feat: get org scoped provisioners #13953

f0ssel · 2024-07-19T19:17:51Z

What this changes:

GET /organizations/{organization}/provisionerdaemons to require a valid organization and only return provisioners daemons from the specified organization
- Even though this endpoint previously didn't validate the organization passed to it we have historically still called it with a proper org or "default".
Scope the provisioner daemon RBAC object to an organization - This expands the authorization to manage provisioner daemons from just template admins to now include org admins as well.

enterprise/coderd/provisionerdaemons.go

f0ssel added 2 commits July 19, 2024 18:37

generate db query

06214ee

failing rbac

5c26725

github-actions bot assigned f0ssel Jul 19, 2024

f0ssel added 4 commits July 22, 2024 15:25

fix test

8d9dbe5

fix rbac

11d1899

no more .all()

de4b71b

no error for org admin

6ef3bc4

f0ssel marked this pull request as ready for review July 22, 2024 16:32

f0ssel requested a review from Emyrk July 22, 2024 16:32

cleanup

f629752

f0ssel mentioned this pull request Jul 19, 2024

Organization scoped provisioners #13762

Closed

17 tasks

Emyrk approved these changes Jul 22, 2024

View reviewed changes

enterprise/coderd/provisionerdaemons.go Outdated Show resolved Hide resolved

stop catching no rows

e04b331

f0ssel enabled auto-merge (squash) July 23, 2024 14:44

f0ssel merged commit 0a07c7e into main Jul 23, 2024
29 checks passed

f0ssel deleted the f0ssel/get-org-provisioners branch July 23, 2024 14:56

github-actions bot locked and limited conversation to collaborators Jul 23, 2024

Provide feedback