coder
diff --git a/‎cli/login.go
Lines changed: 16 additions & 1 deletion b/‎cli/login.go
Lines changed: 16 additions & 1 deletion
diff --git a/‎cli/login_test.go
Lines changed: 48 additions & 0 deletions b/‎cli/login_test.go
Lines changed: 48 additions & 0 deletions
diff --git a/‎cli/logout_test.go
Lines changed: 1 addition & 1 deletion b/‎cli/logout_test.go
Lines changed: 1 addition & 1 deletion
diff --git a/‎cli/root.go
Lines changed: 8 additions & 3 deletions b/‎cli/root.go
Lines changed: 8 additions & 3 deletions
diff --git a/‎cli/server.go
Lines changed: 2 additions & 2 deletions b/‎cli/server.go
Lines changed: 2 additions & 2 deletions
diff --git a/‎cli/testdata/coder_login_--help.golden
Lines changed: 1 addition & 1 deletion b/‎cli/testdata/coder_login_--help.golden
Lines changed: 1 addition & 1 deletion
diff --git a/‎cli/testdata/coder_server_--help.golden
Lines changed: 5 additions & 0 deletions b/‎cli/testdata/coder_server_--help.golden
Lines changed: 5 additions & 0 deletions
diff --git a/‎cli/testdata/server-config.yaml.golden
Lines changed: 9 additions & 0 deletions b/‎cli/testdata/server-config.yaml.golden
Lines changed: 9 additions & 0 deletions
diff --git a/‎coderd/agentmetrics/labels.go
Lines changed: 38 additions & 0 deletions b/‎coderd/agentmetrics/labels.go
Lines changed: 38 additions & 0 deletions
diff --git a/‎coderd/agentmetrics/labels_test.go
Lines changed: 57 additions & 0 deletions b/‎coderd/agentmetrics/labels_test.go
Lines changed: 57 additions & 0 deletions
diff --git a/‎coderd/apidoc/docs.go
Lines changed: 7 additions & 0 deletions b/‎coderd/apidoc/docs.go
Lines changed: 7 additions & 0 deletions
diff --git a/‎coderd/apidoc/swagger.json
Lines changed: 7 additions & 0 deletions b/‎coderd/apidoc/swagger.json
Lines changed: 7 additions & 0 deletions
diff --git a/‎coderd/database/dbfake/dbfake.go
Lines changed: 3 additions & 0 deletions b/‎coderd/database/dbfake/dbfake.go
Lines changed: 3 additions & 0 deletions
diff --git a/‎coderd/database/dbmem/dbmem.go
Lines changed: 20 additions & 1 deletion b/‎coderd/database/dbmem/dbmem.go
Lines changed: 20 additions & 1 deletion
@@ -136,16 +136,28 @@ func (r *RootCmd) login() *clibase.Cmd {
 		useTokenForSession bool
 	)
 	cmd := &clibase.Cmd{
-		Use:        "login <url>",
+		Use:        "login [<url>]",
 		Short:      "Authenticate with Coder deployment",
 		Middleware: clibase.RequireRangeArgs(0, 1),
 		Handler: func(inv *clibase.Invocation) error {
 			ctx := inv.Context()
 			rawURL := ""
+			var urlSource string
+
 			if len(inv.Args) == 0 {
 				rawURL = r.clientURL.String()
+				urlSource = "flag"
+				if rawURL != "" && rawURL == inv.Environ.Get(envURL) {
+					urlSource = "environment"
+				}
 			} else {
 				rawURL = inv.Args[0]
+				urlSource = "argument"
+			}
+
+			if url, err := r.createConfig().URL().Read(); rawURL == "" && err == nil {
+				urlSource = "config"
+				rawURL = url
 			}
 
 			if rawURL == "" {
@@ -187,6 +199,9 @@ func (r *RootCmd) login() *clibase.Cmd {
 			if err != nil {
 				return xerrors.Errorf("Failed to check server %q for first user, is the URL correct and is coder accessible from your browser? Error - has initial user: %w", serverURL.String(), err)
 			}
+
+			_, _ = fmt.Fprintf(inv.Stdout, "Attempting to authenticate with %s URL: '%s'\n", urlSource, serverURL)
+
 			if !hasFirstUser {
 				_, _ = fmt.Fprintf(inv.Stdout, Caret+"Your Coder deployment hasn't been set up!\n")
 
 
@@ -116,6 +116,7 @@ func TestLogin(t *testing.T) {
 
 		clitest.Start(t, inv)
 
+		pty.ExpectMatch(fmt.Sprintf("Attempting to authenticate with flag URL: '%s'", client.URL.String()))
 		matches := []string{
 			"first user?", "yes",
 			"username", "testuser",
@@ -205,6 +206,7 @@ func TestLogin(t *testing.T) {
 			assert.NoError(t, err)
 		}()
 
+		pty.ExpectMatch(fmt.Sprintf("Attempting to authenticate with argument URL: '%s'", client.URL.String()))
 		pty.ExpectMatch("Paste your token here:")
 		pty.WriteLine(client.SessionToken())
 		if runtime.GOOS != "windows" {
@@ -215,6 +217,52 @@ func TestLogin(t *testing.T) {
 		<-doneChan
 	})
 
+	t.Run("ExistingUserURLSavedInConfig", func(t *testing.T) {
+		t.Parallel()
+		client := coderdtest.New(t, nil)
+		url := client.URL.String()
+		coderdtest.CreateFirstUser(t, client)
+
+		inv, root := clitest.New(t, "login", "--no-open")
+		clitest.SetupConfig(t, client, root)
+
+		doneChan := make(chan struct{})
+		pty := ptytest.New(t).Attach(inv)
+		go func() {
+			defer close(doneChan)
+			err := inv.Run()
+			assert.NoError(t, err)
+		}()
+
+		pty.ExpectMatch(fmt.Sprintf("Attempting to authenticate with config URL: '%s'", url))
+		pty.ExpectMatch("Paste your token here:")
+		pty.WriteLine(client.SessionToken())
+		<-doneChan
+	})
+
+	t.Run("ExistingUserURLSavedInEnv", func(t *testing.T) {
+		t.Parallel()
+		client := coderdtest.New(t, nil)
+		url := client.URL.String()
+		coderdtest.CreateFirstUser(t, client)
+
+		inv, _ := clitest.New(t, "login", "--no-open")
+		inv.Environ.Set("CODER_URL", url)
+
+		doneChan := make(chan struct{})
+		pty := ptytest.New(t).Attach(inv)
+		go func() {
+			defer close(doneChan)
+			err := inv.Run()
+			assert.NoError(t, err)
+		}()
+
+		pty.ExpectMatch(fmt.Sprintf("Attempting to authenticate with environment URL: '%s'", url))
+		pty.ExpectMatch("Paste your token here:")
+		pty.WriteLine(client.SessionToken())
+		<-doneChan
+	})
+
 	t.Run("ExistingUserInvalidTokenTTY", func(t *testing.T) {
 		t.Parallel()
 		client := coderdtest.New(t, nil)
 
@@ -119,7 +119,7 @@ func TestLogout(t *testing.T) {
 		go func() {
 			defer close(logoutChan)
 			err = logout.Run()
-			assert.ErrorContains(t, err, "You are not logged in. Try logging in using 'coder login <url>'.")
+			assert.ErrorContains(t, err, "You are not logged in. Try logging in using 'coder login'.")
 		}()
 
 		<-logoutChan
 
@@ -65,7 +65,9 @@ const (
 	varVerbose            = "verbose"
 	varOrganizationSelect = "organization"
 	varDisableDirect      = "disable-direct-connections"
-	notLoggedInMessage    = "You are not logged in. Try logging in using 'coder login <url>'."
+
+	notLoggedInMessage         = "You are not logged in. Try logging in using 'coder login <url>'."
+	notLoggedInURLSavedMessage = "You are not logged in. Try logging in using 'coder login'."
 
 	envNoVersionCheck   = "CODER_NO_VERSION_WARNING"
 	envNoFeatureWarning = "CODER_NO_FEATURE_WARNING"
@@ -77,7 +79,10 @@ const (
 	envURL            = "CODER_URL"
 )
 
-var errUnauthenticated = xerrors.New(notLoggedInMessage)
+var (
+	errUnauthenticated         = xerrors.New(notLoggedInMessage)
+	errUnauthenticatedURLSaved = xerrors.New(notLoggedInURLSavedMessage)
+)
 
 func (r *RootCmd) Core() []*clibase.Cmd {
 	// Please re-sort this list alphabetically if you change it!
@@ -574,7 +579,7 @@ func (r *RootCmd) initClientInternal(client *codersdk.Client, allowTokenMissing
 				// If the configuration files are absent, the user is logged out
 				if os.IsNotExist(err) {
 					if !allowTokenMissing {
-						return errUnauthenticated
+						return errUnauthenticatedURLSaved
 					}
 				} else if err != nil {
 					return err
 
@@ -229,13 +229,13 @@ func enablePrometheus(
 	afterCtx(ctx, closeInsightsMetricsCollector)
 
 	if vals.Prometheus.CollectAgentStats {
-		closeAgentStatsFunc, err := prometheusmetrics.AgentStats(ctx, logger, options.PrometheusRegistry, options.Database, time.Now(), 0)
+		closeAgentStatsFunc, err := prometheusmetrics.AgentStats(ctx, logger, options.PrometheusRegistry, options.Database, time.Now(), 0, options.DeploymentValues.Prometheus.AggregateAgentStatsBy.Value())
 		if err != nil {
 			return nil, xerrors.Errorf("register agent stats prometheus metric: %w", err)
 		}
 		afterCtx(ctx, closeAgentStatsFunc)
 
-		metricsAggregator, err := prometheusmetrics.NewMetricsAggregator(logger, options.PrometheusRegistry, 0)
+		metricsAggregator, err := prometheusmetrics.NewMetricsAggregator(logger, options.PrometheusRegistry, 0, options.DeploymentValues.Prometheus.AggregateAgentStatsBy.Value())
 		if err != nil {
 			return nil, xerrors.Errorf("can't initialize metrics aggregator: %w", err)
 		}
 
@@ -1,7 +1,7 @@
 coder v0.0.0-devel
 
 USAGE:
-  coder login [flags] <url>
+  coder login [flags] [<url>]
 
   Authenticate with Coder deployment
 
 
@@ -123,6 +123,11 @@ INTROSPECTION / PROMETHEUS OPTIONS:
       --prometheus-address host:port, $CODER_PROMETHEUS_ADDRESS (default: 127.0.0.1:2112)
           The bind address to serve prometheus metrics.
 
+      --prometheus-aggregate-agent-stats-by string-array, $CODER_PROMETHEUS_AGGREGATE_AGENT_STATS_BY (default: agent_name,template_name,username,workspace_name)
+          When collecting agent stats, aggregate metrics by a given set of
+          comma-separated labels to reduce cardinality. Accepted values are
+          agent_name, template_name, username, workspace_name.
+
       --prometheus-collect-agent-stats bool, $CODER_PROMETHEUS_COLLECT_AGENT_STATS
           Collect agent stats (may increase charges for metrics storage).
 
 
@@ -188,6 +188,15 @@ introspection:
     # Collect agent stats (may increase charges for metrics storage).
     # (default: <unset>, type: bool)
     collect_agent_stats: false
+    # When collecting agent stats, aggregate metrics by a given set of comma-separated
+    # labels to reduce cardinality. Accepted values are agent_name, template_name,
+    # username, workspace_name.
+    # (default: agent_name,template_name,username,workspace_name, type: string-array)
+    aggregate_agent_stats_by:
+      - agent_name
+      - template_name
+      - username
+      - workspace_name
     # Collect database metrics (may increase charges for metrics storage).
     # (default: false, type: bool)
     collect_db_metrics: false
 
@@ -0,0 +1,38 @@
+package agentmetrics
+
+import (
+	"strings"
+
+	"golang.org/x/xerrors"
+)
+
+const (
+	LabelAgentName     = "agent_name"
+	LabelTemplateName  = "template_name"
+	LabelUsername      = "username"
+	LabelWorkspaceName = "workspace_name"
+)
+
+var (
+	LabelAll        = []string{LabelAgentName, LabelTemplateName, LabelUsername, LabelWorkspaceName}
+	LabelAgentStats = []string{LabelAgentName, LabelUsername, LabelWorkspaceName}
+)
+
+// ValidateAggregationLabels ensures a given set of labels are valid aggregation labels.
+func ValidateAggregationLabels(labels []string) error {
+	acceptable := LabelAll
+
+	seen := make(map[string]any, len(acceptable))
+	for _, label := range acceptable {
+		seen[label] = nil
+	}
+
+	for _, label := range labels {
+		if _, found := seen[label]; !found {
+			return xerrors.Errorf("%q is not a valid aggregation label; only one or more of %q are acceptable",
+				label, strings.Join(acceptable, ", "))
+		}
+	}
+
+	return nil
+}
@@ -0,0 +1,57 @@
+package agentmetrics_test
+
+import (
+	"testing"
+
+	"github.com/stretchr/testify/require"
+
+	"github.com/coder/coder/v2/coderd/agentmetrics"
+)
+
+func TestValidateAggregationLabels(t *testing.T) {
+	t.Parallel()
+
+	tests := []struct {
+		name        string
+		labels      []string
+		expectedErr bool
+	}{
+		{
+			name: "empty list is valid",
+		},
+		{
+			name:   "single valid entry",
+			labels: []string{agentmetrics.LabelTemplateName},
+		},
+		{
+			name:   "multiple valid entries",
+			labels: []string{agentmetrics.LabelTemplateName, agentmetrics.LabelUsername},
+		},
+		{
+			name:   "repeated valid entries are not invalid",
+			labels: []string{agentmetrics.LabelTemplateName, agentmetrics.LabelUsername, agentmetrics.LabelUsername, agentmetrics.LabelUsername},
+		},
+		{
+			name:        "empty entry is invalid",
+			labels:      []string{""},
+			expectedErr: true,
+		},
+		{
+			name:   "all valid entries",
+			labels: agentmetrics.LabelAll,
+		},
+	}
+
+	for _, tc := range tests {
+		tc := tc
+
+		t.Run(tc.name, func(t *testing.T) {
+			t.Parallel()
+
+			err := agentmetrics.ValidateAggregationLabels(tc.labels)
+			if tc.expectedErr {
+				require.Error(t, err)
+			}
+		})
+	}
+}
@@ -95,6 +95,9 @@ func (b WorkspaceBuildBuilder) WithAgent(mutations ...func([]*sdkproto.Agent) []
 		Auth: &sdkproto.Agent_Token{
 			Token: b.agentToken,
 		},
+		Env: map[string]string{
+			"SECRET_TOKEN": "supersecret",
+		},
 	}}
 	for _, m := range mutations {
 		agents = m(agents)
 
