Skip to content

fix: Suspended users cannot authenticate #1849

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 18 commits into from
May 31, 2022
Merged

fix: Suspended users cannot authenticate #1849

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
18 commits
Select commit Hold shift + click to select a range
8a2b6c2
fix: Suspended users cannot authenticate
Emyrk May 27, 2022
43dece2
Merge remote-tracking branch 'origin/main' into stevenmasley/suspende…
Emyrk May 27, 2022
87f28a2
Add unit test for log into suspended account
Emyrk May 27, 2022
047c234
Formatting
Emyrk May 27, 2022
d2bc5b8
feat: UI Shows suspended error logging into suspended account
Emyrk May 27, 2022
cc9b573
Merge remote-tracking branch 'origin/main' into stevenmasley/suspende…
Emyrk May 27, 2022
8654dd1
cleanup
Emyrk May 27, 2022
489b2fe
fix: Show suspended users in the UI
Emyrk May 27, 2022
15a9b36
Fix column order
Emyrk May 27, 2022
55c5fe6
Currently "activate" on ui does nothing
Emyrk May 27, 2022
c5f33a5
Linting fixes
Emyrk May 27, 2022
f9a47a9
Account for no status filters sent
Emyrk May 27, 2022
71ba332
Linting fix eslint
Emyrk May 27, 2022
54f44d9
Shfmt
Emyrk May 27, 2022
8dbf464
Fix BE error message
Emyrk May 27, 2022
60ac7e4
Add correct error message
Emyrk May 27, 2022
f738fa2
Merge remote-tracking branch 'origin/main' into stevenmasley/suspende…
Emyrk May 27, 2022
df96f3d
change 'active' route to 'activate'
Emyrk May 31, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
Merge remote-tracking branch 'origin/main' into stevenmasley/suspende… 
…d_users
  • Loading branch information
@Emyrk
Emyrk committed May 27, 2022
commit cc9b573d3250b62b7b82e40d1b1ad1dba35cf337
70 changes: 20 additions & 50 deletions cli/server.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -68,10 +68,8 @@ func server() *cobra.Command {
pprofAddress string
cacheDir string
dev bool
devFirstEmail string
devFirstPassword string
devMemberEmail string
devMemberPassword string
devUserEmail string
devUserPassword string
postgresURL string
// provisionerDaemonCount is a uint8 to ensure a number > 0.
provisionerDaemonCount uint8
Expand Down Expand Up @@ -332,30 +330,19 @@ func server() *cobra.Command {
config := createConfig(cmd)

if dev {
if devFirstPassword == "" {
devFirstPassword, err = cryptorand.String(10)
if devUserPassword == "" {
devUserPassword, err = cryptorand.String(10)
if err != nil {
return xerrors.Errorf("generate random admin password for dev: %w", err)
}
}
if devMemberPassword == "" {
devMemberPassword, err = cryptorand.String(10)
if err != nil {
return xerrors.Errorf("generate random member password for dev: %w", err)
}
}

// Create first user with 1 additional user as a member of the same org.
err = createFirstUser(cmd, client, config, devFirstEmail, devFirstPassword, extraUsers{
Username: "member",
Email: devMemberEmail,
Password: devMemberPassword,
})
restorePreviousSession, err := createFirstUser(logger, cmd, client, config, devUserEmail, devUserPassword)
if err != nil {
return xerrors.Errorf("create first user: %w", err)
}
_, _ = fmt.Fprintf(cmd.ErrOrStderr(), "email: %s\n", devFirstEmail)
_, _ = fmt.Fprintf(cmd.ErrOrStderr(), "password: %s\n", devFirstPassword)
defer restorePreviousSession()
_, _ = fmt.Fprintf(cmd.ErrOrStderr(), "email: %s\n", devUserEmail)
_, _ = fmt.Fprintf(cmd.ErrOrStderr(), "password: %s\n", devUserPassword)
_, _ = fmt.Fprintln(cmd.ErrOrStderr())

_, _ = fmt.Fprintf(cmd.ErrOrStderr(), cliui.Styles.Wrap.Render(`Started in dev mode. All data is in-memory! `+cliui.Styles.Bold.Render("Do not use in production")+`. Press `+
Expand Down Expand Up @@ -488,10 +475,8 @@ func server() *cobra.Command {
// systemd uses the CACHE_DIRECTORY environment variable!
cliflag.StringVarP(root.Flags(), &cacheDir, "cache-dir", "", "CACHE_DIRECTORY", filepath.Join(os.TempDir(), "coder-cache"), "Specifies a directory to cache binaries for provision operations.")
cliflag.BoolVarP(root.Flags(), &dev, "dev", "", "CODER_DEV_MODE", false, "Serve Coder in dev mode for tinkering")
cliflag.StringVarP(root.Flags(), &devFirstEmail, "dev-admin-email", "", "CODER_DEV_ADMIN_EMAIL", "admin@coder.com", "Specifies the admin email to be used in dev mode (--dev)")
cliflag.StringVarP(root.Flags(), &devFirstPassword, "dev-admin-password", "", "CODER_DEV_ADMIN_PASSWORD", "", "Specifies the admin password to be used in dev mode (--dev) instead of a randomly generated one")
cliflag.StringVarP(root.Flags(), &devMemberEmail, "dev-member-email", "", "CODER_DEV_MEMBER_EMAIL", "member@coder.com", "Specifies the member email to be used in dev mode (--dev)")
cliflag.StringVarP(root.Flags(), &devMemberPassword, "dev-member-password", "", "CODER_DEV_MEMBER_PASSWORD", "", "Specifies the member password to be used in dev mode (--dev) instead of a randomly generated one")
cliflag.StringVarP(root.Flags(), &devUserEmail, "dev-admin-email", "", "CODER_DEV_ADMIN_EMAIL", "admin@coder.com", "Specifies the admin email to be used in dev mode (--dev)")
cliflag.StringVarP(root.Flags(), &devUserPassword, "dev-admin-password", "", "CODER_DEV_ADMIN_PASSWORD", "", "Specifies the admin password to be used in dev mode (--dev) instead of a randomly generated one")
cliflag.StringVarP(root.Flags(), &postgresURL, "postgres-url", "", "CODER_PG_CONNECTION_URL", "", "URL of a PostgreSQL database to connect to")
cliflag.Uint8VarP(root.Flags(), &provisionerDaemonCount, "provisioner-daemons", "", "CODER_PROVISIONER_DAEMONS", 3, "The amount of provisioner daemons to create on start.")
cliflag.StringVarP(root.Flags(), &oauth2GithubClientID, "oauth2-github-client-id", "", "CODER_OAUTH2_GITHUB_CLIENT_ID", "",
Expand Down Expand Up @@ -534,20 +519,16 @@ func server() *cobra.Command {
return root
}

type extraUsers struct {
Username string
Email string
Password string
}

func createFirstUser(cmd *cobra.Command, client *codersdk.Client, cfg config.Root, email, password string, users ...extraUsers) error {
// createFirstUser creates the first user and sets a valid session.
// Caller must call restorePreviousSession on server exit.
func createFirstUser(logger slog.Logger, cmd *cobra.Command, client *codersdk.Client, cfg config.Root, email, password string) (func(), error) {
if email == "" {
return nil, xerrors.New("email is empty")
}
if password == "" {
return nil, xerrors.New("password is empty")
}
first, err := client.CreateFirstUser(cmd.Context(), codersdk.CreateFirstUserRequest{
_, err := client.CreateFirstUser(cmd.Context(), codersdk.CreateFirstUserRequest{
Email: email,
Username: "developer",
Password: password,
Expand Down Expand Up @@ -610,18 +591,7 @@ func createFirstUser(cmd *cobra.Command, client *codersdk.Client, cfg config.Roo
return nil, xerrors.Errorf("write session token: %w", err)
}

for _, user := range users {
_, err := client.CreateUser(cmd.Context(), codersdk.CreateUserRequest{
Email: user.Email,
Username: user.Username,
Password: user.Password,
OrganizationID: first.OrganizationID,
})
if err != nil {
return xerrors.Errorf("create extra user %q: %w", user.Email, err)
}
}
return nil
return restorePreviousSession, nil
}

// nolint:revive
Expand Down Expand Up @@ -678,16 +648,16 @@ func newProvisionerDaemon(ctx context.Context, coderAPI *coderd.API,
func printLogo(cmd *cobra.Command, spooky bool) {
if spooky {
_, _ = fmt.Fprintf(cmd.OutOrStdout(), `
▄████▄ ▒█████ ▓█████▄ ▓█████ ██▀███
▄████▄ ▒█████ ▓█████▄ ▓█████ ██▀███
▒██▀ ▀█ ▒██▒ ██▒▒██▀ ██▌▓█ ▀ ▓██ ▒ ██▒
▒▓█ ▄ ▒██░ ██▒░██ █▌▒███ ▓██ ░▄█ ▒
▒▓▓▄ ▄██▒▒██ ██░░▓█▄ ▌▒▓█ ▄ ▒██▀▀█▄
▒▓▓▄ ▄██▒▒██ ██░░▓█▄ ▌▒▓█ ▄ ▒██▀▀█▄
▒ ▓███▀ ░░ ████▓▒░░▒████▓ ░▒████▒░██▓ ▒██▒
░ ░▒ ▒ ░░ ▒░▒░▒░ ▒▒▓ ▒ ░░ ▒░ ░░ ▒▓ ░▒▓░
░ ▒ ░ ▒ ▒░ ░ ▒ ▒ ░ ░ ░ ░▒ ░ ▒░
░ ░ ░ ░ ▒ ░ ░ ░ ░ ░░ ░
░ ░ ░ ░ ░ ░ ░ ░
░ ░
░ ░ ░ ░ ▒ ░ ░ ░ ░ ░░ ░
░ ░ ░ ░ ░ ░ ░ ░
░ ░

`)
return
Expand Down
1 change: 0 additions & 1 deletion coderd/coderd.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -139,7 +139,6 @@ func New(options *Options) *API {
r.Route("/organizations", func(r chi.Router) {
r.Use(
apiKeyMiddleware,
httpmw.ExtractOrganizationParam(options.Database),
)
r.Post("/", api.postOrganizations)
r.Route("/{organization}", func(r chi.Router) {
Expand Down
You are viewing a condensed version of this merge commit. You can view the full changes here.