coder
diff --git a/‎coderd/apidoc/docs.go
Lines changed: 51 additions & 0 deletions b/‎coderd/apidoc/docs.go
Lines changed: 51 additions & 0 deletions
diff --git a/‎coderd/apidoc/swagger.json
Lines changed: 47 additions & 0 deletions b/‎coderd/apidoc/swagger.json
Lines changed: 47 additions & 0 deletions
diff --git a/‎coderd/coderd.go
Lines changed: 1 addition & 0 deletions b/‎coderd/coderd.go
Lines changed: 1 addition & 0 deletions
diff --git a/‎coderd/database/dbauthz/dbauthz.go
Lines changed: 11 additions & 0 deletions b/‎coderd/database/dbauthz/dbauthz.go
Lines changed: 11 additions & 0 deletions
diff --git a/‎coderd/database/dbmem/dbmem.go
Lines changed: 36 additions & 0 deletions b/‎coderd/database/dbmem/dbmem.go
Lines changed: 36 additions & 0 deletions
diff --git a/‎coderd/database/dbmetrics/dbmetrics.go
Lines changed: 7 additions & 0 deletions b/‎coderd/database/dbmetrics/dbmetrics.go
Lines changed: 7 additions & 0 deletions
diff --git a/‎coderd/database/dbmock/dbmock.go
Lines changed: 15 additions & 0 deletions b/‎coderd/database/dbmock/dbmock.go
Lines changed: 15 additions & 0 deletions
diff --git a/‎coderd/database/querier.go
Lines changed: 1 addition & 0 deletions b/‎coderd/database/querier.go
Lines changed: 1 addition & 0 deletions
diff --git a/‎coderd/database/queries.sql.go
Lines changed: 54 additions & 0 deletions b/‎coderd/database/queries.sql.go
Lines changed: 54 additions & 0 deletions
diff --git a/‎coderd/database/queries/workspacebuildparameters.sql
Lines changed: 25 additions & 0 deletions b/‎coderd/database/queries/workspacebuildparameters.sql
Lines changed: 25 additions & 0 deletions
diff --git a/‎coderd/users.go
Lines changed: 47 additions & 0 deletions b/‎coderd/users.go
Lines changed: 47 additions & 0 deletions
@@ -823,6 +823,7 @@ func New(options *Options) *API {
 					r.Post("/convert-login", api.postConvertLoginType)
 					r.Delete("/", api.deleteUser)
 					r.Get("/", api.userByName)
+					r.Get("/parameters", api.userParameters)
 					r.Get("/login-type", api.userLoginType)
 					r.Put("/profile", api.putUserProfile)
 					r.Route("/status", func(r chi.Router) {
 
@@ -1754,6 +1754,17 @@ func (q *querier) GetUserLinksByUserID(ctx context.Context, userID uuid.UUID) ([
 	return q.db.GetUserLinksByUserID(ctx, userID)
 }
 
+func (q *querier) GetUserWorkspaceBuildParameters(ctx context.Context, ownerID uuid.UUID) ([]database.GetUserWorkspaceBuildParametersRow, error) {
+	u, err := q.db.GetUserByID(ctx, ownerID)
+	if err != nil {
+		return nil, err
+	}
+	if err := q.authorizeContext(ctx, rbac.ActionUpdate, u.UserDataRBACObject()); err != nil {
+		return nil, err
+	}
+	return q.db.GetUserWorkspaceBuildParameters(ctx, ownerID)
+}
+
 func (q *querier) GetUsers(ctx context.Context, arg database.GetUsersParams) ([]database.GetUsersRow, error) {
 	// This does the filtering in SQL.
 	prep, err := prepareSQLFilter(ctx, q.auth, rbac.ActionRead, rbac.ResourceUser.Type)
 
@@ -3758,6 +3758,42 @@ func (q *FakeQuerier) GetUserLinksByUserID(_ context.Context, userID uuid.UUID)
 	return uls, nil
 }
 