@@ -78,7 +78,7 @@ func New() database.Store {
 		},
 	}
 	// Always start with a default org. Matching migration 198.
-	_, err := q.InsertOrganization(context.Background(), database.InsertOrganizationParams{
+	defaultOrg, err := q.InsertOrganization(context.Background(), database.InsertOrganizationParams{
 		ID:          uuid.New(),
 		Name:        "first-organization",
 		Description: "Builtin default organization.",
@@ -88,6 +88,12 @@ func New() database.Store {
 	if err != nil {
 		panic(xerrors.Errorf("failed to create default organization: %w", err))
 	}
+
+	_, err = q.InsertAllUsersGroup(context.Background(), defaultOrg.ID)
+	if err != nil {
+		panic(fmt.Errorf("failed to create default group: %w", err))
+	}
+
 	q.defaultProxyDisplayName = "Default"
 	q.defaultProxyIconURL = "/emojis/1f3e1.png"
 	return q
@@ -8266,6 +8272,19 @@ func (q *FakeQuerier) GetAuthorizedWorkspaces(ctx context.Context, arg database.
 			}
 		}
 
+		if len(arg.WorkspaceIds) > 0 {
+			match := false
+			for _, id := range arg.WorkspaceIds {
+				if workspace.ID == id {
+					match = true
+					break
+				}
+			}
+			if !match {
+				continue
+			}
+		}
+
 		// If the filter exists, ensure the object is authorized.
 		if prepared != nil && prepared.Authorize(ctx, workspace.RBACObject()) != nil {
 			continue
Original file line number	Diff line number	Diff line change
`@@ -229,13 +229,13 @@ func enablePrometheus(`
`229`	`229`	`afterCtx(ctx, closeInsightsMetricsCollector)`
`230`	`230`
`231`	`231`	`if vals.Prometheus.CollectAgentStats {`
`232`		`- closeAgentStatsFunc, err := prometheusmetrics.AgentStats(ctx, logger, options.PrometheusRegistry, options.Database, time.Now(), 0)`
	`232`	`+ closeAgentStatsFunc, err := prometheusmetrics.AgentStats(ctx, logger, options.PrometheusRegistry, options.Database, time.Now(), 0, options.DeploymentValues.Prometheus.AggregateAgentStatsBy.Value())`
`233`	`233`	`if err != nil {`
`234`	`234`	`return nil, xerrors.Errorf("register agent stats prometheus metric: %w", err)`
`235`	`235`	`}`
`236`	`236`	`afterCtx(ctx, closeAgentStatsFunc)`
`237`	`237`
`238`		`- metricsAggregator, err := prometheusmetrics.NewMetricsAggregator(logger, options.PrometheusRegistry, 0)`
	`238`	`+ metricsAggregator, err := prometheusmetrics.NewMetricsAggregator(logger, options.PrometheusRegistry, 0, options.DeploymentValues.Prometheus.AggregateAgentStatsBy.Value())`
`239`	`239`	`if err != nil {`
`240`	`240`	`return nil, xerrors.Errorf("can't initialize metrics aggregator: %w", err)`
`241`	`241`	`}`