdk.BuildInfoResponse{
 					ExternalURL: buildinfo.ExternalURL(),
 					Version:     buildinfo.Version(),
 				})
@@ -434,7 +430,7 @@ func New(options *Options) *API {
 				// error message when transitioning from WebRTC to Tailscale. See:
 				// https://github.com/coder/coder/issues/4126
 				r.Get("/dial", func(w http.ResponseWriter, r *http.Request) {
-					httpapi.Write(w, http.StatusGone, codersdk.Response{
+					httpapi.Write(r.Context(), w, http.StatusGone, codersdk.Response{
 						Message: "Your Coder CLI is out of date, and requires v0.8.15+ to connect!",
 					})
 				})
 
@@ -23,7 +23,7 @@ func (api *API) logReportCSPViolations(rw http.ResponseWriter, r *http.Request)
 	err := dec.Decode(&v)
 	if err != nil {
 		api.Logger.Warn(ctx, "csp violation", slog.Error(err))
-		httpapi.Write(rw, http.StatusBadRequest, codersdk.Response{
+		httpapi.Write(ctx, rw, http.StatusBadRequest, codersdk.Response{
 			Message: "Failed to read body, invalid json.",
 			Detail:  err.Error(),
 		})
@@ -36,5 +36,5 @@ func (api *API) logReportCSPViolations(rw http.ResponseWriter, r *http.Request)
 	}
 	api.Logger.Warn(ctx, "csp violation", fields...)
 
-	httpapi.Write(rw, http.StatusOK, "ok")
+	httpapi.Write(ctx, rw, http.StatusOK, "ok")
 }
@@ -19,6 +19,7 @@ import (
 )
 
 func (api *API) postFile(rw http.ResponseWriter, r *http.Request) {
+	ctx := r.Context()
 	apiKey := httpmw.APIKey(r)
 	// This requires the site wide action to create files.
 	// Once created, a user can read their own files uploaded
@@ -32,7 +33,7 @@ func (api *API) postFile(rw http.ResponseWriter, r *http.Request) {
 	switch contentType {
 	case "application/x-tar":
 	default:
-		httpapi.Write(rw, http.StatusBadRequest, codersdk.Response{
+		httpapi.Write(ctx, rw, http.StatusBadRequest, codersdk.Response{
 			Message: fmt.Sprintf("Unsupported content type header %q.", contentType),
 		})
 		return
@@ -41,57 +42,58 @@ func (api *API) postFile(rw http.ResponseWriter, r *http.Request) {
 	r.Body = http.MaxBytesReader(rw, r.Body, 10*(10<<20))
 	data, err := io.ReadAll(r.Body)
 	if err != nil {
-		httpapi.Write(rw, http.StatusBadRequest, codersdk.Response{
+		httpapi.Write(ctx, rw, http.StatusBadRequest, codersdk.Response{
 			Message: "Failed to read file from request.",
 			Detail:  err.Error(),
 		})
 		return
 	}
 	hashBytes := sha256.Sum256(data)
 	hash := hex.EncodeToString(hashBytes[:])
-	file, err := api.Database.GetFileByHash(r.Context(), hash)
+	file, err := api.Database.GetFileByHash(ctx, hash)
 	if err == nil {
 		// The file already exists!
-		httpapi.Write(rw, http.StatusOK, codersdk.UploadResponse{
+		httpapi.Write(ctx, rw, http.StatusOK, codersdk.UploadResponse{
 			Hash: file.Hash,
 		})
 		return
 	}
-	file, err = api.Database.InsertFile(r.Context(), database.InsertFileParams{
+	file, err = api.Database.InsertFile(ctx, database.InsertFileParams{
 		Hash:      hash,
 		CreatedBy: apiKey.UserID,
 		CreatedAt: database.Now(),
 		Mimetype:  contentType,
 		Data:      data,
 	})
 	if err != nil {
-		httpapi.Write(rw, http.StatusInternalServerError, codersdk.Response{
+		httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
 			Message: "Internal error saving file.",
 			Detail:  err.Error(),
 		})
 		return
 	}
 
-	httpapi.Write(rw, http.StatusCreated, codersdk.UploadResponse{
+	httpapi.Write(ctx, rw, http.StatusCreated, codersdk.UploadResponse{
 		Hash: file.Hash,
 	})
 }
 
 func (api *API) fileByHash(rw http.ResponseWriter, r *http.Request) {
+	ctx := r.Context()
 	hash := chi.URLParam(r, "hash")
 	if hash == "" {
-		httpapi.Write(rw, http.StatusBadRequest, codersdk.Response{
+		httpapi.Write(ctx, rw, http.StatusBadRequest, codersdk.Response{
 			Message: "File hash must be provided in url.",
 		})
 		return
 	}
-	file, err := api.Database.GetFileByHash(r.Context(), hash)
+	file, err := api.Database.GetFileByHash(ctx, hash)
 	if errors.Is(err, sql.ErrNoRows) {
 		httpapi.ResourceNotFound(rw)
 		return
 	}
 	if err != nil {
-		httpapi.Write(rw, http.StatusInternalServerError, codersdk.Response{
+		httpapi.Write(ctx, rw, http.StatusInternalServerError, codersdk.Response{
 			Message: "Internal error fetching file.",
 			Detail:  err.Error(),
 		})
Original file line number	Diff line number	Diff line change
`@@ -23,7 +23,7 @@ func (api API) logReportCSPViolations(rw http.ResponseWriter, r http.Request)`
`23`	`23`	`err := dec.Decode(&v)`
`24`	`24`	`if err != nil {`
`25`	`25`	`api.Logger.Warn(ctx, "csp violation", slog.Error(err))`
`26`		`- httpapi.Write(rw, http.StatusBadRequest, codersdk.Response{`
	`26`	`+ httpapi.Write(ctx, rw, http.StatusBadRequest, codersdk.Response{`
`27`	`27`	`Message: "Failed to read body, invalid json.",`
`28`	`28`	`Detail: err.Error(),`
`29`	`29`	`})`
`@@ -36,5 +36,5 @@ func (api API) logReportCSPViolations(rw http.ResponseWriter, r http.Request)`
`36`	`36`	`}`
`37`	`37`	`api.Logger.Warn(ctx, "csp violation", fields...)`
`38`	`38`
`39`		`- httpapi.Write(rw, http.StatusOK, "ok")`
	`39`	`+ httpapi.Write(ctx, rw, http.StatusOK, "ok")`
`40`	`40`	`}`