+func (q *FakeQuerier) GetUserWorkspaceBuildParameters(ctx context.Context, ownerID uuid.UUID) ([]database.GetUserWorkspaceBuildParametersRow, error) {
+	q.mutex.RLock()
+	defer q.mutex.RUnlock()
+
+	userWorkspaceIDs := make(map[uuid.UUID]struct{})
+	for _, ws := range q.workspaces {
+		if ws.OwnerID != ownerID {
+			continue
+		}
+		userWorkspaceIDs[ws.ID] = struct{}{}
+	}
+
+	userWorkspaceBuilds := make(map[uuid.UUID]database.WorkspaceBuildTable)
+	for _, wb := range q.workspaceBuilds {
+		if _, ok := userWorkspaceIDs[wb.WorkspaceID]; !ok {
+			continue
+		}
+		userWorkspaceBuilds[wb.ID] = wb
+	}
+
+	userWorkspaceBuildParameters := make([]database.GetUserWorkspaceBuildParametersRow, 0)
+	for _, wbp := range q.workspaceBuildParameters {
+		wb, ok := userWorkspaceBuilds[wbp.WorkspaceBuildID]
+		if !ok {
+			continue
+		}
+		userWorkspaceBuildParameters = append(userWorkspaceBuildParameters, database.GetUserWorkspaceBuildParametersRow{
+			Name:      wbp.Name,
+			Value:     wbp.Value,
+			CreatedAt: wb.CreatedAt,
+		})
+	}
+
+	return userWorkspaceBuildParameters, nil
+}
+
 func (q *FakeQuerier) GetUsers(_ context.Context, params database.GetUsersParams) ([]database.GetUsersRow, error) {
 	if err := validateDatabaseType(params); err != nil {
 		return nil, err
 
@@ -14,3 +14,28 @@ FROM
     workspace_build_parameters
 WHERE
     workspace_build_id = $1;
+
+-- name: GetUserWorkspaceBuildParameters :many
+SELECT
+    sub.name,
+    sub.value,
+    sub.created_at
+FROM (
+    SELECT
+        wbp.name,
+        wbp.value,
+        wb.created_at,
+        ROW_NUMBER() OVER (PARTITION BY wbp.name ORDER BY wb.created_at DESC) as rn
+    FROM
+        workspace_build_parameters wbp
+    JOIN 
+        workspace_builds wb ON wb.id = wbp.workspace_build_id
+    JOIN
+        workspaces w ON w.id = wb.workspace_id
+    WHERE
+        w.owner_id = $1
+        AND wb.transition = 'start'
+) sub
+WHERE
+    sub.rn = 1
+LIMIT 100;
@@ -569,6 +569,53 @@ func (api *API) userByName(rw http.ResponseWriter, r *http.Request) {
 	httpapi.Write(ctx, rw, http.StatusOK, db2sdk.User(user, organizationIDs))
 }
 
+// Returns recent build parameters for the signed-in user.
+//
+// @Summary Get recent build parameters for user.
+// @ID get-user-params
+// @Security CoderSessionToken
+// @Produce json
+// @Tags Users
+// @Param user path string true "User ID, username, or me"
+// @Success 200 {array} codersdk.UserParameter
+// @Router /users/{user}/parameters [get]
+func (api *API) userParameters(rw http.ResponseWriter, r *http.Request) {
+	var (
+		apiKey = httpmw.APIKey(r)
+		user   = httpmw.UserParam(r)
+	)
+
+	if apiKey.UserID != user.ID {
+		httpapi.Write(r.Context(), rw, http.StatusForbidden, codersdk.Response{
+			Message: "You are not authorized to view this user's parameters.",
+		})
+		return
+	}
+
+	params, err := api.Database.GetUserWorkspaceBuildParameters(
+		r.Context(),
+		apiKey.UserID,
+	)
+	if err != nil {
+		httpapi.Write(r.Context(), rw, http.StatusInternalServerError, codersdk.Response{
+			Message: "Internal error fetching user's parameters.",
+			Detail:  err.Error(),
+		})
+		return
+	}
+
+	var sdkParams []codersdk.UserParameter
+	for _, param := range params {
+		sdkParams = append(sdkParams, codersdk.UserParameter{
+			Name:       param.Name,
+			Value:      param.Value,
+			LastUsedAt: param.CreatedAt,
+		})
+	}
+
+	httpapi.Write(r.Context(), rw, http.StatusOK, sdkParams)
+}
+
 // Returns the user's login type. This only works if the api key for authorization
 // and the requested user match. Eg: 'me'
 //