Commit da2efd24 authored by Emily Ring's avatar Emily Ring Committed by Douglas Barbosa Alexandre

Added created_by_user to cluster agent tokens

Updated Clusters::AgentToken model and database to include
created_by_user field. Added model and GraphQL tests for new
created_by_user field. Updated GraphQL docs
parent aca98a92
...@@ -8,6 +8,7 @@ module Clusters ...@@ -8,6 +8,7 @@ module Clusters
self.table_name = 'cluster_agent_tokens' self.table_name = 'cluster_agent_tokens'
belongs_to :agent, class_name: 'Clusters::Agent' belongs_to :agent, class_name: 'Clusters::Agent'
belongs_to :created_by_user, class_name: 'User', optional: true
before_save :ensure_token before_save :ensure_token
end end
......
---
title: Add created_by_user to cluster agent tokens
merge_request: 54019
author:
type: added
# frozen_string_literal: true
class AddCreatedByUserForClusterAgentToken < ActiveRecord::Migration[6.0]
include Gitlab::Database::MigrationHelpers
DOWNTIME = false
INDEX_NAME = 'index_cluster_agent_tokens_on_created_by_user_id'
disable_ddl_transaction!
def up
unless column_exists?(:cluster_agent_tokens, :created_by_user_id)
add_column :cluster_agent_tokens, :created_by_user_id, :bigint
end
add_concurrent_index :cluster_agent_tokens, :created_by_user_id, name: INDEX_NAME
add_concurrent_foreign_key :cluster_agent_tokens, :users, column: :created_by_user_id, on_delete: :nullify
end
def down
with_lock_retries do
remove_foreign_key_if_exists :cluster_agent_tokens, :users, column: :created_by_user_id
end
remove_concurrent_index_by_name :cluster_agent_tokens, INDEX_NAME
remove_column :cluster_agent_tokens, :created_by_user_id
end
end
484338ddc83bfb44523d08da92ac7f5b9d13e1a66ad1c9c3f7590f91fc9305c0
\ No newline at end of file
...@@ -11006,6 +11006,7 @@ CREATE TABLE cluster_agent_tokens ( ...@@ -11006,6 +11006,7 @@ CREATE TABLE cluster_agent_tokens (
updated_at timestamp with time zone NOT NULL, updated_at timestamp with time zone NOT NULL,
agent_id bigint NOT NULL, agent_id bigint NOT NULL,
token_encrypted text NOT NULL, token_encrypted text NOT NULL,
created_by_user_id bigint,
CONSTRAINT check_c60daed227 CHECK ((char_length(token_encrypted) <= 255)) CONSTRAINT check_c60daed227 CHECK ((char_length(token_encrypted) <= 255))
); );
...@@ -21781,6 +21782,8 @@ CREATE UNIQUE INDEX index_ci_variables_on_project_id_and_key_and_environment_sco ...@@ -21781,6 +21782,8 @@ CREATE UNIQUE INDEX index_ci_variables_on_project_id_and_key_and_environment_sco
CREATE INDEX index_cluster_agent_tokens_on_agent_id ON cluster_agent_tokens USING btree (agent_id); CREATE INDEX index_cluster_agent_tokens_on_agent_id ON cluster_agent_tokens USING btree (agent_id);
CREATE INDEX index_cluster_agent_tokens_on_created_by_user_id ON cluster_agent_tokens USING btree (created_by_user_id);
CREATE UNIQUE INDEX index_cluster_agent_tokens_on_token_encrypted ON cluster_agent_tokens USING btree (token_encrypted); CREATE UNIQUE INDEX index_cluster_agent_tokens_on_token_encrypted ON cluster_agent_tokens USING btree (token_encrypted);
CREATE UNIQUE INDEX index_cluster_agents_on_project_id_and_name ON cluster_agents USING btree (project_id, name); CREATE UNIQUE INDEX index_cluster_agents_on_project_id_and_name ON cluster_agents USING btree (project_id, name);
...@@ -24297,6 +24300,9 @@ ALTER TABLE ONLY vulnerabilities ...@@ -24297,6 +24300,9 @@ ALTER TABLE ONLY vulnerabilities
ALTER TABLE ONLY index_statuses ALTER TABLE ONLY index_statuses
ADD CONSTRAINT fk_74b2492545 FOREIGN KEY (project_id) REFERENCES projects(id) ON DELETE CASCADE; ADD CONSTRAINT fk_74b2492545 FOREIGN KEY (project_id) REFERENCES projects(id) ON DELETE CASCADE;
ALTER TABLE ONLY cluster_agent_tokens
ADD CONSTRAINT fk_75008f3553 FOREIGN KEY (created_by_user_id) REFERENCES users(id) ON DELETE SET NULL;
ALTER TABLE ONLY vulnerabilities ALTER TABLE ONLY vulnerabilities
ADD CONSTRAINT fk_76bc5f5455 FOREIGN KEY (resolved_by_id) REFERENCES users(id) ON DELETE SET NULL; ADD CONSTRAINT fk_76bc5f5455 FOREIGN KEY (resolved_by_id) REFERENCES users(id) ON DELETE SET NULL;
......
