@@ -18,7 +18,9 @@ import (
1818 "cdr.dev/slog"
1919
2020 "github.com/coder/coder/coderd/database"
21+ "github.com/coder/coder/coderd/database/dbauthz"
2122 "github.com/coder/coder/coderd/database/pubsub"
23+ "github.com/coder/coder/coderd/rbac"
2224 agpl "github.com/coder/coder/tailnet"
2325)
2426
@@ -82,7 +84,21 @@ type pgCoord struct {
8284// NewPGCoord creates a high-availability coordinator that stores state in the PostgreSQL database and
8385// receives notifications of updates via the pubsub.
8486func NewPGCoord (ctx context.Context , logger slog.Logger , ps pubsub.Pubsub , store database.Store ) (agpl.Coordinator , error ) {
85- ctx , cancel := context .WithCancel (ctx )
87+ ctx , cancel := context .WithCancel (dbauthz .As (ctx , rbac.Subject {
88+ ID : uuid .Nil .String (),
89+ Roles : rbac .Roles ([]rbac.Role {
90+ {
91+ Name : "tailnetcoordinator" ,
92+ DisplayName : "Tailnet Coordinator" ,
93+ Site : rbac .Permissions (map [string ][]rbac.Action {
94+ rbac .ResourceTailnetCoordinator .Type : {rbac .WildcardSymbol },
95+ }),
96+ Org : map [string ][]rbac.Permission {},
97+ User : []rbac.Permission {},
98+ },
99+ }),
100+ Scope : rbac .ScopeAll ,
101+ }.WithCachedASTValue ()))
86102 id := uuid .New ()
87103 logger = logger .Named ("pgcoord" ).With (slog .F ("coordinator_id" , id ))
88104 bCh := make (chan binding )
@@ -103,6 +119,7 @@ func NewPGCoord(ctx context.Context, logger slog.Logger, ps pubsub.Pubsub, store
103119 querier : newQuerier (ctx , logger , ps , store , id , cCh , numQuerierWorkers , fHB ),
104120 closed : make (chan struct {}),
105121 }
122+ logger .Info (ctx , "starting coordinator" )
106123 return c , nil
107124}
108125
@@ -171,6 +188,7 @@ func (c *pgCoord) ServeAgent(conn net.Conn, id uuid.UUID, name string) error {
171188}
172189
173190func (c * pgCoord ) Close () error {
191+ c .logger .Info (c .ctx , "closing coordinator" )
174192 c .cancel ()
175193 c .closeOnce .Do (func () { close (c .closed ) })
176194 return nil
0 commit comments