...@@ -3450,6 +3450,11 @@ type ClusterAgentToken { ...@@ -3450,6 +3450,11 @@ type ClusterAgentToken {
""" """
createdAt: Time createdAt: Time
"""
The user who created the token.
"""
createdByUser: User
""" """
Global ID of the token. Global ID of the token.
""" """
......
...@@ -9359,6 +9359,20 @@ ...@@ -9359,6 +9359,20 @@
"isDeprecated": false, "isDeprecated": false,
"deprecationReason": null "deprecationReason": null
}, },
{
"name": "createdByUser",
"description": "The user who created the token.",
"args": [
],
"type": {
"kind": "OBJECT",
"name": "User",
"ofType": null
},
"isDeprecated": false,
"deprecationReason": null
},
{ {
"name": "id", "name": "id",
"description": "Global ID of the token.", "description": "Global ID of the token.",
...@@ -546,6 +546,7 @@ Autogenerated return type of ClusterAgentDelete. ...@@ -546,6 +546,7 @@ Autogenerated return type of ClusterAgentDelete.
| ----- | ---- | ----------- | | ----- | ---- | ----------- |
| `clusterAgent` | ClusterAgent | Cluster agent this token is associated with. | | `clusterAgent` | ClusterAgent | Cluster agent this token is associated with. |
| `createdAt` | Time | Timestamp the token was created. | | `createdAt` | Time | Timestamp the token was created. |
| `createdByUser` | User | The user who created the token. |
| `id` | ClustersAgentTokenID! | Global ID of the token. | | `id` | ClustersAgentTokenID! | Global ID of the token. |
### ClusterAgentTokenCreatePayload ### ClusterAgentTokenCreatePayload
......
...@@ -19,6 +19,11 @@ module Types ...@@ -19,6 +19,11 @@ module Types
null: true, null: true,
description: 'Timestamp the token was created.' description: 'Timestamp the token was created.'
field :created_by_user,
Types::UserType,
null: true,
description: 'The user who created the token.'
field :id, field :id,
::Types::GlobalIDType[::Clusters::AgentToken], ::Types::GlobalIDType[::Clusters::AgentToken],
null: false, null: false,
......
...@@ -7,7 +7,7 @@ module Clusters ...@@ -7,7 +7,7 @@ module Clusters
return error_feature_not_available unless container.feature_available?(:cluster_agents) return error_feature_not_available unless container.feature_available?(:cluster_agents)
return error_no_permissions unless current_user.can?(:create_cluster, container) return error_no_permissions unless current_user.can?(:create_cluster, container)
token = ::Clusters::AgentToken.new(agent: cluster_agent) token = ::Clusters::AgentToken.new(agent: cluster_agent, created_by_user: current_user)
if token.save if token.save
ServiceResponse.success(payload: { secret: token.token, token: token }) ServiceResponse.success(payload: { secret: token.token, token: token })
......
...@@ -3,7 +3,7 @@ ...@@ -3,7 +3,7 @@
require 'spec_helper' require 'spec_helper'
RSpec.describe GitlabSchema.types['ClusterAgentToken'] do RSpec.describe GitlabSchema.types['ClusterAgentToken'] do
let(:fields) { %i[cluster_agent created_at id] } let(:fields) { %i[cluster_agent created_at created_by_user id] }
it { expect(described_class.graphql_name).to eq('ClusterAgentToken') } it { expect(described_class.graphql_name).to eq('ClusterAgentToken') }
......
...@@ -55,7 +55,14 @@ RSpec.describe Clusters::AgentTokens::CreateService do ...@@ -55,7 +55,14 @@ RSpec.describe Clusters::AgentTokens::CreateService do
result = service.execute(cluster_agent) result = service.execute(cluster_agent)
expect(result.status).to eq(:success) expect(result.status).to eq(:success)
expect(result.message).to be_nil
end
it 'returns token information', :aggregate_failures do
result = service.execute(cluster_agent)
expect(result.payload[:secret]).not_to be_nil expect(result.payload[:secret]).not_to be_nil
expect(result.payload[:token].created_by_user).to eq(user)
end end
end end
end end
......
...@@ -4,6 +4,7 @@ require 'spec_helper' ...@@ -4,6 +4,7 @@ require 'spec_helper'
RSpec.describe Clusters::AgentToken do RSpec.describe Clusters::AgentToken do
it { is_expected.to belong_to(:agent).class_name('Clusters::Agent') } it { is_expected.to belong_to(:agent).class_name('Clusters::Agent') }
it { is_expected.to belong_to(:created_by_user).class_name('User').optional }
describe '#token' do describe '#token' do
it 'is generated on save' do it 'is generated on save' do
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment